From d4ae54f5fea46f302d31d124a220eca91e983b91 Mon Sep 17 00:00:00 2001 From: "deepin-community-bot[bot]" <156989552+deepin-community-bot[bot]@users.noreply.github.com> Date: Thu, 21 May 2026 07:11:39 +0000 Subject: [PATCH] feat: update firewalld to 2.3.1-1+deb13u1 --- Makefile.in | 47 +- README.md | 6 +- aclocal.m4 | 543 +- config/Makefile.am | 20 +- config/Makefile.in | 42 +- config/firewall-config.appdata.xml.in | 24 +- config/firewalld.conf | 48 +- config/firewalld.service.in | 22 +- config/lockdown-whitelist.xml | 7 - config/lockdown-whitelist.xml.in | 7 - config/services/aseqnet.xml | 8 + config/services/ceph.xml | 2 +- config/services/iperf2.xml | 7 + config/services/iperf3.xml | 8 + config/services/mndp.xml | 6 + config/services/mpd.xml | 6 + config/services/radsec.xml | 6 + config/services/rootd.xml | 6 + config/services/slimevr.xml | 6 + config/services/steam-lan-transfer.xml | 8 + config/services/stun.xml | 7 + config/services/stuns.xml | 7 + config/services/turn.xml | 6 + config/services/turns.xml | 6 + config/services/ws-discovery-host.xml | 7 + config/xmlschema/helper.xsd | 26 + configure | 2747 +- configure.ac | 1 - debian/changelog | 95 + debian/control | 2 +- debian/firewalld.maintscript | 2 +- debian/firewalld.postinst | 8 +- debian/firewalld.triggers | 2 + debian/gbp.conf | 2 +- ...move-etc-sysconfig-firewalld-support.patch | 10 +- ...ION_CONFIG-for-set-ZoneSettings2-Pol.patch | 34 + debian/patches/series | 1 + debian/salsa-ci.yml | 3 + doc/Makefile.in | 12 +- doc/man/Makefile.in | 12 +- doc/man/man1/Makefile.in | 10 +- doc/man/man1/firewall-applet.1 | 8 +- doc/man/man1/firewall-cmd.1 | 180 +- doc/man/man1/firewall-config.1 | 8 +- doc/man/man1/firewall-offline-cmd.1 | 170 +- doc/man/man1/firewalld.1 | 8 +- doc/man/man5/Makefile.in | 10 +- doc/man/man5/firewalld.conf.5 | 28 +- doc/man/man5/firewalld.dbus.5 | 524 +- doc/man/man5/firewalld.direct.5 | 8 +- doc/man/man5/firewalld.helper.5 | 8 +- doc/man/man5/firewalld.icmptype.5 | 8 +- doc/man/man5/firewalld.ipset.5 | 8 +- doc/man/man5/firewalld.lockdown-whitelist.5 | 140 - doc/man/man5/firewalld.policies.5 | 10 +- doc/man/man5/firewalld.policy.5 | 8 +- doc/man/man5/firewalld.richlanguage.5 | 8 +- doc/man/man5/firewalld.service.5 | 8 +- doc/man/man5/firewalld.zone.5 | 8 +- doc/man/man5/firewalld.zones.5 | 8 +- doc/xml/Makefile.am | 1 - doc/xml/Makefile.in | 11 +- doc/xml/errorcodes.xml | 1 + doc/xml/firewall-cmd.xml | 220 - doc/xml/firewall-cmd.xml.in | 220 - doc/xml/firewall-offline-cmd.xml | 214 - doc/xml/firewalld.conf.xml | 61 +- doc/xml/firewalld.dbus.xml | 589 +- doc/xml/firewalld.lockdown-whitelist.xml | 162 - doc/xml/firewalld.policies.xml | 2 +- doc/xml/seealso.xml | 1 - firewalld.spec | 21 +- install-sh | 161 +- missing | 2 +- po/POTFILES.in | 17 +- po/ar.po | 1172 +- po/as.po | 1155 +- po/ast.po | 1034 +- po/bg.po | 1037 +- po/bn_IN.po | 1155 +- po/ca.po | 1177 +- po/cs.po | 1177 +- po/da.po | 1175 +- po/de.po | 1182 +- po/el.po | 1035 +- po/en_GB.po | 1088 +- po/en_US.po | 1161 +- po/es.po | 1177 +- po/et.po | 1035 +- po/eu.po | 1035 +- po/fa.po | 1035 +- po/fi.po | 1176 +- po/fr.po | 1182 +- po/gl.po | 1035 +- po/gu.po | 1152 +- po/hi.po | 1151 +- po/hr.po | 1034 +- po/hu.po | 1178 +- po/ia.po | 1035 +- po/id.po | 1035 +- po/it.po | 1176 +- po/ja.po | 1180 +- po/ka.po | 1139 +- po/kn.po | 1153 +- po/ko.po | 1174 +- po/lt.po | 1121 +- po/ml.po | 1185 +- po/mr.po | 1151 +- po/nl.po | 1181 +- po/or.po | 1151 +- po/pa.po | 1157 +- po/pl.po | 1180 +- po/pt.po | 1168 +- po/pt_BR.po | 1179 +- po/ro.po | 1182 +- po/ru.po | 1178 +- po/si.po | 1034 +- po/sk.po | 1178 +- po/sl.po | 1174 +- po/sq.po | 1038 +- po/sr.po | 1158 +- po/sr@latin.po | 1039 +- po/sv.po | 1175 +- po/ta.po | 1153 +- po/te.po | 1151 +- po/tr.po | 1180 +- po/uk.po | 1186 +- po/zh_CN.po | 1165 +- po/zh_TW.po | 1166 +- shell-completion/Makefile.in | 10 +- shell-completion/bash/firewall-cmd | 12 +- src/Makefile.am | 2 - src/Makefile.in | 14 +- src/firewall-applet | 11 +- src/firewall-applet.in | 9 +- src/firewall-cmd | 279 +- src/firewall-cmd.in | 277 +- src/firewall-config | 706 +- src/firewall-config.glade | 1736 +- src/firewall-config.in | 704 +- src/firewall-offline-cmd | 158 +- src/firewall-offline-cmd.in | 156 +- src/firewall/client.py | 310 - src/firewall/command.py | 36 +- src/firewall/config/__init__.py | 20 +- src/firewall/config/__init__.py.in | 18 +- src/firewall/core/fw.py | 318 +- src/firewall/core/fw_config.py | 81 +- src/firewall/core/fw_direct.py | 194 +- src/firewall/core/fw_policies.py | 63 - src/firewall/core/fw_policy.py | 671 +- src/firewall/core/fw_transaction.py | 20 +- src/firewall/core/fw_zone.py | 256 +- src/firewall/core/io/direct.py | 16 +- src/firewall/core/io/firewalld_conf.py | 46 +- src/firewall/core/io/functions.py | 12 - src/firewall/core/io/helper.py | 16 +- src/firewall/core/io/icmptype.py | 12 +- src/firewall/core/io/io_object.py | 64 +- src/firewall/core/io/ipset.py | 16 +- src/firewall/core/io/lockdown_whitelist.py | 374 - src/firewall/core/io/policy.py | 436 +- src/firewall/core/io/service.py | 24 +- src/firewall/core/io/zone.py | 122 +- src/firewall/core/ipXtables.py | 105 +- src/firewall/core/ipset.py | 21 - src/firewall/core/nftables.py | 372 +- src/firewall/core/rich.py | 963 +- src/firewall/dbus_utils.py | 80 +- src/firewall/errors.py | 13 + src/firewall/functions.py | 36 +- src/firewall/server/config.py | 594 +- src/firewall/server/config_helper.py | 9 +- src/firewall/server/config_icmptype.py | 9 +- src/firewall/server/config_ipset.py | 9 +- src/firewall/server/config_policy.py | 9 +- src/firewall/server/config_service.py | 9 +- src/firewall/server/config_zone.py | 9 +- src/firewall/server/decorators.py | 96 +- src/firewall/server/firewalld.py | 607 +- src/firewalld | 2 +- src/icons/Makefile.in | 10 +- src/tests/Makefile.am | 23 - src/tests/Makefile.in | 35 +- src/tests/atlocal.in | 1 + src/tests/cli/firewall-cmd.at | 184 +- src/tests/dbus/dbus.at | 1 + src/tests/dbus/firewalld.conf.at | 11 +- src/tests/dbus/lockdown.at | 37 + src/tests/dbus/policy_permanent_functional.at | 4 +- src/tests/dbus/policy_runtime_functional.at | 2 +- src/tests/features/features.at | 2 + src/tests/features/nftables_table_owner.at | 27 + src/tests/features/policy.at | 17 +- src/tests/features/rfc3964_ipv4.at | 6 +- src/tests/features/rich_rules.at | 10 +- src/tests/features/rich_tcp_mss_clamp.at | 8 +- src/tests/features/rpfilter.at | 172 +- src/tests/features/strict_forward_ports.at | 246 + src/tests/functions.at | 21 +- src/tests/integration/networkmanager.at | 2 +- .../podman-strict-forward-ports.at | 124 + src/tests/integration/podman.at | 2 + src/tests/integration/polkit_auth_desktop.at | 6 +- src/tests/integration/polkit_auth_server.at | 6 +- src/tests/integration/testsuite | 2877 +- src/tests/integration/testsuite.at | 1 + src/tests/package.m4 | 4 +- src/tests/regression/RHEL-67103.at | 34 + src/tests/regression/gh1152.at | 6 +- src/tests/regression/gh1406.at | 62 + src/tests/regression/ipset_scale.at | 2 +- src/tests/regression/regression.at | 2 + src/tests/regression/rhbz1871298.at | 2 +- src/tests/regression/rhbz1914935.at | 8 - src/tests/regression/rhbz2222044.at | 7 +- src/tests/testsuite | 148188 ++++++++------- src/tests/unit/test_dbus_api.py | 87 + src/tests/unit/test_firewalld_conf.py | 1 - src/tests/unit/test_functions.py | 11 + src/tests/unit/test_rich_rule.py | 115 +- 221 files changed, 119652 insertions(+), 110784 deletions(-) delete mode 100644 config/lockdown-whitelist.xml delete mode 100644 config/lockdown-whitelist.xml.in create mode 100644 config/services/aseqnet.xml create mode 100644 config/services/iperf2.xml create mode 100644 config/services/iperf3.xml create mode 100644 config/services/mndp.xml create mode 100644 config/services/mpd.xml create mode 100644 config/services/radsec.xml create mode 100644 config/services/rootd.xml create mode 100644 config/services/slimevr.xml create mode 100644 config/services/steam-lan-transfer.xml create mode 100644 config/services/stun.xml create mode 100644 config/services/stuns.xml create mode 100644 config/services/turn.xml create mode 100644 config/services/turns.xml create mode 100644 config/services/ws-discovery-host.xml create mode 100644 config/xmlschema/helper.xsd create mode 100644 debian/firewalld.triggers create mode 100644 debian/patches/fix-policy-use-PK_ACTION_CONFIG-for-set-ZoneSettings2-Pol.patch create mode 100644 debian/salsa-ci.yml delete mode 100644 doc/man/man5/firewalld.lockdown-whitelist.5 delete mode 100644 doc/xml/firewalld.lockdown-whitelist.xml delete mode 100644 src/firewall/core/fw_policies.py delete mode 100644 src/firewall/core/io/lockdown_whitelist.py create mode 100644 src/tests/dbus/lockdown.at create mode 100644 src/tests/features/nftables_table_owner.at create mode 100644 src/tests/features/strict_forward_ports.at create mode 100644 src/tests/integration/podman-strict-forward-ports.at create mode 100644 src/tests/integration/podman.at create mode 100644 src/tests/regression/RHEL-67103.at create mode 100644 src/tests/regression/gh1406.at create mode 100644 src/tests/unit/test_dbus_api.py create mode 100644 src/tests/unit/test_functions.py diff --git a/Makefile.in b/Makefile.in index 734c6ee..83fe30a 100644 --- a/Makefile.in +++ b/Makefile.in @@ -1,7 +1,7 @@ -# Makefile.in generated by automake 1.16.1 from Makefile.am. +# Makefile.in generated by automake 1.16.5 from Makefile.am. # @configure_input@ -# Copyright (C) 1994-2018 Free Software Foundation, Inc. +# Copyright (C) 1994-2021 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -151,13 +151,10 @@ am__define_uniq_tagged_files = \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` -ETAGS = etags -CTAGS = ctags -CSCOPE = cscope DIST_SUBDIRS = $(SUBDIRS) am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/doxygen.conf.in \ $(top_srcdir)/src/firewall/config/__init__.py.in COPYING \ - install-sh missing + README.md install-sh missing DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) distdir = $(PACKAGE)-$(VERSION) top_distdir = $(distdir) @@ -196,6 +193,8 @@ am__relativize = \ GZIP_ENV = --best DIST_ARCHIVES = $(distdir).tar.bz2 DIST_TARGETS = dist-bzip2 +# Exists only to be overridden by the user if desired. +AM_DISTCHECK_DVI_TARGET = dvi distuninstallcheck_listfiles = find . -type f -print am__distuninstallcheck_listfiles = $(distuninstallcheck_listfiles) \ | sed 's|^\./|$(prefix)/|' | grep -v '$(infodir)/dir$$' @@ -209,6 +208,8 @@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ BASHCOMPLETIONDIR = @BASHCOMPLETIONDIR@ +CSCOPE = @CSCOPE@ +CTAGS = @CTAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_LOG_TARGET = @DEFAULT_LOG_TARGET@ DEFS = @DEFS@ @@ -217,6 +218,7 @@ EBTABLES_RESTORE = @EBTABLES_RESTORE@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ +ETAGS = @ETAGS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GETTEXT_PACKAGE = @GETTEXT_PACKAGE@ GLIB_COMPILE_SCHEMAS = @GLIB_COMPILE_SCHEMAS@ @@ -254,8 +256,8 @@ MAKEINFO = @MAKEINFO@ MKDIR_P = @MKDIR_P@ MODPROBE = @MODPROBE@ MSGFMT = @MSGFMT@ -MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ +MSGMERGE_FOR_MSGFMT_OPTION = @MSGMERGE_FOR_MSGFMT_OPTION@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ @@ -497,7 +499,6 @@ cscopelist-am: $(am__tagged_files) distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags -rm -f cscope.out cscope.in.out cscope.po.out cscope.files - distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am @@ -580,6 +581,10 @@ dist-xz: distdir tardir=$(distdir) && $(am__tar) | XZ_OPT=$${XZ_OPT--e} xz -c >$(distdir).tar.xz $(am__post_remove_distdir) +dist-zstd: distdir + tardir=$(distdir) && $(am__tar) | zstd -c $${ZSTD_CLEVEL-$${ZSTD_OPT--19}} >$(distdir).tar.zst + $(am__post_remove_distdir) + dist-tarZ: distdir @echo WARNING: "Support for distribution archives compressed with" \ "legacy program 'compress' is deprecated." >&2 @@ -622,6 +627,8 @@ distcheck: dist eval GZIP= gzip $(GZIP_ENV) -dc $(distdir).shar.gz | unshar ;;\ *.zip*) \ unzip $(distdir).zip ;;\ + *.tar.zst*) \ + zstd -dc $(distdir).tar.zst | $(am__untar) ;;\ esac chmod -R a-w $(distdir) chmod u+w $(distdir) @@ -637,7 +644,7 @@ distcheck: dist $(DISTCHECK_CONFIGURE_FLAGS) \ --srcdir=../.. --prefix="$$dc_install_base" \ && $(MAKE) $(AM_MAKEFLAGS) \ - && $(MAKE) $(AM_MAKEFLAGS) dvi \ + && $(MAKE) $(AM_MAKEFLAGS) $(AM_DISTCHECK_DVI_TARGET) \ && $(MAKE) $(AM_MAKEFLAGS) check \ && $(MAKE) $(AM_MAKEFLAGS) install \ && $(MAKE) $(AM_MAKEFLAGS) installcheck \ @@ -801,17 +808,17 @@ uninstall-am: am--refresh check check-am clean clean-cscope clean-generic \ cscope cscopelist-am ctags ctags-am dist dist-all dist-bzip2 \ dist-gzip dist-lzip dist-shar dist-tarZ dist-xz dist-zip \ - distcheck distclean distclean-generic distclean-local \ - distclean-tags distcleancheck distdir distuninstallcheck dvi \ - dvi-am html html-am info info-am install install-am \ - install-data install-data-am install-dvi install-dvi-am \ - install-exec install-exec-am install-html install-html-am \ - install-info install-info-am install-man install-pdf \ - install-pdf-am install-ps install-ps-am install-strip \ - installcheck installcheck-am installdirs installdirs-am \ - maintainer-clean maintainer-clean-generic mostlyclean \ - mostlyclean-generic pdf pdf-am ps ps-am tags tags-am uninstall \ - uninstall-am + dist-zstd distcheck distclean distclean-generic \ + distclean-local distclean-tags distcleancheck distdir \ + distuninstallcheck dvi dvi-am html html-am info info-am \ + install install-am install-data install-data-am install-dvi \ + install-dvi-am install-exec install-exec-am install-html \ + install-html-am install-info install-info-am install-man \ + install-pdf install-pdf-am install-ps install-ps-am \ + install-strip installcheck installcheck-am installdirs \ + installdirs-am maintainer-clean maintainer-clean-generic \ + mostlyclean mostlyclean-generic pdf pdf-am ps ps-am tags \ + tags-am uninstall uninstall-am .PRECIOUS: Makefile diff --git a/README.md b/README.md index 0308b31..490d97f 100644 --- a/README.md +++ b/README.md @@ -1,6 +1,6 @@ [![Build status](https://github.com/firewalld/firewalld/workflows/testsuite/badge.svg)](https://github.com/firewalld/firewalld/actions/workflows/testsuite.yml?query=event%3Apush+workflow%3Atestsuite) -[![Integration status](https://github.com/firewalld/firewalld/workflows/integration%20testsuite/badge.svg)](https://github.com/firewalld/firewalld/actions?query=event%3Apush+branch%3Amaster+workflow%3Aintegration-testsuite) -[![Source status](https://github.com/firewalld/firewalld/workflows/source%20code%20and%20build%20checks/badge.svg)](https://github.com/firewalld/firewalld/actions?query=event%3Apush+branch%3Amaster+workflow%3Asource-checks) +[![Integration status](https://github.com/firewalld/firewalld/workflows/integration%20testsuite/badge.svg)](https://github.com/firewalld/firewalld/actions?query=event%3Apush+workflow%3Aintegration-testsuite) +[![Source status](https://github.com/firewalld/firewalld/workflows/source%20code%20and%20build%20checks/badge.svg)](https://github.com/firewalld/firewalld/actions?query=event%3Apush+workflow%3Asource-checks) FirewallD - A firewall daemon with D-Bus interface providing a dynamic firewall @@ -43,7 +43,7 @@ These are the runtime dependencies: ``` linux >= 5.3 - python >= 3.7 + python >= 3.8 python3-dbus python3-gobject python3-nftables >= 0.9.4 diff --git a/aclocal.m4 b/aclocal.m4 index 5bce71a..3299c31 100644 --- a/aclocal.m4 +++ b/aclocal.m4 @@ -1,6 +1,6 @@ -# generated automatically by aclocal 1.16.1 -*- Autoconf -*- +# generated automatically by aclocal 1.16.5 -*- Autoconf -*- -# Copyright (C) 1996-2018 Free Software Foundation, Inc. +# Copyright (C) 1996-2021 Free Software Foundation, Inc. # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -14,8 +14,8 @@ m4_ifndef([AC_CONFIG_MACRO_DIRS], [m4_defun([_AM_CONFIG_MACRO_DIRS], [])m4_defun([AC_CONFIG_MACRO_DIRS], [_AM_CONFIG_MACRO_DIRS($@)])]) m4_ifndef([AC_AUTOCONF_VERSION], [m4_copy([m4_PACKAGE_VERSION], [AC_AUTOCONF_VERSION])])dnl -m4_if(m4_defn([AC_AUTOCONF_VERSION]), [2.69],, -[m4_warning([this file was generated for autoconf 2.69. +m4_if(m4_defn([AC_AUTOCONF_VERSION]), [2.71],, +[m4_warning([this file was generated for autoconf 2.71. You have another version of autoconf. It may work, but is not guaranteed to. If you have problems, you may need to regenerate the build system entirely. To do so, use the procedure documented by the package, typically 'autoreconf'.])]) @@ -109,19 +109,19 @@ m4_ifdef([_AM_SUBST_NOTMAKE], [_AM_SUBST_NOTMAKE([$1])]) ] ) -# nls.m4 serial 5 (gettext-0.18) -dnl Copyright (C) 1995-2003, 2005-2006, 2008-2014, 2016 Free Software -dnl Foundation, Inc. +# nls.m4 serial 6 (gettext-0.20.2) +dnl Copyright (C) 1995-2003, 2005-2006, 2008-2014, 2016, 2019-2020 Free +dnl Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl dnl This file can be used in projects which are not available under -dnl the GNU General Public License or the GNU Library General Public +dnl the GNU General Public License or the GNU Lesser General Public dnl License but which still want to provide support for the GNU gettext dnl functionality. dnl Please note that the actual code of the GNU gettext library is covered -dnl by the GNU Library General Public License, and the rest of the GNU +dnl by the GNU Lesser General Public License, and the rest of the GNU dnl gettext package is covered by the GNU General Public License. dnl They are *not* in the public domain. @@ -142,9 +142,9 @@ AC_DEFUN([AM_NLS], AC_SUBST([USE_NLS]) ]) -dnl pkg.m4 - Macros to locate and utilise pkg-config. -*- Autoconf -*- -dnl serial 11 (pkg-config-0.29.1) -dnl +# pkg.m4 - Macros to locate and use pkg-config. -*- Autoconf -*- +# serial 12 (pkg-config-0.29.2) + dnl Copyright © 2004 Scott James Remnant . dnl Copyright © 2012-2015 Dan Nicholson dnl @@ -185,7 +185,7 @@ dnl dnl See the "Since" comment for each macro you use to see what version dnl of the macros you require. m4_defun([PKG_PREREQ], -[m4_define([PKG_MACROS_VERSION], [0.29.1]) +[m4_define([PKG_MACROS_VERSION], [0.29.2]) m4_if(m4_version_compare(PKG_MACROS_VERSION, [$1]), -1, [m4_fatal([pkg.m4 version $1 or higher is required but ]PKG_MACROS_VERSION[ found])]) ])dnl PKG_PREREQ @@ -230,7 +230,7 @@ dnl Check to see whether a particular set of modules exists. Similar to dnl PKG_CHECK_MODULES(), but does not set variables or print errors. dnl dnl Please remember that m4 expands AC_REQUIRE([PKG_PROG_PKG_CONFIG]) -dnl only at the first occurence in configure.ac, so if the first place +dnl only at the first occurrence in configure.ac, so if the first place dnl it's called might be skipped (such as if it is within an "if", you dnl have to call PKG_CHECK_EXISTS manually AC_DEFUN([PKG_CHECK_EXISTS], @@ -286,7 +286,7 @@ AC_ARG_VAR([$1][_CFLAGS], [C compiler flags for $1, overriding pkg-config])dnl AC_ARG_VAR([$1][_LIBS], [linker flags for $1, overriding pkg-config])dnl pkg_failed=no -AC_MSG_CHECKING([for $1]) +AC_MSG_CHECKING([for $2]) _PKG_CONFIG([$1][_CFLAGS], [cflags], [$2]) _PKG_CONFIG([$1][_LIBS], [libs], [$2]) @@ -296,17 +296,17 @@ and $1[]_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details.]) if test $pkg_failed = yes; then - AC_MSG_RESULT([no]) + AC_MSG_RESULT([no]) _PKG_SHORT_ERRORS_SUPPORTED if test $_pkg_short_errors_supported = yes; then - $1[]_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "$2" 2>&1` - else - $1[]_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "$2" 2>&1` + $1[]_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "$2" 2>&1` + else + $1[]_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "$2" 2>&1` fi - # Put the nasty error message in config.log where it belongs - echo "$$1[]_PKG_ERRORS" >&AS_MESSAGE_LOG_FD + # Put the nasty error message in config.log where it belongs + echo "$$1[]_PKG_ERRORS" >&AS_MESSAGE_LOG_FD - m4_default([$4], [AC_MSG_ERROR( + m4_default([$4], [AC_MSG_ERROR( [Package requirements ($2) were not met: $$1_PKG_ERRORS @@ -317,8 +317,8 @@ installed software in a non-standard prefix. _PKG_TEXT])[]dnl ]) elif test $pkg_failed = untried; then - AC_MSG_RESULT([no]) - m4_default([$4], [AC_MSG_FAILURE( + AC_MSG_RESULT([no]) + m4_default([$4], [AC_MSG_FAILURE( [The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. @@ -328,10 +328,10 @@ _PKG_TEXT To get pkg-config, see .])[]dnl ]) else - $1[]_CFLAGS=$pkg_cv_[]$1[]_CFLAGS - $1[]_LIBS=$pkg_cv_[]$1[]_LIBS + $1[]_CFLAGS=$pkg_cv_[]$1[]_CFLAGS + $1[]_LIBS=$pkg_cv_[]$1[]_LIBS AC_MSG_RESULT([yes]) - $3 + $3 fi[]dnl ])dnl PKG_CHECK_MODULES @@ -418,18 +418,86 @@ AS_VAR_COPY([$1], [pkg_cv_][$1]) AS_VAR_IF([$1], [""], [$5], [$4])dnl ])dnl PKG_CHECK_VAR -# po.m4 serial 24 (gettext-0.19) -dnl Copyright (C) 1995-2014, 2016 Free Software Foundation, Inc. +dnl PKG_WITH_MODULES(VARIABLE-PREFIX, MODULES, +dnl [ACTION-IF-FOUND],[ACTION-IF-NOT-FOUND], +dnl [DESCRIPTION], [DEFAULT]) +dnl ------------------------------------------ +dnl +dnl Prepare a "--with-" configure option using the lowercase +dnl [VARIABLE-PREFIX] name, merging the behaviour of AC_ARG_WITH and +dnl PKG_CHECK_MODULES in a single macro. +AC_DEFUN([PKG_WITH_MODULES], +[ +m4_pushdef([with_arg], m4_tolower([$1])) + +m4_pushdef([description], + [m4_default([$5], [build with ]with_arg[ support])]) + +m4_pushdef([def_arg], [m4_default([$6], [auto])]) +m4_pushdef([def_action_if_found], [AS_TR_SH([with_]with_arg)=yes]) +m4_pushdef([def_action_if_not_found], [AS_TR_SH([with_]with_arg)=no]) + +m4_case(def_arg, + [yes],[m4_pushdef([with_without], [--without-]with_arg)], + [m4_pushdef([with_without],[--with-]with_arg)]) + +AC_ARG_WITH(with_arg, + AS_HELP_STRING(with_without, description[ @<:@default=]def_arg[@:>@]),, + [AS_TR_SH([with_]with_arg)=def_arg]) + +AS_CASE([$AS_TR_SH([with_]with_arg)], + [yes],[PKG_CHECK_MODULES([$1],[$2],$3,$4)], + [auto],[PKG_CHECK_MODULES([$1],[$2], + [m4_n([def_action_if_found]) $3], + [m4_n([def_action_if_not_found]) $4])]) + +m4_popdef([with_arg]) +m4_popdef([description]) +m4_popdef([def_arg]) + +])dnl PKG_WITH_MODULES + +dnl PKG_HAVE_WITH_MODULES(VARIABLE-PREFIX, MODULES, +dnl [DESCRIPTION], [DEFAULT]) +dnl ----------------------------------------------- +dnl +dnl Convenience macro to trigger AM_CONDITIONAL after PKG_WITH_MODULES +dnl check._[VARIABLE-PREFIX] is exported as make variable. +AC_DEFUN([PKG_HAVE_WITH_MODULES], +[ +PKG_WITH_MODULES([$1],[$2],,,[$3],[$4]) + +AM_CONDITIONAL([HAVE_][$1], + [test "$AS_TR_SH([with_]m4_tolower([$1]))" = "yes"]) +])dnl PKG_HAVE_WITH_MODULES + +dnl PKG_HAVE_DEFINE_WITH_MODULES(VARIABLE-PREFIX, MODULES, +dnl [DESCRIPTION], [DEFAULT]) +dnl ------------------------------------------------------ +dnl +dnl Convenience macro to run AM_CONDITIONAL and AC_DEFINE after +dnl PKG_WITH_MODULES check. HAVE_[VARIABLE-PREFIX] is exported as make +dnl and preprocessor variable. +AC_DEFUN([PKG_HAVE_DEFINE_WITH_MODULES], +[ +PKG_HAVE_WITH_MODULES([$1],[$2],[$3],[$4]) + +AS_IF([test "$AS_TR_SH([with_]m4_tolower([$1]))" = "yes"], + [AC_DEFINE([HAVE_][$1], 1, [Enable ]m4_tolower([$1])[ support])]) +])dnl PKG_HAVE_DEFINE_WITH_MODULES + +# po.m4 serial 31 (gettext-0.20.2) +dnl Copyright (C) 1995-2014, 2016, 2018-2020 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl dnl This file can be used in projects which are not available under -dnl the GNU General Public License or the GNU Library General Public +dnl the GNU General Public License or the GNU Lesser General Public dnl License but which still want to provide support for the GNU gettext dnl functionality. dnl Please note that the actual code of the GNU gettext library is covered -dnl by the GNU Library General Public License, and the rest of the GNU +dnl by the GNU Lesser General Public License, and the rest of the GNU dnl gettext package is covered by the GNU General Public License. dnl They are *not* in the public domain. @@ -450,7 +518,7 @@ AC_DEFUN([AM_PO_SUBDIRS], dnl Release version of the gettext macros. This is used to ensure that dnl the gettext macros and po/Makefile.in.in are in sync. - AC_SUBST([GETTEXT_MACRO_VERSION], [0.19]) + AC_SUBST([GETTEXT_MACRO_VERSION], [0.20]) dnl Perform the following tests also if --disable-nls has been given, dnl because they are needed for "make dist" to work. @@ -465,13 +533,6 @@ AC_DEFUN([AM_PO_SUBDIRS], AC_PATH_PROG([GMSGFMT], [gmsgfmt], [$MSGFMT]) dnl Test whether it is GNU msgfmt >= 0.15. -changequote(,)dnl - case `$MSGFMT --version | sed 1q | sed -e 's,^[^0-9]*,,'` in - '' | 0.[0-9] | 0.[0-9].* | 0.1[0-4] | 0.1[0-4].*) MSGFMT_015=: ;; - *) MSGFMT_015=$MSGFMT ;; - esac -changequote([,])dnl - AC_SUBST([MSGFMT_015]) changequote(,)dnl case `$GMSGFMT --version | sed 1q | sed -e 's,^[^0-9]*,,'` in '' | 0.[0-9] | 0.[0-9].* | 0.1[0-4] | 0.1[0-4].*) GMSGFMT_015=: ;; @@ -503,11 +564,21 @@ changequote([,])dnl AM_PATH_PROG_WITH_TEST(MSGMERGE, msgmerge, [$ac_dir/$ac_word --update -q /dev/null /dev/null >&]AS_MESSAGE_LOG_FD[ 2>&1], :) - dnl Installation directories. - dnl Autoconf >= 2.60 defines localedir. For older versions of autoconf, we - dnl have to define it here, so that it can be used in po/Makefile. - test -n "$localedir" || localedir='${datadir}/locale' - AC_SUBST([localedir]) + dnl Test whether it is GNU msgmerge >= 0.20. + if LC_ALL=C $MSGMERGE --help | grep ' --for-msgfmt ' >/dev/null; then + MSGMERGE_FOR_MSGFMT_OPTION='--for-msgfmt' + else + dnl Test whether it is GNU msgmerge >= 0.12. + if LC_ALL=C $MSGMERGE --help | grep ' --no-fuzzy-matching ' >/dev/null; then + MSGMERGE_FOR_MSGFMT_OPTION='--no-fuzzy-matching --no-location --quiet' + else + dnl With these old versions, $(MSGMERGE) $(MSGMERGE_FOR_MSGFMT_OPTION) is + dnl slow. But this is not a big problem, as such old gettext versions are + dnl hardly in use any more. + MSGMERGE_FOR_MSGFMT_OPTION='--no-location --quiet' + fi + fi + AC_SUBST([MSGMERGE_FOR_MSGFMT_OPTION]) dnl Support for AM_XGETTEXT_OPTION. test -n "${XGETTEXT_EXTRA_OPTIONS+set}" || XGETTEXT_EXTRA_OPTIONS= @@ -550,14 +621,11 @@ changequote([,])dnl if test -n "$OBSOLETE_ALL_LINGUAS"; then test -n "$as_me" && echo "$as_me: setting ALL_LINGUAS in configure.in is obsolete" || echo "setting ALL_LINGUAS in configure.in is obsolete" fi - ALL_LINGUAS_=`sed -e "/^#/d" -e "s/#.*//" "$ac_given_srcdir/$ac_dir/LINGUAS"` - # Hide the ALL_LINGUAS assignment from automake < 1.5. - eval 'ALL_LINGUAS''=$ALL_LINGUAS_' + ALL_LINGUAS=`sed -e "/^#/d" -e "s/#.*//" "$ac_given_srcdir/$ac_dir/LINGUAS"` POMAKEFILEDEPS="$POMAKEFILEDEPS LINGUAS" else # The set of available languages was given in configure.in. - # Hide the ALL_LINGUAS assignment from automake < 1.5. - eval 'ALL_LINGUAS''=$OBSOLETE_ALL_LINGUAS' + ALL_LINGUAS=$OBSOLETE_ALL_LINGUAS fi # Compute POFILES # as $(foreach lang, $(ALL_LINGUAS), $(srcdir)/$(lang).po) @@ -628,9 +696,8 @@ changequote([,])dnl esac done]], [# Capture the value of obsolete ALL_LINGUAS because we need it to compute - # POFILES, UPDATEPOFILES, DUMMYPOFILES, GMOFILES, CATALOGS. But hide it - # from automake < 1.5. - eval 'OBSOLETE_ALL_LINGUAS''="$ALL_LINGUAS"' + # POFILES, UPDATEPOFILES, DUMMYPOFILES, GMOFILES, CATALOGS. + OBSOLETE_ALL_LINGUAS="$ALL_LINGUAS" # Capture the value of LINGUAS because we need it to compute CATALOGS. LINGUAS="${LINGUAS-%UNSET%}" ]) @@ -731,15 +798,13 @@ changequote([,])dnl fi if test -f "$ac_given_srcdir/$ac_dir/LINGUAS"; then # The LINGUAS file contains the set of available languages. - ALL_LINGUAS_=`sed -e "/^#/d" -e "s/#.*//" "$ac_given_srcdir/$ac_dir/LINGUAS"` + ALL_LINGUAS=`sed -e "/^#/d" -e "s/#.*//" "$ac_given_srcdir/$ac_dir/LINGUAS"` POMAKEFILEDEPS="$POMAKEFILEDEPS LINGUAS" else # Set ALL_LINGUAS to the value of the Makefile variable LINGUAS. sed_x_LINGUAS=`$gt_echo "$sed_x_variable" | sed -e '/^ *#/d' -e 's/VARIABLE/LINGUAS/g'` - ALL_LINGUAS_=`sed -n -e "$sed_x_LINGUAS" < "$ac_file"` + ALL_LINGUAS=`sed -n -e "$sed_x_LINGUAS" < "$ac_file"` fi - # Hide the ALL_LINGUAS assignment from automake < 1.5. - eval 'ALL_LINGUAS''=$ALL_LINGUAS_' # Compute POFILES # as $(foreach lang, $(ALL_LINGUAS), $(srcdir)/$(lang).po) # Compute UPDATEPOFILES @@ -749,9 +814,9 @@ changequote([,])dnl # Compute GMOFILES # as $(foreach lang, $(ALL_LINGUAS), $(srcdir)/$(lang).gmo) # Compute PROPERTIESFILES - # as $(foreach lang, $(ALL_LINGUAS), $(top_srcdir)/$(DOMAIN)_$(lang).properties) + # as $(foreach lang, $(ALL_LINGUAS), $(srcdir)/$(DOMAIN)_$(lang).properties) # Compute CLASSFILES - # as $(foreach lang, $(ALL_LINGUAS), $(top_srcdir)/$(DOMAIN)_$(lang).class) + # as $(foreach lang, $(ALL_LINGUAS), $(srcdir)/$(DOMAIN)_$(lang).class) # Compute QMFILES # as $(foreach lang, $(ALL_LINGUAS), $(srcdir)/$(lang).qm) # Compute MSGFILES @@ -776,8 +841,8 @@ changequote([,])dnl UPDATEPOFILES="$UPDATEPOFILES $lang.po-update" DUMMYPOFILES="$DUMMYPOFILES $lang.nop" GMOFILES="$GMOFILES $srcdirpre$lang.gmo" - PROPERTIESFILES="$PROPERTIESFILES \$(top_srcdir)/\$(DOMAIN)_$lang.properties" - CLASSFILES="$CLASSFILES \$(top_srcdir)/\$(DOMAIN)_$lang.class" + PROPERTIESFILES="$PROPERTIESFILES \$(srcdir)/\$(DOMAIN)_$lang.properties" + CLASSFILES="$CLASSFILES \$(srcdir)/\$(DOMAIN)_$lang.class" QMFILES="$QMFILES $srcdirpre$lang.qm" frobbedlang=`echo $lang | sed -e 's/\..*$//' -e 'y/ABCDEFGHIJKLMNOPQRSTUVWXYZ/abcdefghijklmnopqrstuvwxyz/'` MSGFILES="$MSGFILES $srcdirpre$frobbedlang.msg" @@ -872,18 +937,18 @@ AC_DEFUN([AM_XGETTEXT_OPTION], XGETTEXT_EXTRA_OPTIONS="$XGETTEXT_EXTRA_OPTIONS $1" ]) -# progtest.m4 serial 7 (gettext-0.18.2) -dnl Copyright (C) 1996-2003, 2005, 2008-2016 Free Software Foundation, Inc. +# progtest.m4 serial 8 (gettext-0.20.2) +dnl Copyright (C) 1996-2003, 2005, 2008-2020 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl dnl This file can be used in projects which are not available under -dnl the GNU General Public License or the GNU Library General Public +dnl the GNU General Public License or the GNU Lesser General Public dnl License but which still want to provide support for the GNU gettext dnl functionality. dnl Please note that the actual code of the GNU gettext library is covered -dnl by the GNU Library General Public License, and the rest of the GNU +dnl by the GNU Lesser General Public License, and the rest of the GNU dnl gettext package is covered by the GNU General Public License. dnl They are *not* in the public domain. @@ -964,7 +1029,7 @@ fi AC_SUBST([$1])dnl ]) -# Copyright (C) 2002-2018 Free Software Foundation, Inc. +# Copyright (C) 2002-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -979,7 +1044,7 @@ AC_DEFUN([AM_AUTOMAKE_VERSION], [am__api_version='1.16' dnl Some users find AM_AUTOMAKE_VERSION and mistake it for a way to dnl require some minimum version. Point them to the right macro. -m4_if([$1], [1.16.1], [], +m4_if([$1], [1.16.5], [], [AC_FATAL([Do not call $0, use AM_INIT_AUTOMAKE([$1]).])])dnl ]) @@ -995,14 +1060,14 @@ m4_define([_AM_AUTOCONF_VERSION], []) # Call AM_AUTOMAKE_VERSION and AM_AUTOMAKE_VERSION so they can be traced. # This function is AC_REQUIREd by AM_INIT_AUTOMAKE. AC_DEFUN([AM_SET_CURRENT_AUTOMAKE_VERSION], -[AM_AUTOMAKE_VERSION([1.16.1])dnl +[AM_AUTOMAKE_VERSION([1.16.5])dnl m4_ifndef([AC_AUTOCONF_VERSION], [m4_copy([m4_PACKAGE_VERSION], [AC_AUTOCONF_VERSION])])dnl _AM_AUTOCONF_VERSION(m4_defn([AC_AUTOCONF_VERSION]))]) # AM_AUX_DIR_EXPAND -*- Autoconf -*- -# Copyright (C) 2001-2018 Free Software Foundation, Inc. +# Copyright (C) 2001-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1054,7 +1119,7 @@ am_aux_dir=`cd "$ac_aux_dir" && pwd` # AM_COND_IF -*- Autoconf -*- -# Copyright (C) 2008-2018 Free Software Foundation, Inc. +# Copyright (C) 2008-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1091,7 +1156,7 @@ fi[]dnl # AM_CONDITIONAL -*- Autoconf -*- -# Copyright (C) 1997-2018 Free Software Foundation, Inc. +# Copyright (C) 1997-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1124,7 +1189,7 @@ fi])]) # Do all the work for Automake. -*- Autoconf -*- -# Copyright (C) 1996-2018 Free Software Foundation, Inc. +# Copyright (C) 1996-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1152,6 +1217,10 @@ m4_defn([AC_PROG_CC]) # release and drop the old call support. AC_DEFUN([AM_INIT_AUTOMAKE], [AC_PREREQ([2.65])dnl +m4_ifdef([_$0_ALREADY_INIT], + [m4_fatal([$0 expanded multiple times +]m4_defn([_$0_ALREADY_INIT]))], + [m4_define([_$0_ALREADY_INIT], m4_expansion_stack)])dnl dnl Autoconf wants to disallow AM_ names. We explicitly allow dnl the ones we care about. m4_pattern_allow([^AM_[A-Z]+FLAGS$])dnl @@ -1188,7 +1257,7 @@ m4_ifval([$3], [_AM_SET_OPTION([no-define])])dnl [_AM_SET_OPTIONS([$1])dnl dnl Diagnose old-style AC_INIT with new-style AM_AUTOMAKE_INIT. m4_if( - m4_ifdef([AC_PACKAGE_NAME], [ok]):m4_ifdef([AC_PACKAGE_VERSION], [ok]), + m4_ifset([AC_PACKAGE_NAME], [ok]):m4_ifset([AC_PACKAGE_VERSION], [ok]), [ok:ok],, [m4_fatal([AC_INIT should be called with package and version arguments])])dnl AC_SUBST([PACKAGE], ['AC_PACKAGE_TARNAME'])dnl @@ -1240,6 +1309,20 @@ AC_PROVIDE_IFELSE([AC_PROG_OBJCXX], [m4_define([AC_PROG_OBJCXX], m4_defn([AC_PROG_OBJCXX])[_AM_DEPENDENCIES([OBJCXX])])])dnl ]) +# Variables for tags utilities; see am/tags.am +if test -z "$CTAGS"; then + CTAGS=ctags +fi +AC_SUBST([CTAGS]) +if test -z "$ETAGS"; then + ETAGS=etags +fi +AC_SUBST([ETAGS]) +if test -z "$CSCOPE"; then + CSCOPE=cscope +fi +AC_SUBST([CSCOPE]) + AC_REQUIRE([AM_SILENT_RULES])dnl dnl The testsuite driver may need to know about EXEEXT, so add the dnl 'am__EXEEXT' conditional if _AM_COMPILER_EXEEXT was seen. This @@ -1321,7 +1404,7 @@ for _am_header in $config_headers :; do done echo "timestamp for $_am_arg" >`AS_DIRNAME(["$_am_arg"])`/stamp-h[]$_am_stamp_count]) -# Copyright (C) 2001-2018 Free Software Foundation, Inc. +# Copyright (C) 2001-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1342,7 +1425,7 @@ if test x"${install_sh+set}" != xset; then fi AC_SUBST([install_sh])]) -# Copyright (C) 2003-2018 Free Software Foundation, Inc. +# Copyright (C) 2003-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1363,7 +1446,7 @@ AC_SUBST([am__leading_dot])]) # Fake the existence of programs that GNU maintainers use. -*- Autoconf -*- -# Copyright (C) 1997-2018 Free Software Foundation, Inc. +# Copyright (C) 1997-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1384,12 +1467,7 @@ AC_DEFUN([AM_MISSING_HAS_RUN], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl AC_REQUIRE_AUX_FILE([missing])dnl if test x"${MISSING+set}" != xset; then - case $am_aux_dir in - *\ * | *\ *) - MISSING="\${SHELL} \"$am_aux_dir/missing\"" ;; - *) - MISSING="\${SHELL} $am_aux_dir/missing" ;; - esac + MISSING="\${SHELL} '$am_aux_dir/missing'" fi # Use eval to expand $SHELL if eval "$MISSING --is-lightweight"; then @@ -1402,7 +1480,7 @@ fi # Helper functions for option handling. -*- Autoconf -*- -# Copyright (C) 2001-2018 Free Software Foundation, Inc. +# Copyright (C) 2001-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1431,7 +1509,7 @@ AC_DEFUN([_AM_SET_OPTIONS], AC_DEFUN([_AM_IF_OPTION], [m4_ifset(_AM_MANGLE_OPTION([$1]), [$2], [$3])]) -# Copyright (C) 1999-2018 Free Software Foundation, Inc. +# Copyright (C) 1999-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1466,6 +1544,7 @@ AC_DEFUN([AM_PATH_PYTHON], dnl supported. (2.0 was released on October 16, 2000). m4_define_default([_AM_PYTHON_INTERPRETER_LIST], [python python2 python3 dnl + python3.11 python3.10 dnl python3.9 python3.8 python3.7 python3.6 python3.5 python3.4 python3.3 dnl python3.2 python3.1 python3.0 dnl python2.7 python2.6 python2.5 python2.4 python2.3 python2.2 python2.1 dnl @@ -1510,34 +1589,141 @@ AC_DEFUN([AM_PATH_PYTHON], ]) if test "$PYTHON" = :; then - dnl Run any user-specified action, or abort. + dnl Run any user-specified action, or abort. m4_default([$3], [AC_MSG_ERROR([no suitable Python interpreter found])]) else - dnl Query Python for its version number. Getting [:3] seems to be - dnl the best way to do this; it's what "site.py" does in the standard - dnl library. - + dnl Query Python for its version number. Although site.py simply uses + dnl sys.version[:3], printing that failed with Python 3.10, since the + dnl trailing zero was eliminated. So now we output just the major + dnl and minor version numbers, as numbers. Apparently the tertiary + dnl version is not of interest. + dnl AC_CACHE_CHECK([for $am_display_PYTHON version], [am_cv_python_version], - [am_cv_python_version=`$PYTHON -c "import sys; sys.stdout.write(sys.version[[:3]])"`]) + [am_cv_python_version=`$PYTHON -c "import sys; print ('%u.%u' % sys.version_info[[:2]])"`]) AC_SUBST([PYTHON_VERSION], [$am_cv_python_version]) - dnl Use the values of $prefix and $exec_prefix for the corresponding - dnl values of PYTHON_PREFIX and PYTHON_EXEC_PREFIX. These are made - dnl distinct variables so they can be overridden if need be. However, - dnl general consensus is that you shouldn't need this ability. - - AC_SUBST([PYTHON_PREFIX], ['${prefix}']) - AC_SUBST([PYTHON_EXEC_PREFIX], ['${exec_prefix}']) - - dnl At times (like when building shared libraries) you may want + dnl At times, e.g., when building shared libraries, you may want dnl to know which OS platform Python thinks this is. - + dnl AC_CACHE_CHECK([for $am_display_PYTHON platform], [am_cv_python_platform], [am_cv_python_platform=`$PYTHON -c "import sys; sys.stdout.write(sys.platform)"`]) AC_SUBST([PYTHON_PLATFORM], [$am_cv_python_platform]) - # Just factor out some code duplication. + dnl emacs-page + dnl If --with-python-sys-prefix is given, use the values of sys.prefix + dnl and sys.exec_prefix for the corresponding values of PYTHON_PREFIX + dnl and PYTHON_EXEC_PREFIX. Otherwise, use the GNU ${prefix} and + dnl ${exec_prefix} variables. + dnl + dnl The two are made distinct variables so they can be overridden if + dnl need be, although general consensus is that you shouldn't need + dnl this separation. + dnl + dnl Also allow directly setting the prefixes via configure options, + dnl overriding any default. + dnl + if test "x$prefix" = xNONE; then + am__usable_prefix=$ac_default_prefix + else + am__usable_prefix=$prefix + fi + + # Allow user to request using sys.* values from Python, + # instead of the GNU $prefix values. + AC_ARG_WITH([python-sys-prefix], + [AS_HELP_STRING([--with-python-sys-prefix], + [use Python's sys.prefix and sys.exec_prefix values])], + [am_use_python_sys=:], + [am_use_python_sys=false]) + + # Allow user to override whatever the default Python prefix is. + AC_ARG_WITH([python_prefix], + [AS_HELP_STRING([--with-python_prefix], + [override the default PYTHON_PREFIX])], + [am_python_prefix_subst=$withval + am_cv_python_prefix=$withval + AC_MSG_CHECKING([for explicit $am_display_PYTHON prefix]) + AC_MSG_RESULT([$am_cv_python_prefix])], + [ + if $am_use_python_sys; then + # using python sys.prefix value, not GNU + AC_CACHE_CHECK([for python default $am_display_PYTHON prefix], + [am_cv_python_prefix], + [am_cv_python_prefix=`$PYTHON -c "import sys; sys.stdout.write(sys.prefix)"`]) + + dnl If sys.prefix is a subdir of $prefix, replace the literal value of + dnl $prefix with a variable reference so it can be overridden. + case $am_cv_python_prefix in + $am__usable_prefix*) + am__strip_prefix=`echo "$am__usable_prefix" | sed 's|.|.|g'` + am_python_prefix_subst=`echo "$am_cv_python_prefix" | sed "s,^$am__strip_prefix,\\${prefix},"` + ;; + *) + am_python_prefix_subst=$am_cv_python_prefix + ;; + esac + else # using GNU prefix value, not python sys.prefix + am_python_prefix_subst='${prefix}' + am_python_prefix=$am_python_prefix_subst + AC_MSG_CHECKING([for GNU default $am_display_PYTHON prefix]) + AC_MSG_RESULT([$am_python_prefix]) + fi]) + # Substituting python_prefix_subst value. + AC_SUBST([PYTHON_PREFIX], [$am_python_prefix_subst]) + + # emacs-page Now do it all over again for Python exec_prefix, but with yet + # another conditional: fall back to regular prefix if that was specified. + AC_ARG_WITH([python_exec_prefix], + [AS_HELP_STRING([--with-python_exec_prefix], + [override the default PYTHON_EXEC_PREFIX])], + [am_python_exec_prefix_subst=$withval + am_cv_python_exec_prefix=$withval + AC_MSG_CHECKING([for explicit $am_display_PYTHON exec_prefix]) + AC_MSG_RESULT([$am_cv_python_exec_prefix])], + [ + # no explicit --with-python_exec_prefix, but if + # --with-python_prefix was given, use its value for python_exec_prefix too. + AS_IF([test -n "$with_python_prefix"], + [am_python_exec_prefix_subst=$with_python_prefix + am_cv_python_exec_prefix=$with_python_prefix + AC_MSG_CHECKING([for python_prefix-given $am_display_PYTHON exec_prefix]) + AC_MSG_RESULT([$am_cv_python_exec_prefix])], + [ + # Set am__usable_exec_prefix whether using GNU or Python values, + # since we use that variable for pyexecdir. + if test "x$exec_prefix" = xNONE; then + am__usable_exec_prefix=$am__usable_prefix + else + am__usable_exec_prefix=$exec_prefix + fi + # + if $am_use_python_sys; then # using python sys.exec_prefix, not GNU + AC_CACHE_CHECK([for python default $am_display_PYTHON exec_prefix], + [am_cv_python_exec_prefix], + [am_cv_python_exec_prefix=`$PYTHON -c "import sys; sys.stdout.write(sys.exec_prefix)"`]) + dnl If sys.exec_prefix is a subdir of $exec_prefix, replace the + dnl literal value of $exec_prefix with a variable reference so it can + dnl be overridden. + case $am_cv_python_exec_prefix in + $am__usable_exec_prefix*) + am__strip_prefix=`echo "$am__usable_exec_prefix" | sed 's|.|.|g'` + am_python_exec_prefix_subst=`echo "$am_cv_python_exec_prefix" | sed "s,^$am__strip_prefix,\\${exec_prefix},"` + ;; + *) + am_python_exec_prefix_subst=$am_cv_python_exec_prefix + ;; + esac + else # using GNU $exec_prefix, not python sys.exec_prefix + am_python_exec_prefix_subst='${exec_prefix}' + am_python_exec_prefix=$am_python_exec_prefix_subst + AC_MSG_CHECKING([for GNU default $am_display_PYTHON exec_prefix]) + AC_MSG_RESULT([$am_python_exec_prefix]) + fi])]) + # Substituting python_exec_prefix_subst. + AC_SUBST([PYTHON_EXEC_PREFIX], [$am_python_exec_prefix_subst]) + + # Factor out some code duplication into this shell variable. am_python_setup_sysconfig="\ import sys # Prefer sysconfig over distutils.sysconfig, for better compatibility @@ -1557,96 +1743,109 @@ try: except ImportError: pass" - dnl Set up 4 directories: + dnl emacs-page Set up 4 directories: - dnl pythondir -- where to install python scripts. This is the - dnl site-packages directory, not the python standard library - dnl directory like in previous automake betas. This behavior - dnl is more consistent with lispdir.m4 for example. + dnl 1. pythondir: where to install python scripts. This is the + dnl site-packages directory, not the python standard library + dnl directory like in previous automake betas. This behavior + dnl is more consistent with lispdir.m4 for example. dnl Query distutils for this directory. - AC_CACHE_CHECK([for $am_display_PYTHON script directory], - [am_cv_python_pythondir], - [if test "x$prefix" = xNONE - then - am_py_prefix=$ac_default_prefix - else - am_py_prefix=$prefix - fi - am_cv_python_pythondir=`$PYTHON -c " + dnl + AC_CACHE_CHECK([for $am_display_PYTHON script directory (pythondir)], + [am_cv_python_pythondir], + [if test "x$am_cv_python_prefix" = x; then + am_py_prefix=$am__usable_prefix + else + am_py_prefix=$am_cv_python_prefix + fi + am_cv_python_pythondir=`$PYTHON -c " $am_python_setup_sysconfig if can_use_sysconfig: - sitedir = sysconfig.get_path('purelib', vars={'base':'$am_py_prefix'}) + if hasattr(sysconfig, 'get_default_scheme'): + scheme = sysconfig.get_default_scheme() + else: + scheme = sysconfig._get_default_scheme() + if scheme == 'posix_local': + # Debian's default scheme installs to /usr/local/ but we want to find headers in /usr/ + scheme = 'posix_prefix' + sitedir = sysconfig.get_path('purelib', scheme, vars={'base':'$am_py_prefix'}) else: - from distutils import sysconfig - sitedir = sysconfig.get_python_lib(0, 0, prefix='$am_py_prefix') + from distutils import sysconfig + sitedir = sysconfig.get_python_lib(0, 0, prefix='$am_py_prefix') sys.stdout.write(sitedir)"` - case $am_cv_python_pythondir in - $am_py_prefix*) - am__strip_prefix=`echo "$am_py_prefix" | sed 's|.|.|g'` - am_cv_python_pythondir=`echo "$am_cv_python_pythondir" | sed "s,^$am__strip_prefix,$PYTHON_PREFIX,"` - ;; - *) - case $am_py_prefix in - /usr|/System*) ;; - *) - am_cv_python_pythondir=$PYTHON_PREFIX/lib/python$PYTHON_VERSION/site-packages - ;; - esac - ;; + # + case $am_cv_python_pythondir in + $am_py_prefix*) + am__strip_prefix=`echo "$am_py_prefix" | sed 's|.|.|g'` + am_cv_python_pythondir=`echo "$am_cv_python_pythondir" | sed "s,^$am__strip_prefix,\\${PYTHON_PREFIX},"` + ;; + *) + case $am_py_prefix in + /usr|/System*) ;; + *) am_cv_python_pythondir="\${PYTHON_PREFIX}/lib/python$PYTHON_VERSION/site-packages" + ;; esac - ]) + ;; + esac + ]) AC_SUBST([pythondir], [$am_cv_python_pythondir]) - dnl pkgpythondir -- $PACKAGE directory under pythondir. Was - dnl PYTHON_SITE_PACKAGE in previous betas, but this naming is - dnl more consistent with the rest of automake. - + dnl 2. pkgpythondir: $PACKAGE directory under pythondir. Was + dnl PYTHON_SITE_PACKAGE in previous betas, but this naming is + dnl more consistent with the rest of automake. + dnl AC_SUBST([pkgpythondir], [\${pythondir}/$PACKAGE]) - dnl pyexecdir -- directory for installing python extension modules - dnl (shared libraries) + dnl 3. pyexecdir: directory for installing python extension modules + dnl (shared libraries). dnl Query distutils for this directory. - AC_CACHE_CHECK([for $am_display_PYTHON extension module directory], - [am_cv_python_pyexecdir], - [if test "x$exec_prefix" = xNONE - then - am_py_exec_prefix=$am_py_prefix - else - am_py_exec_prefix=$exec_prefix - fi - am_cv_python_pyexecdir=`$PYTHON -c " + dnl + AC_CACHE_CHECK([for $am_display_PYTHON extension module directory (pyexecdir)], + [am_cv_python_pyexecdir], + [if test "x$am_cv_python_exec_prefix" = x; then + am_py_exec_prefix=$am__usable_exec_prefix + else + am_py_exec_prefix=$am_cv_python_exec_prefix + fi + am_cv_python_pyexecdir=`$PYTHON -c " $am_python_setup_sysconfig if can_use_sysconfig: - sitedir = sysconfig.get_path('platlib', vars={'platbase':'$am_py_prefix'}) + if hasattr(sysconfig, 'get_default_scheme'): + scheme = sysconfig.get_default_scheme() + else: + scheme = sysconfig._get_default_scheme() + if scheme == 'posix_local': + # Debian's default scheme installs to /usr/local/ but we want to find headers in /usr/ + scheme = 'posix_prefix' + sitedir = sysconfig.get_path('platlib', scheme, vars={'platbase':'$am_py_exec_prefix'}) else: - from distutils import sysconfig - sitedir = sysconfig.get_python_lib(1, 0, prefix='$am_py_prefix') + from distutils import sysconfig + sitedir = sysconfig.get_python_lib(1, 0, prefix='$am_py_exec_prefix') sys.stdout.write(sitedir)"` - case $am_cv_python_pyexecdir in - $am_py_exec_prefix*) - am__strip_prefix=`echo "$am_py_exec_prefix" | sed 's|.|.|g'` - am_cv_python_pyexecdir=`echo "$am_cv_python_pyexecdir" | sed "s,^$am__strip_prefix,$PYTHON_EXEC_PREFIX,"` - ;; - *) - case $am_py_exec_prefix in - /usr|/System*) ;; - *) - am_cv_python_pyexecdir=$PYTHON_EXEC_PREFIX/lib/python$PYTHON_VERSION/site-packages - ;; - esac - ;; + # + case $am_cv_python_pyexecdir in + $am_py_exec_prefix*) + am__strip_prefix=`echo "$am_py_exec_prefix" | sed 's|.|.|g'` + am_cv_python_pyexecdir=`echo "$am_cv_python_pyexecdir" | sed "s,^$am__strip_prefix,\\${PYTHON_EXEC_PREFIX},"` + ;; + *) + case $am_py_exec_prefix in + /usr|/System*) ;; + *) am_cv_python_pyexecdir="\${PYTHON_EXEC_PREFIX}/lib/python$PYTHON_VERSION/site-packages" + ;; esac - ]) + ;; + esac + ]) AC_SUBST([pyexecdir], [$am_cv_python_pyexecdir]) - dnl pkgpyexecdir -- $(pyexecdir)/$(PACKAGE) - + dnl 4. pkgpyexecdir: $(pyexecdir)/$(PACKAGE) + dnl AC_SUBST([pkgpyexecdir], [\${pyexecdir}/$PACKAGE]) dnl Run any user-specified action. $2 fi - ]) @@ -1669,7 +1868,7 @@ for i in list(range(0, 4)): minverhex = (minverhex << 8) + minver[[i]] sys.exit(sys.hexversion < minverhex)" AS_IF([AM_RUN_LOG([$1 -c "$prog"])], [$3], [$4])]) -# Copyright (C) 2001-2018 Free Software Foundation, Inc. +# Copyright (C) 2001-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1688,7 +1887,7 @@ AC_DEFUN([AM_RUN_LOG], # Check to make sure that the build environment is sane. -*- Autoconf -*- -# Copyright (C) 1996-2018 Free Software Foundation, Inc. +# Copyright (C) 1996-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1769,7 +1968,7 @@ AC_CONFIG_COMMANDS_PRE( rm -f conftest.file ]) -# Copyright (C) 2009-2018 Free Software Foundation, Inc. +# Copyright (C) 2009-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1829,7 +2028,7 @@ AC_SUBST([AM_BACKSLASH])dnl _AM_SUBST_NOTMAKE([AM_BACKSLASH])dnl ]) -# Copyright (C) 2001-2018 Free Software Foundation, Inc. +# Copyright (C) 2001-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1857,7 +2056,7 @@ fi INSTALL_STRIP_PROGRAM="\$(install_sh) -c -s" AC_SUBST([INSTALL_STRIP_PROGRAM])]) -# Copyright (C) 2006-2018 Free Software Foundation, Inc. +# Copyright (C) 2006-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -1876,7 +2075,7 @@ AC_DEFUN([AM_SUBST_NOTMAKE], [_AM_SUBST_NOTMAKE($@)]) # Check how to create a tarball. -*- Autoconf -*- -# Copyright (C) 2004-2018 Free Software Foundation, Inc. +# Copyright (C) 2004-2021 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, diff --git a/config/Makefile.am b/config/Makefile.am index 2b4ae09..16a7430 100644 --- a/config/Makefile.am +++ b/config/Makefile.am @@ -1,6 +1,6 @@ sconfdir = $(sysconfdir)/firewalld prefixlibdir = ${prefix}/lib/firewalld -dist_sconf_DATA = firewalld.conf lockdown-whitelist.xml +dist_sconf_DATA = firewalld.conf desktop_FILES = firewall-config.desktop.in desktopdir = $(datadir)/applications @@ -30,6 +30,7 @@ gsettings_SCHEMAS = $(gsettings_in_file:.xml.in=.xml) xmlschemadir = $(prefixlibdir)/xmlschema dist_xmlschema_DATA = \ + xmlschema/helper.xsd \ xmlschema/icmptype.xsd \ xmlschema/ipset.xsd \ xmlschema/service.xsd \ @@ -48,7 +49,7 @@ BUILT_SOURCES = \ @INTLTOOL_DESKTOP_RULE@ @INTLTOOL_POLICY_RULE@ -@INTLTOOL_XML_NOMERGE_RULE@ +@INTLTOOL_XML_RULE@ @GSETTINGS_RULES@ all: $(desktop_DATA) $(appdata_DATA) $(applet_desktop_DATA) $(polkit1_action_DATA) $(gsettings_SCHEMAS) @@ -137,6 +138,7 @@ CONFIG_FILES = \ services/anno-1602.xml \ services/anno-1800.xml \ services/apcupsd.xml \ + services/aseqnet.xml \ services/audit.xml \ services/ausweisapp2.xml \ services/bacula-client.xml \ @@ -204,6 +206,8 @@ CONFIG_FILES = \ services/ident.xml \ services/imaps.xml \ services/imap.xml \ + services/iperf2.xml \ + services/iperf3.xml \ services/ipfs.xml \ services/ipp-client.xml \ services/ipp.xml \ @@ -248,9 +252,11 @@ CONFIG_FILES = \ services/minecraft.xml \ services/memcache.xml \ services/minidlna.xml \ + services/mndp.xml \ services/mongodb.xml \ services/mosh.xml \ services/mountd.xml \ + services/mpd.xml \ services/mqtt.xml \ services/mqtt-tls.xml \ services/mssql.xml \ @@ -292,12 +298,14 @@ CONFIG_FILES = \ services/puppetmaster.xml \ services/quassel.xml \ services/radius.xml \ + services/radsec.xml \ services/rdp.xml \ services/redis-sentinel.xml \ services/redis.xml \ services/RH-Satellite-6.xml \ services/RH-Satellite-6-capsule.xml \ services/rpc-bind.xml \ + services/rootd.xml \ services/rquotad.xml \ services/rsh.xml \ services/rsyncd.xml \ @@ -310,6 +318,7 @@ CONFIG_FILES = \ services/settlers-history-collection.xml \ services/sips.xml \ services/sip.xml \ + services/slimevr.xml \ services/slp.xml \ services/smtp-submission.xml \ services/smtps.xml \ @@ -325,8 +334,11 @@ CONFIG_FILES = \ services/ssh.xml \ services/statsrv.xml \ services/steam-streaming.xml \ + services/steam-lan-transfer.xml \ services/stellaris.xml \ services/stronghold-crusader.xml \ + services/stun.xml \ + services/stuns.xml \ services/submission.xml \ services/supertuxkart.xml \ services/svdrp.xml \ @@ -346,6 +358,8 @@ CONFIG_FILES = \ services/tinc.xml \ services/tor-socks.xml \ services/transmission-client.xml \ + services/turn.xml \ + services/turns.xml \ services/upnp-client.xml \ services/vdsm.xml \ services/vnc-server.xml \ @@ -355,6 +369,7 @@ CONFIG_FILES = \ services/wbem-https.xml \ services/wireguard.xml \ services/ws-discovery-client.xml \ + services/ws-discovery-host.xml \ services/ws-discovery-tcp.xml \ services/ws-discovery-udp.xml \ services/ws-discovery.xml \ @@ -402,7 +417,6 @@ EXTRA_DIST = \ $(CONFIG_FILES) \ $(CONFIG_FILES_TESTS) \ $(dist_xmlschema_DATA) \ - lockdown-whitelist.xml.in \ firewalld.init \ firewalld.logrotate.in \ firewalld-sysctls.conf.in \ diff --git a/config/Makefile.in b/config/Makefile.in index 41403a7..8bb14e0 100644 --- a/config/Makefile.in +++ b/config/Makefile.in @@ -1,7 +1,7 @@ -# Makefile.in generated by automake 1.16.1 from Makefile.am. +# Makefile.in generated by automake 1.16.5 from Makefile.am. # @configure_input@ -# Copyright (C) 1994-2018 Free Software Foundation, Inc. +# Copyright (C) 1994-2021 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -106,7 +106,7 @@ DIST_COMMON = $(srcdir)/Makefile.am $(dist_xmlschema_SCRIPTS) \ $(dist_conf_DATA) $(dist_dbus_policy_DATA) $(dist_sconf_DATA) \ $(dist_xmlschema_DATA) $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d -CONFIG_CLEAN_FILES = lockdown-whitelist.xml +CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ @@ -164,8 +164,7 @@ DATA = $(appdata_DATA) $(applet_desktop_DATA) $(desktop_DATA) \ $(dist_conf_DATA) $(dist_dbus_policy_DATA) $(dist_sconf_DATA) \ $(dist_xmlschema_DATA) $(polkit1_action_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) -am__DIST_COMMON = $(srcdir)/Makefile.in \ - $(srcdir)/lockdown-whitelist.xml.in +am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ ALL_LINGUAS = @ALL_LINGUAS@ @@ -176,6 +175,8 @@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ BASHCOMPLETIONDIR = @BASHCOMPLETIONDIR@ +CSCOPE = @CSCOPE@ +CTAGS = @CTAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_LOG_TARGET = @DEFAULT_LOG_TARGET@ DEFS = @DEFS@ @@ -184,6 +185,7 @@ EBTABLES_RESTORE = @EBTABLES_RESTORE@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ +ETAGS = @ETAGS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GETTEXT_PACKAGE = @GETTEXT_PACKAGE@ GLIB_COMPILE_SCHEMAS = @GLIB_COMPILE_SCHEMAS@ @@ -221,8 +223,8 @@ MAKEINFO = @MAKEINFO@ MKDIR_P = @MKDIR_P@ MODPROBE = @MODPROBE@ MSGFMT = @MSGFMT@ -MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ +MSGMERGE_FOR_MSGFMT_OPTION = @MSGMERGE_FOR_MSGFMT_OPTION@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ @@ -308,7 +310,7 @@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ sconfdir = $(sysconfdir)/firewalld prefixlibdir = ${prefix}/lib/firewalld -dist_sconf_DATA = firewalld.conf lockdown-whitelist.xml +dist_sconf_DATA = firewalld.conf desktop_FILES = firewall-config.desktop.in desktopdir = $(datadir)/applications desktop_DATA = $(desktop_FILES:.in=) @@ -331,6 +333,7 @@ gsettings_in_file = org.fedoraproject.FirewallConfig.gschema.xml.in gsettings_SCHEMAS = $(gsettings_in_file:.xml.in=.xml) xmlschemadir = $(prefixlibdir)/xmlschema dist_xmlschema_DATA = \ + xmlschema/helper.xsd \ xmlschema/icmptype.xsd \ xmlschema/ipset.xsd \ xmlschema/service.xsd \ @@ -430,6 +433,7 @@ CONFIG_FILES = \ services/anno-1602.xml \ services/anno-1800.xml \ services/apcupsd.xml \ + services/aseqnet.xml \ services/audit.xml \ services/ausweisapp2.xml \ services/bacula-client.xml \ @@ -497,6 +501,8 @@ CONFIG_FILES = \ services/ident.xml \ services/imaps.xml \ services/imap.xml \ + services/iperf2.xml \ + services/iperf3.xml \ services/ipfs.xml \ services/ipp-client.xml \ services/ipp.xml \ @@ -541,9 +547,11 @@ CONFIG_FILES = \ services/minecraft.xml \ services/memcache.xml \ services/minidlna.xml \ + services/mndp.xml \ services/mongodb.xml \ services/mosh.xml \ services/mountd.xml \ + services/mpd.xml \ services/mqtt.xml \ services/mqtt-tls.xml \ services/mssql.xml \ @@ -585,12 +593,14 @@ CONFIG_FILES = \ services/puppetmaster.xml \ services/quassel.xml \ services/radius.xml \ + services/radsec.xml \ services/rdp.xml \ services/redis-sentinel.xml \ services/redis.xml \ services/RH-Satellite-6.xml \ services/RH-Satellite-6-capsule.xml \ services/rpc-bind.xml \ + services/rootd.xml \ services/rquotad.xml \ services/rsh.xml \ services/rsyncd.xml \ @@ -603,6 +613,7 @@ CONFIG_FILES = \ services/settlers-history-collection.xml \ services/sips.xml \ services/sip.xml \ + services/slimevr.xml \ services/slp.xml \ services/smtp-submission.xml \ services/smtps.xml \ @@ -618,8 +629,11 @@ CONFIG_FILES = \ services/ssh.xml \ services/statsrv.xml \ services/steam-streaming.xml \ + services/steam-lan-transfer.xml \ services/stellaris.xml \ services/stronghold-crusader.xml \ + services/stun.xml \ + services/stuns.xml \ services/submission.xml \ services/supertuxkart.xml \ services/svdrp.xml \ @@ -639,6 +653,8 @@ CONFIG_FILES = \ services/tinc.xml \ services/tor-socks.xml \ services/transmission-client.xml \ + services/turn.xml \ + services/turns.xml \ services/upnp-client.xml \ services/vdsm.xml \ services/vnc-server.xml \ @@ -648,6 +664,7 @@ CONFIG_FILES = \ services/wbem-https.xml \ services/wireguard.xml \ services/ws-discovery-client.xml \ + services/ws-discovery-host.xml \ services/ws-discovery-tcp.xml \ services/ws-discovery-udp.xml \ services/ws-discovery.xml \ @@ -695,7 +712,6 @@ EXTRA_DIST = \ $(CONFIG_FILES) \ $(CONFIG_FILES_TESTS) \ $(dist_xmlschema_DATA) \ - lockdown-whitelist.xml.in \ firewalld.init \ firewalld.logrotate.in \ firewalld-sysctls.conf.in \ @@ -750,8 +766,6 @@ $(top_srcdir)/configure: $(am__configure_deps) $(ACLOCAL_M4): $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): -lockdown-whitelist.xml: $(top_builddir)/config.status $(srcdir)/lockdown-whitelist.xml.in - cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ install-dist_xmlschemaSCRIPTS: $(dist_xmlschema_SCRIPTS) @$(NORMAL_INSTALL) @list='$(dist_xmlschema_SCRIPTS)'; test -n "$(xmlschemadir)" || list=; \ @@ -961,7 +975,6 @@ ctags CTAGS: cscope cscopelist: - distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am @@ -1006,7 +1019,8 @@ installdirs: done install: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) install-am -install-exec: install-exec-am +install-exec: $(BUILT_SOURCES) + $(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data: install-data-am uninstall: uninstall-am @@ -1114,7 +1128,7 @@ uninstall-am: uninstall-appdataDATA uninstall-applet_desktopDATA \ uninstall-local uninstall-polkit1_actionDATA .MAKE: all check check-am install install-am install-data-am \ - install-strip + install-exec install-strip .PHONY: all all-am check check-am check-local clean clean-generic \ cscopelist-am ctags-am distclean distclean-generic distdir dvi \ @@ -1143,7 +1157,7 @@ uninstall-am: uninstall-appdataDATA uninstall-applet_desktopDATA \ @INTLTOOL_DESKTOP_RULE@ @INTLTOOL_POLICY_RULE@ -@INTLTOOL_XML_NOMERGE_RULE@ +@INTLTOOL_XML_RULE@ @GSETTINGS_RULES@ all: $(desktop_DATA) $(appdata_DATA) $(applet_desktop_DATA) $(polkit1_action_DATA) $(gsettings_SCHEMAS) diff --git a/config/firewall-config.appdata.xml.in b/config/firewall-config.appdata.xml.in index eca7e6e..df1660d 100644 --- a/config/firewall-config.appdata.xml.in +++ b/config/firewall-config.appdata.xml.in @@ -5,17 +5,15 @@ CC0-1.0 GPL-2.0+ -

- Firewall Configuration provides a graphical tool for administering firewall. -

-

Allows to inspect and set:

+ <_p>Firewall Configuration provides a graphical tool for administering firewall. + <_p>Allows to inspect and set:
    -
  • Runtime and permanent firewall configuration
    • -
  • Predefined zones (levels of trust for network connections)
    • -
  • Predefined services (port/protocol, netfilter helper module)
    • -
  • Port forwarding, masquerading, ICMP blocking
    • -
  • Complex firewall rules a.k.a. Rich Language
    • -
  • Iptables rules a.k.a. Direct Interface
    • + <_li>Runtime and permanent firewall configuration + <_li>Predefined zones (levels of trust for network connections) + <_li>Predefined services (port/protocol, netfilter helper module) + <_li>Port forwarding, masquerading, ICMP blocking + <_li>Complex firewall rules a.k.a. Rich Language + <_li>Iptables rules a.k.a. Direct Interface
@@ -23,8 +21,10 @@ https://raw.githubusercontent.com/firewalld/firewalld/main/doc/firewall-config.png - http://firewalld.org + https://firewalld.org/ https://github.com/firewalld/firewalld/issues - https://fedora.zanata.org/project/view/firewalld + https://translate.fedoraproject.org/projects/firewalld/ + https://github.com/firewalld/firewalld + firewalld twoerner_at_redhat.com diff --git a/config/firewalld.conf b/config/firewalld.conf index 2d1a0cb..800b255 100644 --- a/config/firewalld.conf +++ b/config/firewalld.conf @@ -18,22 +18,28 @@ CleanupOnExit=yes # Default: no CleanupModulesOnExit=no -# Lockdown -# If set to enabled, firewall changes with the D-Bus interface will be limited -# to applications that are listed in the lockdown whitelist. -# The lockdown whitelist file is lockdown-whitelist.xml -# Default: no -Lockdown=no - # IPv6_rpfilter -# Performs a reverse path filter test on a packet for IPv6. If a reply to the -# packet would be sent via the same interface that the packet arrived on, the -# packet will match and be accepted, otherwise dropped. +# Performs reverse path filtering (RPF) on IPv6 packets as per RFC 3704. +# Possible values: +# - strict: Performs "strict" filtering as per RFC 3704. This check +# verifies that the in ingress interface is the same interface +# that would be used to send a packet reply to the source. That +# is, ingress == egress. +# - loose: Performs "loose" filtering as per RFC 3704. This check only +# verifies that there is a route back to the source through any +# interface; even if it's not the same one on which the packet +# arrived. +# - strict-forward: This is almost identical to "strict", but does not perform +# RPF for packets targeted to the host (INPUT). +# - loose-forward: This is almost identical to "loose", but does not perform +# RPF for packets targeted to the host (INPUT). +# - no: RPF is completely disabled. +# # The rp_filter for IPv4 is controlled using sysctl. # Note: This feature has a performance impact. See man page FIREWALLD.CONF(5) # for details. -# Default: yes -IPv6_rpfilter=yes +# Default: strict +IPv6_rpfilter=strict # IndividualCalls # Do not use combined -restore calls, but individual calls. This increases the @@ -81,6 +87,16 @@ ReloadPolicy=INPUT:DROP,FORWARD:DROP,OUTPUT:DROP # Defaults to "yes". RFC3964_IPv4=yes +# StrictForwardPorts +# If set to yes, the generated destination NAT (DNAT) rules will NOT accept +# traffic that was DNAT'd by other entities, e.g. docker. Firewalld will be +# strict and not allow published container ports until they're explicitly +# allowed via firewalld. +# If set to no, then docker (and podman) integrates seamlessly with firewalld. +# Published container ports are implicitly allowed. +# Defaults to "no". +StrictForwardPorts=no + # NftablesFlowtable # This may improve forwarded traffic throughput by enabling nftables flowtable. # It is a software fastpath and avoids calling nftables rule evaluation for @@ -95,3 +111,11 @@ NftablesFlowtable=off # debugging and comes with a small performance cost. # Defaults to "no". NftablesCounters=no + +# NftablesTableOwner +# If set to yes, the generated nftables rule set will be owned exclusively by +# firewalld. This prevents other entities from mistakenly (or maliciously) +# modifying firewalld's rule set. If you intentionally modify firewalld's +# rules, then you will have to set this to "no". +# Defaults to "yes". +NftablesTableOwner=yes diff --git a/config/firewalld.service.in b/config/firewalld.service.in index afbe0ac..b00d36c 100644 --- a/config/firewalld.service.in +++ b/config/firewalld.service.in @@ -4,19 +4,37 @@ Before=network-pre.target Wants=network-pre.target After=dbus.service After=polkit.service -Conflicts=iptables.service ip6tables.service ebtables.service ipset.service nftables.service +Conflicts=iptables.service ip6tables.service ebtables.service ipset.service Documentation=man:firewalld(1) [Service] EnvironmentFile=-/etc/sysconfig/firewalld ExecStart=@sbindir@/firewalld --nofork --nopid $FIREWALLD_ARGS +ExecStartPost=@bindir@/firewall-cmd --state +# don't fail ExecStartPost on RUNNING_BUT_FAILED +SuccessExitStatus=251 ExecReload=/bin/kill -HUP $MAINPID -# supress to log debug and error output also to /var/log/messages StandardOutput=null StandardError=null Type=dbus BusName=org.fedoraproject.FirewallD1 KillMode=mixed +DevicePolicy=closed +KeyringMode=private +LockPersonality=yes +MemoryDenyWriteExecute=yes +PrivateDevices=yes +ProtectClock=yes +ProtectControlGroups=yes +ProtectHome=yes +ProtectHostname=yes +ProtectKernelLogs=yes +ProtectKernelModules=no +ProtectKernelTunables=no +ProtectSystem=yes +RestrictRealtime=yes +RestrictSUIDSGID=yes +SystemCallArchitectures=native [Install] WantedBy=multi-user.target diff --git a/config/lockdown-whitelist.xml b/config/lockdown-whitelist.xml deleted file mode 100644 index be7f519..0000000 --- a/config/lockdown-whitelist.xml +++ /dev/null @@ -1,7 +0,0 @@ - - - - - - - diff --git a/config/lockdown-whitelist.xml.in b/config/lockdown-whitelist.xml.in deleted file mode 100644 index e9cc4e7..0000000 --- a/config/lockdown-whitelist.xml.in +++ /dev/null @@ -1,7 +0,0 @@ - - - - - - - diff --git a/config/services/aseqnet.xml b/config/services/aseqnet.xml new file mode 100644 index 0000000..2c24640 --- /dev/null +++ b/config/services/aseqnet.xml @@ -0,0 +1,8 @@ + + + aseqnet + + network client/server on ALSA sequencer (aseqnet) + + + diff --git a/config/services/ceph.xml b/config/services/ceph.xml index efed536..eb6a3f2 100644 --- a/config/services/ceph.xml +++ b/config/services/ceph.xml @@ -2,5 +2,5 @@ ceph Ceph is a distributed object store and file system. Enable this option to support Ceph's Object Storage Daemons (OSD), Metadata Server Daemons (MDS), or Manager Daemons (MGR). - + diff --git a/config/services/iperf2.xml b/config/services/iperf2.xml new file mode 100644 index 0000000..4475c4e --- /dev/null +++ b/config/services/iperf2.xml @@ -0,0 +1,7 @@ + + + iperf2 + iperf2 is a TCP and UDP network bandwidth measurement tool. Enable this option if you want to run an iperf2 server on its default port. + + + diff --git a/config/services/iperf3.xml b/config/services/iperf3.xml new file mode 100644 index 0000000..4a481b0 --- /dev/null +++ b/config/services/iperf3.xml @@ -0,0 +1,8 @@ + + + iperf3 + iperf3 is a TCP, UDP, and SCTP network bandwidth measurement tool. Enable this option if you want to run an iperf3 server on its default port. + + + + diff --git a/config/services/mndp.xml b/config/services/mndp.xml new file mode 100644 index 0000000..ddf2af8 --- /dev/null +++ b/config/services/mndp.xml @@ -0,0 +1,6 @@ + + + MNDP + MikroTik Neighbor Discovery protocol allows to "find" other devices compatible with MNDP. + + diff --git a/config/services/mpd.xml b/config/services/mpd.xml new file mode 100644 index 0000000..60399fb --- /dev/null +++ b/config/services/mpd.xml @@ -0,0 +1,6 @@ + + + Music Player Daemon (MPD) + Music Player Daemon (MPD) is a flexible, powerful, server-side application for playing music. Through plugins and libraries it can play a variety of sound files while being controlled by its network protocol. + + diff --git a/config/services/radsec.xml b/config/services/radsec.xml new file mode 100644 index 0000000..d9e0a47 --- /dev/null +++ b/config/services/radsec.xml @@ -0,0 +1,6 @@ + + + Radsec + Radsec (RFC6614) is a protocol for transporting Remote Authentication Dial In User Service (RADIUS) datagrams over TCP and TLS. If you plan to provide a Radsec service (e.g. with FreeRADIUS, radsecproxy or Radiator), enable this option. + + diff --git a/config/services/rootd.xml b/config/services/rootd.xml new file mode 100644 index 0000000..cf8e99f --- /dev/null +++ b/config/services/rootd.xml @@ -0,0 +1,6 @@ + + + rootd + The (x)rootd server was developed for the root analysis framework to serve root files. However, the server is agnostic to file types and provides POSIX-like access to any type of file. + + diff --git a/config/services/slimevr.xml b/config/services/slimevr.xml new file mode 100644 index 0000000..ca4534d --- /dev/null +++ b/config/services/slimevr.xml @@ -0,0 +1,6 @@ + + + SlimeVR + SlimeVR is a set of open hardware sensors and open source software that facilitates full-body tracking (FBT) in virtual reality. + + diff --git a/config/services/steam-lan-transfer.xml b/config/services/steam-lan-transfer.xml new file mode 100644 index 0000000..e0a2c62 --- /dev/null +++ b/config/services/steam-lan-transfer.xml @@ -0,0 +1,8 @@ + + + Steam Local Network Game Transfer + Allow transfer of game files between devices on the local network. + + + + diff --git a/config/services/stun.xml b/config/services/stun.xml new file mode 100644 index 0000000..45ca385 --- /dev/null +++ b/config/services/stun.xml @@ -0,0 +1,7 @@ + + + STUN and TURN + Session Traversal Utilities for NAT and Traversal Using Relay NAT protocols to get through firewalls and traverse NATs. + + + diff --git a/config/services/stuns.xml b/config/services/stuns.xml new file mode 100644 index 0000000..c886d5c --- /dev/null +++ b/config/services/stuns.xml @@ -0,0 +1,7 @@ + + + STUN and TURN over TLS + Session Traversal Utilities for NAT and Traversal Using Relay NAT protocols to get through firewalls and traverse NATs using socket layer encryption. + + + diff --git a/config/services/turn.xml b/config/services/turn.xml new file mode 100644 index 0000000..0ed0ae6 --- /dev/null +++ b/config/services/turn.xml @@ -0,0 +1,6 @@ + + + STUN and TURN + Session Traversal Utilities for NAT and Traversal Using Relay NAT protocols to get through firewalls and traverse NATs. + + diff --git a/config/services/turns.xml b/config/services/turns.xml new file mode 100644 index 0000000..71b088b --- /dev/null +++ b/config/services/turns.xml @@ -0,0 +1,6 @@ + + + STUN and TURN over TLS + Session Traversal Utilities for NAT and Traversal Using Relay NAT protocols to get through firewalls and traverse NATs using socket layer encryption. + + diff --git a/config/services/ws-discovery-host.xml b/config/services/ws-discovery-host.xml new file mode 100644 index 0000000..49f2210 --- /dev/null +++ b/config/services/ws-discovery-host.xml @@ -0,0 +1,7 @@ + + + ws-discovery + Web Service Discovery Host + + + diff --git a/config/xmlschema/helper.xsd b/config/xmlschema/helper.xsd new file mode 100644 index 0000000..1d5ba11 --- /dev/null +++ b/config/xmlschema/helper.xsd @@ -0,0 +1,26 @@ + + + + + + + + + + + + + + + + + + + + + + + + + diff --git a/configure b/configure index ee66fce..43fad6a 100755 --- a/configure +++ b/configure @@ -1,9 +1,10 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.69 for firewalld 2.1.2. +# Generated by GNU Autoconf 2.71 for firewalld 2.3.1. # # -# Copyright (C) 1992-1996, 1998-2012 Free Software Foundation, Inc. +# Copyright (C) 1992-1996, 1998-2017, 2020-2021 Free Software Foundation, +# Inc. # # # This configure script is free software; the Free Software Foundation @@ -14,14 +15,16 @@ # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh -if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : +as_nop=: +if test ${ZSH_VERSION+y} && (emulate sh) >/dev/null 2>&1 +then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST -else +else $as_nop case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( @@ -31,46 +34,46 @@ esac fi + +# Reset variables that may have inherited troublesome values from +# the environment. + +# IFS needs to be set, to space, tab, and newline, in precisely that order. +# (If _AS_PATH_WALK were called with IFS unset, it would have the +# side effect of setting IFS to empty, thus disabling word splitting.) +# Quoting is to prevent editors from complaining about space-tab. as_nl=' ' export as_nl -# Printing a long string crashes Solaris 7 /usr/bin/printf. -as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' -as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo -as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo -# Prefer a ksh shell builtin over an external printf program on Solaris, -# but without wasting forks for bash or zsh. -if test -z "$BASH_VERSION$ZSH_VERSION" \ - && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then - as_echo='print -r --' - as_echo_n='print -rn --' -elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then - as_echo='printf %s\n' - as_echo_n='printf %s' -else - if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then - as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' - as_echo_n='/usr/ucb/echo -n' - else - as_echo_body='eval expr "X$1" : "X\\(.*\\)"' - as_echo_n_body='eval - arg=$1; - case $arg in #( - *"$as_nl"*) - expr "X$arg" : "X\\(.*\\)$as_nl"; - arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; - esac; - expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" - ' - export as_echo_n_body - as_echo_n='sh -c $as_echo_n_body as_echo' - fi - export as_echo_body - as_echo='sh -c $as_echo_body as_echo' -fi +IFS=" "" $as_nl" + +PS1='$ ' +PS2='> ' +PS4='+ ' + +# Ensure predictable behavior from utilities with locale-dependent output. +LC_ALL=C +export LC_ALL +LANGUAGE=C +export LANGUAGE + +# We cannot yet rely on "unset" to work, but we need these variables +# to be unset--not just set to an empty or harmless value--now, to +# avoid bugs in old shells (e.g. pre-3.0 UWIN ksh). This construct +# also avoids known problems related to "unset" and subshell syntax +# in other old shells (e.g. bash 2.01 and pdksh 5.2.14). +for as_var in BASH_ENV ENV MAIL MAILPATH CDPATH +do eval test \${$as_var+y} \ + && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : +done + +# Ensure that fds 0, 1, and 2 are open. +if (exec 3>&0) 2>/dev/null; then :; else exec 0&1) 2>/dev/null; then :; else exec 1>/dev/null; fi +if (exec 3>&2) ; then :; else exec 2>/dev/null; fi # The user is always right. -if test "${PATH_SEPARATOR+set}" != set; then +if ${PATH_SEPARATOR+false} :; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || @@ -79,13 +82,6 @@ if test "${PATH_SEPARATOR+set}" != set; then fi -# IFS -# We need space, tab and new line, in precisely that order. Quoting is -# there to prevent editors from complaining about space-tab. -# (If _AS_PATH_WALK were called with IFS unset, it would disable word -# splitting by setting IFS to empty value.) -IFS=" "" $as_nl" - # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( @@ -94,8 +90,12 @@ case $0 in #(( for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac + test -r "$as_dir$0" && as_myself=$as_dir$0 && break done IFS=$as_save_IFS @@ -107,30 +107,10 @@ if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then - $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 + printf "%s\n" "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi -# Unset variables that we do not need and which cause bugs (e.g. in -# pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" -# suppresses any "Segmentation fault" message there. '((' could -# trigger a bug in pdksh 5.2.14. -for as_var in BASH_ENV ENV MAIL MAILPATH -do eval test x\${$as_var+set} = xset \ - && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : -done -PS1='$ ' -PS2='> ' -PS4='+ ' - -# NLS nuisances. -LC_ALL=C -export LC_ALL -LANGUAGE=C -export LANGUAGE - -# CDPATH. -(unset CDPATH) >/dev/null 2>&1 && unset CDPATH # Use a proper internal environment variable to ensure we don't fall # into an infinite loop, continuously re-executing ourselves. @@ -152,20 +132,22 @@ esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. -$as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 -as_fn_exit 255 +printf "%s\n" "$0: could not re-execute with $CONFIG_SHELL" >&2 +exit 255 fi # We don't want this to propagate to other subprocesses. { _as_can_reexec=; unset _as_can_reexec;} if test "x$CONFIG_SHELL" = x; then - as_bourne_compatible="if test -n \"\${ZSH_VERSION+set}\" && (emulate sh) >/dev/null 2>&1; then : + as_bourne_compatible="as_nop=: +if test \${ZSH_VERSION+y} && (emulate sh) >/dev/null 2>&1 +then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on \${1+\"\$@\"}, which # is contrary to our usage. Disable this feature. alias -g '\${1+\"\$@\"}'='\"\$@\"' setopt NO_GLOB_SUBST -else +else \$as_nop case \`(set -o) 2>/dev/null\` in #( *posix*) : set -o posix ;; #( @@ -185,42 +167,53 @@ as_fn_success || { exitcode=1; echo as_fn_success failed.; } as_fn_failure && { exitcode=1; echo as_fn_failure succeeded.; } as_fn_ret_success || { exitcode=1; echo as_fn_ret_success failed.; } as_fn_ret_failure && { exitcode=1; echo as_fn_ret_failure succeeded.; } -if ( set x; as_fn_ret_success y && test x = \"\$1\" ); then : +if ( set x; as_fn_ret_success y && test x = \"\$1\" ) +then : -else +else \$as_nop exitcode=1; echo positional parameters were not saved. fi test x\$exitcode = x0 || exit 1 +blah=\$(echo \$(echo blah)) +test x\"\$blah\" = xblah || exit 1 test -x / || exit 1" as_suggested=" as_lineno_1=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_1a=\$LINENO as_lineno_2=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_2a=\$LINENO eval 'test \"x\$as_lineno_1'\$as_run'\" != \"x\$as_lineno_2'\$as_run'\" && test \"x\`expr \$as_lineno_1'\$as_run' + 1\`\" = \"x\$as_lineno_2'\$as_run'\"' || exit 1 test \$(( 1 + 1 )) = 2 || exit 1" - if (eval "$as_required") 2>/dev/null; then : + if (eval "$as_required") 2>/dev/null +then : as_have_required=yes -else +else $as_nop as_have_required=no fi - if test x$as_have_required = xyes && (eval "$as_suggested") 2>/dev/null; then : + if test x$as_have_required = xyes && (eval "$as_suggested") 2>/dev/null +then : -else +else $as_nop as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_found=false for as_dir in /bin$PATH_SEPARATOR/usr/bin$PATH_SEPARATOR$PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac as_found=: case $as_dir in #( /*) for as_base in sh bash ksh sh5; do # Try only shells that exist, to save several forks. - as_shell=$as_dir/$as_base + as_shell=$as_dir$as_base if { test -f "$as_shell" || test -f "$as_shell.exe"; } && - { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$as_shell"; } 2>/dev/null; then : + as_run=a "$as_shell" -c "$as_bourne_compatible""$as_required" 2>/dev/null +then : CONFIG_SHELL=$as_shell as_have_required=yes - if { $as_echo "$as_bourne_compatible""$as_suggested" | as_run=a "$as_shell"; } 2>/dev/null; then : + if as_run=a "$as_shell" -c "$as_bourne_compatible""$as_suggested" 2>/dev/null +then : break 2 fi fi @@ -228,14 +221,21 @@ fi esac as_found=false done -$as_found || { if { test -f "$SHELL" || test -f "$SHELL.exe"; } && - { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$SHELL"; } 2>/dev/null; then : - CONFIG_SHELL=$SHELL as_have_required=yes -fi; } IFS=$as_save_IFS +if $as_found +then : +else $as_nop + if { test -f "$SHELL" || test -f "$SHELL.exe"; } && + as_run=a "$SHELL" -c "$as_bourne_compatible""$as_required" 2>/dev/null +then : + CONFIG_SHELL=$SHELL as_have_required=yes +fi +fi - if test "x$CONFIG_SHELL" != x; then : + + if test "x$CONFIG_SHELL" != x +then : export CONFIG_SHELL # We cannot yet assume a decent shell, so we have to provide a # neutralization value for shells without unset; and this also @@ -253,18 +253,19 @@ esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. -$as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 +printf "%s\n" "$0: could not re-execute with $CONFIG_SHELL" >&2 exit 255 fi - if test x$as_have_required = xno; then : - $as_echo "$0: This script requires a shell more modern than all" - $as_echo "$0: the shells that I found on your system." - if test x${ZSH_VERSION+set} = xset ; then - $as_echo "$0: In particular, zsh $ZSH_VERSION has bugs and should" - $as_echo "$0: be upgraded to zsh 4.3.4 or later." + if test x$as_have_required = xno +then : + printf "%s\n" "$0: This script requires a shell more modern than all" + printf "%s\n" "$0: the shells that I found on your system." + if test ${ZSH_VERSION+y} ; then + printf "%s\n" "$0: In particular, zsh $ZSH_VERSION has bugs and should" + printf "%s\n" "$0: be upgraded to zsh 4.3.4 or later." else - $as_echo "$0: Please tell bug-autoconf@gnu.org about your system, + printf "%s\n" "$0: Please tell bug-autoconf@gnu.org about your system, $0: including any error possibly output before this $0: message. Then install a modern shell, or manually run $0: the script under such a shell if you do have one." @@ -291,6 +292,7 @@ as_fn_unset () } as_unset=as_fn_unset + # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. @@ -308,6 +310,14 @@ as_fn_exit () as_fn_set_status $1 exit $1 } # as_fn_exit +# as_fn_nop +# --------- +# Do nothing but, unlike ":", preserve the value of $?. +as_fn_nop () +{ + return $? +} +as_nop=as_fn_nop # as_fn_mkdir_p # ------------- @@ -322,7 +332,7 @@ as_fn_mkdir_p () as_dirs= while :; do case $as_dir in #( - *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( + *\'*) as_qdir=`printf "%s\n" "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" @@ -331,7 +341,7 @@ $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || -$as_echo X"$as_dir" | +printf "%s\n" X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q @@ -370,12 +380,13 @@ as_fn_executable_p () # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. -if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : +if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null +then : eval 'as_fn_append () { eval $1+=\$2 }' -else +else $as_nop as_fn_append () { eval $1=\$$1\$2 @@ -387,18 +398,27 @@ fi # as_fn_append # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. -if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : +if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null +then : eval 'as_fn_arith () { as_val=$(( $* )) }' -else +else $as_nop as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` } fi # as_fn_arith +# as_fn_nop +# --------- +# Do nothing but, unlike ":", preserve the value of $?. +as_fn_nop () +{ + return $? +} +as_nop=as_fn_nop # as_fn_error STATUS ERROR [LINENO LOG_FD] # ---------------------------------------- @@ -410,9 +430,9 @@ as_fn_error () as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack - $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 + printf "%s\n" "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi - $as_echo "$as_me: error: $2" >&2 + printf "%s\n" "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error @@ -439,7 +459,7 @@ as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || -$as_echo X/"$0" | +printf "%s\n" X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q @@ -483,7 +503,7 @@ as_cr_alnum=$as_cr_Letters$as_cr_digits s/-\n.*// ' >$as_me.lineno && chmod +x "$as_me.lineno" || - { $as_echo "$as_me: error: cannot create $as_me.lineno; rerun with a POSIX shell" >&2; as_fn_exit 1; } + { printf "%s\n" "$as_me: error: cannot create $as_me.lineno; rerun with a POSIX shell" >&2; as_fn_exit 1; } # If we had to re-execute with $CONFIG_SHELL, we're ensured to have # already done that, so ensure we don't try to do so again and fall @@ -497,6 +517,10 @@ as_cr_alnum=$as_cr_Letters$as_cr_digits exit } + +# Determine whether it's possible to make 'echo' print without a newline. +# These variables are no longer used directly by Autoconf, but are AC_SUBSTed +# for compatibility with existing Makefiles. ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) @@ -510,6 +534,13 @@ case `echo -n x` in #((((( ECHO_N='-n';; esac +# For backward compatibility with old third-party macros, we provide +# the shell variables $as_echo and $as_echo_n. New code should use +# AS_ECHO(["message"]) and AS_ECHO_N(["message"]), respectively. +as_echo='printf %s\n' +as_echo_n='printf %s' + + rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file @@ -577,8 +608,8 @@ MAKEFLAGS= # Identity of this package. PACKAGE_NAME='firewalld' PACKAGE_TARNAME='firewalld' -PACKAGE_VERSION='2.1.2' -PACKAGE_STRING='firewalld 2.1.2' +PACKAGE_VERSION='2.3.1' +PACKAGE_STRING='firewalld 2.3.1' PACKAGE_BUGREPORT='' PACKAGE_URL='' @@ -587,9 +618,9 @@ ac_default_prefix=/usr ac_subst_vars='LTLIBOBJS LIBOBJS XGETTEXT_EXTRA_OPTIONS +MSGMERGE_FOR_MSGFMT_OPTION XGETTEXT_015 GMSGFMT_015 -MSGFMT_015 GETTEXT_MACRO_VERSION ALL_LINGUAS INTLTOOL_PERL @@ -669,9 +700,9 @@ pkgpyexecdir pyexecdir pkgpythondir pythondir -PYTHON_PLATFORM PYTHON_EXEC_PREFIX PYTHON_PREFIX +PYTHON_PLATFORM PYTHON_VERSION PYTHON GREP @@ -683,6 +714,9 @@ AM_BACKSLASH AM_DEFAULT_VERBOSITY AM_DEFAULT_V AM_V +CSCOPE +ETAGS +CTAGS am__untar am__tar AMTAR @@ -749,6 +783,9 @@ ac_subst_files='' ac_user_opts=' enable_option_checking enable_silent_rules +with_python_sys_prefix +with_python_prefix +with_python_exec_prefix enable_schemas_compile enable_docs with_xml_catalog @@ -845,8 +882,6 @@ do *) ac_optarg=yes ;; esac - # Accept the important Cygnus configure options, so we can diagnose typos. - case $ac_dashdash$ac_option in --) ac_dashdash=yes ;; @@ -887,9 +922,9 @@ do ac_useropt=`expr "x$ac_option" : 'x-*disable-\(.*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && - as_fn_error $? "invalid feature name: $ac_useropt" + as_fn_error $? "invalid feature name: \`$ac_useropt'" ac_useropt_orig=$ac_useropt - ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` + ac_useropt=`printf "%s\n" "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "enable_$ac_useropt" @@ -913,9 +948,9 @@ do ac_useropt=`expr "x$ac_option" : 'x-*enable-\([^=]*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && - as_fn_error $? "invalid feature name: $ac_useropt" + as_fn_error $? "invalid feature name: \`$ac_useropt'" ac_useropt_orig=$ac_useropt - ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` + ac_useropt=`printf "%s\n" "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "enable_$ac_useropt" @@ -1126,9 +1161,9 @@ do ac_useropt=`expr "x$ac_option" : 'x-*with-\([^=]*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && - as_fn_error $? "invalid package name: $ac_useropt" + as_fn_error $? "invalid package name: \`$ac_useropt'" ac_useropt_orig=$ac_useropt - ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` + ac_useropt=`printf "%s\n" "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "with_$ac_useropt" @@ -1142,9 +1177,9 @@ do ac_useropt=`expr "x$ac_option" : 'x-*without-\(.*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && - as_fn_error $? "invalid package name: $ac_useropt" + as_fn_error $? "invalid package name: \`$ac_useropt'" ac_useropt_orig=$ac_useropt - ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` + ac_useropt=`printf "%s\n" "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "with_$ac_useropt" @@ -1188,9 +1223,9 @@ Try \`$0 --help' for more information" *) # FIXME: should be removed in autoconf 3.0. - $as_echo "$as_me: WARNING: you should use --build, --host, --target" >&2 + printf "%s\n" "$as_me: WARNING: you should use --build, --host, --target" >&2 expr "x$ac_option" : ".*[^-._$as_cr_alnum]" >/dev/null && - $as_echo "$as_me: WARNING: invalid host type: $ac_option" >&2 + printf "%s\n" "$as_me: WARNING: invalid host type: $ac_option" >&2 : "${build_alias=$ac_option} ${host_alias=$ac_option} ${target_alias=$ac_option}" ;; @@ -1206,7 +1241,7 @@ if test -n "$ac_unrecognized_opts"; then case $enable_option_checking in no) ;; fatal) as_fn_error $? "unrecognized options: $ac_unrecognized_opts" ;; - *) $as_echo "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2 ;; + *) printf "%s\n" "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2 ;; esac fi @@ -1270,7 +1305,7 @@ $as_expr X"$as_myself" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_myself" : 'X\(//\)[^/]' \| \ X"$as_myself" : 'X\(//\)$' \| \ X"$as_myself" : 'X\(/\)' \| . 2>/dev/null || -$as_echo X"$as_myself" | +printf "%s\n" X"$as_myself" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q @@ -1327,7 +1362,7 @@ if test "$ac_init_help" = "long"; then # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures firewalld 2.1.2 to adapt to many kinds of systems. +\`configure' configures firewalld 2.3.1 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1394,7 +1429,7 @@ fi if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of firewalld 2.1.2:";; + short | recursive ) echo "Configuration of firewalld 2.3.1:";; esac cat <<\_ACEOF @@ -1415,6 +1450,11 @@ Optional Features: Optional Packages: --with-PACKAGE[=ARG] use PACKAGE [ARG=yes] --without-PACKAGE do not use PACKAGE (same as --with-PACKAGE=no) + --with-python-sys-prefix + use Python's sys.prefix and sys.exec_prefix values + --with-python_prefix override the default PYTHON_PREFIX + --with-python_exec_prefix + override the default PYTHON_EXEC_PREFIX --with-xml-catalog=CATALOG path to xml catalog to use --with-systemd-unitdir Directory for systemd service files @@ -1465,9 +1505,9 @@ if test "$ac_init_help" = "recursive"; then case "$ac_dir" in .) ac_dir_suffix= ac_top_builddir_sub=. ac_top_build_prefix= ;; *) - ac_dir_suffix=/`$as_echo "$ac_dir" | sed 's|^\.[\\/]||'` + ac_dir_suffix=/`printf "%s\n" "$ac_dir" | sed 's|^\.[\\/]||'` # A ".." for each directory in $ac_dir_suffix. - ac_top_builddir_sub=`$as_echo "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` + ac_top_builddir_sub=`printf "%s\n" "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` case $ac_top_builddir_sub in "") ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_top_build_prefix=$ac_top_builddir_sub/ ;; @@ -1495,7 +1535,8 @@ esac ac_abs_srcdir=$ac_abs_top_srcdir$ac_dir_suffix cd "$ac_dir" || { ac_status=$?; continue; } - # Check for guested configure. + # Check for configure.gnu first; this name is used for a wrapper for + # Metaconfig's "Configure" on case-insensitive file systems. if test -f "$ac_srcdir/configure.gnu"; then echo && $SHELL "$ac_srcdir/configure.gnu" --help=recursive @@ -1503,7 +1544,7 @@ ac_abs_srcdir=$ac_abs_top_srcdir$ac_dir_suffix echo && $SHELL "$ac_srcdir/configure" --help=recursive else - $as_echo "$as_me: WARNING: no configuration information is in $ac_dir" >&2 + printf "%s\n" "$as_me: WARNING: no configuration information is in $ac_dir" >&2 fi || ac_status=$? cd "$ac_pwd" || { ac_status=$?; break; } done @@ -1512,10 +1553,10 @@ fi test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF -firewalld configure 2.1.2 -generated by GNU Autoconf 2.69 +firewalld configure 2.3.1 +generated by GNU Autoconf 2.71 -Copyright (C) 2012 Free Software Foundation, Inc. +Copyright (C) 2021 Free Software Foundation, Inc. This configure script is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it. _ACEOF @@ -1525,14 +1566,34 @@ fi ## ------------------------ ## ## Autoconf initialization. ## ## ------------------------ ## +ac_configure_args_raw= +for ac_arg +do + case $ac_arg in + *\'*) + ac_arg=`printf "%s\n" "$ac_arg" | sed "s/'/'\\\\\\\\''/g"` ;; + esac + as_fn_append ac_configure_args_raw " '$ac_arg'" +done + +case $ac_configure_args_raw in + *$as_nl*) + ac_safe_unquote= ;; + *) + ac_unsafe_z='|&;<>()$`\\"*?[ '' ' # This string ends in space, tab. + ac_unsafe_a="$ac_unsafe_z#~" + ac_safe_unquote="s/ '\\([^$ac_unsafe_a][^$ac_unsafe_z]*\\)'/ \\1/g" + ac_configure_args_raw=` printf "%s\n" "$ac_configure_args_raw" | sed "$ac_safe_unquote"`;; +esac + cat >config.log <<_ACEOF This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. -It was created by firewalld $as_me 2.1.2, which was -generated by GNU Autoconf 2.69. Invocation command line was +It was created by firewalld $as_me 2.3.1, which was +generated by GNU Autoconf 2.71. Invocation command line was - $ $0 $@ + $ $0$ac_configure_args_raw _ACEOF exec 5>>config.log @@ -1565,8 +1626,12 @@ as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - $as_echo "PATH: $as_dir" + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac + printf "%s\n" "PATH: $as_dir" done IFS=$as_save_IFS @@ -1601,7 +1666,7 @@ do | -silent | --silent | --silen | --sile | --sil) continue ;; *\'*) - ac_arg=`$as_echo "$ac_arg" | sed "s/'/'\\\\\\\\''/g"` ;; + ac_arg=`printf "%s\n" "$ac_arg" | sed "s/'/'\\\\\\\\''/g"` ;; esac case $ac_pass in 1) as_fn_append ac_configure_args0 " '$ac_arg'" ;; @@ -1636,11 +1701,13 @@ done # WARNING: Use '\'' to represent an apostrophe within the trap. # WARNING: Do not start the trap code with a newline, due to a FreeBSD 4.0 bug. trap 'exit_status=$? + # Sanitize IFS. + IFS=" "" $as_nl" # Save into config.log some information that might help in debugging. { echo - $as_echo "## ---------------- ## + printf "%s\n" "## ---------------- ## ## Cache variables. ## ## ---------------- ##" echo @@ -1651,8 +1718,8 @@ trap 'exit_status=$? case $ac_val in #( *${as_nl}*) case $ac_var in #( - *_cv_*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 -$as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; + *_cv_*) { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 +printf "%s\n" "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; esac case $ac_var in #( _ | IFS | as_nl) ;; #( @@ -1676,7 +1743,7 @@ $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; ) echo - $as_echo "## ----------------- ## + printf "%s\n" "## ----------------- ## ## Output variables. ## ## ----------------- ##" echo @@ -1684,14 +1751,14 @@ $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; do eval ac_val=\$$ac_var case $ac_val in - *\'\''*) ac_val=`$as_echo "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; + *\'\''*) ac_val=`printf "%s\n" "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; esac - $as_echo "$ac_var='\''$ac_val'\''" + printf "%s\n" "$ac_var='\''$ac_val'\''" done | sort echo if test -n "$ac_subst_files"; then - $as_echo "## ------------------- ## + printf "%s\n" "## ------------------- ## ## File substitutions. ## ## ------------------- ##" echo @@ -1699,15 +1766,15 @@ $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; do eval ac_val=\$$ac_var case $ac_val in - *\'\''*) ac_val=`$as_echo "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; + *\'\''*) ac_val=`printf "%s\n" "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; esac - $as_echo "$ac_var='\''$ac_val'\''" + printf "%s\n" "$ac_var='\''$ac_val'\''" done | sort echo fi if test -s confdefs.h; then - $as_echo "## ----------- ## + printf "%s\n" "## ----------- ## ## confdefs.h. ## ## ----------- ##" echo @@ -1715,8 +1782,8 @@ $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; echo fi test "$ac_signal" != 0 && - $as_echo "$as_me: caught signal $ac_signal" - $as_echo "$as_me: exit $exit_status" + printf "%s\n" "$as_me: caught signal $ac_signal" + printf "%s\n" "$as_me: exit $exit_status" } >&5 rm -f core *.core core.conftest.* && rm -f -r conftest* confdefs* conf$$* $ac_clean_files && @@ -1730,63 +1797,48 @@ ac_signal=0 # confdefs.h avoids OS command line length limits that DEFS can exceed. rm -f -r conftest* confdefs.h -$as_echo "/* confdefs.h */" > confdefs.h +printf "%s\n" "/* confdefs.h */" > confdefs.h # Predefined preprocessor variables. -cat >>confdefs.h <<_ACEOF -#define PACKAGE_NAME "$PACKAGE_NAME" -_ACEOF +printf "%s\n" "#define PACKAGE_NAME \"$PACKAGE_NAME\"" >>confdefs.h -cat >>confdefs.h <<_ACEOF -#define PACKAGE_TARNAME "$PACKAGE_TARNAME" -_ACEOF +printf "%s\n" "#define PACKAGE_TARNAME \"$PACKAGE_TARNAME\"" >>confdefs.h -cat >>confdefs.h <<_ACEOF -#define PACKAGE_VERSION "$PACKAGE_VERSION" -_ACEOF +printf "%s\n" "#define PACKAGE_VERSION \"$PACKAGE_VERSION\"" >>confdefs.h -cat >>confdefs.h <<_ACEOF -#define PACKAGE_STRING "$PACKAGE_STRING" -_ACEOF +printf "%s\n" "#define PACKAGE_STRING \"$PACKAGE_STRING\"" >>confdefs.h -cat >>confdefs.h <<_ACEOF -#define PACKAGE_BUGREPORT "$PACKAGE_BUGREPORT" -_ACEOF +printf "%s\n" "#define PACKAGE_BUGREPORT \"$PACKAGE_BUGREPORT\"" >>confdefs.h -cat >>confdefs.h <<_ACEOF -#define PACKAGE_URL "$PACKAGE_URL" -_ACEOF +printf "%s\n" "#define PACKAGE_URL \"$PACKAGE_URL\"" >>confdefs.h # Let the site file select an alternate cache file if it wants to. # Prefer an explicitly selected file to automatically selected ones. -ac_site_file1=NONE -ac_site_file2=NONE if test -n "$CONFIG_SITE"; then - # We do not want a PATH search for config.site. - case $CONFIG_SITE in #(( - -*) ac_site_file1=./$CONFIG_SITE;; - */*) ac_site_file1=$CONFIG_SITE;; - *) ac_site_file1=./$CONFIG_SITE;; - esac + ac_site_files="$CONFIG_SITE" elif test "x$prefix" != xNONE; then - ac_site_file1=$prefix/share/config.site - ac_site_file2=$prefix/etc/config.site + ac_site_files="$prefix/share/config.site $prefix/etc/config.site" else - ac_site_file1=$ac_default_prefix/share/config.site - ac_site_file2=$ac_default_prefix/etc/config.site + ac_site_files="$ac_default_prefix/share/config.site $ac_default_prefix/etc/config.site" fi -for ac_site_file in "$ac_site_file1" "$ac_site_file2" + +for ac_site_file in $ac_site_files do - test "x$ac_site_file" = xNONE && continue - if test /dev/null != "$ac_site_file" && test -r "$ac_site_file"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: loading site script $ac_site_file" >&5 -$as_echo "$as_me: loading site script $ac_site_file" >&6;} + case $ac_site_file in #( + */*) : + ;; #( + *) : + ac_site_file=./$ac_site_file ;; +esac + if test -f "$ac_site_file" && test -r "$ac_site_file"; then + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: loading site script $ac_site_file" >&5 +printf "%s\n" "$as_me: loading site script $ac_site_file" >&6;} sed 's/^/| /' "$ac_site_file" >&5 . "$ac_site_file" \ - || { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 -$as_echo "$as_me: error: in \`$ac_pwd':" >&2;} + || { { printf "%s\n" "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 +printf "%s\n" "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "failed to load site script $ac_site_file See \`config.log' for more details" "$LINENO" 5; } fi @@ -1796,19 +1848,117 @@ if test -r "$cache_file"; then # Some versions of bash will fail to source /dev/null (special files # actually), so we avoid doing that. DJGPP emulates it as a regular file. if test /dev/null != "$cache_file" && test -f "$cache_file"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: loading cache $cache_file" >&5 -$as_echo "$as_me: loading cache $cache_file" >&6;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: loading cache $cache_file" >&5 +printf "%s\n" "$as_me: loading cache $cache_file" >&6;} case $cache_file in [\\/]* | ?:[\\/]* ) . "$cache_file";; *) . "./$cache_file";; esac fi else - { $as_echo "$as_me:${as_lineno-$LINENO}: creating cache $cache_file" >&5 -$as_echo "$as_me: creating cache $cache_file" >&6;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: creating cache $cache_file" >&5 +printf "%s\n" "$as_me: creating cache $cache_file" >&6;} >$cache_file fi + +# Auxiliary files required by this configure script. +ac_aux_files="missing install-sh" + +# Locations in which to look for auxiliary files. +ac_aux_dir_candidates="${srcdir}${PATH_SEPARATOR}${srcdir}/..${PATH_SEPARATOR}${srcdir}/../.." + +# Search for a directory containing all of the required auxiliary files, +# $ac_aux_files, from the $PATH-style list $ac_aux_dir_candidates. +# If we don't find one directory that contains all the files we need, +# we report the set of missing files from the *first* directory in +# $ac_aux_dir_candidates and give up. +ac_missing_aux_files="" +ac_first_candidate=: +printf "%s\n" "$as_me:${as_lineno-$LINENO}: looking for aux files: $ac_aux_files" >&5 +as_save_IFS=$IFS; IFS=$PATH_SEPARATOR +as_found=false +for as_dir in $ac_aux_dir_candidates +do + IFS=$as_save_IFS + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac + as_found=: + + printf "%s\n" "$as_me:${as_lineno-$LINENO}: trying $as_dir" >&5 + ac_aux_dir_found=yes + ac_install_sh= + for ac_aux in $ac_aux_files + do + # As a special case, if "install-sh" is required, that requirement + # can be satisfied by any of "install-sh", "install.sh", or "shtool", + # and $ac_install_sh is set appropriately for whichever one is found. + if test x"$ac_aux" = x"install-sh" + then + if test -f "${as_dir}install-sh"; then + printf "%s\n" "$as_me:${as_lineno-$LINENO}: ${as_dir}install-sh found" >&5 + ac_install_sh="${as_dir}install-sh -c" + elif test -f "${as_dir}install.sh"; then + printf "%s\n" "$as_me:${as_lineno-$LINENO}: ${as_dir}install.sh found" >&5 + ac_install_sh="${as_dir}install.sh -c" + elif test -f "${as_dir}shtool"; then + printf "%s\n" "$as_me:${as_lineno-$LINENO}: ${as_dir}shtool found" >&5 + ac_install_sh="${as_dir}shtool install -c" + else + ac_aux_dir_found=no + if $ac_first_candidate; then + ac_missing_aux_files="${ac_missing_aux_files} install-sh" + else + break + fi + fi + else + if test -f "${as_dir}${ac_aux}"; then + printf "%s\n" "$as_me:${as_lineno-$LINENO}: ${as_dir}${ac_aux} found" >&5 + else + ac_aux_dir_found=no + if $ac_first_candidate; then + ac_missing_aux_files="${ac_missing_aux_files} ${ac_aux}" + else + break + fi + fi + fi + done + if test "$ac_aux_dir_found" = yes; then + ac_aux_dir="$as_dir" + break + fi + ac_first_candidate=false + + as_found=false +done +IFS=$as_save_IFS +if $as_found +then : + +else $as_nop + as_fn_error $? "cannot find required auxiliary files:$ac_missing_aux_files" "$LINENO" 5 +fi + + +# These three variables are undocumented and unsupported, +# and are intended to be withdrawn in a future Autoconf release. +# They can cause serious problems if a builder's source tree is in a directory +# whose full name contains unusual characters. +if test -f "${ac_aux_dir}config.guess"; then + ac_config_guess="$SHELL ${ac_aux_dir}config.guess" +fi +if test -f "${ac_aux_dir}config.sub"; then + ac_config_sub="$SHELL ${ac_aux_dir}config.sub" +fi +if test -f "$ac_aux_dir/configure"; then + ac_configure="$SHELL ${ac_aux_dir}configure" +fi + # Check that the precious variables saved in the cache have kept the same # value. ac_cache_corrupted=false @@ -1819,12 +1969,12 @@ for ac_var in $ac_precious_vars; do eval ac_new_val=\$ac_env_${ac_var}_value case $ac_old_set,$ac_new_set in set,) - { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&5 -$as_echo "$as_me: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&5 +printf "%s\n" "$as_me: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&2;} ac_cache_corrupted=: ;; ,set) - { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was not set in the previous run" >&5 -$as_echo "$as_me: error: \`$ac_var' was not set in the previous run" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was not set in the previous run" >&5 +printf "%s\n" "$as_me: error: \`$ac_var' was not set in the previous run" >&2;} ac_cache_corrupted=: ;; ,);; *) @@ -1833,24 +1983,24 @@ $as_echo "$as_me: error: \`$ac_var' was not set in the previous run" >&2;} ac_old_val_w=`echo x $ac_old_val` ac_new_val_w=`echo x $ac_new_val` if test "$ac_old_val_w" != "$ac_new_val_w"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' has changed since the previous run:" >&5 -$as_echo "$as_me: error: \`$ac_var' has changed since the previous run:" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' has changed since the previous run:" >&5 +printf "%s\n" "$as_me: error: \`$ac_var' has changed since the previous run:" >&2;} ac_cache_corrupted=: else - { $as_echo "$as_me:${as_lineno-$LINENO}: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&5 -$as_echo "$as_me: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&5 +printf "%s\n" "$as_me: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&2;} eval $ac_var=\$ac_old_val fi - { $as_echo "$as_me:${as_lineno-$LINENO}: former value: \`$ac_old_val'" >&5 -$as_echo "$as_me: former value: \`$ac_old_val'" >&2;} - { $as_echo "$as_me:${as_lineno-$LINENO}: current value: \`$ac_new_val'" >&5 -$as_echo "$as_me: current value: \`$ac_new_val'" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: former value: \`$ac_old_val'" >&5 +printf "%s\n" "$as_me: former value: \`$ac_old_val'" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: current value: \`$ac_new_val'" >&5 +printf "%s\n" "$as_me: current value: \`$ac_new_val'" >&2;} fi;; esac # Pass precious variables to config.status. if test "$ac_new_set" = set; then case $ac_new_val in - *\'*) ac_arg=$ac_var=`$as_echo "$ac_new_val" | sed "s/'/'\\\\\\\\''/g"` ;; + *\'*) ac_arg=$ac_var=`printf "%s\n" "$ac_new_val" | sed "s/'/'\\\\\\\\''/g"` ;; *) ac_arg=$ac_var=$ac_new_val ;; esac case " $ac_configure_args " in @@ -1860,11 +2010,12 @@ $as_echo "$as_me: current value: \`$ac_new_val'" >&2;} fi done if $ac_cache_corrupted; then - { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 -$as_echo "$as_me: error: in \`$ac_pwd':" >&2;} - { $as_echo "$as_me:${as_lineno-$LINENO}: error: changes in the environment can compromise the build" >&5 -$as_echo "$as_me: error: changes in the environment can compromise the build" >&2;} - as_fn_error $? "run \`make distclean' and/or \`rm $cache_file' and start over" "$LINENO" 5 + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 +printf "%s\n" "$as_me: error: in \`$ac_pwd':" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: error: changes in the environment can compromise the build" >&5 +printf "%s\n" "$as_me: error: changes in the environment can compromise the build" >&2;} + as_fn_error $? "run \`${MAKE-make} distclean' and/or \`rm $cache_file' + and start over" "$LINENO" 5 fi ## -------------------- ## ## Main body of script. ## @@ -1883,36 +2034,9 @@ ac_compiler_gnu=$ac_cv_c_compiler_gnu am__api_version='1.16' -ac_aux_dir= -for ac_dir in "$srcdir" "$srcdir/.." "$srcdir/../.."; do - if test -f "$ac_dir/install-sh"; then - ac_aux_dir=$ac_dir - ac_install_sh="$ac_aux_dir/install-sh -c" - break - elif test -f "$ac_dir/install.sh"; then - ac_aux_dir=$ac_dir - ac_install_sh="$ac_aux_dir/install.sh -c" - break - elif test -f "$ac_dir/shtool"; then - ac_aux_dir=$ac_dir - ac_install_sh="$ac_aux_dir/shtool install -c" - break - fi -done -if test -z "$ac_aux_dir"; then - as_fn_error $? "cannot find install-sh, install.sh, or shtool in \"$srcdir\" \"$srcdir/..\" \"$srcdir/../..\"" "$LINENO" 5 -fi - -# These three variables are undocumented and unsupported, -# and are intended to be withdrawn in a future Autoconf release. -# They can cause serious problems if a builder's source tree is in a directory -# whose full name contains unusual characters. -ac_config_guess="$SHELL $ac_aux_dir/config.guess" # Please don't use this var. -ac_config_sub="$SHELL $ac_aux_dir/config.sub" # Please don't use this var. -ac_configure="$SHELL $ac_aux_dir/configure" # Please don't use this var. -# Find a good install program. We prefer a C program (faster), + # Find a good install program. We prefer a C program (faster), # so one script is as good as another. But avoid the broken or # incompatible versions: # SysV /etc/install, /usr/sbin/install @@ -1926,20 +2050,25 @@ ac_configure="$SHELL $ac_aux_dir/configure" # Please don't use this var. # OS/2's system install, which has a completely different semantic # ./install, which can be erroneously created by make from ./install.sh. # Reject install programs that cannot install multiple files. -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for a BSD-compatible install" >&5 -$as_echo_n "checking for a BSD-compatible install... " >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for a BSD-compatible install" >&5 +printf %s "checking for a BSD-compatible install... " >&6; } if test -z "$INSTALL"; then -if ${ac_cv_path_install+:} false; then : - $as_echo_n "(cached) " >&6 -else +if test ${ac_cv_path_install+y} +then : + printf %s "(cached) " >&6 +else $as_nop as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - # Account for people who put trailing slashes in PATH elements. -case $as_dir/ in #(( - ./ | .// | /[cC]/* | \ + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac + # Account for fact that we put trailing slashes in our PATH walk. +case $as_dir in #(( + ./ | /[cC]/* | \ /etc/* | /usr/sbin/* | /usr/etc/* | /sbin/* | /usr/afsws/bin/* | \ ?:[\\/]os2[\\/]install[\\/]* | ?:[\\/]OS2[\\/]INSTALL[\\/]* | \ /usr/ucb/* ) ;; @@ -1949,13 +2078,13 @@ case $as_dir/ in #(( # by default. for ac_prog in ginstall scoinst install; do for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_prog$ac_exec_ext"; then + if as_fn_executable_p "$as_dir$ac_prog$ac_exec_ext"; then if test $ac_prog = install && - grep dspmsg "$as_dir/$ac_prog$ac_exec_ext" >/dev/null 2>&1; then + grep dspmsg "$as_dir$ac_prog$ac_exec_ext" >/dev/null 2>&1; then # AIX install. It has an incompatible calling convention. : elif test $ac_prog = install && - grep pwplus "$as_dir/$ac_prog$ac_exec_ext" >/dev/null 2>&1; then + grep pwplus "$as_dir$ac_prog$ac_exec_ext" >/dev/null 2>&1; then # program-specific install script used by HP pwplus--don't use. : else @@ -1963,12 +2092,12 @@ case $as_dir/ in #(( echo one > conftest.one echo two > conftest.two mkdir conftest.dir - if "$as_dir/$ac_prog$ac_exec_ext" -c conftest.one conftest.two "`pwd`/conftest.dir" && + if "$as_dir$ac_prog$ac_exec_ext" -c conftest.one conftest.two "`pwd`/conftest.dir/" && test -s conftest.one && test -s conftest.two && test -s conftest.dir/conftest.one && test -s conftest.dir/conftest.two then - ac_cv_path_install="$as_dir/$ac_prog$ac_exec_ext -c" + ac_cv_path_install="$as_dir$ac_prog$ac_exec_ext -c" break 3 fi fi @@ -1984,7 +2113,7 @@ IFS=$as_save_IFS rm -rf conftest.one conftest.two conftest.dir fi - if test "${ac_cv_path_install+set}" = set; then + if test ${ac_cv_path_install+y}; then INSTALL=$ac_cv_path_install else # As a last resort, use the slow shell script. Don't cache a @@ -1994,8 +2123,8 @@ fi INSTALL=$ac_install_sh fi fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $INSTALL" >&5 -$as_echo "$INSTALL" >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $INSTALL" >&5 +printf "%s\n" "$INSTALL" >&6; } # Use test -z because SunOS4 sh mishandles braces in ${var-val}. # It thinks the first close brace ends the variable substitution. @@ -2005,8 +2134,8 @@ test -z "$INSTALL_SCRIPT" && INSTALL_SCRIPT='${INSTALL}' test -z "$INSTALL_DATA" && INSTALL_DATA='${INSTALL} -m 644' -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking whether build environment is sane" >&5 -$as_echo_n "checking whether build environment is sane... " >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking whether build environment is sane" >&5 +printf %s "checking whether build environment is sane... " >&6; } # Reject unsafe characters in $srcdir or the absolute working directory # name. Accept space and tab only in the latter. am_lf=' @@ -2060,8 +2189,8 @@ else as_fn_error $? "newly created file is older than distributed files! Check your system clock" "$LINENO" 5 fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 -$as_echo "yes" >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: yes" >&5 +printf "%s\n" "yes" >&6; } # If we didn't sleep, we still need to ensure time stamps of config.status and # generated files are strictly newer. am_sleep_pid= @@ -2080,26 +2209,23 @@ test "$program_suffix" != NONE && # Double any \ or $. # By default was `s,x,x', remove it if useless. ac_script='s/[\\$]/&&/g;s/;s,x,x,$//' -program_transform_name=`$as_echo "$program_transform_name" | sed "$ac_script"` +program_transform_name=`printf "%s\n" "$program_transform_name" | sed "$ac_script"` + # Expand $ac_aux_dir to an absolute path. am_aux_dir=`cd "$ac_aux_dir" && pwd` -if test x"${MISSING+set}" != xset; then - case $am_aux_dir in - *\ * | *\ *) - MISSING="\${SHELL} \"$am_aux_dir/missing\"" ;; - *) - MISSING="\${SHELL} $am_aux_dir/missing" ;; - esac + + if test x"${MISSING+set}" != xset; then + MISSING="\${SHELL} '$am_aux_dir/missing'" fi # Use eval to expand $SHELL if eval "$MISSING --is-lightweight"; then am_missing_run="$MISSING " else am_missing_run= - { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: 'missing' script is too old or missing" >&5 -$as_echo "$as_me: WARNING: 'missing' script is too old or missing" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: 'missing' script is too old or missing" >&5 +printf "%s\n" "$as_me: WARNING: 'missing' script is too old or missing" >&2;} fi if test x"${install_sh+set}" != xset; then @@ -2119,11 +2245,12 @@ if test "$cross_compiling" != no; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}strip", so it can be a program name with args. set dummy ${ac_tool_prefix}strip; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_prog_STRIP+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_prog_STRIP+y} +then : + printf %s "(cached) " >&6 +else $as_nop if test -n "$STRIP"; then ac_cv_prog_STRIP="$STRIP" # Let the user override the test. else @@ -2131,11 +2258,15 @@ as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then ac_cv_prog_STRIP="${ac_tool_prefix}strip" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -2146,11 +2277,11 @@ fi fi STRIP=$ac_cv_prog_STRIP if test -n "$STRIP"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $STRIP" >&5 -$as_echo "$STRIP" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $STRIP" >&5 +printf "%s\n" "$STRIP" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -2159,11 +2290,12 @@ if test -z "$ac_cv_prog_STRIP"; then ac_ct_STRIP=$STRIP # Extract the first word of "strip", so it can be a program name with args. set dummy strip; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_prog_ac_ct_STRIP+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_prog_ac_ct_STRIP+y} +then : + printf %s "(cached) " >&6 +else $as_nop if test -n "$ac_ct_STRIP"; then ac_cv_prog_ac_ct_STRIP="$ac_ct_STRIP" # Let the user override the test. else @@ -2171,11 +2303,15 @@ as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_STRIP="strip" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -2186,11 +2322,11 @@ fi fi ac_ct_STRIP=$ac_cv_prog_ac_ct_STRIP if test -n "$ac_ct_STRIP"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_STRIP" >&5 -$as_echo "$ac_ct_STRIP" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $ac_ct_STRIP" >&5 +printf "%s\n" "$ac_ct_STRIP" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi if test "x$ac_ct_STRIP" = x; then @@ -2198,8 +2334,8 @@ fi else case $cross_compiling:$ac_tool_warned in yes:) -{ $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 -$as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 +printf "%s\n" "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac STRIP=$ac_ct_STRIP @@ -2211,25 +2347,31 @@ fi fi INSTALL_STRIP_PROGRAM="\$(install_sh) -c -s" -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for a thread-safe mkdir -p" >&5 -$as_echo_n "checking for a thread-safe mkdir -p... " >&6; } + + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for a race-free mkdir -p" >&5 +printf %s "checking for a race-free mkdir -p... " >&6; } if test -z "$MKDIR_P"; then - if ${ac_cv_path_mkdir+:} false; then : - $as_echo_n "(cached) " >&6 -else + if test ${ac_cv_path_mkdir+y} +then : + printf %s "(cached) " >&6 +else $as_nop as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/opt/sfw/bin do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_prog in mkdir gmkdir; do for ac_exec_ext in '' $ac_executable_extensions; do - as_fn_executable_p "$as_dir/$ac_prog$ac_exec_ext" || continue - case `"$as_dir/$ac_prog$ac_exec_ext" --version 2>&1` in #( - 'mkdir (GNU coreutils) '* | \ - 'mkdir (coreutils) '* | \ + as_fn_executable_p "$as_dir$ac_prog$ac_exec_ext" || continue + case `"$as_dir$ac_prog$ac_exec_ext" --version 2>&1` in #( + 'mkdir ('*'coreutils) '* | \ + 'BusyBox '* | \ 'mkdir (fileutils) '4.1*) - ac_cv_path_mkdir=$as_dir/$ac_prog$ac_exec_ext + ac_cv_path_mkdir=$as_dir$ac_prog$ac_exec_ext break 3;; esac done @@ -2240,7 +2382,7 @@ IFS=$as_save_IFS fi test -d ./--version && rmdir ./--version - if test "${ac_cv_path_mkdir+set}" = set; then + if test ${ac_cv_path_mkdir+y}; then MKDIR_P="$ac_cv_path_mkdir -p" else # As a last resort, use the slow shell script. Don't cache a @@ -2250,18 +2392,19 @@ fi MKDIR_P="$ac_install_sh -d" fi fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $MKDIR_P" >&5 -$as_echo "$MKDIR_P" >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $MKDIR_P" >&5 +printf "%s\n" "$MKDIR_P" >&6; } for ac_prog in gawk mawk nawk awk do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_prog_AWK+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_prog_AWK+y} +then : + printf %s "(cached) " >&6 +else $as_nop if test -n "$AWK"; then ac_cv_prog_AWK="$AWK" # Let the user override the test. else @@ -2269,11 +2412,15 @@ as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then ac_cv_prog_AWK="$ac_prog" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -2284,24 +2431,25 @@ fi fi AWK=$ac_cv_prog_AWK if test -n "$AWK"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $AWK" >&5 -$as_echo "$AWK" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $AWK" >&5 +printf "%s\n" "$AWK" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi test -n "$AWK" && break done -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ${MAKE-make} sets \$(MAKE)" >&5 -$as_echo_n "checking whether ${MAKE-make} sets \$(MAKE)... " >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking whether ${MAKE-make} sets \$(MAKE)" >&5 +printf %s "checking whether ${MAKE-make} sets \$(MAKE)... " >&6; } set x ${MAKE-make} -ac_make=`$as_echo "$2" | sed 's/+/p/g; s/[^a-zA-Z0-9_]/_/g'` -if eval \${ac_cv_prog_make_${ac_make}_set+:} false; then : - $as_echo_n "(cached) " >&6 -else +ac_make=`printf "%s\n" "$2" | sed 's/+/p/g; s/[^a-zA-Z0-9_]/_/g'` +if eval test \${ac_cv_prog_make_${ac_make}_set+y} +then : + printf %s "(cached) " >&6 +else $as_nop cat >conftest.make <<\_ACEOF SHELL = /bin/sh all: @@ -2317,12 +2465,12 @@ esac rm -f conftest.make fi if eval test \$ac_cv_prog_make_${ac_make}_set = yes; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 -$as_echo "yes" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: yes" >&5 +printf "%s\n" "yes" >&6; } SET_MAKE= else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } SET_MAKE="MAKE=${MAKE-make}" fi @@ -2336,7 +2484,8 @@ fi rmdir .tst 2>/dev/null # Check whether --enable-silent-rules was given. -if test "${enable_silent_rules+set}" = set; then : +if test ${enable_silent_rules+y} +then : enableval=$enable_silent_rules; fi @@ -2346,12 +2495,13 @@ case $enable_silent_rules in # ((( *) AM_DEFAULT_VERBOSITY=1;; esac am_make=${MAKE-make} -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $am_make supports nested variables" >&5 -$as_echo_n "checking whether $am_make supports nested variables... " >&6; } -if ${am_cv_make_support_nested_variables+:} false; then : - $as_echo_n "(cached) " >&6 -else - if $as_echo 'TRUE=$(BAR$(V)) +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking whether $am_make supports nested variables" >&5 +printf %s "checking whether $am_make supports nested variables... " >&6; } +if test ${am_cv_make_support_nested_variables+y} +then : + printf %s "(cached) " >&6 +else $as_nop + if printf "%s\n" 'TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 @@ -2363,8 +2513,8 @@ else am_cv_make_support_nested_variables=no fi fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_make_support_nested_variables" >&5 -$as_echo "$am_cv_make_support_nested_variables" >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_make_support_nested_variables" >&5 +printf "%s\n" "$am_cv_make_support_nested_variables" >&6; } if test $am_cv_make_support_nested_variables = yes; then AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' @@ -2396,7 +2546,7 @@ fi # Define the identity of the package. PACKAGE='firewalld' - VERSION='2.1.2' + VERSION='2.3.1' # Some tools Automake needs. @@ -2443,29 +2593,29 @@ _am_tools='gnutar plaintar pax cpio none' # (that is, avoid stderr redirection). am_uid=`id -u || echo unknown` am_gid=`id -g || echo unknown` - { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether UID '$am_uid' is supported by ustar format" >&5 -$as_echo_n "checking whether UID '$am_uid' is supported by ustar format... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking whether UID '$am_uid' is supported by ustar format" >&5 +printf %s "checking whether UID '$am_uid' is supported by ustar format... " >&6; } if test $am_uid -le $am_max_uid; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 -$as_echo "yes" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: yes" >&5 +printf "%s\n" "yes" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } _am_tools=none fi - { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether GID '$am_gid' is supported by ustar format" >&5 -$as_echo_n "checking whether GID '$am_gid' is supported by ustar format... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking whether GID '$am_gid' is supported by ustar format" >&5 +printf %s "checking whether GID '$am_gid' is supported by ustar format... " >&6; } if test $am_gid -le $am_max_gid; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 -$as_echo "yes" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: yes" >&5 +printf "%s\n" "yes" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } _am_tools=none fi - { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to create a ustar tar archive" >&5 -$as_echo_n "checking how to create a ustar tar archive... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking how to create a ustar tar archive" >&5 +printf %s "checking how to create a ustar tar archive... " >&6; } # Go ahead even if we have the value already cached. We do so because we # need to set the values for the 'am__tar' and 'am__untar' variables. @@ -2540,19 +2690,34 @@ $as_echo_n "checking how to create a ustar tar archive... " >&6; } done rm -rf conftest.dir - if ${am_cv_prog_tar_ustar+:} false; then : - $as_echo_n "(cached) " >&6 -else + if test ${am_cv_prog_tar_ustar+y} +then : + printf %s "(cached) " >&6 +else $as_nop am_cv_prog_tar_ustar=$_am_tool fi - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_prog_tar_ustar" >&5 -$as_echo "$am_cv_prog_tar_ustar" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_prog_tar_ustar" >&5 +printf "%s\n" "$am_cv_prog_tar_ustar" >&6; } +# Variables for tags utilities; see am/tags.am +if test -z "$CTAGS"; then + CTAGS=ctags +fi + +if test -z "$ETAGS"; then + ETAGS=etags +fi + +if test -z "$CSCOPE"; then + CSCOPE=cscope +fi + + # POSIX will say in a future version that running "rm -f" with no argument # is OK; and we want to be able to make that assumption in our Makefile @@ -2599,35 +2764,32 @@ fi PACKAGE_RELEASE='1' -cat >>confdefs.h <<_ACEOF -#define PACKAGE_RELEASE "$PACKAGE_RELEASE" -_ACEOF +printf "%s\n" "#define PACKAGE_RELEASE \"$PACKAGE_RELEASE\"" >>confdefs.h -PACKAGE_TAG='v2.1.2' +PACKAGE_TAG='v2.3.1' -cat >>confdefs.h <<_ACEOF -#define PACKAGE_TAG "$PACKAGE_TAG" -_ACEOF +printf "%s\n" "#define PACKAGE_TAG \"$PACKAGE_TAG\"" >>confdefs.h -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ln -s works" >&5 -$as_echo_n "checking whether ln -s works... " >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking whether ln -s works" >&5 +printf %s "checking whether ln -s works... " >&6; } LN_S=$as_ln_s if test "$LN_S" = "ln -s"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 -$as_echo "yes" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: yes" >&5 +printf "%s\n" "yes" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no, using $LN_S" >&5 -$as_echo "no, using $LN_S" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no, using $LN_S" >&5 +printf "%s\n" "no, using $LN_S" >&6; } fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for a sed that does not truncate output" >&5 -$as_echo_n "checking for a sed that does not truncate output... " >&6; } -if ${ac_cv_path_SED+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for a sed that does not truncate output" >&5 +printf %s "checking for a sed that does not truncate output... " >&6; } +if test ${ac_cv_path_SED+y} +then : + printf %s "(cached) " >&6 +else $as_nop ac_script=s/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb/ for ac_i in 1 2 3 4 5 6 7; do ac_script="$ac_script$as_nl$ac_script" @@ -2641,10 +2803,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - for ac_prog in sed gsed; do + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac + for ac_prog in sed gsed + do for ac_exec_ext in '' $ac_executable_extensions; do - ac_path_SED="$as_dir/$ac_prog$ac_exec_ext" + ac_path_SED="$as_dir$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_SED" || continue # Check for GNU ac_path_SED and select it if it is found. # Check for GNU $ac_path_SED @@ -2653,13 +2820,13 @@ case `"$ac_path_SED" --version 2>&1` in ac_cv_path_SED="$ac_path_SED" ac_path_SED_found=:;; *) ac_count=0 - $as_echo_n 0123456789 >"conftest.in" + printf %s 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" - $as_echo '' >> "conftest.nl" + printf "%s\n" '' >> "conftest.nl" "$ac_path_SED" -f conftest.sed < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val @@ -2687,16 +2854,17 @@ else fi fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_SED" >&5 -$as_echo "$ac_cv_path_SED" >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_SED" >&5 +printf "%s\n" "$ac_cv_path_SED" >&6; } SED="$ac_cv_path_SED" rm -f conftest.sed -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for grep that handles long lines and -e" >&5 -$as_echo_n "checking for grep that handles long lines and -e... " >&6; } -if ${ac_cv_path_GREP+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for grep that handles long lines and -e" >&5 +printf %s "checking for grep that handles long lines and -e... " >&6; } +if test ${ac_cv_path_GREP+y} +then : + printf %s "(cached) " >&6 +else $as_nop if test -z "$GREP"; then ac_path_GREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST @@ -2704,10 +2872,15 @@ else for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - for ac_prog in grep ggrep; do + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac + for ac_prog in grep ggrep + do for ac_exec_ext in '' $ac_executable_extensions; do - ac_path_GREP="$as_dir/$ac_prog$ac_exec_ext" + ac_path_GREP="$as_dir$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_GREP" || continue # Check for GNU ac_path_GREP and select it if it is found. # Check for GNU $ac_path_GREP @@ -2716,13 +2889,13 @@ case `"$ac_path_GREP" --version 2>&1` in ac_cv_path_GREP="$ac_path_GREP" ac_path_GREP_found=:;; *) ac_count=0 - $as_echo_n 0123456789 >"conftest.in" + printf %s 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" - $as_echo 'GREP' >> "conftest.nl" + printf "%s\n" 'GREP' >> "conftest.nl" "$ac_path_GREP" -e 'GREP$' -e '-(cannot match)-' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val @@ -2750,8 +2923,8 @@ else fi fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_GREP" >&5 -$as_echo "$ac_cv_path_GREP" >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_GREP" >&5 +printf "%s\n" "$ac_cv_path_GREP" >&6; } GREP="$ac_cv_path_GREP" @@ -2759,11 +2932,12 @@ for ac_prog in gawk mawk nawk awk do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_prog_AWK+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_prog_AWK+y} +then : + printf %s "(cached) " >&6 +else $as_nop if test -n "$AWK"; then ac_cv_prog_AWK="$AWK" # Let the user override the test. else @@ -2771,11 +2945,15 @@ as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then ac_cv_prog_AWK="$ac_prog" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -2786,24 +2964,25 @@ fi fi AWK=$ac_cv_prog_AWK if test -n "$AWK"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $AWK" >&5 -$as_echo "$AWK" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $AWK" >&5 +printf "%s\n" "$AWK" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi test -n "$AWK" && break done -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ${MAKE-make} sets \$(MAKE)" >&5 -$as_echo_n "checking whether ${MAKE-make} sets \$(MAKE)... " >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking whether ${MAKE-make} sets \$(MAKE)" >&5 +printf %s "checking whether ${MAKE-make} sets \$(MAKE)... " >&6; } set x ${MAKE-make} -ac_make=`$as_echo "$2" | sed 's/+/p/g; s/[^a-zA-Z0-9_]/_/g'` -if eval \${ac_cv_prog_make_${ac_make}_set+:} false; then : - $as_echo_n "(cached) " >&6 -else +ac_make=`printf "%s\n" "$2" | sed 's/+/p/g; s/[^a-zA-Z0-9_]/_/g'` +if eval test \${ac_cv_prog_make_${ac_make}_set+y} +then : + printf %s "(cached) " >&6 +else $as_nop cat >conftest.make <<\_ACEOF SHELL = /bin/sh all: @@ -2819,12 +2998,12 @@ esac rm -f conftest.make fi if eval test \$ac_cv_prog_make_${ac_make}_set = yes; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 -$as_echo "yes" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: yes" >&5 +printf "%s\n" "yes" >&6; } SET_MAKE= else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } SET_MAKE="MAKE=${MAKE-make}" fi @@ -2836,8 +3015,8 @@ fi if test -n "$PYTHON"; then # If the user set $PYTHON, use it and don't search something else. - { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $PYTHON version is >= 3.6" >&5 -$as_echo_n "checking whether $PYTHON version is >= 3.6... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking whether $PYTHON version is >= 3.6" >&5 +printf %s "checking whether $PYTHON version is >= 3.6... " >&6; } prog="import sys # split strings by '.' and convert to numeric. Append some zeros # because we need at least 4 digits for the hex conversion. @@ -2851,25 +3030,27 @@ sys.exit(sys.hexversion < minverhex)" ($PYTHON -c "$prog") >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 - (exit $ac_status); }; then : - { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 -$as_echo "yes" >&6; } -else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + (exit $ac_status); } +then : + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: yes" >&5 +printf "%s\n" "yes" >&6; } +else $as_nop + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } as_fn_error $? "Python interpreter is too old" "$LINENO" 5 fi am_display_PYTHON=$PYTHON else # Otherwise, try each interpreter until we find one that satisfies # VERSION. - { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a Python interpreter with version >= 3.6" >&5 -$as_echo_n "checking for a Python interpreter with version >= 3.6... " >&6; } -if ${am_cv_pathless_PYTHON+:} false; then : - $as_echo_n "(cached) " >&6 -else - - for am_cv_pathless_PYTHON in python python2 python3 python3.9 python3.8 python3.7 python3.6 python3.5 python3.4 python3.3 python3.2 python3.1 python3.0 python2.7 python2.6 python2.5 python2.4 python2.3 python2.2 python2.1 python2.0 none; do + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for a Python interpreter with version >= 3.6" >&5 +printf %s "checking for a Python interpreter with version >= 3.6... " >&6; } +if test ${am_cv_pathless_PYTHON+y} +then : + printf %s "(cached) " >&6 +else $as_nop + + for am_cv_pathless_PYTHON in python python2 python3 python3.11 python3.10 python3.9 python3.8 python3.7 python3.6 python3.5 python3.4 python3.3 python3.2 python3.1 python3.0 python2.7 python2.6 python2.5 python2.4 python2.3 python2.2 python2.1 python2.0 none; do test "$am_cv_pathless_PYTHON" = none && break prog="import sys # split strings by '.' and convert to numeric. Append some zeros @@ -2884,24 +3065,26 @@ sys.exit(sys.hexversion < minverhex)" ($am_cv_pathless_PYTHON -c "$prog") >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 - (exit $ac_status); }; then : + (exit $ac_status); } +then : break fi done fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_pathless_PYTHON" >&5 -$as_echo "$am_cv_pathless_PYTHON" >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_pathless_PYTHON" >&5 +printf "%s\n" "$am_cv_pathless_PYTHON" >&6; } # Set $PYTHON to the absolute path of $am_cv_pathless_PYTHON. if test "$am_cv_pathless_PYTHON" = none; then PYTHON=: else # Extract the first word of "$am_cv_pathless_PYTHON", so it can be a program name with args. set dummy $am_cv_pathless_PYTHON; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_PYTHON+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_PYTHON+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $PYTHON in [\\/]* | ?:[\\/]*) ac_cv_path_PYTHON="$PYTHON" # Let the user override the test with a path. @@ -2911,11 +3094,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_PYTHON="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_PYTHON="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -2927,11 +3114,11 @@ esac fi PYTHON=$ac_cv_path_PYTHON if test -n "$PYTHON"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $PYTHON" >&5 -$as_echo "$PYTHON" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $PYTHON" >&5 +printf "%s\n" "$PYTHON" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -2941,42 +3128,172 @@ fi if test "$PYTHON" = :; then - as_fn_error $? "no suitable Python interpreter found" "$LINENO" 5 + as_fn_error $? "no suitable Python interpreter found" "$LINENO" 5 else - - { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $am_display_PYTHON version" >&5 -$as_echo_n "checking for $am_display_PYTHON version... " >&6; } -if ${am_cv_python_version+:} false; then : - $as_echo_n "(cached) " >&6 -else - am_cv_python_version=`$PYTHON -c "import sys; sys.stdout.write(sys.version[:3])"` + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $am_display_PYTHON version" >&5 +printf %s "checking for $am_display_PYTHON version... " >&6; } +if test ${am_cv_python_version+y} +then : + printf %s "(cached) " >&6 +else $as_nop + am_cv_python_version=`$PYTHON -c "import sys; print ('%u.%u' % sys.version_info[:2])"` fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_version" >&5 -$as_echo "$am_cv_python_version" >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_version" >&5 +printf "%s\n" "$am_cv_python_version" >&6; } PYTHON_VERSION=$am_cv_python_version + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $am_display_PYTHON platform" >&5 +printf %s "checking for $am_display_PYTHON platform... " >&6; } +if test ${am_cv_python_platform+y} +then : + printf %s "(cached) " >&6 +else $as_nop + am_cv_python_platform=`$PYTHON -c "import sys; sys.stdout.write(sys.platform)"` +fi +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_platform" >&5 +printf "%s\n" "$am_cv_python_platform" >&6; } + PYTHON_PLATFORM=$am_cv_python_platform - PYTHON_PREFIX='${prefix}' - - PYTHON_EXEC_PREFIX='${exec_prefix}' + if test "x$prefix" = xNONE; then + am__usable_prefix=$ac_default_prefix + else + am__usable_prefix=$prefix + fi + # Allow user to request using sys.* values from Python, + # instead of the GNU $prefix values. + +# Check whether --with-python-sys-prefix was given. +if test ${with_python_sys_prefix+y} +then : + withval=$with_python_sys_prefix; am_use_python_sys=: +else $as_nop + am_use_python_sys=false +fi + + + # Allow user to override whatever the default Python prefix is. + +# Check whether --with-python_prefix was given. +if test ${with_python_prefix+y} +then : + withval=$with_python_prefix; am_python_prefix_subst=$withval + am_cv_python_prefix=$withval + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for explicit $am_display_PYTHON prefix" >&5 +printf %s "checking for explicit $am_display_PYTHON prefix... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_prefix" >&5 +printf "%s\n" "$am_cv_python_prefix" >&6; } +else $as_nop + + if $am_use_python_sys; then + # using python sys.prefix value, not GNU + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for python default $am_display_PYTHON prefix" >&5 +printf %s "checking for python default $am_display_PYTHON prefix... " >&6; } +if test ${am_cv_python_prefix+y} +then : + printf %s "(cached) " >&6 +else $as_nop + am_cv_python_prefix=`$PYTHON -c "import sys; sys.stdout.write(sys.prefix)"` +fi +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_prefix" >&5 +printf "%s\n" "$am_cv_python_prefix" >&6; } + + case $am_cv_python_prefix in + $am__usable_prefix*) + am__strip_prefix=`echo "$am__usable_prefix" | sed 's|.|.|g'` + am_python_prefix_subst=`echo "$am_cv_python_prefix" | sed "s,^$am__strip_prefix,\\${prefix},"` + ;; + *) + am_python_prefix_subst=$am_cv_python_prefix + ;; + esac + else # using GNU prefix value, not python sys.prefix + am_python_prefix_subst='${prefix}' + am_python_prefix=$am_python_prefix_subst + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for GNU default $am_display_PYTHON prefix" >&5 +printf %s "checking for GNU default $am_display_PYTHON prefix... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_python_prefix" >&5 +printf "%s\n" "$am_python_prefix" >&6; } + fi +fi - { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $am_display_PYTHON platform" >&5 -$as_echo_n "checking for $am_display_PYTHON platform... " >&6; } -if ${am_cv_python_platform+:} false; then : - $as_echo_n "(cached) " >&6 -else - am_cv_python_platform=`$PYTHON -c "import sys; sys.stdout.write(sys.platform)"` + # Substituting python_prefix_subst value. + PYTHON_PREFIX=$am_python_prefix_subst + + + # emacs-page Now do it all over again for Python exec_prefix, but with yet + # another conditional: fall back to regular prefix if that was specified. + +# Check whether --with-python_exec_prefix was given. +if test ${with_python_exec_prefix+y} +then : + withval=$with_python_exec_prefix; am_python_exec_prefix_subst=$withval + am_cv_python_exec_prefix=$withval + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for explicit $am_display_PYTHON exec_prefix" >&5 +printf %s "checking for explicit $am_display_PYTHON exec_prefix... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_exec_prefix" >&5 +printf "%s\n" "$am_cv_python_exec_prefix" >&6; } +else $as_nop + + # no explicit --with-python_exec_prefix, but if + # --with-python_prefix was given, use its value for python_exec_prefix too. + if test -n "$with_python_prefix" +then : + am_python_exec_prefix_subst=$with_python_prefix + am_cv_python_exec_prefix=$with_python_prefix + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for python_prefix-given $am_display_PYTHON exec_prefix" >&5 +printf %s "checking for python_prefix-given $am_display_PYTHON exec_prefix... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_exec_prefix" >&5 +printf "%s\n" "$am_cv_python_exec_prefix" >&6; } +else $as_nop + + # Set am__usable_exec_prefix whether using GNU or Python values, + # since we use that variable for pyexecdir. + if test "x$exec_prefix" = xNONE; then + am__usable_exec_prefix=$am__usable_prefix + else + am__usable_exec_prefix=$exec_prefix + fi + # + if $am_use_python_sys; then # using python sys.exec_prefix, not GNU + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for python default $am_display_PYTHON exec_prefix" >&5 +printf %s "checking for python default $am_display_PYTHON exec_prefix... " >&6; } +if test ${am_cv_python_exec_prefix+y} +then : + printf %s "(cached) " >&6 +else $as_nop + am_cv_python_exec_prefix=`$PYTHON -c "import sys; sys.stdout.write(sys.exec_prefix)"` +fi +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_exec_prefix" >&5 +printf "%s\n" "$am_cv_python_exec_prefix" >&6; } + case $am_cv_python_exec_prefix in + $am__usable_exec_prefix*) + am__strip_prefix=`echo "$am__usable_exec_prefix" | sed 's|.|.|g'` + am_python_exec_prefix_subst=`echo "$am_cv_python_exec_prefix" | sed "s,^$am__strip_prefix,\\${exec_prefix},"` + ;; + *) + am_python_exec_prefix_subst=$am_cv_python_exec_prefix + ;; + esac + else # using GNU $exec_prefix, not python sys.exec_prefix + am_python_exec_prefix_subst='${exec_prefix}' + am_python_exec_prefix=$am_python_exec_prefix_subst + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for GNU default $am_display_PYTHON exec_prefix" >&5 +printf %s "checking for GNU default $am_display_PYTHON exec_prefix... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_python_exec_prefix" >&5 +printf "%s\n" "$am_python_exec_prefix" >&6; } + fi fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_platform" >&5 -$as_echo "$am_cv_python_platform" >&6; } - PYTHON_PLATFORM=$am_cv_python_platform +fi + + # Substituting python_exec_prefix_subst. + PYTHON_EXEC_PREFIX=$am_python_exec_prefix_subst - # Just factor out some code duplication. + # Factor out some code duplication into this shell variable. am_python_setup_sysconfig="\ import sys # Prefer sysconfig over distutils.sysconfig, for better compatibility @@ -2997,106 +3314,118 @@ except ImportError: pass" - { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $am_display_PYTHON script directory" >&5 -$as_echo_n "checking for $am_display_PYTHON script directory... " >&6; } -if ${am_cv_python_pythondir+:} false; then : - $as_echo_n "(cached) " >&6 -else - if test "x$prefix" = xNONE - then - am_py_prefix=$ac_default_prefix - else - am_py_prefix=$prefix - fi - am_cv_python_pythondir=`$PYTHON -c " + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $am_display_PYTHON script directory (pythondir)" >&5 +printf %s "checking for $am_display_PYTHON script directory (pythondir)... " >&6; } +if test ${am_cv_python_pythondir+y} +then : + printf %s "(cached) " >&6 +else $as_nop + if test "x$am_cv_python_prefix" = x; then + am_py_prefix=$am__usable_prefix + else + am_py_prefix=$am_cv_python_prefix + fi + am_cv_python_pythondir=`$PYTHON -c " $am_python_setup_sysconfig if can_use_sysconfig: - sitedir = sysconfig.get_path('purelib', vars={'base':'$am_py_prefix'}) + if hasattr(sysconfig, 'get_default_scheme'): + scheme = sysconfig.get_default_scheme() + else: + scheme = sysconfig._get_default_scheme() + if scheme == 'posix_local': + # Debian's default scheme installs to /usr/local/ but we want to find headers in /usr/ + scheme = 'posix_prefix' + sitedir = sysconfig.get_path('purelib', scheme, vars={'base':'$am_py_prefix'}) else: - from distutils import sysconfig - sitedir = sysconfig.get_python_lib(0, 0, prefix='$am_py_prefix') + from distutils import sysconfig + sitedir = sysconfig.get_python_lib(0, 0, prefix='$am_py_prefix') sys.stdout.write(sitedir)"` - case $am_cv_python_pythondir in - $am_py_prefix*) - am__strip_prefix=`echo "$am_py_prefix" | sed 's|.|.|g'` - am_cv_python_pythondir=`echo "$am_cv_python_pythondir" | sed "s,^$am__strip_prefix,$PYTHON_PREFIX,"` - ;; - *) - case $am_py_prefix in - /usr|/System*) ;; - *) - am_cv_python_pythondir=$PYTHON_PREFIX/lib/python$PYTHON_VERSION/site-packages - ;; - esac - ;; + # + case $am_cv_python_pythondir in + $am_py_prefix*) + am__strip_prefix=`echo "$am_py_prefix" | sed 's|.|.|g'` + am_cv_python_pythondir=`echo "$am_cv_python_pythondir" | sed "s,^$am__strip_prefix,\\${PYTHON_PREFIX},"` + ;; + *) + case $am_py_prefix in + /usr|/System*) ;; + *) am_cv_python_pythondir="\${PYTHON_PREFIX}/lib/python$PYTHON_VERSION/site-packages" + ;; esac + ;; + esac fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_pythondir" >&5 -$as_echo "$am_cv_python_pythondir" >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_pythondir" >&5 +printf "%s\n" "$am_cv_python_pythondir" >&6; } pythondir=$am_cv_python_pythondir - - pkgpythondir=\${pythondir}/$PACKAGE + pkgpythondir=\${pythondir}/$PACKAGE - { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $am_display_PYTHON extension module directory" >&5 -$as_echo_n "checking for $am_display_PYTHON extension module directory... " >&6; } -if ${am_cv_python_pyexecdir+:} false; then : - $as_echo_n "(cached) " >&6 -else - if test "x$exec_prefix" = xNONE - then - am_py_exec_prefix=$am_py_prefix - else - am_py_exec_prefix=$exec_prefix - fi - am_cv_python_pyexecdir=`$PYTHON -c " + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $am_display_PYTHON extension module directory (pyexecdir)" >&5 +printf %s "checking for $am_display_PYTHON extension module directory (pyexecdir)... " >&6; } +if test ${am_cv_python_pyexecdir+y} +then : + printf %s "(cached) " >&6 +else $as_nop + if test "x$am_cv_python_exec_prefix" = x; then + am_py_exec_prefix=$am__usable_exec_prefix + else + am_py_exec_prefix=$am_cv_python_exec_prefix + fi + am_cv_python_pyexecdir=`$PYTHON -c " $am_python_setup_sysconfig if can_use_sysconfig: - sitedir = sysconfig.get_path('platlib', vars={'platbase':'$am_py_prefix'}) + if hasattr(sysconfig, 'get_default_scheme'): + scheme = sysconfig.get_default_scheme() + else: + scheme = sysconfig._get_default_scheme() + if scheme == 'posix_local': + # Debian's default scheme installs to /usr/local/ but we want to find headers in /usr/ + scheme = 'posix_prefix' + sitedir = sysconfig.get_path('platlib', scheme, vars={'platbase':'$am_py_exec_prefix'}) else: - from distutils import sysconfig - sitedir = sysconfig.get_python_lib(1, 0, prefix='$am_py_prefix') + from distutils import sysconfig + sitedir = sysconfig.get_python_lib(1, 0, prefix='$am_py_exec_prefix') sys.stdout.write(sitedir)"` - case $am_cv_python_pyexecdir in - $am_py_exec_prefix*) - am__strip_prefix=`echo "$am_py_exec_prefix" | sed 's|.|.|g'` - am_cv_python_pyexecdir=`echo "$am_cv_python_pyexecdir" | sed "s,^$am__strip_prefix,$PYTHON_EXEC_PREFIX,"` - ;; - *) - case $am_py_exec_prefix in - /usr|/System*) ;; - *) - am_cv_python_pyexecdir=$PYTHON_EXEC_PREFIX/lib/python$PYTHON_VERSION/site-packages - ;; - esac - ;; + # + case $am_cv_python_pyexecdir in + $am_py_exec_prefix*) + am__strip_prefix=`echo "$am_py_exec_prefix" | sed 's|.|.|g'` + am_cv_python_pyexecdir=`echo "$am_cv_python_pyexecdir" | sed "s,^$am__strip_prefix,\\${PYTHON_EXEC_PREFIX},"` + ;; + *) + case $am_py_exec_prefix in + /usr|/System*) ;; + *) am_cv_python_pyexecdir="\${PYTHON_EXEC_PREFIX}/lib/python$PYTHON_VERSION/site-packages" + ;; esac + ;; + esac fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_pyexecdir" >&5 -$as_echo "$am_cv_python_pyexecdir" >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $am_cv_python_pyexecdir" >&5 +printf "%s\n" "$am_cv_python_pyexecdir" >&6; } pyexecdir=$am_cv_python_pyexecdir - - pkgpyexecdir=\${pyexecdir}/$PACKAGE + pkgpyexecdir=\${pyexecdir}/$PACKAGE fi - # Extract the first word of "xsltproc", so it can be a program name with args. set dummy xsltproc; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_XSLTPROC+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_XSLTPROC+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $XSLTPROC in [\\/]* | ?:[\\/]*) ac_cv_path_XSLTPROC="$XSLTPROC" # Let the user override the test with a path. @@ -3106,11 +3435,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_XSLTPROC="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_XSLTPROC="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3122,21 +3455,22 @@ esac fi XSLTPROC=$ac_cv_path_XSLTPROC if test -n "$XSLTPROC"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $XSLTPROC" >&5 -$as_echo "$XSLTPROC" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $XSLTPROC" >&5 +printf "%s\n" "$XSLTPROC" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi # Extract the first word of "kill", so it can be a program name with args. set dummy kill; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_KILL+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_KILL+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $KILL in [\\/]* | ?:[\\/]*) ac_cv_path_KILL="$KILL" # Let the user override the test with a path. @@ -3146,11 +3480,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_KILL="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_KILL="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3163,22 +3501,23 @@ esac fi KILL=$ac_cv_path_KILL if test -n "$KILL"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $KILL" >&5 -$as_echo "$KILL" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $KILL" >&5 +printf "%s\n" "$KILL" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi # Extract the first word of "modprobe", so it can be a program name with args. set dummy modprobe; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_MODPROBE+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_MODPROBE+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $MODPROBE in [\\/]* | ?:[\\/]*) ac_cv_path_MODPROBE="$MODPROBE" # Let the user override the test with a path. @@ -3188,11 +3527,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_MODPROBE="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_MODPROBE="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3205,21 +3548,22 @@ esac fi MODPROBE=$ac_cv_path_MODPROBE if test -n "$MODPROBE"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MODPROBE" >&5 -$as_echo "$MODPROBE" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $MODPROBE" >&5 +printf "%s\n" "$MODPROBE" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi # Extract the first word of "rmmod", so it can be a program name with args. set dummy rmmod; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_RMMOD+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_RMMOD+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $RMMOD in [\\/]* | ?:[\\/]*) ac_cv_path_RMMOD="$RMMOD" # Let the user override the test with a path. @@ -3229,11 +3573,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_RMMOD="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_RMMOD="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3246,21 +3594,22 @@ esac fi RMMOD=$ac_cv_path_RMMOD if test -n "$RMMOD"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $RMMOD" >&5 -$as_echo "$RMMOD" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $RMMOD" >&5 +printf "%s\n" "$RMMOD" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi # Extract the first word of "sysctl", so it can be a program name with args. set dummy sysctl; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_SYSCTL+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_SYSCTL+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $SYSCTL in [\\/]* | ?:[\\/]*) ac_cv_path_SYSCTL="$SYSCTL" # Let the user override the test with a path. @@ -3270,11 +3619,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_SYSCTL="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_SYSCTL="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3287,11 +3640,11 @@ esac fi SYSCTL=$ac_cv_path_SYSCTL if test -n "$SYSCTL"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $SYSCTL" >&5 -$as_echo "$SYSCTL" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $SYSCTL" >&5 +printf "%s\n" "$SYSCTL" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -3302,11 +3655,12 @@ for ac_prog in podman docker do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_PODMAN+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_PODMAN+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $PODMAN in [\\/]* | ?:[\\/]*) ac_cv_path_PODMAN="$PODMAN" # Let the user override the test with a path. @@ -3316,11 +3670,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_PODMAN="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_PODMAN="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3332,11 +3690,11 @@ esac fi PODMAN=$ac_cv_path_PODMAN if test -n "$PODMAN"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $PODMAN" >&5 -$as_echo "$PODMAN" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $PODMAN" >&5 +printf "%s\n" "$PODMAN" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -3350,7 +3708,8 @@ test -n "$PODMAN" || PODMAN="/bin/false" # Check whether --enable-schemas-compile was given. -if test "${enable_schemas_compile+set}" = set; then : +if test ${enable_schemas_compile+y} +then : enableval=$enable_schemas_compile; case ${enableval} in yes) GSETTINGS_DISABLE_SCHEMAS_COMPILE="" ;; no) GSETTINGS_DISABLE_SCHEMAS_COMPILE="1" ;; @@ -3370,11 +3729,12 @@ if test "x$ac_cv_env_PKG_CONFIG_set" != "xset"; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}pkg-config", so it can be a program name with args. set dummy ${ac_tool_prefix}pkg-config; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_PKG_CONFIG+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_PKG_CONFIG+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $PKG_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_PKG_CONFIG="$PKG_CONFIG" # Let the user override the test with a path. @@ -3384,11 +3744,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_PKG_CONFIG="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_PKG_CONFIG="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3400,11 +3764,11 @@ esac fi PKG_CONFIG=$ac_cv_path_PKG_CONFIG if test -n "$PKG_CONFIG"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $PKG_CONFIG" >&5 -$as_echo "$PKG_CONFIG" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $PKG_CONFIG" >&5 +printf "%s\n" "$PKG_CONFIG" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -3413,11 +3777,12 @@ if test -z "$ac_cv_path_PKG_CONFIG"; then ac_pt_PKG_CONFIG=$PKG_CONFIG # Extract the first word of "pkg-config", so it can be a program name with args. set dummy pkg-config; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_ac_pt_PKG_CONFIG+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_ac_pt_PKG_CONFIG+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $ac_pt_PKG_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_ac_pt_PKG_CONFIG="$ac_pt_PKG_CONFIG" # Let the user override the test with a path. @@ -3427,11 +3792,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_ac_pt_PKG_CONFIG="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_ac_pt_PKG_CONFIG="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3443,11 +3812,11 @@ esac fi ac_pt_PKG_CONFIG=$ac_cv_path_ac_pt_PKG_CONFIG if test -n "$ac_pt_PKG_CONFIG"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_pt_PKG_CONFIG" >&5 -$as_echo "$ac_pt_PKG_CONFIG" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $ac_pt_PKG_CONFIG" >&5 +printf "%s\n" "$ac_pt_PKG_CONFIG" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi if test "x$ac_pt_PKG_CONFIG" = x; then @@ -3455,8 +3824,8 @@ fi else case $cross_compiling:$ac_tool_warned in yes:) -{ $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 -$as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 +printf "%s\n" "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac PKG_CONFIG=$ac_pt_PKG_CONFIG @@ -3468,29 +3837,30 @@ fi fi if test -n "$PKG_CONFIG"; then _pkg_min_version=0.16 - { $as_echo "$as_me:${as_lineno-$LINENO}: checking pkg-config is at least version $_pkg_min_version" >&5 -$as_echo_n "checking pkg-config is at least version $_pkg_min_version... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking pkg-config is at least version $_pkg_min_version" >&5 +printf %s "checking pkg-config is at least version $_pkg_min_version... " >&6; } if $PKG_CONFIG --atleast-pkgconfig-version $_pkg_min_version; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 -$as_echo "yes" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: yes" >&5 +printf "%s\n" "yes" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } PKG_CONFIG="" fi fi gsettingsschemadir=${datadir}/glib-2.0/schemas - if test x$cross_compiling != xyes; then : + if test x$cross_compiling != xyes +then : if test -n "$GLIB_COMPILE_SCHEMAS"; then pkg_cv_GLIB_COMPILE_SCHEMAS="$GLIB_COMPILE_SCHEMAS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ - { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"gio-2.0\""; } >&5 + { { printf "%s\n" "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"gio-2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "gio-2.0") 2>&5 ac_status=$? - $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 + printf "%s\n" "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_GLIB_COMPILE_SCHEMAS=`$PKG_CONFIG --variable="glib_compile_schemas" "gio-2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes @@ -3502,17 +3872,19 @@ fi fi GLIB_COMPILE_SCHEMAS=$pkg_cv_GLIB_COMPILE_SCHEMAS -if test "x$GLIB_COMPILE_SCHEMAS" = x""; then : +if test "x$GLIB_COMPILE_SCHEMAS" = x"" +then : fi -else +else $as_nop # Extract the first word of "glib-compile-schemas", so it can be a program name with args. set dummy glib-compile-schemas; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_GLIB_COMPILE_SCHEMAS+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_GLIB_COMPILE_SCHEMAS+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $GLIB_COMPILE_SCHEMAS in [\\/]* | ?:[\\/]*) ac_cv_path_GLIB_COMPILE_SCHEMAS="$GLIB_COMPILE_SCHEMAS" # Let the user override the test with a path. @@ -3522,11 +3894,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_GLIB_COMPILE_SCHEMAS="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_GLIB_COMPILE_SCHEMAS="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3538,11 +3914,11 @@ esac fi GLIB_COMPILE_SCHEMAS=$ac_cv_path_GLIB_COMPILE_SCHEMAS if test -n "$GLIB_COMPILE_SCHEMAS"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $GLIB_COMPILE_SCHEMAS" >&5 -$as_echo "$GLIB_COMPILE_SCHEMAS" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $GLIB_COMPILE_SCHEMAS" >&5 +printf "%s\n" "$GLIB_COMPILE_SCHEMAS" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -3605,7 +3981,8 @@ endif ############################################################# # Check whether --enable-docs was given. -if test "${enable_docs+set}" = set; then : +if test ${enable_docs+y} +then : enableval=$enable_docs; fi @@ -3621,34 +3998,36 @@ fi # check for the presence of the XML catalog # Check whether --with-xml-catalog was given. -if test "${with_xml_catalog+set}" = set; then : +if test ${with_xml_catalog+y} +then : withval=$with_xml_catalog; -else +else $as_nop with_xml_catalog=/etc/xml/catalog fi jh_found_xmlcatalog=true XML_CATALOG_FILE="$with_xml_catalog" - { $as_echo "$as_me:${as_lineno-$LINENO}: checking for XML catalog ($XML_CATALOG_FILE)" >&5 -$as_echo_n "checking for XML catalog ($XML_CATALOG_FILE)... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for XML catalog ($XML_CATALOG_FILE)" >&5 +printf %s "checking for XML catalog ($XML_CATALOG_FILE)... " >&6; } if test -f "$XML_CATALOG_FILE"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: found" >&5 -$as_echo "found" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: found" >&5 +printf "%s\n" "found" >&6; } else jh_found_xmlcatalog=false - { $as_echo "$as_me:${as_lineno-$LINENO}: result: not found" >&5 -$as_echo "not found" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: not found" >&5 +printf "%s\n" "not found" >&6; } fi # check for the xmlcatalog program # Extract the first word of "xmlcatalog", so it can be a program name with args. set dummy xmlcatalog; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_XMLCATALOG+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_XMLCATALOG+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $XMLCATALOG in [\\/]* | ?:[\\/]*) ac_cv_path_XMLCATALOG="$XMLCATALOG" # Let the user override the test with a path. @@ -3658,11 +4037,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_XMLCATALOG="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_XMLCATALOG="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3675,11 +4058,11 @@ esac fi XMLCATALOG=$ac_cv_path_XMLCATALOG if test -n "$XMLCATALOG"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $XMLCATALOG" >&5 -$as_echo "$XMLCATALOG" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $XMLCATALOG" >&5 +printf "%s\n" "$XMLCATALOG" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -3697,20 +4080,20 @@ if test -z "$ENABLE_DOCS_TRUE"; then : - { $as_echo "$as_me:${as_lineno-$LINENO}: checking for DocBook XSL Stylesheets in XML catalog" >&5 -$as_echo_n "checking for DocBook XSL Stylesheets in XML catalog... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for DocBook XSL Stylesheets in XML catalog" >&5 +printf %s "checking for DocBook XSL Stylesheets in XML catalog... " >&6; } if $jh_found_xmlcatalog && \ - { { $as_echo "$as_me:${as_lineno-$LINENO}: \$XMLCATALOG --noout \"\$XML_CATALOG_FILE\" \"http://docbook.sourceforge.net/release/xsl/current/manpages/docbook.xsl\" >&2"; } >&5 + { { printf "%s\n" "$as_me:${as_lineno-$LINENO}: \$XMLCATALOG --noout \"\$XML_CATALOG_FILE\" \"http://docbook.sourceforge.net/release/xsl/current/manpages/docbook.xsl\" >&2"; } >&5 ($XMLCATALOG --noout "$XML_CATALOG_FILE" "http://docbook.sourceforge.net/release/xsl/current/manpages/docbook.xsl" >&2) 2>&5 ac_status=$? - $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 + printf "%s\n" "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: found" >&5 -$as_echo "found" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: found" >&5 +printf "%s\n" "found" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: not found" >&5 -$as_echo "not found" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: not found" >&5 +printf "%s\n" "not found" >&6; } as_fn_error $? "could not find DocBook XSL Stylesheets in XML catalog" "$LINENO" 5 fi @@ -3720,9 +4103,10 @@ fi ############################################################# # Check whether --enable-systemd was given. -if test "${enable_systemd+set}" = set; then : +if test ${enable_systemd+y} +then : enableval=$enable_systemd; use_systemd=$enableval -else +else $as_nop use_systemd=yes fi @@ -3737,9 +4121,10 @@ fi # Check whether --enable-sysconfig was given. -if test "${enable_sysconfig+set}" = set; then : +if test ${enable_sysconfig+y} +then : enableval=$enable_sysconfig; INSTALL_SYSCONFIG="${enableval}" -else +else $as_nop INSTALL_SYSCONFIG='no' fi @@ -3754,9 +4139,10 @@ fi # Check whether --enable-rpmmacros was given. -if test "${enable_rpmmacros+set}" = set; then : +if test ${enable_rpmmacros+y} +then : enableval=$enable_rpmmacros; INSTALL_RPMMACROS="${enableval}" -else +else $as_nop INSTALL_RPMMACROS='no' fi @@ -3772,9 +4158,10 @@ fi # Check whether --with-systemd-unitdir was given. -if test "${with_systemd_unitdir+set}" = set; then : +if test ${with_systemd_unitdir+y} +then : withval=$with_systemd_unitdir; SYSTEMD_UNITDIR=$withval -else +else $as_nop SYSTEMD_UNITDIR="\${prefix}/lib/systemd/system" fi @@ -3782,9 +4169,10 @@ fi # Check whether --with-bashcompletiondir was given. -if test "${with_bashcompletiondir+set}" = set; then : +if test ${with_bashcompletiondir+y} +then : withval=$with_bashcompletiondir; BASHCOMPLETIONDIR=$withval -else +else $as_nop BASHCOMPLETIONDIR="${datadir}/bash-completion/completions" fi @@ -3792,9 +4180,10 @@ fi # Check whether --with-zshcompletiondir was given. -if test "${with_zshcompletiondir+set}" = set; then : +if test ${with_zshcompletiondir+y} +then : withval=$with_zshcompletiondir; ZSHCOMPLETIONDIR=$withval -else +else $as_nop ZSHCOMPLETIONDIR="${datadir}/zsh/site-functions" fi @@ -3802,9 +4191,10 @@ fi # Check whether --with-ifcfgdir was given. -if test "${with_ifcfgdir+set}" = set; then : +if test ${with_ifcfgdir+y} +then : withval=$with_ifcfgdir; IFCFGDIR=$withval -else +else $as_nop IFCFGDIR="/etc/sysconfig/network-scripts" fi @@ -3815,18 +4205,20 @@ FW_TOOLS_PATH="$PATH:/usr/local/sbin:/sbin:/usr/sbin" # Check whether --with-iptables was given. -if test "${with_iptables+set}" = set; then : +if test ${with_iptables+y} +then : withval=$with_iptables; IPTABLES=$withval - { $as_echo "$as_me:${as_lineno-$LINENO}: Using for iptables: $IPTABLES" >&5 -$as_echo "$as_me: Using for iptables: $IPTABLES" >&6;} -else + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: Using for iptables: $IPTABLES" >&5 +printf "%s\n" "$as_me: Using for iptables: $IPTABLES" >&6;} +else $as_nop # Extract the first word of "iptables", so it can be a program name with args. set dummy iptables; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_IPTABLES+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_IPTABLES+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $IPTABLES in [\\/]* | ?:[\\/]*) ac_cv_path_IPTABLES="$IPTABLES" # Let the user override the test with a path. @@ -3836,11 +4228,15 @@ else for as_dir in $FW_TOOLS_PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_IPTABLES="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_IPTABLES="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3853,11 +4249,11 @@ esac fi IPTABLES=$ac_cv_path_IPTABLES if test -n "$IPTABLES"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $IPTABLES" >&5 -$as_echo "$IPTABLES" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $IPTABLES" >&5 +printf "%s\n" "$IPTABLES" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -3867,18 +4263,20 @@ fi # Check whether --with-iptables-restore was given. -if test "${with_iptables_restore+set}" = set; then : +if test ${with_iptables_restore+y} +then : withval=$with_iptables_restore; IPTABLES_RESTORE=$withval - { $as_echo "$as_me:${as_lineno-$LINENO}: Using for iptables-restore: $IPTABLES_RESTORE" >&5 -$as_echo "$as_me: Using for iptables-restore: $IPTABLES_RESTORE" >&6;} -else + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: Using for iptables-restore: $IPTABLES_RESTORE" >&5 +printf "%s\n" "$as_me: Using for iptables-restore: $IPTABLES_RESTORE" >&6;} +else $as_nop # Extract the first word of "iptables-restore", so it can be a program name with args. set dummy iptables-restore; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_IPTABLES_RESTORE+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_IPTABLES_RESTORE+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $IPTABLES_RESTORE in [\\/]* | ?:[\\/]*) ac_cv_path_IPTABLES_RESTORE="$IPTABLES_RESTORE" # Let the user override the test with a path. @@ -3888,11 +4286,15 @@ else for as_dir in $FW_TOOLS_PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_IPTABLES_RESTORE="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_IPTABLES_RESTORE="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3905,11 +4307,11 @@ esac fi IPTABLES_RESTORE=$ac_cv_path_IPTABLES_RESTORE if test -n "$IPTABLES_RESTORE"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $IPTABLES_RESTORE" >&5 -$as_echo "$IPTABLES_RESTORE" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $IPTABLES_RESTORE" >&5 +printf "%s\n" "$IPTABLES_RESTORE" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -3919,18 +4321,20 @@ fi # Check whether --with-ip6tables was given. -if test "${with_ip6tables+set}" = set; then : +if test ${with_ip6tables+y} +then : withval=$with_ip6tables; IP6TABLES=$withval - { $as_echo "$as_me:${as_lineno-$LINENO}: Using for ip6tables: $IP6TABLES" >&5 -$as_echo "$as_me: Using for ip6tables: $IP6TABLES" >&6;} -else + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: Using for ip6tables: $IP6TABLES" >&5 +printf "%s\n" "$as_me: Using for ip6tables: $IP6TABLES" >&6;} +else $as_nop # Extract the first word of "ip6tables", so it can be a program name with args. set dummy ip6tables; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_IP6TABLES+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_IP6TABLES+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $IP6TABLES in [\\/]* | ?:[\\/]*) ac_cv_path_IP6TABLES="$IP6TABLES" # Let the user override the test with a path. @@ -3940,11 +4344,15 @@ else for as_dir in $FW_TOOLS_PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_IP6TABLES="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_IP6TABLES="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -3957,11 +4365,11 @@ esac fi IP6TABLES=$ac_cv_path_IP6TABLES if test -n "$IP6TABLES"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $IP6TABLES" >&5 -$as_echo "$IP6TABLES" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $IP6TABLES" >&5 +printf "%s\n" "$IP6TABLES" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -3971,18 +4379,20 @@ fi # Check whether --with-ip6tables-restore was given. -if test "${with_ip6tables_restore+set}" = set; then : +if test ${with_ip6tables_restore+y} +then : withval=$with_ip6tables_restore; IP6TABLES_RESTORE=$withval - { $as_echo "$as_me:${as_lineno-$LINENO}: Using for ip6tables-restore: $IP6TABLES_RESTORE" >&5 -$as_echo "$as_me: Using for ip6tables-restore: $IP6TABLES_RESTORE" >&6;} -else + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: Using for ip6tables-restore: $IP6TABLES_RESTORE" >&5 +printf "%s\n" "$as_me: Using for ip6tables-restore: $IP6TABLES_RESTORE" >&6;} +else $as_nop # Extract the first word of "ip6tables-restore", so it can be a program name with args. set dummy ip6tables-restore; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_IP6TABLES_RESTORE+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_IP6TABLES_RESTORE+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $IP6TABLES_RESTORE in [\\/]* | ?:[\\/]*) ac_cv_path_IP6TABLES_RESTORE="$IP6TABLES_RESTORE" # Let the user override the test with a path. @@ -3992,11 +4402,15 @@ else for as_dir in $FW_TOOLS_PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_IP6TABLES_RESTORE="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_IP6TABLES_RESTORE="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4009,11 +4423,11 @@ esac fi IP6TABLES_RESTORE=$ac_cv_path_IP6TABLES_RESTORE if test -n "$IP6TABLES_RESTORE"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $IP6TABLES_RESTORE" >&5 -$as_echo "$IP6TABLES_RESTORE" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $IP6TABLES_RESTORE" >&5 +printf "%s\n" "$IP6TABLES_RESTORE" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -4023,18 +4437,20 @@ fi # Check whether --with-ebtables was given. -if test "${with_ebtables+set}" = set; then : +if test ${with_ebtables+y} +then : withval=$with_ebtables; EBTABLES=$withval - { $as_echo "$as_me:${as_lineno-$LINENO}: Using for ebtables: $EBTABLES" >&5 -$as_echo "$as_me: Using for ebtables: $EBTABLES" >&6;} -else + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: Using for ebtables: $EBTABLES" >&5 +printf "%s\n" "$as_me: Using for ebtables: $EBTABLES" >&6;} +else $as_nop # Extract the first word of "ebtables", so it can be a program name with args. set dummy ebtables; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_EBTABLES+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_EBTABLES+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $EBTABLES in [\\/]* | ?:[\\/]*) ac_cv_path_EBTABLES="$EBTABLES" # Let the user override the test with a path. @@ -4044,11 +4460,15 @@ else for as_dir in $FW_TOOLS_PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_EBTABLES="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_EBTABLES="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4061,11 +4481,11 @@ esac fi EBTABLES=$ac_cv_path_EBTABLES if test -n "$EBTABLES"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $EBTABLES" >&5 -$as_echo "$EBTABLES" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $EBTABLES" >&5 +printf "%s\n" "$EBTABLES" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -4075,18 +4495,20 @@ fi # Check whether --with-ebtables-restore was given. -if test "${with_ebtables_restore+set}" = set; then : +if test ${with_ebtables_restore+y} +then : withval=$with_ebtables_restore; EBTABLES_RESTORE=$withval - { $as_echo "$as_me:${as_lineno-$LINENO}: Using for ebtables-restore: $EBTABLES_RESTORE" >&5 -$as_echo "$as_me: Using for ebtables-restore: $EBTABLES_RESTORE" >&6;} -else + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: Using for ebtables-restore: $EBTABLES_RESTORE" >&5 +printf "%s\n" "$as_me: Using for ebtables-restore: $EBTABLES_RESTORE" >&6;} +else $as_nop # Extract the first word of "ebtables-restore", so it can be a program name with args. set dummy ebtables-restore; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_EBTABLES_RESTORE+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_EBTABLES_RESTORE+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $EBTABLES_RESTORE in [\\/]* | ?:[\\/]*) ac_cv_path_EBTABLES_RESTORE="$EBTABLES_RESTORE" # Let the user override the test with a path. @@ -4096,11 +4518,15 @@ else for as_dir in $FW_TOOLS_PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_EBTABLES_RESTORE="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_EBTABLES_RESTORE="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4113,11 +4539,11 @@ esac fi EBTABLES_RESTORE=$ac_cv_path_EBTABLES_RESTORE if test -n "$EBTABLES_RESTORE"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $EBTABLES_RESTORE" >&5 -$as_echo "$EBTABLES_RESTORE" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $EBTABLES_RESTORE" >&5 +printf "%s\n" "$EBTABLES_RESTORE" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -4127,18 +4553,20 @@ fi # Check whether --with-ipset was given. -if test "${with_ipset+set}" = set; then : +if test ${with_ipset+y} +then : withval=$with_ipset; IPSET=$withval - { $as_echo "$as_me:${as_lineno-$LINENO}: Using for ipset: $IPSET" >&5 -$as_echo "$as_me: Using for ipset: $IPSET" >&6;} -else + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: Using for ipset: $IPSET" >&5 +printf "%s\n" "$as_me: Using for ipset: $IPSET" >&6;} +else $as_nop # Extract the first word of "ipset", so it can be a program name with args. set dummy ipset; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_IPSET+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_IPSET+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $IPSET in [\\/]* | ?:[\\/]*) ac_cv_path_IPSET="$IPSET" # Let the user override the test with a path. @@ -4148,11 +4576,15 @@ else for as_dir in $FW_TOOLS_PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_IPSET="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_IPSET="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4165,11 +4597,11 @@ esac fi IPSET=$ac_cv_path_IPSET if test -n "$IPSET"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $IPSET" >&5 -$as_echo "$IPSET" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $IPSET" >&5 +printf "%s\n" "$IPSET" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -4184,23 +4616,22 @@ DEFAULT_LOG_TARGET=${DEFAULT_LOG_TARGET:-mixed} GETTEXT_PACKAGE='firewalld' -cat >>confdefs.h <<_ACEOF -#define GETTEXT_PACKAGE "$GETTEXT_PACKAGE" -_ACEOF +printf "%s\n" "#define GETTEXT_PACKAGE \"$GETTEXT_PACKAGE\"" >>confdefs.h - { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether NLS is requested" >&5 -$as_echo_n "checking whether NLS is requested... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking whether NLS is requested" >&5 +printf %s "checking whether NLS is requested... " >&6; } # Check whether --enable-nls was given. -if test "${enable_nls+set}" = set; then : +if test ${enable_nls+y} +then : enableval=$enable_nls; USE_NLS=$enableval -else +else $as_nop USE_NLS=yes fi - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $USE_NLS" >&5 -$as_echo "$USE_NLS" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $USE_NLS" >&5 +printf "%s\n" "$USE_NLS" >&6; } @@ -4217,21 +4648,22 @@ INTLTOOL_REQUIRED_VERSION_AS_INT=`echo 0.35.0 | awk -F. '{ print $ 1 * 1000 + $ INTLTOOL_APPLIED_VERSION=`intltool-update --version | head -1 | cut -d" " -f3` INTLTOOL_APPLIED_VERSION_AS_INT=`echo $INTLTOOL_APPLIED_VERSION | awk -F. '{ print $ 1 * 1000 + $ 2 * 100 + $ 3; }'` if test -n "0.35.0"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: checking for intltool >= 0.35.0" >&5 -$as_echo_n "checking for intltool >= 0.35.0... " >&6; } - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $INTLTOOL_APPLIED_VERSION found" >&5 -$as_echo "$INTLTOOL_APPLIED_VERSION found" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for intltool >= 0.35.0" >&5 +printf %s "checking for intltool >= 0.35.0... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $INTLTOOL_APPLIED_VERSION found" >&5 +printf "%s\n" "$INTLTOOL_APPLIED_VERSION found" >&6; } test "$INTLTOOL_APPLIED_VERSION_AS_INT" -ge "$INTLTOOL_REQUIRED_VERSION_AS_INT" || as_fn_error $? "Your intltool is too old. You need intltool 0.35.0 or later." "$LINENO" 5 fi # Extract the first word of "intltool-update", so it can be a program name with args. set dummy intltool-update; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_INTLTOOL_UPDATE+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_INTLTOOL_UPDATE+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $INTLTOOL_UPDATE in [\\/]* | ?:[\\/]*) ac_cv_path_INTLTOOL_UPDATE="$INTLTOOL_UPDATE" # Let the user override the test with a path. @@ -4241,11 +4673,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_INTLTOOL_UPDATE="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_INTLTOOL_UPDATE="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4257,21 +4693,22 @@ esac fi INTLTOOL_UPDATE=$ac_cv_path_INTLTOOL_UPDATE if test -n "$INTLTOOL_UPDATE"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $INTLTOOL_UPDATE" >&5 -$as_echo "$INTLTOOL_UPDATE" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $INTLTOOL_UPDATE" >&5 +printf "%s\n" "$INTLTOOL_UPDATE" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi # Extract the first word of "intltool-merge", so it can be a program name with args. set dummy intltool-merge; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_INTLTOOL_MERGE+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_INTLTOOL_MERGE+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $INTLTOOL_MERGE in [\\/]* | ?:[\\/]*) ac_cv_path_INTLTOOL_MERGE="$INTLTOOL_MERGE" # Let the user override the test with a path. @@ -4281,11 +4718,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_INTLTOOL_MERGE="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_INTLTOOL_MERGE="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4297,21 +4738,22 @@ esac fi INTLTOOL_MERGE=$ac_cv_path_INTLTOOL_MERGE if test -n "$INTLTOOL_MERGE"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $INTLTOOL_MERGE" >&5 -$as_echo "$INTLTOOL_MERGE" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $INTLTOOL_MERGE" >&5 +printf "%s\n" "$INTLTOOL_MERGE" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi # Extract the first word of "intltool-extract", so it can be a program name with args. set dummy intltool-extract; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_INTLTOOL_EXTRACT+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_INTLTOOL_EXTRACT+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $INTLTOOL_EXTRACT in [\\/]* | ?:[\\/]*) ac_cv_path_INTLTOOL_EXTRACT="$INTLTOOL_EXTRACT" # Let the user override the test with a path. @@ -4321,11 +4763,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_INTLTOOL_EXTRACT="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_INTLTOOL_EXTRACT="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4337,11 +4783,11 @@ esac fi INTLTOOL_EXTRACT=$ac_cv_path_INTLTOOL_EXTRACT if test -n "$INTLTOOL_EXTRACT"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $INTLTOOL_EXTRACT" >&5 -$as_echo "$INTLTOOL_EXTRACT" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $INTLTOOL_EXTRACT" >&5 +printf "%s\n" "$INTLTOOL_EXTRACT" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -4491,11 +4937,12 @@ fi # Check the gettext tools to make sure they are GNU # Extract the first word of "xgettext", so it can be a program name with args. set dummy xgettext; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_XGETTEXT+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_XGETTEXT+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $XGETTEXT in [\\/]* | ?:[\\/]*) ac_cv_path_XGETTEXT="$XGETTEXT" # Let the user override the test with a path. @@ -4505,11 +4952,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_XGETTEXT="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_XGETTEXT="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4521,21 +4972,22 @@ esac fi XGETTEXT=$ac_cv_path_XGETTEXT if test -n "$XGETTEXT"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $XGETTEXT" >&5 -$as_echo "$XGETTEXT" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $XGETTEXT" >&5 +printf "%s\n" "$XGETTEXT" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi # Extract the first word of "msgmerge", so it can be a program name with args. set dummy msgmerge; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_MSGMERGE+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_MSGMERGE+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $MSGMERGE in [\\/]* | ?:[\\/]*) ac_cv_path_MSGMERGE="$MSGMERGE" # Let the user override the test with a path. @@ -4545,11 +4997,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_MSGMERGE="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_MSGMERGE="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4561,21 +5017,22 @@ esac fi MSGMERGE=$ac_cv_path_MSGMERGE if test -n "$MSGMERGE"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MSGMERGE" >&5 -$as_echo "$MSGMERGE" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $MSGMERGE" >&5 +printf "%s\n" "$MSGMERGE" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi # Extract the first word of "msgfmt", so it can be a program name with args. set dummy msgfmt; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_MSGFMT+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_MSGFMT+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $MSGFMT in [\\/]* | ?:[\\/]*) ac_cv_path_MSGFMT="$MSGFMT" # Let the user override the test with a path. @@ -4585,11 +5042,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_MSGFMT="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_MSGFMT="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4601,21 +5062,22 @@ esac fi MSGFMT=$ac_cv_path_MSGFMT if test -n "$MSGFMT"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MSGFMT" >&5 -$as_echo "$MSGFMT" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $MSGFMT" >&5 +printf "%s\n" "$MSGFMT" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi # Extract the first word of "gmsgfmt", so it can be a program name with args. set dummy gmsgfmt; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_GMSGFMT+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_GMSGFMT+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $GMSGFMT in [\\/]* | ?:[\\/]*) ac_cv_path_GMSGFMT="$GMSGFMT" # Let the user override the test with a path. @@ -4625,11 +5087,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_GMSGFMT="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_GMSGFMT="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4642,11 +5108,11 @@ esac fi GMSGFMT=$ac_cv_path_GMSGFMT if test -n "$GMSGFMT"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $GMSGFMT" >&5 -$as_echo "$GMSGFMT" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $GMSGFMT" >&5 +printf "%s\n" "$GMSGFMT" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi @@ -4662,11 +5128,12 @@ fi # Extract the first word of "perl", so it can be a program name with args. set dummy perl; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_INTLTOOL_PERL+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_INTLTOOL_PERL+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $INTLTOOL_PERL in [\\/]* | ?:[\\/]*) ac_cv_path_INTLTOOL_PERL="$INTLTOOL_PERL" # Let the user override the test with a path. @@ -4676,11 +5143,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_INTLTOOL_PERL="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_INTLTOOL_PERL="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4692,33 +5163,33 @@ esac fi INTLTOOL_PERL=$ac_cv_path_INTLTOOL_PERL if test -n "$INTLTOOL_PERL"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $INTLTOOL_PERL" >&5 -$as_echo "$INTLTOOL_PERL" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $INTLTOOL_PERL" >&5 +printf "%s\n" "$INTLTOOL_PERL" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi if test -z "$INTLTOOL_PERL"; then as_fn_error $? "perl not found" "$LINENO" 5 fi -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for perl >= 5.8.1" >&5 -$as_echo_n "checking for perl >= 5.8.1... " >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for perl >= 5.8.1" >&5 +printf %s "checking for perl >= 5.8.1... " >&6; } $INTLTOOL_PERL -e "use 5.8.1;" > /dev/null 2>&1 if test $? -ne 0; then as_fn_error $? "perl 5.8.1 is required for intltool" "$LINENO" 5 else IT_PERL_VERSION=`$INTLTOOL_PERL -e "printf '%vd', $^V"` - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $IT_PERL_VERSION" >&5 -$as_echo "$IT_PERL_VERSION" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $IT_PERL_VERSION" >&5 +printf "%s\n" "$IT_PERL_VERSION" >&6; } fi if test "xno-xml" != "xno-xml"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: checking for XML::Parser" >&5 -$as_echo_n "checking for XML::Parser... " >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for XML::Parser" >&5 +printf %s "checking for XML::Parser... " >&6; } if `$INTLTOOL_PERL -e "require XML::Parser" 2>/dev/null`; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: ok" >&5 -$as_echo "ok" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: ok" >&5 +printf "%s\n" "ok" >&6; } else as_fn_error $? "XML::Parser perl module is required for intltool" "$LINENO" 5 fi @@ -4732,7 +5203,7 @@ fi - GETTEXT_MACRO_VERSION=0.19 + GETTEXT_MACRO_VERSION=0.20 @@ -4766,11 +5237,12 @@ rm -f conf$$.file # Extract the first word of "msgfmt", so it can be a program name with args. set dummy msgfmt; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_MSGFMT+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_MSGFMT+y} +then : + printf %s "(cached) " >&6 +else $as_nop case "$MSGFMT" in [\\/]* | ?:[\\/]*) ac_cv_path_MSGFMT="$MSGFMT" # Let the user override the test with a path. @@ -4798,20 +5270,21 @@ esac fi MSGFMT="$ac_cv_path_MSGFMT" if test "$MSGFMT" != ":"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MSGFMT" >&5 -$as_echo "$MSGFMT" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $MSGFMT" >&5 +printf "%s\n" "$MSGFMT" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi # Extract the first word of "gmsgfmt", so it can be a program name with args. set dummy gmsgfmt; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_GMSGFMT+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_GMSGFMT+y} +then : + printf %s "(cached) " >&6 +else $as_nop case $GMSGFMT in [\\/]* | ?:[\\/]*) ac_cv_path_GMSGFMT="$GMSGFMT" # Let the user override the test with a path. @@ -4821,11 +5294,15 @@ else for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac for ac_exec_ext in '' $ac_executable_extensions; do - if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then - ac_cv_path_GMSGFMT="$as_dir/$ac_word$ac_exec_ext" - $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 + if as_fn_executable_p "$as_dir$ac_word$ac_exec_ext"; then + ac_cv_path_GMSGFMT="$as_dir$ac_word$ac_exec_ext" + printf "%s\n" "$as_me:${as_lineno-$LINENO}: found $as_dir$ac_word$ac_exec_ext" >&5 break 2 fi done @@ -4838,21 +5315,16 @@ esac fi GMSGFMT=$ac_cv_path_GMSGFMT if test -n "$GMSGFMT"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $GMSGFMT" >&5 -$as_echo "$GMSGFMT" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $GMSGFMT" >&5 +printf "%s\n" "$GMSGFMT" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi - case `$MSGFMT --version | sed 1q | sed -e 's,^[^0-9]*,,'` in - '' | 0.[0-9] | 0.[0-9].* | 0.1[0-4] | 0.1[0-4].*) MSGFMT_015=: ;; - *) MSGFMT_015=$MSGFMT ;; - esac - - case `$GMSGFMT --version | sed 1q | sed -e 's,^[^0-9]*,,'` in + case `$GMSGFMT --version | sed 1q | sed -e 's,^[^0-9]*,,'` in '' | 0.[0-9] | 0.[0-9].* | 0.1[0-4] | 0.1[0-4].*) GMSGFMT_015=: ;; *) GMSGFMT_015=$GMSGFMT ;; esac @@ -4888,11 +5360,12 @@ rm -f conf$$.file # Extract the first word of "xgettext", so it can be a program name with args. set dummy xgettext; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_XGETTEXT+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_XGETTEXT+y} +then : + printf %s "(cached) " >&6 +else $as_nop case "$XGETTEXT" in [\\/]* | ?:[\\/]*) ac_cv_path_XGETTEXT="$XGETTEXT" # Let the user override the test with a path. @@ -4920,11 +5393,11 @@ esac fi XGETTEXT="$ac_cv_path_XGETTEXT" if test "$XGETTEXT" != ":"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $XGETTEXT" >&5 -$as_echo "$XGETTEXT" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $XGETTEXT" >&5 +printf "%s\n" "$XGETTEXT" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi rm -f messages.po @@ -4965,11 +5438,12 @@ rm -f conf$$.file # Extract the first word of "msgmerge", so it can be a program name with args. set dummy msgmerge; ac_word=$2 -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 -$as_echo_n "checking for $ac_word... " >&6; } -if ${ac_cv_path_MSGMERGE+:} false; then : - $as_echo_n "(cached) " >&6 -else +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 +printf %s "checking for $ac_word... " >&6; } +if test ${ac_cv_path_MSGMERGE+y} +then : + printf %s "(cached) " >&6 +else $as_nop case "$MSGMERGE" in [\\/]* | ?:[\\/]*) ac_cv_path_MSGMERGE="$MSGMERGE" # Let the user override the test with a path. @@ -4996,15 +5470,23 @@ esac fi MSGMERGE="$ac_cv_path_MSGMERGE" if test "$MSGMERGE" != ":"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MSGMERGE" >&5 -$as_echo "$MSGMERGE" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: $MSGMERGE" >&5 +printf "%s\n" "$MSGMERGE" >&6; } else - { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 -$as_echo "no" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: no" >&5 +printf "%s\n" "no" >&6; } fi - test -n "$localedir" || localedir='${datadir}/locale' + if LC_ALL=C $MSGMERGE --help | grep ' --for-msgfmt ' >/dev/null; then + MSGMERGE_FOR_MSGFMT_OPTION='--for-msgfmt' + else + if LC_ALL=C $MSGMERGE --help | grep ' --no-fuzzy-matching ' >/dev/null; then + MSGMERGE_FOR_MSGFMT_OPTION='--no-fuzzy-matching --no-location --quiet' + else + MSGMERGE_FOR_MSGFMT_OPTION='--no-location --quiet' + fi + fi test -n "${XGETTEXT_EXTRA_OPTIONS+set}" || XGETTEXT_EXTRA_OPTIONS= @@ -5017,7 +5499,7 @@ fi ac_config_commands="$ac_config_commands xsl-cleanup" -ac_config_files="$ac_config_files Makefile doxygen.conf config/lockdown-whitelist.xml config/Makefile doc/Makefile doc/man/Makefile doc/man/man1/Makefile doc/man/man5/Makefile doc/xml/Makefile po/Makefile.in shell-completion/Makefile src/firewall/config/__init__.py src/Makefile src/tests/Makefile src/tests/atlocal src/icons/Makefile" +ac_config_files="$ac_config_files Makefile doxygen.conf config/Makefile doc/Makefile doc/man/Makefile doc/man/man1/Makefile doc/man/man5/Makefile doc/xml/Makefile po/Makefile.in shell-completion/Makefile src/firewall/config/__init__.py src/Makefile src/tests/Makefile src/tests/atlocal src/icons/Makefile" ac_config_files="$ac_config_files src/firewall-applet" @@ -5059,8 +5541,8 @@ _ACEOF case $ac_val in #( *${as_nl}*) case $ac_var in #( - *_cv_*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 -$as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; + *_cv_*) { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 +printf "%s\n" "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; esac case $ac_var in #( _ | IFS | as_nl) ;; #( @@ -5090,15 +5572,15 @@ $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; /^ac_cv_env_/b end t clear :clear - s/^\([^=]*\)=\(.*[{}].*\)$/test "${\1+set}" = set || &/ + s/^\([^=]*\)=\(.*[{}].*\)$/test ${\1+y} || &/ t end s/^\([^=]*\)=\(.*\)$/\1=${\1=\2}/ :end' >>confcache if diff "$cache_file" confcache >/dev/null 2>&1; then :; else if test -w "$cache_file"; then if test "x$cache_file" != "x/dev/null"; then - { $as_echo "$as_me:${as_lineno-$LINENO}: updating cache $cache_file" >&5 -$as_echo "$as_me: updating cache $cache_file" >&6;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: updating cache $cache_file" >&5 +printf "%s\n" "$as_me: updating cache $cache_file" >&6;} if test ! -f "$cache_file" || test -h "$cache_file"; then cat confcache >"$cache_file" else @@ -5112,8 +5594,8 @@ $as_echo "$as_me: updating cache $cache_file" >&6;} fi fi else - { $as_echo "$as_me:${as_lineno-$LINENO}: not updating unwritable cache $cache_file" >&5 -$as_echo "$as_me: not updating unwritable cache $cache_file" >&6;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: not updating unwritable cache $cache_file" >&5 +printf "%s\n" "$as_me: not updating unwritable cache $cache_file" >&6;} fi fi rm -f confcache @@ -5166,7 +5648,7 @@ U= for ac_i in : $LIBOBJS; do test "x$ac_i" = x: && continue # 1. Remove the extension, and $U if already installed. ac_script='s/\$U\././;s/\.o$//;s/\.obj$//' - ac_i=`$as_echo "$ac_i" | sed "$ac_script"` + ac_i=`printf "%s\n" "$ac_i" | sed "$ac_script"` # 2. Prepend LIBOBJDIR. When used with automake>=1.10 LIBOBJDIR # will be set to the directory where LIBOBJS objects are built. as_fn_append ac_libobjs " \${LIBOBJDIR}$ac_i\$U.$ac_objext" @@ -5177,14 +5659,14 @@ LIBOBJS=$ac_libobjs LTLIBOBJS=$ac_ltlibobjs -{ $as_echo "$as_me:${as_lineno-$LINENO}: checking that generated files are newer than configure" >&5 -$as_echo_n "checking that generated files are newer than configure... " >&6; } +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: checking that generated files are newer than configure" >&5 +printf %s "checking that generated files are newer than configure... " >&6; } if test -n "$am_sleep_pid"; then # Hide warnings about reused PIDs. wait $am_sleep_pid 2>/dev/null fi - { $as_echo "$as_me:${as_lineno-$LINENO}: result: done" >&5 -$as_echo "done" >&6; } + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: done" >&5 +printf "%s\n" "done" >&6; } if test -z "${ENABLE_DOCS_TRUE}" && test -z "${ENABLE_DOCS_FALSE}"; then as_fn_error $? "conditional \"ENABLE_DOCS\" was never defined. @@ -5211,8 +5693,8 @@ fi ac_write_fail=0 ac_clean_files_save=$ac_clean_files ac_clean_files="$ac_clean_files $CONFIG_STATUS" -{ $as_echo "$as_me:${as_lineno-$LINENO}: creating $CONFIG_STATUS" >&5 -$as_echo "$as_me: creating $CONFIG_STATUS" >&6;} +{ printf "%s\n" "$as_me:${as_lineno-$LINENO}: creating $CONFIG_STATUS" >&5 +printf "%s\n" "$as_me: creating $CONFIG_STATUS" >&6;} as_write_fail=0 cat >$CONFIG_STATUS <<_ASEOF || as_write_fail=1 #! $SHELL @@ -5235,14 +5717,16 @@ cat >>$CONFIG_STATUS <<\_ASEOF || as_write_fail=1 # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh -if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : +as_nop=: +if test ${ZSH_VERSION+y} && (emulate sh) >/dev/null 2>&1 +then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST -else +else $as_nop case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( @@ -5252,46 +5736,46 @@ esac fi + +# Reset variables that may have inherited troublesome values from +# the environment. + +# IFS needs to be set, to space, tab, and newline, in precisely that order. +# (If _AS_PATH_WALK were called with IFS unset, it would have the +# side effect of setting IFS to empty, thus disabling word splitting.) +# Quoting is to prevent editors from complaining about space-tab. as_nl=' ' export as_nl -# Printing a long string crashes Solaris 7 /usr/bin/printf. -as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' -as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo -as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo -# Prefer a ksh shell builtin over an external printf program on Solaris, -# but without wasting forks for bash or zsh. -if test -z "$BASH_VERSION$ZSH_VERSION" \ - && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then - as_echo='print -r --' - as_echo_n='print -rn --' -elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then - as_echo='printf %s\n' - as_echo_n='printf %s' -else - if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then - as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' - as_echo_n='/usr/ucb/echo -n' - else - as_echo_body='eval expr "X$1" : "X\\(.*\\)"' - as_echo_n_body='eval - arg=$1; - case $arg in #( - *"$as_nl"*) - expr "X$arg" : "X\\(.*\\)$as_nl"; - arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; - esac; - expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" - ' - export as_echo_n_body - as_echo_n='sh -c $as_echo_n_body as_echo' - fi - export as_echo_body - as_echo='sh -c $as_echo_body as_echo' -fi +IFS=" "" $as_nl" + +PS1='$ ' +PS2='> ' +PS4='+ ' + +# Ensure predictable behavior from utilities with locale-dependent output. +LC_ALL=C +export LC_ALL +LANGUAGE=C +export LANGUAGE + +# We cannot yet rely on "unset" to work, but we need these variables +# to be unset--not just set to an empty or harmless value--now, to +# avoid bugs in old shells (e.g. pre-3.0 UWIN ksh). This construct +# also avoids known problems related to "unset" and subshell syntax +# in other old shells (e.g. bash 2.01 and pdksh 5.2.14). +for as_var in BASH_ENV ENV MAIL MAILPATH CDPATH +do eval test \${$as_var+y} \ + && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : +done + +# Ensure that fds 0, 1, and 2 are open. +if (exec 3>&0) 2>/dev/null; then :; else exec 0&1) 2>/dev/null; then :; else exec 1>/dev/null; fi +if (exec 3>&2) ; then :; else exec 2>/dev/null; fi # The user is always right. -if test "${PATH_SEPARATOR+set}" != set; then +if ${PATH_SEPARATOR+false} :; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || @@ -5300,13 +5784,6 @@ if test "${PATH_SEPARATOR+set}" != set; then fi -# IFS -# We need space, tab and new line, in precisely that order. Quoting is -# there to prevent editors from complaining about space-tab. -# (If _AS_PATH_WALK were called with IFS unset, it would disable word -# splitting by setting IFS to empty value.) -IFS=" "" $as_nl" - # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( @@ -5315,8 +5792,12 @@ case $0 in #(( for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac + test -r "$as_dir$0" && as_myself=$as_dir$0 && break done IFS=$as_save_IFS @@ -5328,30 +5809,10 @@ if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then - $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 + printf "%s\n" "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi -# Unset variables that we do not need and which cause bugs (e.g. in -# pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" -# suppresses any "Segmentation fault" message there. '((' could -# trigger a bug in pdksh 5.2.14. -for as_var in BASH_ENV ENV MAIL MAILPATH -do eval test x\${$as_var+set} = xset \ - && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : -done -PS1='$ ' -PS2='> ' -PS4='+ ' - -# NLS nuisances. -LC_ALL=C -export LC_ALL -LANGUAGE=C -export LANGUAGE - -# CDPATH. -(unset CDPATH) >/dev/null 2>&1 && unset CDPATH # as_fn_error STATUS ERROR [LINENO LOG_FD] @@ -5364,13 +5825,14 @@ as_fn_error () as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack - $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 + printf "%s\n" "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi - $as_echo "$as_me: error: $2" >&2 + printf "%s\n" "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error + # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. @@ -5397,18 +5859,20 @@ as_fn_unset () { eval $1=; unset $1;} } as_unset=as_fn_unset + # as_fn_append VAR VALUE # ---------------------- # Append the text in VALUE to the end of the definition contained in VAR. Take # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. -if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : +if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null +then : eval 'as_fn_append () { eval $1+=\$2 }' -else +else $as_nop as_fn_append () { eval $1=\$$1\$2 @@ -5420,12 +5884,13 @@ fi # as_fn_append # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. -if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : +if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null +then : eval 'as_fn_arith () { as_val=$(( $* )) }' -else +else $as_nop as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` @@ -5456,7 +5921,7 @@ as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || -$as_echo X/"$0" | +printf "%s\n" X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q @@ -5478,6 +5943,10 @@ as_cr_Letters=$as_cr_letters$as_cr_LETTERS as_cr_digits='0123456789' as_cr_alnum=$as_cr_Letters$as_cr_digits + +# Determine whether it's possible to make 'echo' print without a newline. +# These variables are no longer used directly by Autoconf, but are AC_SUBSTed +# for compatibility with existing Makefiles. ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) @@ -5491,6 +5960,12 @@ case `echo -n x` in #((((( ECHO_N='-n';; esac +# For backward compatibility with old third-party macros, we provide +# the shell variables $as_echo and $as_echo_n. New code should use +# AS_ECHO(["message"]) and AS_ECHO_N(["message"]), respectively. +as_echo='printf %s\n' +as_echo_n='printf %s' + rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file @@ -5532,7 +6007,7 @@ as_fn_mkdir_p () as_dirs= while :; do case $as_dir in #( - *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( + *\'*) as_qdir=`printf "%s\n" "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" @@ -5541,7 +6016,7 @@ $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || -$as_echo X"$as_dir" | +printf "%s\n" X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q @@ -5603,8 +6078,8 @@ cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" -This file was extended by firewalld $as_me 2.1.2, which was -generated by GNU Autoconf 2.69. Invocation command line was +This file was extended by firewalld $as_me 2.3.1, which was +generated by GNU Autoconf 2.71. Invocation command line was CONFIG_FILES = $CONFIG_FILES CONFIG_HEADERS = $CONFIG_HEADERS @@ -5657,14 +6132,16 @@ $config_commands Report bugs to the package provider." _ACEOF +ac_cs_config=`printf "%s\n" "$ac_configure_args" | sed "$ac_safe_unquote"` +ac_cs_config_escaped=`printf "%s\n" "$ac_cs_config" | sed "s/^ //; s/'/'\\\\\\\\''/g"` cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 -ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`" +ac_cs_config='$ac_cs_config_escaped' ac_cs_version="\\ -firewalld config.status 2.1.2 -configured by $0, generated by GNU Autoconf 2.69, +firewalld config.status 2.3.1 +configured by $0, generated by GNU Autoconf 2.71, with options \\"\$ac_cs_config\\" -Copyright (C) 2012 Free Software Foundation, Inc. +Copyright (C) 2021 Free Software Foundation, Inc. This config.status script is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it." @@ -5704,21 +6181,21 @@ do -recheck | --recheck | --rechec | --reche | --rech | --rec | --re | --r) ac_cs_recheck=: ;; --version | --versio | --versi | --vers | --ver | --ve | --v | -V ) - $as_echo "$ac_cs_version"; exit ;; + printf "%s\n" "$ac_cs_version"; exit ;; --config | --confi | --conf | --con | --co | --c ) - $as_echo "$ac_cs_config"; exit ;; + printf "%s\n" "$ac_cs_config"; exit ;; --debug | --debu | --deb | --de | --d | -d ) debug=: ;; --file | --fil | --fi | --f ) $ac_shift case $ac_optarg in - *\'*) ac_optarg=`$as_echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` ;; + *\'*) ac_optarg=`printf "%s\n" "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` ;; '') as_fn_error $? "missing file argument" ;; esac as_fn_append CONFIG_FILES " '$ac_optarg'" ac_need_defaults=false;; --he | --h | --help | --hel | -h ) - $as_echo "$ac_cs_usage"; exit ;; + printf "%s\n" "$ac_cs_usage"; exit ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil | --si | --s) ac_cs_silent=: ;; @@ -5746,7 +6223,7 @@ cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 if \$ac_cs_recheck; then set X $SHELL '$0' $ac_configure_args \$ac_configure_extra_args --no-create --no-recursion shift - \$as_echo "running CONFIG_SHELL=$SHELL \$*" >&6 + \printf "%s\n" "running CONFIG_SHELL=$SHELL \$*" >&6 CONFIG_SHELL='$SHELL' export CONFIG_SHELL exec "\$@" @@ -5760,7 +6237,7 @@ exec 5>>config.log sed 'h;s/./-/g;s/^.../## /;s/...$/ ##/;p;x;p;x' <<_ASBOX ## Running $as_me. ## _ASBOX - $as_echo "$ac_log" + printf "%s\n" "$ac_log" } >&5 _ACEOF @@ -5770,9 +6247,8 @@ cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 # # Capture the value of obsolete ALL_LINGUAS because we need it to compute - # POFILES, UPDATEPOFILES, DUMMYPOFILES, GMOFILES, CATALOGS. But hide it - # from automake < 1.5. - eval 'OBSOLETE_ALL_LINGUAS''="$ALL_LINGUAS"' + # POFILES, UPDATEPOFILES, DUMMYPOFILES, GMOFILES, CATALOGS. + OBSOLETE_ALL_LINGUAS="$ALL_LINGUAS" # Capture the value of LINGUAS because we need it to compute CATALOGS. LINGUAS="${LINGUAS-%UNSET%}" @@ -5791,7 +6267,6 @@ do "xsl-cleanup") CONFIG_COMMANDS="$CONFIG_COMMANDS xsl-cleanup" ;; "Makefile") CONFIG_FILES="$CONFIG_FILES Makefile" ;; "doxygen.conf") CONFIG_FILES="$CONFIG_FILES doxygen.conf" ;; - "config/lockdown-whitelist.xml") CONFIG_FILES="$CONFIG_FILES config/lockdown-whitelist.xml" ;; "config/Makefile") CONFIG_FILES="$CONFIG_FILES config/Makefile" ;; "doc/Makefile") CONFIG_FILES="$CONFIG_FILES doc/Makefile" ;; "doc/man/Makefile") CONFIG_FILES="$CONFIG_FILES doc/man/Makefile" ;; @@ -5822,8 +6297,8 @@ done # We use the long form for the default assignment because of an extremely # bizarre bug on SunOS 4.1.3. if $ac_need_defaults; then - test "${CONFIG_FILES+set}" = set || CONFIG_FILES=$config_files - test "${CONFIG_COMMANDS+set}" = set || CONFIG_COMMANDS=$config_commands + test ${CONFIG_FILES+y} || CONFIG_FILES=$config_files + test ${CONFIG_COMMANDS+y} || CONFIG_COMMANDS=$config_commands fi # Have a temporary directory for convenience. Make it in the build tree @@ -6051,7 +6526,7 @@ do esac || as_fn_error 1 "cannot find input file: \`$ac_f'" "$LINENO" 5;; esac - case $ac_f in *\'*) ac_f=`$as_echo "$ac_f" | sed "s/'/'\\\\\\\\''/g"`;; esac + case $ac_f in *\'*) ac_f=`printf "%s\n" "$ac_f" | sed "s/'/'\\\\\\\\''/g"`;; esac as_fn_append ac_file_inputs " '$ac_f'" done @@ -6059,17 +6534,17 @@ do # use $as_me), people would be surprised to read: # /* config.h. Generated by config.status. */ configure_input='Generated from '` - $as_echo "$*" | sed 's|^[^:]*/||;s|:[^:]*/|, |g' + printf "%s\n" "$*" | sed 's|^[^:]*/||;s|:[^:]*/|, |g' `' by configure.' if test x"$ac_file" != x-; then configure_input="$ac_file. $configure_input" - { $as_echo "$as_me:${as_lineno-$LINENO}: creating $ac_file" >&5 -$as_echo "$as_me: creating $ac_file" >&6;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: creating $ac_file" >&5 +printf "%s\n" "$as_me: creating $ac_file" >&6;} fi # Neutralize special characters interpreted by sed in replacement strings. case $configure_input in #( *\&* | *\|* | *\\* ) - ac_sed_conf_input=`$as_echo "$configure_input" | + ac_sed_conf_input=`printf "%s\n" "$configure_input" | sed 's/[\\\\&|]/\\\\&/g'`;; #( *) ac_sed_conf_input=$configure_input;; esac @@ -6086,7 +6561,7 @@ $as_expr X"$ac_file" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$ac_file" : 'X\(//\)[^/]' \| \ X"$ac_file" : 'X\(//\)$' \| \ X"$ac_file" : 'X\(/\)' \| . 2>/dev/null || -$as_echo X"$ac_file" | +printf "%s\n" X"$ac_file" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q @@ -6110,9 +6585,9 @@ $as_echo X"$ac_file" | case "$ac_dir" in .) ac_dir_suffix= ac_top_builddir_sub=. ac_top_build_prefix= ;; *) - ac_dir_suffix=/`$as_echo "$ac_dir" | sed 's|^\.[\\/]||'` + ac_dir_suffix=/`printf "%s\n" "$ac_dir" | sed 's|^\.[\\/]||'` # A ".." for each directory in $ac_dir_suffix. - ac_top_builddir_sub=`$as_echo "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` + ac_top_builddir_sub=`printf "%s\n" "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` case $ac_top_builddir_sub in "") ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_top_build_prefix=$ac_top_builddir_sub/ ;; @@ -6174,8 +6649,8 @@ ac_sed_dataroot=' case `eval "sed -n \"\$ac_sed_dataroot\" $ac_file_inputs"` in *datarootdir*) ac_datarootdir_seen=yes;; *@datadir@*|*@docdir@*|*@infodir@*|*@localedir@*|*@mandir@*) - { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&5 -$as_echo "$as_me: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&5 +printf "%s\n" "$as_me: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&2;} _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_datarootdir_hack=' @@ -6219,9 +6694,9 @@ test -z "$ac_datarootdir_hack$ac_datarootdir_seen" && { ac_out=`sed -n '/\${datarootdir}/p' "$ac_tmp/out"`; test -n "$ac_out"; } && { ac_out=`sed -n '/^[ ]*datarootdir[ ]*:*=/p' \ "$ac_tmp/out"`; test -z "$ac_out"; } && - { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file contains a reference to the variable \`datarootdir' + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file contains a reference to the variable \`datarootdir' which seems to be undefined. Please make sure it is defined" >&5 -$as_echo "$as_me: WARNING: $ac_file contains a reference to the variable \`datarootdir' +printf "%s\n" "$as_me: WARNING: $ac_file contains a reference to the variable \`datarootdir' which seems to be undefined. Please make sure it is defined" >&2;} rm -f "$ac_tmp/stdin" @@ -6233,8 +6708,8 @@ which seems to be undefined. Please make sure it is defined" >&2;} ;; - :C) { $as_echo "$as_me:${as_lineno-$LINENO}: executing $ac_file commands" >&5 -$as_echo "$as_me: executing $ac_file commands" >&6;} + :C) { printf "%s\n" "$as_me:${as_lineno-$LINENO}: executing $ac_file commands" >&5 +printf "%s\n" "$as_me: executing $ac_file commands" >&6;} ;; esac @@ -6243,7 +6718,7 @@ $as_echo "$as_me: executing $ac_file commands" >&6;} "src/tests/atconfig":C) cat >src/tests/atconfig <&5 -$as_echo "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: unrecognized options: $ac_unrecognized_opts" >&5 +printf "%s\n" "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2;} fi + diff --git a/configure.ac b/configure.ac index aa813ce..c5636fb 100644 --- a/configure.ac +++ b/configure.ac @@ -159,7 +159,6 @@ AC_CONFIG_COMMANDS([xsl-cleanup],,[rm -f doc/xml/transform-*.xsl]) AC_CONFIG_FILES([Makefile doxygen.conf - config/lockdown-whitelist.xml config/Makefile doc/Makefile doc/man/Makefile diff --git a/debian/changelog b/debian/changelog index ac90a21..152cb3a 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,98 @@ +firewalld (2.3.1-1+deb13u1) trixie; urgency=medium + + * fix(policy): use PK_ACTION_CONFIG for set{ZoneSettings2,PolicySettings} + This prevents local users from being able to modify runtime firewall state + without prior authentication if the desktop policy is active. + (CVE-2026-4948) + + -- Michael Biebl Mon, 04 May 2026 01:08:28 +0200 + +firewalld (2.3.1-1) unstable; urgency=medium + + * New upstream version 2.3.1 + * Rebase patches + + -- Michael Biebl Sat, 26 Jul 2025 18:52:44 +0200 + +firewalld (2.3.0-4) unstable; urgency=medium + + * test(nftables): table owner: use grep instead of head. + Using `head -n 2` will cause head to terminate early while the prior + commands in the pipeline still have output. This will trigger SIGPIPE + and in some cases causes messages on stderr. Use grep to consume all the + output. + Patch cherry-picked from upstream Git. + * Revert "Run nftables_table_owner in a separate autopkgtest marked as flaky" + This should no longer be necessary with the fixes to + nftables_table_owner using grep instead of head. + + -- Michael Biebl Wed, 07 May 2025 18:40:14 +0200 + +firewalld (2.3.0-3) unstable; urgency=medium + + * Add dpkg file trigger for /usr/lib/firewald/{services,zones} + Automatically reload firewalld when files are installed into those + directories. (Closes: #1040783) + + -- Michael Biebl Sun, 13 Apr 2025 22:41:25 +0200 + +firewalld (2.3.0-2) unstable; urgency=medium + + * Remove obsolete conffile on upgrade. + Use maintscript to remove /etc/firewalld/lockdown-whitelist.xml on + upgrades. (Closes: #1100759) + + -- Michael Biebl Tue, 18 Mar 2025 11:45:30 +0100 + +firewalld (2.3.0-1) unstable; urgency=medium + + * New upstream version 2.3.0 + + -- Michael Biebl Tue, 05 Nov 2024 19:11:26 +0100 + +firewalld (2.2.3-2) unstable; urgency=medium + + * Run nftables_table_owner in a separate autopkgtest marked as flaky. + The test appears to not pass reliably on debci. Whether this is a bug in + the test environment or the test itself is unclear at this moment. + We still want to run the test on debci so introduce an new autopkgtest + named standard-tests-flaky which runs nftables_table_owner separately. + Mitigates: #1083210 + + -- Michael Biebl Tue, 22 Oct 2024 23:27:15 +0200 + +firewalld (2.2.3-1) unstable; urgency=medium + + * New upstream version 2.2.3 + * Replace dependency on dbus with default-dbus-system-bus | dbus-system-bus. + This makes it easier to swap in alternative implementations like + dbus-broker. (Closes: #1083227) + + -- Michael Biebl Thu, 17 Oct 2024 22:52:35 +0200 + +firewalld (2.2.1-1) unstable; urgency=medium + + * New upstream version 2.2.1 + * Rebase patches + * Remove obsolete migration code from pre-oldstable + + -- Michael Biebl Thu, 01 Aug 2024 22:00:06 +0200 + +firewalld (2.2.0-1) unstable; urgency=medium + + * New upstream version 2.2.0 + * Rebase patches + + -- Michael Biebl Fri, 19 Jul 2024 20:29:37 +0200 + +firewalld (2.1.2-2) unstable; urgency=medium + + * test(functions): fix iptables normalization for opt field. + Patch cherry-picked from upstream Git. (Closes: #1073560) + * Enable standard Salsa CI + + -- Michael Biebl Thu, 04 Jul 2024 23:06:01 +0200 + firewalld (2.1.2-1) unstable; urgency=medium * New upstream version 2.1.2 diff --git a/debian/control b/debian/control index 86bce2c..243d981 100644 --- a/debian/control +++ b/debian/control @@ -24,7 +24,7 @@ Homepage: https://www.firewalld.org/ Package: firewalld Architecture: all Pre-Depends: ${misc:Pre-Depends} -Depends: dbus, +Depends: default-dbus-system-bus | dbus-system-bus, gir1.2-glib-2.0, gir1.2-nm-1.0, polkitd, diff --git a/debian/firewalld.maintscript b/debian/firewalld.maintscript index 9f91c5f..5adb1d6 100644 --- a/debian/firewalld.maintscript +++ b/debian/firewalld.maintscript @@ -1 +1 @@ -rm_conffile /etc/init.d/firewalld 0.8.3-1~ +rm_conffile /etc/firewalld/lockdown-whitelist.xml 2.3.0-2~ diff --git a/debian/firewalld.postinst b/debian/firewalld.postinst index 3bf888a..7e9a6b7 100644 --- a/debian/firewalld.postinst +++ b/debian/firewalld.postinst @@ -13,15 +13,15 @@ case "$1" in update-alternatives --install /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy \ org.fedoraproject.FirewallD1.policy \ /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.desktop.policy.choice 10 - - if dpkg --compare-versions "$2" lt-nl "0.8.3-1"; then - update-rc.d firewalld remove || true - fi ;; abort-upgrade|abort-remove|abort-deconfigure) ;; + triggered) + # reload on file changes in /usr/lib/firewalld/{services,zones} + firewall-cmd --quiet --reload || true + ;; *) echo "postinst called with unknown argument \`$1'" >&2 exit 1 diff --git a/debian/firewalld.triggers b/debian/firewalld.triggers new file mode 100644 index 0000000..8484133 --- /dev/null +++ b/debian/firewalld.triggers @@ -0,0 +1,2 @@ +interest-noawait /usr/lib/firewalld/zones +interest-noawait /usr/lib/firewalld/services diff --git a/debian/gbp.conf b/debian/gbp.conf index 05e704d..3477505 100644 --- a/debian/gbp.conf +++ b/debian/gbp.conf @@ -1,5 +1,5 @@ [DEFAULT] pristine-tar = True patch-numbers = False -debian-branch = debian/master +debian-branch = debian/trixie upstream-branch = upstream/latest diff --git a/debian/patches/Remove-etc-sysconfig-firewalld-support.patch b/debian/patches/Remove-etc-sysconfig-firewalld-support.patch index fb9112d..4a2472a 100644 --- a/debian/patches/Remove-etc-sysconfig-firewalld-support.patch +++ b/debian/patches/Remove-etc-sysconfig-firewalld-support.patch @@ -9,16 +9,16 @@ can use the standard systemd mechanisms for that, like drop-ins. 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/config/firewalld.service.in b/config/firewalld.service.in -index afbe0ac..07d6221 100644 +index b00d36c..50e32e1 100644 --- a/config/firewalld.service.in +++ b/config/firewalld.service.in -@@ -8,8 +8,7 @@ Conflicts=iptables.service ip6tables.service ebtables.service ipset.service nfta +@@ -8,8 +8,7 @@ Conflicts=iptables.service ip6tables.service ebtables.service ipset.service Documentation=man:firewalld(1) [Service] -EnvironmentFile=-/etc/sysconfig/firewalld -ExecStart=@sbindir@/firewalld --nofork --nopid $FIREWALLD_ARGS +ExecStart=@sbindir@/firewalld --nofork --nopid - ExecReload=/bin/kill -HUP $MAINPID - # supress to log debug and error output also to /var/log/messages - StandardOutput=null + ExecStartPost=@bindir@/firewall-cmd --state + # don't fail ExecStartPost on RUNNING_BUT_FAILED + SuccessExitStatus=251 diff --git a/debian/patches/fix-policy-use-PK_ACTION_CONFIG-for-set-ZoneSettings2-Pol.patch b/debian/patches/fix-policy-use-PK_ACTION_CONFIG-for-set-ZoneSettings2-Pol.patch new file mode 100644 index 0000000..62367d2 --- /dev/null +++ b/debian/patches/fix-policy-use-PK_ACTION_CONFIG-for-set-ZoneSettings2-Pol.patch @@ -0,0 +1,34 @@ +From: Sizhe Zhao +Date: Tue, 31 Mar 2026 20:46:50 +0800 +Subject: fix(policy): use PK_ACTION_CONFIG for + set{ZoneSettings2,PolicySettings} + +Reference: https://access.redhat.com/security/cve/cve-2026-4948 +(cherry picked from commit 5fb3914ad830feff6cb2b0670457c60a323c6c6c) +(cherry picked from commit 8cb2dedc0ec7e177c36d331c449f189c11a1d23d) +--- + src/firewall/server/firewalld.py | 4 ++-- + 1 file changed, 2 insertions(+), 2 deletions(-) + +diff --git a/src/firewall/server/firewalld.py b/src/firewall/server/firewalld.py +index 6280252..9f969d8 100644 +--- a/src/firewall/server/firewalld.py ++++ b/src/firewall/server/firewalld.py +@@ -938,7 +938,7 @@ class FirewallD(DbusServiceObject): + log.debug1("getZoneSettings2(%s)", zone) + return self.fw.zone.get_config_with_settings_dict(zone) + +- @dbus_polkit_require_auth(config.dbus.PK_ACTION_CONFIG_INFO) ++ @dbus_polkit_require_auth(config.dbus.PK_ACTION_CONFIG) + @dbus_service_method(config.dbus.DBUS_INTERFACE_ZONE, in_signature="sa{sv}") + @dbus_handle_exceptions + def setZoneSettings2(self, zone, settings, sender=None): +@@ -965,7 +965,7 @@ class FirewallD(DbusServiceObject): + log.debug1("policy.getPolicySettings(%s)", policy) + return self.fw.policy.get_config_with_settings_dict(policy) + +- @dbus_polkit_require_auth(config.dbus.PK_ACTION_CONFIG_INFO) ++ @dbus_polkit_require_auth(config.dbus.PK_ACTION_CONFIG) + @dbus_service_method(config.dbus.DBUS_INTERFACE_POLICY, in_signature="sa{sv}") + @dbus_handle_exceptions + def setPolicySettings(self, policy, settings, sender=None): diff --git a/debian/patches/series b/debian/patches/series index 8c262ab..72d11da 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1,2 +1,3 @@ Remove-etc-sysconfig-firewalld-support.patch Switch-to-python3.patch +fix-policy-use-PK_ACTION_CONFIG-for-set-ZoneSettings2-Pol.patch diff --git a/debian/salsa-ci.yml b/debian/salsa-ci.yml new file mode 100644 index 0000000..0c22dc4 --- /dev/null +++ b/debian/salsa-ci.yml @@ -0,0 +1,3 @@ +include: + - https://salsa.debian.org/salsa-ci-team/pipeline/raw/master/salsa-ci.yml + - https://salsa.debian.org/salsa-ci-team/pipeline/raw/master/pipeline-jobs.yml diff --git a/doc/Makefile.in b/doc/Makefile.in index c39a231..a9b8e14 100644 --- a/doc/Makefile.in +++ b/doc/Makefile.in @@ -1,7 +1,7 @@ -# Makefile.in generated by automake 1.16.1 from Makefile.am. +# Makefile.in generated by automake 1.16.5 from Makefile.am. # @configure_input@ -# Copyright (C) 1994-2018 Free Software Foundation, Inc. +# Copyright (C) 1994-2021 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -148,8 +148,6 @@ am__define_uniq_tagged_files = \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` -ETAGS = etags -CTAGS = ctags DIST_SUBDIRS = $(SUBDIRS) am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) @@ -187,6 +185,8 @@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ BASHCOMPLETIONDIR = @BASHCOMPLETIONDIR@ +CSCOPE = @CSCOPE@ +CTAGS = @CTAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_LOG_TARGET = @DEFAULT_LOG_TARGET@ DEFS = @DEFS@ @@ -195,6 +195,7 @@ EBTABLES_RESTORE = @EBTABLES_RESTORE@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ +ETAGS = @ETAGS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GETTEXT_PACKAGE = @GETTEXT_PACKAGE@ GLIB_COMPILE_SCHEMAS = @GLIB_COMPILE_SCHEMAS@ @@ -232,8 +233,8 @@ MAKEINFO = @MAKEINFO@ MKDIR_P = @MKDIR_P@ MODPROBE = @MODPROBE@ MSGFMT = @MSGFMT@ -MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ +MSGMERGE_FOR_MSGFMT_OPTION = @MSGMERGE_FOR_MSGFMT_OPTION@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ @@ -449,7 +450,6 @@ cscopelist-am: $(am__tagged_files) distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags - distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am diff --git a/doc/man/Makefile.in b/doc/man/Makefile.in index c1fb56a..871b4ba 100644 --- a/doc/man/Makefile.in +++ b/doc/man/Makefile.in @@ -1,7 +1,7 @@ -# Makefile.in generated by automake 1.16.1 from Makefile.am. +# Makefile.in generated by automake 1.16.5 from Makefile.am. # @configure_input@ -# Copyright (C) 1994-2018 Free Software Foundation, Inc. +# Copyright (C) 1994-2021 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -148,8 +148,6 @@ am__define_uniq_tagged_files = \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` -ETAGS = etags -CTAGS = ctags DIST_SUBDIRS = $(SUBDIRS) am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) @@ -187,6 +185,8 @@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ BASHCOMPLETIONDIR = @BASHCOMPLETIONDIR@ +CSCOPE = @CSCOPE@ +CTAGS = @CTAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_LOG_TARGET = @DEFAULT_LOG_TARGET@ DEFS = @DEFS@ @@ -195,6 +195,7 @@ EBTABLES_RESTORE = @EBTABLES_RESTORE@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ +ETAGS = @ETAGS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GETTEXT_PACKAGE = @GETTEXT_PACKAGE@ GLIB_COMPILE_SCHEMAS = @GLIB_COMPILE_SCHEMAS@ @@ -232,8 +233,8 @@ MAKEINFO = @MAKEINFO@ MKDIR_P = @MKDIR_P@ MODPROBE = @MODPROBE@ MSGFMT = @MSGFMT@ -MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ +MSGMERGE_FOR_MSGFMT_OPTION = @MSGMERGE_FOR_MSGFMT_OPTION@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ @@ -449,7 +450,6 @@ cscopelist-am: $(am__tagged_files) distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags - distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am diff --git a/doc/man/man1/Makefile.in b/doc/man/man1/Makefile.in index a4af804..5eba6df 100644 --- a/doc/man/man1/Makefile.in +++ b/doc/man/man1/Makefile.in @@ -1,7 +1,7 @@ -# Makefile.in generated by automake 1.16.1 from Makefile.am. +# Makefile.in generated by automake 1.16.5 from Makefile.am. # @configure_input@ -# Copyright (C) 1994-2018 Free Software Foundation, Inc. +# Copyright (C) 1994-2021 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -158,6 +158,8 @@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ BASHCOMPLETIONDIR = @BASHCOMPLETIONDIR@ +CSCOPE = @CSCOPE@ +CTAGS = @CTAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_LOG_TARGET = @DEFAULT_LOG_TARGET@ DEFS = @DEFS@ @@ -166,6 +168,7 @@ EBTABLES_RESTORE = @EBTABLES_RESTORE@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ +ETAGS = @ETAGS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GETTEXT_PACKAGE = @GETTEXT_PACKAGE@ GLIB_COMPILE_SCHEMAS = @GLIB_COMPILE_SCHEMAS@ @@ -203,8 +206,8 @@ MAKEINFO = @MAKEINFO@ MKDIR_P = @MKDIR_P@ MODPROBE = @MODPROBE@ MSGFMT = @MSGFMT@ -MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ +MSGMERGE_FOR_MSGFMT_OPTION = @MSGMERGE_FOR_MSGFMT_OPTION@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ @@ -371,7 +374,6 @@ ctags CTAGS: cscope cscopelist: - distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am diff --git a/doc/man/man1/firewall-applet.1 b/doc/man/man1/firewall-applet.1 index 6893de1..c09ed28 100644 --- a/doc/man/man1/firewall-applet.1 +++ b/doc/man/man1/firewall-applet.1 @@ -1,13 +1,13 @@ '\" t .\" Title: firewall-applet .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewall-applet -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALL\-APPLET" "1" "" "firewalld 2.1.2" "firewall-applet" +.TH "FIREWALL\-APPLET" "1" "" "firewalld 2.3.1" "firewall-applet" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -224,7 +224,7 @@ This setting defaults to \fB5\fR\&. .RE .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man1/firewall-cmd.1 b/doc/man/man1/firewall-cmd.1 index e852ec5..04c608e 100644 --- a/doc/man/man1/firewall-cmd.1 +++ b/doc/man/man1/firewall-cmd.1 @@ -1,13 +1,13 @@ '\" t .\" Title: firewall-cmd .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewall-cmd -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALL\-CMD" "1" "" "firewalld 2.1.2" "firewall-cmd" +.TH "FIREWALL\-CMD" "1" "" "firewalld 2.3.1" "firewall-cmd" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -1850,172 +1850,6 @@ Return whether a passthrough rule with the arguments \fIargs\fR exists for the ipv value\&. Returns 0 if true, 1 otherwise\&. .RE -.SS "Lockdown Options" -.PP -Local applications or services are able to change the firewall configuration if they are running as root (example: libvirt) or are authenticated using PolicyKit\&. With this feature administrators can lock the firewall configuration so that only applications on lockdown whitelist are able to request firewall changes\&. -.PP -The lockdown access check limits D\-Bus methods that are changing firewall rules\&. Query, list and get methods are not limited\&. -.PP -The lockdown feature is a very light version of user and application policies for firewalld and is turned off by default\&. -.PP -\fB\-\-lockdown\-on\fR -.RS 4 -Enable lockdown\&. Be careful \- if firewall\-cmd is not on lockdown whitelist when you enable lockdown you won\*(Aqt be able to disable it again with firewall\-cmd, you would need to edit firewalld\&.conf\&. -.sp -This is a runtime and permanent change\&. -.RE -.PP -\fB\-\-lockdown\-off\fR -.RS 4 -Disable lockdown\&. -.sp -This is a runtime and permanent change\&. -.RE -.PP -\fB\-\-query\-lockdown\fR -.RS 4 -Query whether lockdown is enabled\&. Returns 0 if lockdown is enabled, 1 otherwise\&. -.RE -.SS "Lockdown Whitelist Options" -.PP -The lockdown whitelist can contain -\fIcommands\fR, -\fIcontexts\fR, -\fIusers\fR -and -\fIuser ids\fR\&. -.PP -If a command entry on the whitelist ends with an asterisk \*(Aq*\*(Aq, then all command lines starting with the command will match\&. If the \*(Aq*\*(Aq is not there the absolute command inclusive arguments must match\&. -.PP -Command paths for users are not always the same and depends on the users PATH\&. Some distributions symlink -\fB/bin\fR -to -\fB/usr/bin\fR -in which case it depends on the order they appear in the PATH environment variable\&. -.PP -The context is the security (SELinux) context of a running application or service\&. To get the context of a running application use -\fBps \-e \-\-context\fR\&. -.PP -\fBWarning:\fR -If the context is unconfined, then this will open access for more than the desired application\&. -.PP -The lockdown whitelist entries are checked in the following order: -.RS 4 -1\&. \fIcontext\fR -.RE -.RS 4 -2\&. \fIuid\fR -.RE -.RS 4 -3\&. \fIuser\fR -.RE -.RS 4 -4\&. \fIcommand\fR -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-list\-lockdown\-whitelist\-commands\fR -.RS 4 -List all command lines that are on the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-add\-lockdown\-whitelist\-command\fR=\fIcommand\fR -.RS 4 -Add the -\fIcommand\fR -to the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-remove\-lockdown\-whitelist\-command\fR=\fIcommand\fR -.RS 4 -Remove the -\fIcommand\fR -from the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-query\-lockdown\-whitelist\-command\fR=\fIcommand\fR -.RS 4 -Query whether the -\fIcommand\fR -is on the whitelist\&. Returns 0 if true, 1 otherwise\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-list\-lockdown\-whitelist\-contexts\fR -.RS 4 -List all contexts that are on the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-add\-lockdown\-whitelist\-context\fR=\fIcontext\fR -.RS 4 -Add the context -\fIcontext\fR -to the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-remove\-lockdown\-whitelist\-context\fR=\fIcontext\fR -.RS 4 -Remove the -\fIcontext\fR -from the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-query\-lockdown\-whitelist\-context\fR=\fIcontext\fR -.RS 4 -Query whether the -\fIcontext\fR -is on the whitelist\&. Returns 0 if true, 1 otherwise\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-list\-lockdown\-whitelist\-uids\fR -.RS 4 -List all user ids that are on the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-add\-lockdown\-whitelist\-uid\fR=\fIuid\fR -.RS 4 -Add the user id -\fIuid\fR -to the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-remove\-lockdown\-whitelist\-uid\fR=\fIuid\fR -.RS 4 -Remove the user id -\fIuid\fR -from the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-query\-lockdown\-whitelist\-uid\fR=\fIuid\fR -.RS 4 -Query whether the user id -\fIuid\fR -is on the whitelist\&. Returns 0 if true, 1 otherwise\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-list\-lockdown\-whitelist\-users\fR -.RS 4 -List all user names that are on the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-add\-lockdown\-whitelist\-user\fR=\fIuser\fR -.RS 4 -Add the user name -\fIuser\fR -to the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-remove\-lockdown\-whitelist\-user\fR=\fIuser\fR -.RS 4 -Remove the user name -\fIuser\fR -from the whitelist\&. -.RE -.PP -[\fB\-\-permanent\fR] \fB\-\-query\-lockdown\-whitelist\-user\fR=\fIuser\fR -.RS 4 -Query whether the user name -\fIuser\fR -is on the whitelist\&. Returns 0 if true, 1 otherwise\&. -.RE .SS "Panic Options" .PP \fB\-\-panic\-on\fR @@ -2163,6 +1997,7 @@ l r l r l r l r +l r l r. T{ ALREADY_ENABLED @@ -2525,6 +2360,11 @@ T}:T{ 143 T} T{ +INVALID_SOURCE +T}:T{ +144 +T} +T{ MISSING_TABLE T}:T{ 200 @@ -2591,7 +2431,7 @@ Note that return codes of \fB\-\-query\-*\fR options are special: Successful queries return 0, unsuccessful ones return 1 unless an error occurred in which case the table above applies\&. .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man1/firewall-config.1 b/doc/man/man1/firewall-config.1 index b1d56af..d48b66a 100644 --- a/doc/man/man1/firewall-config.1 +++ b/doc/man/man1/firewall-config.1 @@ -1,13 +1,13 @@ '\" t .\" Title: firewall-config .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewall-config -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALL\-CONFIG" "1" "" "firewalld 2.1.2" "firewall-config" +.TH "FIREWALL\-CONFIG" "1" "" "firewalld 2.3.1" "firewall-config" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -47,7 +47,7 @@ The following options are supported: Prints a short help text and exits\&. .RE .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man1/firewall-offline-cmd.1 b/doc/man/man1/firewall-offline-cmd.1 index 97f868e..c67f0c0 100644 --- a/doc/man/man1/firewall-offline-cmd.1 +++ b/doc/man/man1/firewall-offline-cmd.1 @@ -1,13 +1,13 @@ '\" t .\" Title: firewall-offline-cmd .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewall-offline-cmd -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALL\-OFFLINE\-C" "1" "" "firewalld 2.1.2" "firewall-offline-cmd" +.TH "FIREWALL\-OFFLINE\-C" "1" "" "firewalld 2.3.1" "firewall-offline-cmd" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -1715,168 +1715,6 @@ Return whether a permanent passthrough rule with the arguments \fIargs\fR exists for the ipv value\&. Returns 0 if true, 1 otherwise\&. .RE -.SS "Lockdown Options" -.PP -Local applications or services are able to change the firewall configuration if they are running as root (example: libvirt) or are authenticated using PolicyKit\&. With this feature administrators can lock the firewall configuration so that only applications on lockdown whitelist are able to request firewall changes\&. -.PP -The lockdown access check limits D\-Bus methods that are changing firewall rules\&. Query, list and get methods are not limited\&. -.PP -The lockdown feature is a very light version of user and application policies for firewalld and is turned off by default\&. -.PP -\fB\-\-lockdown\-on\fR -.RS 4 -Enable lockdown\&. Be careful \- if firewall\-cmd is not on lockdown whitelist when you enable lockdown you won\*(Aqt be able to disable it again with firewall\-cmd, you would need to edit firewalld\&.conf\&. -.RE -.PP -\fB\-\-lockdown\-off\fR -.RS 4 -Disable lockdown\&. -.RE -.PP -\fB\-\-query\-lockdown\fR -.RS 4 -Query whether lockdown is enabled\&. Returns 0 if lockdown is enabled, 1 otherwise\&. -.RE -.SS "Lockdown Whitelist Options" -.PP -The lockdown whitelist can contain -\fIcommands\fR, -\fIcontexts\fR, -\fIusers\fR -and -\fIuser ids\fR\&. -.PP -If a command entry on the whitelist ends with an asterisk \*(Aq*\*(Aq, then all command lines starting with the command will match\&. If the \*(Aq*\*(Aq is not there the absolute command inclusive arguments must match\&. -.PP -Commands for user root and others is not always the same\&. Example: As root -\fB/bin/firewall\-cmd\fR -is used, as a normal user -\fB/usr/bin/firewall\-cmd\fR -is be used on Fedora\&. -.PP -The context is the security (SELinux) context of a running application or service\&. To get the context of a running application use -\fBps \-e \-\-context\fR\&. -.PP -\fBWarning:\fR -If the context is unconfined, then this will open access for more than the desired application\&. -.PP -The lockdown whitelist entries are checked in the following order: -.RS 4 -1\&. \fIcontext\fR -.RE -.RS 4 -2\&. \fIuid\fR -.RE -.RS 4 -3\&. \fIuser\fR -.RE -.RS 4 -4\&. \fIcommand\fR -.RE -.PP -\fB\-\-list\-lockdown\-whitelist\-commands\fR -.RS 4 -List all command lines that are on the whitelist\&. -.RE -.PP -\fB\-\-add\-lockdown\-whitelist\-command\fR=\fIcommand\fR -.RS 4 -Add the -\fIcommand\fR -to the whitelist\&. -.RE -.PP -\fB\-\-remove\-lockdown\-whitelist\-command\fR=\fIcommand\fR -.RS 4 -Remove the -\fIcommand\fR -from the whitelist\&. -.RE -.PP -\fB\-\-query\-lockdown\-whitelist\-command\fR=\fIcommand\fR -.RS 4 -Query whether the -\fIcommand\fR -is on the whitelist\&. Returns 0 if true, 1 otherwise\&. -.RE -.PP -\fB\-\-list\-lockdown\-whitelist\-contexts\fR -.RS 4 -List all contexts that are on the whitelist\&. -.RE -.PP -\fB\-\-add\-lockdown\-whitelist\-context\fR=\fIcontext\fR -.RS 4 -Add the context -\fIcontext\fR -to the whitelist\&. -.RE -.PP -\fB\-\-remove\-lockdown\-whitelist\-context\fR=\fIcontext\fR -.RS 4 -Remove the -\fIcontext\fR -from the whitelist\&. -.RE -.PP -\fB\-\-query\-lockdown\-whitelist\-context\fR=\fIcontext\fR -.RS 4 -Query whether the -\fIcontext\fR -is on the whitelist\&. Returns 0 if true, 1 otherwise\&. -.RE -.PP -\fB\-\-list\-lockdown\-whitelist\-uids\fR -.RS 4 -List all user ids that are on the whitelist\&. -.RE -.PP -\fB\-\-add\-lockdown\-whitelist\-uid\fR=\fIuid\fR -.RS 4 -Add the user id -\fIuid\fR -to the whitelist\&. -.RE -.PP -\fB\-\-remove\-lockdown\-whitelist\-uid\fR=\fIuid\fR -.RS 4 -Remove the user id -\fIuid\fR -from the whitelist\&. -.RE -.PP -\fB\-\-query\-lockdown\-whitelist\-uid\fR=\fIuid\fR -.RS 4 -Query whether the user id -\fIuid\fR -is on the whitelist\&. Returns 0 if true, 1 otherwise\&. -.RE -.PP -\fB\-\-list\-lockdown\-whitelist\-users\fR -.RS 4 -List all user names that are on the whitelist\&. -.RE -.PP -\fB\-\-add\-lockdown\-whitelist\-user\fR=\fIuser\fR -.RS 4 -Add the user name -\fIuser\fR -to the whitelist\&. -.RE -.PP -\fB\-\-remove\-lockdown\-whitelist\-user\fR=\fIuser\fR -.RS 4 -Remove the user name -\fIuser\fR -from the whitelist\&. -.RE -.PP -\fB\-\-query\-lockdown\-whitelist\-user\fR=\fIuser\fR -.RS 4 -Query whether the user name -\fIuser\fR -is on the whitelist\&. Returns 0 if true, 1 otherwise\&. -.RE .SS "Policy Options" .PP \fB\-\-policy\-server\fR @@ -1889,7 +1727,7 @@ Change Polkit actions to \*(Aqserver\*(Aq (more restricted) Change Polkit actions to \*(Aqdesktop\*(Aq (less restricted) .RE .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man1/firewalld.1 b/doc/man/man1/firewalld.1 index 5c2cd9c..959dacd 100644 --- a/doc/man/man1/firewalld.1 +++ b/doc/man/man1/firewalld.1 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD" "1" "" "firewalld 2.1.2" "firewalld" +.TH "FIREWALLD" "1" "" "firewalld 2.3.1" "firewalld" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -175,7 +175,7 @@ Currently only SIGHUP is supported\&. Reloads the complete firewall configuration\&. You can also use \fBfirewall\-cmd \-\-reload\fR\&. All runtime configuration settings will be restored\&. Permanent configuration will change according to options defined in the configuration files\&. .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/Makefile.in b/doc/man/man5/Makefile.in index e29f8b9..e75f0c2 100644 --- a/doc/man/man5/Makefile.in +++ b/doc/man/man5/Makefile.in @@ -1,7 +1,7 @@ -# Makefile.in generated by automake 1.16.1 from Makefile.am. +# Makefile.in generated by automake 1.16.5 from Makefile.am. # @configure_input@ -# Copyright (C) 1994-2018 Free Software Foundation, Inc. +# Copyright (C) 1994-2021 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -158,6 +158,8 @@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ BASHCOMPLETIONDIR = @BASHCOMPLETIONDIR@ +CSCOPE = @CSCOPE@ +CTAGS = @CTAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_LOG_TARGET = @DEFAULT_LOG_TARGET@ DEFS = @DEFS@ @@ -166,6 +168,7 @@ EBTABLES_RESTORE = @EBTABLES_RESTORE@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ +ETAGS = @ETAGS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GETTEXT_PACKAGE = @GETTEXT_PACKAGE@ GLIB_COMPILE_SCHEMAS = @GLIB_COMPILE_SCHEMAS@ @@ -203,8 +206,8 @@ MAKEINFO = @MAKEINFO@ MKDIR_P = @MKDIR_P@ MODPROBE = @MODPROBE@ MSGFMT = @MSGFMT@ -MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ +MSGMERGE_FOR_MSGFMT_OPTION = @MSGMERGE_FOR_MSGFMT_OPTION@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ @@ -371,7 +374,6 @@ ctags CTAGS: cscope cscopelist: - distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am diff --git a/doc/man/man5/firewalld.conf.5 b/doc/man/man5/firewalld.conf.5 index 8dd3716..d28871d 100644 --- a/doc/man/man5/firewalld.conf.5 +++ b/doc/man/man5/firewalld.conf.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.conf .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.conf -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.CONF" "5" "" "firewalld 2.1.2" "firewalld.conf" +.TH "FIREWALLD\&.CONF" "5" "" "firewalld 2.3.1" "firewalld.conf" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -63,17 +63,11 @@ Setting this option to yes or true unloads all firewall\-related kernel modules If firewalld stops, it cleans up all firewall rules\&. Setting this option to no or false leaves the current firewall rules untouched\&. The default value is yes or true\&. .RE .PP -\fBLockdown\fR -.RS 4 -If this option is enabled, firewall changes with the D\-Bus interface will be limited to applications that are listed in the lockdown whitelist (see -\fBfirewalld.lockdown-whitelist\fR(5))\&. The default value is no or false\&. -.RE -.PP \fBIPv6_rpfilter\fR .RS 4 -If this option is enabled (it is by default), reverse path filter test on a packet for IPv6 is performed\&. If a reply to the packet would be sent via the same interface that the packet arrived on, the packet will match and be accepted, otherwise dropped\&. For IPv4 the rp_filter is controlled using sysctl\&. +Performs reverse path filtering (RPF) on IPv6 packets as per RFC 3704\&. Possible values: \- strict: Performs "strict" filtering as per RFC 3704\&. This check verifies that the in ingress interface is the same interface that would be used to send a packet reply to the source\&. That is, ingress == egress\&. \- loose: Performs "loose" filtering as per RFC 3704\&. This check only verifies that there is a route back to the source through any interface; even if it\*(Aqs not the same one on which the packet arrived\&. \- strict\-forward: This is almost identical to "loose", but does not perform RPF for packets targeted to the host (INPUT)\&. \- loose\-forward: This is almost identical to "loose", but does not perform RPF for packets targeted to the host (INPUT)\&. \- no: RPF is completely disabled\&. The rp_filter for IPv4 is controlled using sysctl\&. .sp -\fBNote\fR: This feature has a performance impact\&. In most cases the impact is not enough to cause a noticeable difference\&. It requires route lookups and its execution occurs before the established connections fast path\&. As such it can have a significant performance impact if there is a lot of traffic\&. It\*(Aqs enabled by default for security, but can be disabled if performance is a concern\&. +\fBNote\fR: This feature has a performance impact\&. In most cases the impact is not enough to cause a noticeable difference\&. It requires route lookups and its execution occurs before the established connections fast path\&. As such it can have a significant performance impact if there is a lot of traffic\&. It\*(Aqs enabled by default for security, but can be disabled if performance is a concern\&. Alternatively one of the variants that only does RPF on forwarded packets may be used\&. .RE .PP \fBIndividualCalls\fR @@ -123,6 +117,11 @@ The policy during reload\&. By default, all traffic except established connectio As per RFC 3964, filter IPv6 traffic with 6to4 destination addresses that correspond to IPv4 addresses that should not be routed over the public internet\&. Defaults to "yes"\&. .RE .PP +\fBStrictForwardPorts\fR +.RS 4 +If set to yes, the generated destination NAT (DNAT) rules will NOT accept traffic that was DNAT\*(Aqd by other entities, e\&.g\&. docker\&. Firewalld will be strict and not allow published container ports until they\*(Aqre explicitly allowed via firewalld\&. If set to no, then docker (and podman) integrates seamlessly with firewalld\&. Published container ports are implicitly allowed\&. Defaults to "no"\&. +.RE +.PP \fBAllowZoneDrifting\fR .RS 4 Deprecated\&. This option is ignored and no longer used\&. @@ -137,8 +136,13 @@ This may improve forwarded traffic throughput by enabling nftables flowtable\&. .RS 4 If set to yes, add a counter to every nftables rule\&. This is useful for debugging and comes with a small performance cost\&. Defaults to "no"\&. .RE +.PP +\fBNftablesTableOwner\fR +.RS 4 +If set to yes, the generated nftables rule set will be owned exclusively by firewalld\&. This prevents other entities from mistakenly (or maliciously) modifying firewalld\*(Aqs rule set\&. If you intentionally modify firewalld\*(Aqs rules, then you will have to set this to "no"\&. Defaults to "yes"\&. +.RE .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/firewalld.dbus.5 b/doc/man/man5/firewalld.dbus.5 index 2cd3c74..f3459d1 100644 --- a/doc/man/man5/firewalld.dbus.5 +++ b/doc/man/man5/firewalld.dbus.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.dbus .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.dbus -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.DBUS" "5" "" "firewalld 2.1.2" "firewalld.dbus" +.TH "FIREWALLD\&.DBUS" "5" "" "firewalld 2.3.1" "firewalld.dbus" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -43,7 +43,7 @@ the section called \(lqINTERFACES\(rq\&. org\&.fedoraproject\&.FirewallD1 org\&.fedoraproject\&.FirewallD1\&.direct (deprecated) org\&.fedoraproject\&.FirewallD1\&.ipset - org\&.fedoraproject\&.FirewallD1\&.policies + org\&.fedoraproject\&.FirewallD1\&.policies (deprecated) org\&.fedoraproject\&.FirewallD1\&.zone org\&.freedesktop\&.DBus\&.Introspectable org\&.freedesktop\&.DBus\&.Properties @@ -52,7 +52,7 @@ the section called \(lqINTERFACES\(rq\&. Interfaces org\&.fedoraproject\&.FirewallD1\&.config org\&.fedoraproject\&.FirewallD1\&.config\&.direct (deprecated) - org\&.fedoraproject\&.FirewallD1\&.config\&.policies + org\&.fedoraproject\&.FirewallD1\&.config\&.policies (deprecated) org\&.freedesktop\&.DBus\&.Introspectable org\&.freedesktop\&.DBus\&.Properties @@ -312,7 +312,7 @@ Reload firewall rules and keep state information\&. Current permanent configurat .PP runtimeToPermanent() → Nothing .RS 4 -Make runtime settings permanent\&. Replaces permanent settings with runtime settings for zones, services, icmptypes, direct (deprecated) and policies (lockdown whitelist)\&. +Make runtime settings permanent\&. Replaces permanent settings with runtime settings for zones, policies, services, icmptypes, and direct (deprecated)\&. .sp Possible errors: RT_TO_PERM_FAILED .RE @@ -1150,262 +1150,6 @@ being either (ebtables)\&. .RE .RE -.SS "org\&.fedoraproject\&.FirewallD1\&.policies" -.PP -Enables firewalld to be able to lock down configuration changes from local applications\&. Local applications or services are able to change the firewall configuration if they are running as root (example: libvirt)\&. With these operations administrator can lock the firewall configuration so that either none or only applications that are in the whitelist are able to request firewall changes\&. For permanent configuration see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies -interface\&. -.sp -.it 1 an-trap -.nr an-no-space-flag 1 -.nr an-break-flag 1 -.br -.ps +1 -\fBMethods\fR -.RS 4 -.PP -addLockdownWhitelistCommand(s: command) → Nothing -.RS 4 -Add -\fIcommand\fR -to whitelist\&. See -\fIcommand\fR -option in -\fBfirewalld.lockdown-whitelist\fR(5)\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.addLockdownWhitelistCommand\&. -.sp -Possible errors: ALREADY_ENABLED, INVALID_COMMAND -.RE -.PP -addLockdownWhitelistContext(s: context) → Nothing -.RS 4 -Add -\fIcontext\fR -to whitelist\&. See -\fIselinux\fR -option in -\fBfirewalld.lockdown-whitelist\fR(5)\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.addLockdownWhitelistContext\&. -.sp -Possible errors: ALREADY_ENABLED, INVALID_COMMAND -.RE -.PP -addLockdownWhitelistUid(i: uid) → Nothing -.RS 4 -Add user id -\fIuid\fR -to whitelist\&. See -\fIuser\fR -option in -\fBfirewalld.lockdown-whitelist\fR(5)\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.addLockdownWhitelistUid\&. -.sp -Possible errors: ALREADY_ENABLED, INVALID_COMMAND -.RE -.PP -addLockdownWhitelistUser(s: user) → Nothing -.RS 4 -Add -\fIuser\fR -name to whitelist\&. See -\fIuser\fR -option in -\fBfirewalld.lockdown-whitelist\fR(5)\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.addLockdownWhitelistUser\&. -.sp -Possible errors: ALREADY_ENABLED, INVALID_COMMAND -.RE -.PP -disableLockdown() → Nothing -.RS 4 -Disable lockdown\&. This is a runtime and permanent change\&. -.sp -Possible errors: NOT_ENABLED -.RE -.PP -enableLockdown() → Nothing -.RS 4 -Enable lockdown\&. Be careful \- if the calling application/user is not on lockdown whitelist when you enable lockdown you won\*(Aqt be able to disable it again with the application, you would need to edit firewalld\&.conf\&. This is a runtime and permanent change\&. -.sp -Possible errors: ALREADY_ENABLED -.RE -.PP -getLockdownWhitelistCommands() → as -.RS 4 -List all command lines (s) that are on whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.getLockdownWhitelistCommands\&. -.RE -.PP -getLockdownWhitelistContexts() → as -.RS 4 -List all contexts (s) that are on whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.getLockdownWhitelistContexts\&. -.RE -.PP -getLockdownWhitelistUids() → ai -.RS 4 -List all user ids (i) that are on whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.getLockdownWhitelistUids\&. -.RE -.PP -getLockdownWhitelistUsers() → as -.RS 4 -List all users (s) that are on whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.getLockdownWhitelistUsers\&. -.RE -.PP -queryLockdown() → b -.RS 4 -Query whether lockdown is enabled\&. -.RE -.PP -queryLockdownWhitelistCommand(s: command) → b -.RS 4 -Query whether -\fIcommand\fR -is on whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.queryLockdownWhitelistCommand\&. -.RE -.PP -queryLockdownWhitelistContext(s: context) → b -.RS 4 -Query whether -\fIcontext\fR -is on whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.queryLockdownWhitelistContext\&. -.RE -.PP -queryLockdownWhitelistUid(i: uid) → b -.RS 4 -Query whether user id -\fIuid\fR -is on whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.queryLockdownWhitelistUid\&. -.RE -.PP -queryLockdownWhitelistUser(s: user) → b -.RS 4 -Query whether -\fIuser\fR -is on whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.queryLockdownWhitelistUser\&. -.RE -.PP -removeLockdownWhitelistCommand(s: command) → Nothing -.RS 4 -Remove -\fIcommand\fR -from whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.removeLockdownWhitelistCommand\&. -.sp -Possible errors: NOT_ENABLED -.RE -.PP -removeLockdownWhitelistContext(s: context) → Nothing -.RS 4 -Remove -\fIcontext\fR -from whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.removeLockdownWhitelistContext\&. -.sp -Possible errors: NOT_ENABLED -.RE -.PP -removeLockdownWhitelistUid(i: uid) → Nothing -.RS 4 -Remove user id -\fIuid\fR -from whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.removeLockdownWhitelistUid\&. -.sp -Possible errors: NOT_ENABLED -.RE -.PP -removeLockdownWhitelistUser(s: user) → Nothing -.RS 4 -Remove -\fIuser\fR -from whitelist\&. For permanent operation see -org\&.fedoraproject\&.FirewallD1\&.config\&.policies\&.Methods\&.removeLockdownWhitelistUser\&. -.sp -Possible errors: NOT_ENABLED -.RE -.RE -.sp -.it 1 an-trap -.nr an-no-space-flag 1 -.nr an-break-flag 1 -.br -.ps +1 -\fBSignals\fR -.RS 4 -.PP -LockdownDisabled() -.RS 4 -Emitted when lockdown has been disabled\&. -.RE -.PP -LockdownEnabled() -.RS 4 -Emitted when lockdown has been enabled\&. -.RE -.PP -LockdownWhitelistCommandAdded(s: command) -.RS 4 -Emitted when -\fIcommand\fR -has been added to whitelist\&. -.RE -.PP -LockdownWhitelistCommandRemoved(s: command) -.RS 4 -Emitted when -\fIcommand\fR -has been removed from whitelist\&. -.RE -.PP -LockdownWhitelistContextAdded(s: context) -.RS 4 -Emitted when -\fIcontext\fR -has been added to whitelist\&. -.RE -.PP -LockdownWhitelistContextRemoved(s: context) -.RS 4 -Emitted when -\fIcontext\fR -has been removed from whitelist\&. -.RE -.PP -LockdownWhitelistUidAdded(i: uid) -.RS 4 -Emitted when user id -\fIuid\fR -has been added to whitelist\&. -.RE -.PP -LockdownWhitelistUidRemoved(i: uid) -.RS 4 -Emitted when user id -\fIuid\fR -has been removed from whitelist\&. -.RE -.PP -LockdownWhitelistUserAdded(s: user) -.RS 4 -Emitted when -\fIuser\fR -has been added to whitelist\&. -.RE -.PP -LockdownWhitelistUserRemoved(s: user) -.RS 4 -Emitted when -\fIuser\fR -has been removed from whitelist\&. -.RE -.RE .SS "org\&.fedoraproject\&.FirewallD1\&.zone" .PP Operations in this interface allows one to get, add, remove and query runtime zone\*(Aqs settings\&. For permanent settings see @@ -3083,19 +2827,20 @@ FlushAllOnReload \- s \- (rw) Flush all runtime rules on a reload\&. Valid options are; yes, no\&. .RE .PP -\fIIPv6_rpfilter\fR \- s \- (rw) +\fIIPv6_rpfilter\fR \- b \- (rw) .RS 4 -Indicates whether the reverse path filter test on a packet for IPv6 is enabled\&. If a reply to the packet would be sent via the same interface that the packet arrived on, the packet will match and be accepted, otherwise dropped\&. +Deprecated\&. See +org\&.fedoraproject\&.FirewallD1\&.config\&.Properties\&.IPv6_rpfilter2\&. .RE .PP -\fIIndividualCalls\fR \- s \- (ro) +\fIIPv6_rpfilter2\fR \- s \- (rw) .RS 4 -Indicates whether individual calls combined \-restore calls are used\&. If enabled, this increases the time that is needed to apply changes and to start the daemon, but is good for debugging\&. +Indicates whether the reverse path filter (RFE 3704) test on a packet for IPv6 is enabled\&. .RE .PP -Lockdown \- s \- (rw) +\fIIndividualCalls\fR \- s \- (ro) .RS 4 -If this property is enabled, firewall changes with the D\-Bus interface will be limited to applications that are listed in the lockdown whitelist\&. +Indicates whether individual calls combined \-restore calls are used\&. If enabled, this increases the time that is needed to apply changes and to start the daemon, but is good for debugging\&. .RE .PP LogDenied \- s \- (rw) @@ -3119,6 +2864,11 @@ RFC3964_IPv4 \- s \- (rw) As per RFC 3964, filter IPv6 traffic with 6to4 destination addresses that correspond to IPv4 addresses that should not be routed over the public internet\&. Valid options are; yes, no\&. .RE .PP +StrictForwardPorts \- s \- (rw) +.RS 4 +If set to yes, the generated destination NAT (DNAT) rules will NOT accept traffic that was DNAT\*(Aqd by other entities, e\&.g\&. docker\&. Firewalld will be strict and not allow published container ports until they\*(Aqre explicitly allowed via firewalld\&. If set to no, then docker (and podman) integrates seamlessly with firewalld\&. Published container ports are implicitly allowed\&. +.RE +.PP NftablesFlowtable \- s \- (rw) .RS 4 This may improve forwarded traffic throughput by enabling nftables flowtable\&. It is a software fastpath and avoids calling nftables rule evaluation for data packets\&. Its value is a space separate list of interfaces\&. @@ -3128,6 +2878,11 @@ NftablesCounters \- s \- (rw) .RS 4 If set to yes, add a counter to every nftables rule\&. This is useful for debugging and comes with a small performance cost\&. .RE +.PP +NftablesTableOwner \- s \- (rw) +.RS 4 +If set to yes, the generated nftables rule set will be owned exclusively by firewalld\&. This prevents other entities from mistakenly (or maliciously) modifying firewalld\*(Aqs rule set\&. If you intentionally modify firewalld\*(Aqs rules, then you will have to set this to "no"\&. +.RE .RE .SS "org\&.fedoraproject\&.FirewallD1\&.config\&.direct" .sp @@ -3579,237 +3334,6 @@ Updated() Emitted when configuration has been updated\&. .RE .RE -.SS "org\&.fedoraproject\&.FirewallD1\&.config\&.policies" -.PP -Interface for permanent lockdown\-whitelist configuration, see also -\fBfirewalld.lockdown-whitelist\fR(5)\&. For runtime configuration see -org\&.fedoraproject\&.FirewallD1\&.policies -interface\&. -.sp -.it 1 an-trap -.nr an-no-space-flag 1 -.nr an-break-flag 1 -.br -.ps +1 -\fBMethods\fR -.RS 4 -.PP -addLockdownWhitelistCommand(s: command) → Nothing -.RS 4 -Add -\fIcommand\fR -to whitelist\&. See -\fIcommand\fR -option in -\fBfirewalld.lockdown-whitelist\fR(5)\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.addLockdownWhitelistCommand\&. -.sp -Possible errors: ALREADY_ENABLED, INVALID_TYPE -.RE -.PP -addLockdownWhitelistContext(s: context) → Nothing -.RS 4 -Add -\fIcontext\fR -to whitelist\&. See -\fIselinux\fR -option in -\fBfirewalld.lockdown-whitelist\fR(5)\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.addLockdownWhitelistContext\&. -.sp -Possible errors: ALREADY_ENABLED, INVALID_TYPE -.RE -.PP -addLockdownWhitelistUid(i: uid) → Nothing -.RS 4 -Add user id -\fIuid\fR -to whitelist\&. See -\fIuser\fR -option in -\fBfirewalld.lockdown-whitelist\fR(5)\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.addLockdownWhitelistUid\&. -.sp -Possible errors: ALREADY_ENABLED, INVALID_TYPE -.RE -.PP -addLockdownWhitelistUser(s: user) → Nothing -.RS 4 -Add -\fIuser\fR -name to whitelist\&. See -\fIuser\fR -option in -\fBfirewalld.lockdown-whitelist\fR(5)\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.addLockdownWhitelistUser\&. -.sp -Possible errors: ALREADY_ENABLED, INVALID_TYPE -.RE -.PP -getLockdownWhitelist() → (asasasai) -.RS 4 -Get settings of permanent lockdown\-whitelist configuration in format: -\fIcommands\fR, -\fIselinux contexts\fR, -\fIusers\fR, -\fIuids\fR -.PP -\fIcommands (as)\fR: see \fIcommand\fR option in \fBfirewalld.lockdown-whitelist\fR(5)\&. -.RS 4 -.RE -.PP -\fIselinux contexts (as)\fR: see \fIselinux\fR option in \fBfirewalld.lockdown-whitelist\fR(5)\&. -.RS 4 -.RE -.PP -\fIusers (as)\fR: see \fIname\fR attribute of \fIuser\fR option in \fBfirewalld.lockdown-whitelist\fR(5)\&. -.RS 4 -.RE -.PP -\fIuids (ai)\fR: see \fIid\fR attribute of \fIuser\fR option in \fBfirewalld.lockdown-whitelist\fR(5)\&. -.RS 4 -.RE -.sp -.RE -.PP -getLockdownWhitelistCommands() → as -.RS 4 -List all command lines (s) that are on whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.getLockdownWhitelistCommands\&. -.RE -.PP -getLockdownWhitelistContexts() → as -.RS 4 -List all contexts (s) that are on whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.getLockdownWhitelistContexts\&. -.RE -.PP -getLockdownWhitelistUids() → ai -.RS 4 -List all user ids (i) that are on whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.getLockdownWhitelistUids\&. -.RE -.PP -getLockdownWhitelistUsers() → as -.RS 4 -List all users (s) that are on whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.getLockdownWhitelistUsers\&. -.RE -.PP -queryLockdownWhitelistCommand(s: command) → b -.RS 4 -Query whether -\fIcommand\fR -is on whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.queryLockdownWhitelistCommand\&. -.RE -.PP -queryLockdownWhitelistContext(s: context) → b -.RS 4 -Query whether -\fIcontext\fR -is on whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.queryLockdownWhitelistContext\&. -.RE -.PP -queryLockdownWhitelistUid(i: uid) → b -.RS 4 -Query whether user id -\fIuid\fR -is on whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.queryLockdownWhitelistUid\&. -.RE -.PP -queryLockdownWhitelistUser(s: user) → b -.RS 4 -Query whether -\fIuser\fR -is on whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.queryLockdownWhitelistUser\&. -.RE -.PP -removeLockdownWhitelistCommand(s: command) → Nothing -.RS 4 -Remove -\fIcommand\fR -from whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.removeLockdownWhitelistCommand\&. -.sp -Possible errors: NOT_ENABLED -.RE -.PP -removeLockdownWhitelistContext(s: context) → Nothing -.RS 4 -Remove -\fIcontext\fR -from whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.removeLockdownWhitelistContext\&. -.sp -Possible errors: NOT_ENABLED -.RE -.PP -removeLockdownWhitelistUid(i: uid) → Nothing -.RS 4 -Remove user id -\fIuid\fR -from whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.removeLockdownWhitelistUid\&. -.sp -Possible errors: NOT_ENABLED -.RE -.PP -removeLockdownWhitelistUser(s: user) → Nothing -.RS 4 -Remove -\fIuser\fR -from whitelist\&. For runtime operation see -org\&.fedoraproject\&.FirewallD1\&.policies\&.Methods\&.removeLockdownWhitelistUser\&. -.sp -Possible errors: NOT_ENABLED -.RE -.PP -setLockdownWhitelist((asasasai): settings) → Nothing -.RS 4 -Set permanent lockdown\-whitelist configuration to -\fIsettings\fR\&. Settings are in format: -\fIcommands\fR, -\fIselinux contexts\fR, -\fIusers\fR, -\fIuids\fR -.PP -\fIcommands (as)\fR: see \fIcommand\fR option in \fBfirewalld.lockdown-whitelist\fR(5)\&. -.RS 4 -.RE -.PP -\fIselinux contexts (as)\fR: see \fIselinux\fR option in \fBfirewalld.lockdown-whitelist\fR(5)\&. -.RS 4 -.RE -.PP -\fIusers (as)\fR: see \fIname\fR attribute of \fIuser\fR option in \fBfirewalld.lockdown-whitelist\fR(5)\&. -.RS 4 -.RE -.PP -\fIuids (ai)\fR: see \fIid\fR attribute of \fIuser\fR option in \fBfirewalld.lockdown-whitelist\fR(5)\&. -.RS 4 -.RE -.sp -Possible errors: INVALID_TYPE -.RE -.RE -.sp -.it 1 an-trap -.nr an-no-space-flag 1 -.nr an-break-flag 1 -.br -.ps +1 -\fBSignals\fR -.RS 4 -.PP -LockdownWhitelistUpdated() -.RS 4 -Emitted when permanent lockdown\-whitelist configuration has been updated\&. -.RE -.RE .SS "org\&.fedoraproject\&.FirewallD1\&.config\&.ipset" .PP Interface for permanent ipset configuration, see also @@ -6321,7 +5845,7 @@ Path to directory where the icmp type configuration is stored\&. Should be eithe .RE .RE .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/firewalld.direct.5 b/doc/man/man5/firewalld.direct.5 index b7ec57f..138dfed 100644 --- a/doc/man/man5/firewalld.direct.5 +++ b/doc/man/man5/firewalld.direct.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.direct .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.direct -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.DIRECT" "5" "" "firewalld 2.1.2" "firewalld.direct" +.TH "FIREWALLD\&.DIRECT" "5" "" "firewalld 2.3.1" "firewalld.direct" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -279,7 +279,7 @@ Denylisting of the networks 192\&.168\&.1\&.0/24 and 192\&.168\&.5\&.0/24 with l .\} .sp .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/firewalld.helper.5 b/doc/man/man5/firewalld.helper.5 index d13c4a0..7125dca 100644 --- a/doc/man/man5/firewalld.helper.5 +++ b/doc/man/man5/firewalld.helper.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.helper .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.helper -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.HELPER" "5" "" "firewalld 2.1.2" "firewalld.helper" +.TH "FIREWALLD\&.HELPER" "5" "" "firewalld 2.3.1" "firewalld.helper" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -116,7 +116,7 @@ or \fBdccp\fR\&. .RE .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/firewalld.icmptype.5 b/doc/man/man5/firewalld.icmptype.5 index 89d2d2b..44af071 100644 --- a/doc/man/man5/firewalld.icmptype.5 +++ b/doc/man/man5/firewalld.icmptype.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.icmptype .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.icmptype -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.ICMPTYPE" "5" "" "firewalld 2.1.2" "firewalld.icmptype" +.TH "FIREWALLD\&.ICMPTYPE" "5" "" "firewalld 2.3.1" "firewalld.icmptype" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -90,7 +90,7 @@ ipv6="\fIbool\fR" Describes if the icmptype is available for IPv6\&. .RE .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/firewalld.ipset.5 b/doc/man/man5/firewalld.ipset.5 index d9469cb..1d56cd4 100644 --- a/doc/man/man5/firewalld.ipset.5 +++ b/doc/man/man5/firewalld.ipset.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.ipset .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.ipset -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.IPSET" "5" "" "firewalld 2.1.2" "firewalld.ipset" +.TH "FIREWALLD\&.IPSET" "5" "" "firewalld 2.3.1" "firewalld.ipset" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -108,7 +108,7 @@ The supported options are: family: .PP Is an optional start and end tag and can be used several times to have more than one entry entry\&. An entry entry does not have attributes\&. .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/firewalld.lockdown-whitelist.5 b/doc/man/man5/firewalld.lockdown-whitelist.5 deleted file mode 100644 index ec3042c..0000000 --- a/doc/man/man5/firewalld.lockdown-whitelist.5 +++ /dev/null @@ -1,140 +0,0 @@ -'\" t -.\" Title: firewalld.lockdown-whitelist -.\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 -.\" Date: -.\" Manual: firewalld.lockdown-whitelist -.\" Source: firewalld 2.1.2 -.\" Language: English -.\" -.TH "FIREWALLD\&.LOCKDOWN" "5" "" "firewalld 2.1.2" "firewalld.lockdown-whitelist" -.\" ----------------------------------------------------------------- -.\" * Define some portability stuff -.\" ----------------------------------------------------------------- -.\" ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -.\" http://bugs.debian.org/507673 -.\" http://lists.gnu.org/archive/html/groff/2009-02/msg00013.html -.\" ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -.ie \n(.g .ds Aq \(aq -.el .ds Aq ' -.\" ----------------------------------------------------------------- -.\" * set default formatting -.\" ----------------------------------------------------------------- -.\" disable hyphenation -.nh -.\" disable justification (adjust text to left margin only) -.ad l -.\" ----------------------------------------------------------------- -.\" * MAIN CONTENT STARTS HERE * -.\" ----------------------------------------------------------------- -.SH "NAME" -firewalld.lockdown-whitelist \- firewalld lockdown whitelist configuration file -.SH "SYNOPSIS" -.PP -.nf - \fI/usr/etc/firewalld/lockdown\-whitelist\&.xml\fR - -.fi -.sp -.SH "DESCRIPTION" -.PP -The firewalld lockdown\-whitelist configuration file contains the selinux contexts, commands, users and user ids that are white\-listed when firewalld lockdown feature is enabled (see -\fBfirewalld.conf\fR(5) -and -\fBfirewall-cmd\fR(1))\&. -.PP -This example configuration file shows the structure of an lockdown\-whitelist file: -.sp -.if n \{\ -.RS 4 -.\} -.nf - - - - - - - -.fi -.if n \{\ -.RE -.\} -.sp -.SH "OPTIONS" -.PP -The config can contain these tags and attributes\&. Some of them are mandatory, others optional\&. -.SS "whitelist" -.PP -The mandatory whitelist start and end tag defines the lockdown\-whitelist\&. This tag can only be used once in a lockdown\-whitelist configuration file\&. There are no attributes for this\&. -.SS "selinux" -.PP -Is an optional empty\-element tag and can be used several times to have more than one selinux contexts entries\&. A selinux entry has exactly one attribute: -.PP -context="\fIstring\fR" -.RS 4 -The context is the security (SELinux) context of a running application or service\&. -.sp -To get the context of a running application use -\fBps \-e \-\-context\fR -and search for the application that should be white\-listed\&. -.sp -Warning: If the context of an application is unconfined, then this will open access for more than the desired application\&. -.RE -.SS "command" -.PP -Is an optional empty\-element tag and can be used several times to have more than one command entry\&. A command entry has exactly one attribute: -.PP -name="\fIstring\fR" -.RS 4 -The command -\fIstring\fR -is a complete command line including path and also attributes\&. -.sp -If a command entry ends with an asterisk \*(Aq*\*(Aq, then all command lines starting with the command will match\&. If the \*(Aq*\*(Aq is not there the absolute command inclusive arguments must match\&. -.sp -Commands for user root and others is not always the same, the used path depends on the use of the -\fBPATH\fR -environment variable\&. -.RE -.SS "user" -.PP -Is an optional empty\-element tag and can be used several times to white\-list more than one user\&. A user entry has exactly one attribute of these: -.PP -name="\fIstring\fR" -.RS 4 -The user with the name -\fIstring\fR -will be white\-listed\&. -.RE -.PP -id="\fIinteger\fR" -.RS 4 -The user with the id -\fIuserid\fR -will be white\-listed\&. -.RE -.SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) -.SH "NOTES" -.PP -firewalld home page: -.RS 4 -\m[blue]\fB\%http://firewalld.org\fR\m[] -.RE -.SH "AUTHORS" -.PP -\fBThomas Woerner\fR <\&twoerner@redhat\&.com\&> -.RS 4 -Developer -.RE -.PP -\fBJiri Popelka\fR <\&jpopelka@redhat\&.com\&> -.RS 4 -Developer -.RE -.PP -\fBEric Garver\fR <\&eric@garver\&.life\&> -.RS 4 -Developer -.RE diff --git a/doc/man/man5/firewalld.policies.5 b/doc/man/man5/firewalld.policies.5 index 1a76c81..8e83856 100644 --- a/doc/man/man5/firewalld.policies.5 +++ b/doc/man/man5/firewalld.policies.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.policies .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.policies -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.POLICIES" "5" "" "firewalld 2.1.2" "firewalld.policies" +.TH "FIREWALLD\&.POLICIES" "5" "" "firewalld 2.3.1" "firewalld.policies" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -32,7 +32,7 @@ firewalld.policies \- firewalld policies .SH "DESCRIPTION" .SS "What is a policy?" .PP -A policy applies a set of rules to traffic flowing between between zones (see zones (see +A policy applies a set of rules to traffic flowing between zones (see zones (see \fBfirewalld.zones\fR(5))\&. The policy affects traffic in a stateful unidirectional manner, e\&.g\&. zoneA to zoneB\&. This allows asynchronous filtering policies\&. .PP A policy\*(Aqs relationship to zones is defined by assigning a set of ingress zones and a set of egress zones\&. For example, if the set of ingress zones contains "public" and the set of egress zones contains "internal" then the policy will affect all traffic flowing from the "public" zone to the "internal" zone\&. However, since policies are unidirectional it will not apply to traffic flowing from "internal" to "public"\&. Note that the ingress set and egress set can contain multiple zones\&. @@ -169,7 +169,7 @@ Policies are similar to zones in that they are an attachment point for firewalld .PP The main difference between policies and zones is that policies allow filtering in all directions: input, output, and forwarding\&. With a couple of exceptions zones only allow input filtering which is sufficient for an end station firewalling\&. However, for network level filtering or filtering on behalf of virtual machines and containers something more flexible, i\&.e\&. policies, are needed\&. .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/firewalld.policy.5 b/doc/man/man5/firewalld.policy.5 index 515433a..068d724 100644 --- a/doc/man/man5/firewalld.policy.5 +++ b/doc/man/man5/firewalld.policy.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.policy .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.policy -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.POLICY" "5" "" "firewalld 2.1.2" "firewalld.policy" +.TH "FIREWALLD\&.POLICY" "5" "" "firewalld 2.3.1" "firewalld.policy" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -333,7 +333,7 @@ Rule structure for source black or white listing: For a full description on rich language rules, please have a look at \fBfirewalld.richlanguage\fR(5)\&. .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/firewalld.richlanguage.5 b/doc/man/man5/firewalld.richlanguage.5 index d4ecb23..5d6b1cc 100644 --- a/doc/man/man5/firewalld.richlanguage.5 +++ b/doc/man/man5/firewalld.richlanguage.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.richlanguage .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.richlanguage -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.RICHLANG" "5" "" "firewalld 2.1.2" "firewalld.richlanguage" +.TH "FIREWALLD\&.RICHLANG" "5" "" "firewalld 2.3.1" "firewalld.richlanguage" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -639,7 +639,7 @@ rule family="ipv4" source address="192\&.168\&.2\&.4" drop .\} .sp .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/firewalld.service.5 b/doc/man/man5/firewalld.service.5 index 1f4c81c..b10573b 100644 --- a/doc/man/man5/firewalld.service.5 +++ b/doc/man/man5/firewalld.service.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.service .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.service -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.SERVICE" "5" "" "firewalld 2.1.2" "firewalld.service" +.TH "FIREWALLD\&.SERVICE" "5" "" "firewalld 2.3.1" "firewalld.service" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -179,7 +179,7 @@ name="\fIstring\fR" The helper can be any helper supported by firewalld\&. .RE .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/firewalld.zone.5 b/doc/man/man5/firewalld.zone.5 index c7ea2f6..a79d12c 100644 --- a/doc/man/man5/firewalld.zone.5 +++ b/doc/man/man5/firewalld.zone.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.zone .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.zone -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.ZONE" "5" "" "firewalld 2.1.2" "firewalld.zone" +.TH "FIREWALLD\&.ZONE" "5" "" "firewalld 2.3.1" "firewalld.zone" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -379,7 +379,7 @@ Rule structure for source black or white listing: For a full description on rich language rules, please have a look at \fBfirewalld.richlanguage\fR(5)\&. .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/man/man5/firewalld.zones.5 b/doc/man/man5/firewalld.zones.5 index 9af0d9a..bcc5003 100644 --- a/doc/man/man5/firewalld.zones.5 +++ b/doc/man/man5/firewalld.zones.5 @@ -1,13 +1,13 @@ '\" t .\" Title: firewalld.zones .\" Author: Thomas Woerner -.\" Generator: DocBook XSL Stylesheets v1.79.1 +.\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: .\" Manual: firewalld.zones -.\" Source: firewalld 2.1.2 +.\" Source: firewalld 2.3.1 .\" Language: English .\" -.TH "FIREWALLD\&.ZONES" "5" "" "firewalld 2.1.2" "firewalld.zones" +.TH "FIREWALLD\&.ZONES" "5" "" "firewalld 2.3.1" "firewalld.zones" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -214,7 +214,7 @@ For the addition or change of interfaces that are not under control of NetworkMa .PP Only for the removal of interfaces that are not under control of NetworkManager: firewalld is not trying to change the ZONE setting in the ifcfg file\&. This is needed to make sure that an ifdown of the interface will not result in a reset of the zone setting to the default zone\&. Only the zone binding is then removed in firewalld then\&. .SH "SEE ALSO" -\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewalld.lockdown-whitelist\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) +\fBfirewall-applet\fR(1), \fBfirewalld\fR(1), \fBfirewall-cmd\fR(1), \fBfirewall-config\fR(1), \fBfirewalld.conf\fR(5), \fBfirewalld.direct\fR(5), \fBfirewalld.dbus\fR(5), \fBfirewalld.icmptype\fR(5), \fBfirewall-offline-cmd\fR(1), \fBfirewalld.richlanguage\fR(5), \fBfirewalld.service\fR(5), \fBfirewalld.zone\fR(5), \fBfirewalld.zones\fR(5), \fBfirewalld.policy\fR(5), \fBfirewalld.policies\fR(5), \fBfirewalld.ipset\fR(5), \fBfirewalld.helper\fR(5) .SH "NOTES" .PP firewalld home page: diff --git a/doc/xml/Makefile.am b/doc/xml/Makefile.am index 3924e7c..41de59d 100644 --- a/doc/xml/Makefile.am +++ b/doc/xml/Makefile.am @@ -24,7 +24,6 @@ man5_MANS = \ ../man/man5/firewalld.helper.5 \ ../man/man5/firewalld.icmptype.5 \ ../man/man5/firewalld.ipset.5 \ - ../man/man5/firewalld.lockdown-whitelist.5 \ ../man/man5/firewalld.richlanguage.5 \ ../man/man5/firewalld.service.5 \ ../man/man5/firewalld.zone.5 \ diff --git a/doc/xml/Makefile.in b/doc/xml/Makefile.in index 3155ef4..7fa23a2 100644 --- a/doc/xml/Makefile.in +++ b/doc/xml/Makefile.in @@ -1,7 +1,7 @@ -# Makefile.in generated by automake 1.16.1 from Makefile.am. +# Makefile.in generated by automake 1.16.5 from Makefile.am. # @configure_input@ -# Copyright (C) 1994-2018 Free Software Foundation, Inc. +# Copyright (C) 1994-2021 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -159,6 +159,8 @@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ BASHCOMPLETIONDIR = @BASHCOMPLETIONDIR@ +CSCOPE = @CSCOPE@ +CTAGS = @CTAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_LOG_TARGET = @DEFAULT_LOG_TARGET@ DEFS = @DEFS@ @@ -167,6 +169,7 @@ EBTABLES_RESTORE = @EBTABLES_RESTORE@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ +ETAGS = @ETAGS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GETTEXT_PACKAGE = @GETTEXT_PACKAGE@ GLIB_COMPILE_SCHEMAS = @GLIB_COMPILE_SCHEMAS@ @@ -204,8 +207,8 @@ MAKEINFO = @MAKEINFO@ MKDIR_P = @MKDIR_P@ MODPROBE = @MODPROBE@ MSGFMT = @MSGFMT@ -MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ +MSGMERGE_FOR_MSGFMT_OPTION = @MSGMERGE_FOR_MSGFMT_OPTION@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ @@ -311,7 +314,6 @@ top_srcdir = @top_srcdir@ @ENABLE_DOCS_TRUE@ ../man/man5/firewalld.helper.5 \ @ENABLE_DOCS_TRUE@ ../man/man5/firewalld.icmptype.5 \ @ENABLE_DOCS_TRUE@ ../man/man5/firewalld.ipset.5 \ -@ENABLE_DOCS_TRUE@ ../man/man5/firewalld.lockdown-whitelist.5 \ @ENABLE_DOCS_TRUE@ ../man/man5/firewalld.richlanguage.5 \ @ENABLE_DOCS_TRUE@ ../man/man5/firewalld.service.5 \ @ENABLE_DOCS_TRUE@ ../man/man5/firewalld.zone.5 \ @@ -460,7 +462,6 @@ ctags CTAGS: cscope cscopelist: - distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am diff --git a/doc/xml/errorcodes.xml b/doc/xml/errorcodes.xml index b057214..e414fd8 100644 --- a/doc/xml/errorcodes.xml +++ b/doc/xml/errorcodes.xml @@ -70,6 +70,7 @@ INVALID_LOG_PREFIX141 INVALID_NFLOG_GROUP142 INVALID_NFLOG_QUEUE143 +INVALID_SOURCE144 MISSING_TABLE200 MISSING_CHAIN201 MISSING_PORT202 diff --git a/doc/xml/firewall-cmd.xml b/doc/xml/firewall-cmd.xml index b42b936..977cda3 100644 --- a/doc/xml/firewall-cmd.xml +++ b/doc/xml/firewall-cmd.xml @@ -2395,226 +2395,6 @@ For interfaces that are not under control of NetworkManager, firewalld tries to - - - Lockdown Options - - Local applications or services are able to change the firewall configuration if they are running as root (example: libvirt) or are authenticated using PolicyKit. With this feature administrators can lock the firewall configuration so that only applications on lockdown whitelist are able to request firewall changes. - - - The lockdown access check limits D-Bus methods that are changing firewall rules. Query, list and get methods are not limited. - - - The lockdown feature is a very light version of user and application policies for firewalld and is turned off by default. - - - - - - - Enable lockdown. Be careful - if firewall-cmd is not on lockdown whitelist when you enable lockdown you won't be able to disable it again with firewall-cmd, you would need to edit firewalld.conf. - - - This is a runtime and permanent change. - - - - - - - - - Disable lockdown. - - - This is a runtime and permanent change. - - - - - - - - - Query whether lockdown is enabled. Returns 0 if lockdown is enabled, 1 otherwise. - - - - - - - - Lockdown Whitelist Options - - The lockdown whitelist can contain commands, contexts, users and user ids. - - - If a command entry on the whitelist ends with an asterisk '*', then all command lines starting with the command will match. If the '*' is not there the absolute command inclusive arguments must match. - - - Command paths for users are not always the same and depends on the users PATH. Some distributions symlink /bin to /usr/bin in which case it depends on the order they appear in the PATH environment variable. - - - The context is the security (SELinux) context of a running application or service. To get the context of a running application use ps -e --context. - - - Warning: If the context is unconfined, then this will open access for more than the desired application. - - - The lockdown whitelist entries are checked in the following order: - - 1. context - 2. uid - 3. user - 4. command - - - - - - - - List all command lines that are on the whitelist. - - - - - - =command - - - Add the command to the whitelist. - - - - - - =command - - - Remove the command from the whitelist. - - - - - - =command - - - Query whether the command is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - - - - - List all contexts that are on the whitelist. - - - - - - =context - - - Add the context context to the whitelist. - - - - - - =context - - - Remove the context from the whitelist. - - - - - - =context - - - Query whether the context is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - - - - - List all user ids that are on the whitelist. - - - - - - =uid - - - Add the user id uid to the whitelist. - - - - - - =uid - - - Remove the user id uid from the whitelist. - - - - - - =uid - - - Query whether the user id uid is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - - - - - List all user names that are on the whitelist. - - - - - - =user - - - Add the user name user to the whitelist. - - - - - - =user - - - Remove the user name user from the whitelist. - - - - - - =user - - - Query whether the user name user is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - diff --git a/doc/xml/firewall-cmd.xml.in b/doc/xml/firewall-cmd.xml.in index 89008cf..50c9fff 100644 --- a/doc/xml/firewall-cmd.xml.in +++ b/doc/xml/firewall-cmd.xml.in @@ -2395,226 +2395,6 @@ For interfaces that are not under control of NetworkManager, firewalld tries to - - - Lockdown Options - - Local applications or services are able to change the firewall configuration if they are running as root (example: libvirt) or are authenticated using PolicyKit. With this feature administrators can lock the firewall configuration so that only applications on lockdown whitelist are able to request firewall changes. - - - The lockdown access check limits D-Bus methods that are changing firewall rules. Query, list and get methods are not limited. - - - The lockdown feature is a very light version of user and application policies for firewalld and is turned off by default. - - - - - - - Enable lockdown. Be careful - if firewall-cmd is not on lockdown whitelist when you enable lockdown you won't be able to disable it again with firewall-cmd, you would need to edit firewalld.conf. - - - This is a runtime and permanent change. - - - - - - - - - Disable lockdown. - - - This is a runtime and permanent change. - - - - - - - - - Query whether lockdown is enabled. Returns 0 if lockdown is enabled, 1 otherwise. - - - - - - - - Lockdown Whitelist Options - - The lockdown whitelist can contain commands, contexts, users and user ids. - - - If a command entry on the whitelist ends with an asterisk '*', then all command lines starting with the command will match. If the '*' is not there the absolute command inclusive arguments must match. - - - Command paths for users are not always the same and depends on the users PATH. Some distributions symlink /bin to /usr/bin in which case it depends on the order they appear in the PATH environment variable. - - - The context is the security (SELinux) context of a running application or service. To get the context of a running application use ps -e --context. - - - Warning: If the context is unconfined, then this will open access for more than the desired application. - - - The lockdown whitelist entries are checked in the following order: - - 1. context - 2. uid - 3. user - 4. command - - - - - - - - List all command lines that are on the whitelist. - - - - - - =command - - - Add the command to the whitelist. - - - - - - =command - - - Remove the command from the whitelist. - - - - - - =command - - - Query whether the command is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - - - - - List all contexts that are on the whitelist. - - - - - - =context - - - Add the context context to the whitelist. - - - - - - =context - - - Remove the context from the whitelist. - - - - - - =context - - - Query whether the context is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - - - - - List all user ids that are on the whitelist. - - - - - - =uid - - - Add the user id uid to the whitelist. - - - - - - =uid - - - Remove the user id uid from the whitelist. - - - - - - =uid - - - Query whether the user id uid is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - - - - - List all user names that are on the whitelist. - - - - - - =user - - - Add the user name user to the whitelist. - - - - - - =user - - - Remove the user name user from the whitelist. - - - - - - =user - - - Query whether the user name user is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - diff --git a/doc/xml/firewall-offline-cmd.xml b/doc/xml/firewall-offline-cmd.xml index f10bc66..5dbfeb8 100644 --- a/doc/xml/firewall-offline-cmd.xml +++ b/doc/xml/firewall-offline-cmd.xml @@ -2365,220 +2365,6 @@ - - Lockdown Options - - Local applications or services are able to change the firewall configuration if they are running as root (example: libvirt) or are authenticated using PolicyKit. With this feature administrators can lock the firewall configuration so that only applications on lockdown whitelist are able to request firewall changes. - - - The lockdown access check limits D-Bus methods that are changing firewall rules. Query, list and get methods are not limited. - - - The lockdown feature is a very light version of user and application policies for firewalld and is turned off by default. - - - - - - - Enable lockdown. Be careful - if firewall-cmd is not on lockdown whitelist when you enable lockdown you won't be able to disable it again with firewall-cmd, you would need to edit firewalld.conf. - - - - - - - - - Disable lockdown. - - - - - - - - - Query whether lockdown is enabled. Returns 0 if lockdown is enabled, 1 otherwise. - - - - - - - - Lockdown Whitelist Options - - The lockdown whitelist can contain commands, contexts, users and user ids. - - - If a command entry on the whitelist ends with an asterisk '*', then all command lines starting with the command will match. If the '*' is not there the absolute command inclusive arguments must match. - - - Commands for user root and others is not always the same. Example: As root /bin/firewall-cmd is used, as a normal user /usr/bin/firewall-cmd is be used on Fedora. - - - The context is the security (SELinux) context of a running application or service. To get the context of a running application use ps -e --context. - - - Warning: If the context is unconfined, then this will open access for more than the desired application. - - - The lockdown whitelist entries are checked in the following order: - - 1. context - 2. uid - 3. user - 4. command - - - - - - - - List all command lines that are on the whitelist. - - - - - - =command - - - Add the command to the whitelist. - - - - - - =command - - - Remove the command from the whitelist. - - - - - - =command - - - Query whether the command is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - - - - - List all contexts that are on the whitelist. - - - - - - =context - - - Add the context context to the whitelist. - - - - - - =context - - - Remove the context from the whitelist. - - - - - - =context - - - Query whether the context is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - - - - - List all user ids that are on the whitelist. - - - - - - =uid - - - Add the user id uid to the whitelist. - - - - - - =uid - - - Remove the user id uid from the whitelist. - - - - - - =uid - - - Query whether the user id uid is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - - - - - List all user names that are on the whitelist. - - - - - - =user - - - Add the user name user to the whitelist. - - - - - - =user - - - Remove the user name user from the whitelist. - - - - - - =user - - - Query whether the user name user is on the whitelist. Returns 0 if true, 1 otherwise. - - - - - - Policy Options diff --git a/doc/xml/firewalld.conf.xml b/doc/xml/firewalld.conf.xml index 6bb8069..61a8264 100644 --- a/doc/xml/firewalld.conf.xml +++ b/doc/xml/firewalld.conf.xml @@ -98,22 +98,27 @@ - - - - - If this option is enabled, firewall changes with the D-Bus interface will be limited to applications that are listed in the lockdown whitelist (see firewalld.lockdown-whitelist5). The default value is no or false. - - - - - If this option is enabled (it is by default), reverse path filter test on a packet for IPv6 is performed. - If a reply to the packet would be sent via the same interface that the packet arrived on, the packet will match and be accepted, otherwise dropped. - For IPv4 the rp_filter is controlled using sysctl. + Performs reverse path filtering (RPF) on IPv6 packets as per RFC 3704. + Possible values: + - strict: Performs "strict" filtering as per RFC 3704. This check + verifies that the in ingress interface is the same interface + that would be used to send a packet reply to the source. That + is, ingress == egress. + - loose: Performs "loose" filtering as per RFC 3704. This check only + verifies that there is a route back to the source through any + interface; even if it's not the same one on which the packet + arrived. + - strict-forward: This is almost identical to "loose", but does not perform + RPF for packets targeted to the host (INPUT). + - loose-forward: This is almost identical to "loose", but does not perform + RPF for packets targeted to the host (INPUT). + - no: RPF is completely disabled. + + The rp_filter for IPv4 is controlled using sysctl. Note: This feature has a performance @@ -122,7 +127,8 @@ the established connections fast path. As such it can have a significant performance impact if there is a lot of traffic. It's enabled by default for security, but can be disabled if performance is - a concern. + a concern. Alternatively one of the variants that only does RPF on + forwarded packets may be used. @@ -213,6 +219,22 @@ + + + + + If set to yes, the generated destination NAT (DNAT) rules will + NOT accept traffic that was DNAT'd by other entities, e.g. + docker. Firewalld will be strict and not allow published + container ports until they're explicitly allowed via firewalld. + If set to no, then docker (and podman) integrates seamlessly + with firewalld. Published container ports are implicitly + allowed. + Defaults to "no". + + + + @@ -247,6 +269,19 @@ + + + + + If set to yes, the generated nftables rule set will be owned exclusively by + firewalld. This prevents other entities from mistakenly (or maliciously) + modifying firewalld's rule set. If you intentionally modify firewalld's + rules, then you will have to set this to "no". + Defaults to "yes". + + + + diff --git a/doc/xml/firewalld.dbus.xml b/doc/xml/firewalld.dbus.xml index dda60a8..bf9437b 100644 --- a/doc/xml/firewalld.dbus.xml +++ b/doc/xml/firewalld.dbus.xml @@ -48,7 +48,7 @@ org.fedoraproject.FirewallD1 org.fedoraproject.FirewallD1.direct (deprecated) org.fedoraproject.FirewallD1.ipset - org.fedoraproject.FirewallD1.policies + org.fedoraproject.FirewallD1.policies (deprecated) org.fedoraproject.FirewallD1.zone org.freedesktop.DBus.Introspectable org.freedesktop.DBus.Properties @@ -57,7 +57,7 @@ Interfaces org.fedoraproject.FirewallD1.config org.fedoraproject.FirewallD1.config.direct (deprecated) - org.fedoraproject.FirewallD1.config.policies + org.fedoraproject.FirewallD1.config.policies (deprecated) org.freedesktop.DBus.Introspectable org.freedesktop.DBus.Properties @@ -323,7 +323,7 @@ runtimeToPermanent() → Nothing - Make runtime settings permanent. Replaces permanent settings with runtime settings for zones, services, icmptypes, direct (deprecated) and policies (lockdown whitelist). + Make runtime settings permanent. Replaces permanent settings with runtime settings for zones, policies, services, icmptypes, and direct (deprecated). Possible errors: RT_TO_PERM_FAILED @@ -970,313 +970,6 @@ - - org.fedoraproject.FirewallD1.policies - - Enables firewalld to be able to lock down configuration changes from local applications. - Local applications or services are able to change the firewall configuration if they are running as root (example: libvirt). - With these operations administrator can lock the firewall configuration so that either none or only applications that are in the whitelist are able to request firewall changes. - For permanent configuration see org.fedoraproject.FirewallD1.config.policies interface. - - - - Methods - - - addLockdownWhitelistCommand(s: command) → Nothing - - - Add command to whitelist. - See command option in firewalld.lockdown-whitelist5. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.addLockdownWhitelistCommand. - - - Possible errors: ALREADY_ENABLED, INVALID_COMMAND - - - - - addLockdownWhitelistContext(s: context) → Nothing - - - Add context to whitelist. - See selinux option in firewalld.lockdown-whitelist5. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.addLockdownWhitelistContext. - - - Possible errors: ALREADY_ENABLED, INVALID_COMMAND - - - - - addLockdownWhitelistUid(i: uid) → Nothing - - - Add user id uid to whitelist. - See user option in firewalld.lockdown-whitelist5. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.addLockdownWhitelistUid. - - - Possible errors: ALREADY_ENABLED, INVALID_COMMAND - - - - - addLockdownWhitelistUser(s: user) → Nothing - - - Add user name to whitelist. - See user option in firewalld.lockdown-whitelist5. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.addLockdownWhitelistUser. - - - Possible errors: ALREADY_ENABLED, INVALID_COMMAND - - - - - disableLockdown() → Nothing - - - Disable lockdown. - This is a runtime and permanent change. - - - Possible errors: NOT_ENABLED - - - - - enableLockdown() → Nothing - - - Enable lockdown. - Be careful - if the calling application/user is not on lockdown whitelist when you enable lockdown you won't be able to disable it again with the application, you would need to edit firewalld.conf. - This is a runtime and permanent change. - - - Possible errors: ALREADY_ENABLED - - - - - getLockdownWhitelistCommands() → as - - - List all command lines (s) that are on whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.getLockdownWhitelistCommands. - - - - - getLockdownWhitelistContexts() → as - - - List all contexts (s) that are on whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.getLockdownWhitelistContexts. - - - - - getLockdownWhitelistUids() → ai - - - List all user ids (i) that are on whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.getLockdownWhitelistUids. - - - - - getLockdownWhitelistUsers() → as - - - List all users (s) that are on whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.getLockdownWhitelistUsers. - - - - - queryLockdown() → b - - - Query whether lockdown is enabled. - - - - - queryLockdownWhitelistCommand(s: command) → b - - - Query whether command is on whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.queryLockdownWhitelistCommand. - - - - - queryLockdownWhitelistContext(s: context) → b - - - Query whether context is on whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.queryLockdownWhitelistContext. - - - - - queryLockdownWhitelistUid(i: uid) → b - - - Query whether user id uid is on whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.queryLockdownWhitelistUid. - - - - - queryLockdownWhitelistUser(s: user) → b - - - Query whether user is on whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.queryLockdownWhitelistUser. - - - - - removeLockdownWhitelistCommand(s: command) → Nothing - - - Remove command from whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.removeLockdownWhitelistCommand. - - - Possible errors: NOT_ENABLED - - - - - removeLockdownWhitelistContext(s: context) → Nothing - - - Remove context from whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.removeLockdownWhitelistContext. - - - Possible errors: NOT_ENABLED - - - - - removeLockdownWhitelistUid(i: uid) → Nothing - - - Remove user id uid from whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.removeLockdownWhitelistUid. - - - Possible errors: NOT_ENABLED - - - - - removeLockdownWhitelistUser(s: user) → Nothing - - - Remove user from whitelist. - For permanent operation see org.fedoraproject.FirewallD1.config.policies.Methods.removeLockdownWhitelistUser. - - - Possible errors: NOT_ENABLED - - - - - - - - Signals - - - LockdownDisabled() - - - Emitted when lockdown has been disabled. - - - - - LockdownEnabled() - - - Emitted when lockdown has been enabled. - - - - - LockdownWhitelistCommandAdded(s: command) - - - Emitted when command has been added to whitelist. - - - - - LockdownWhitelistCommandRemoved(s: command) - - - Emitted when command has been removed from whitelist. - - - - - LockdownWhitelistContextAdded(s: context) - - - Emitted when context has been added to whitelist. - - - - - LockdownWhitelistContextRemoved(s: context) - - - Emitted when context has been removed from whitelist. - - - - - LockdownWhitelistUidAdded(i: uid) - - - Emitted when user id uid has been added to whitelist. - - - - - LockdownWhitelistUidRemoved(i: uid) - - - Emitted when user id uid has been removed from whitelist. - - - - - LockdownWhitelistUserAdded(s: user) - - - Emitted when user has been added to whitelist. - - - - - LockdownWhitelistUserRemoved(s: user) - - - Emitted when user has been removed from whitelist. - - - - - - - org.fedoraproject.FirewallD1.zone @@ -2852,22 +2545,18 @@ - IPv6_rpfilter - s - (rw) - Indicates whether the reverse path filter test on a packet for IPv6 is enabled. If a reply to the packet would be sent via the same interface that the packet arrived on, the packet will match and be accepted, otherwise dropped. + IPv6_rpfilter - b - (rw) + Deprecated. See org.fedoraproject.FirewallD1.config.Properties.IPv6_rpfilter2. + + + IPv6_rpfilter2 - s - (rw) + Indicates whether the reverse path filter (RFE 3704) test on a packet for IPv6 is enabled. IndividualCalls - s - (ro) Indicates whether individual calls combined -restore calls are used. If enabled, this increases the time that is needed to apply changes and to start the daemon, but is good for debugging. - - Lockdown - s - (rw) - - - If this property is enabled, firewall changes with the D-Bus interface will be limited to applications that are listed in the lockdown whitelist. - - - LogDenied - s - (rw) @@ -2895,6 +2584,20 @@ + + StrictForwardPorts - s - (rw) + + + If set to yes, the generated destination NAT (DNAT) rules will + NOT accept traffic that was DNAT'd by other entities, e.g. + docker. Firewalld will be strict and not allow published + container ports until they're explicitly allowed via firewalld. + If set to no, then docker (and podman) integrates seamlessly + with firewalld. Published container ports are implicitly + allowed. + + + NftablesFlowtable - s - (rw) @@ -2915,6 +2618,17 @@ + + NftablesTableOwner - s - (rw) + + + If set to yes, the generated nftables rule set will be owned exclusively by + firewalld. This prevents other entities from mistakenly (or maliciously) + modifying firewalld's rule set. If you intentionally modify firewalld's + rules, then you will have to set this to "no". + + + @@ -3230,241 +2944,6 @@ - - org.fedoraproject.FirewallD1.config.policies - - Interface for permanent lockdown-whitelist configuration, see also firewalld.lockdown-whitelist5. - For runtime configuration see org.fedoraproject.FirewallD1.policies interface. - - - Methods - - - addLockdownWhitelistCommand(s: command) → Nothing - - - Add command to whitelist. - See command option in firewalld.lockdown-whitelist5. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.addLockdownWhitelistCommand. - - - Possible errors: ALREADY_ENABLED, INVALID_TYPE - - - - - addLockdownWhitelistContext(s: context) → Nothing - - - Add context to whitelist. - See selinux option in firewalld.lockdown-whitelist5. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.addLockdownWhitelistContext. - - - Possible errors: ALREADY_ENABLED, INVALID_TYPE - - - - - addLockdownWhitelistUid(i: uid) → Nothing - - - Add user id uid to whitelist. - See user option in firewalld.lockdown-whitelist5. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.addLockdownWhitelistUid. - - - Possible errors: ALREADY_ENABLED, INVALID_TYPE - - - - - addLockdownWhitelistUser(s: user) → Nothing - - - Add user name to whitelist. - See user option in firewalld.lockdown-whitelist5. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.addLockdownWhitelistUser. - - - Possible errors: ALREADY_ENABLED, INVALID_TYPE - - - - - getLockdownWhitelist() → (asasasai) - - - Get settings of permanent lockdown-whitelist configuration in format: commands, selinux contexts, users, uids - - - - commands (as): see command option in firewalld.lockdown-whitelist5. - selinux contexts (as): see selinux option in firewalld.lockdown-whitelist5. - users (as): see name attribute of user option in firewalld.lockdown-whitelist5. - uids (ai): see id attribute of user option in firewalld.lockdown-whitelist5. - - - - - - getLockdownWhitelistCommands() → as - - - List all command lines (s) that are on whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.getLockdownWhitelistCommands. - - - - - getLockdownWhitelistContexts() → as - - - List all contexts (s) that are on whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.getLockdownWhitelistContexts. - - - - - getLockdownWhitelistUids() → ai - - - List all user ids (i) that are on whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.getLockdownWhitelistUids. - - - - - getLockdownWhitelistUsers() → as - - - List all users (s) that are on whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.getLockdownWhitelistUsers. - - - - - queryLockdownWhitelistCommand(s: command) → b - - - Query whether command is on whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.queryLockdownWhitelistCommand. - - - - - queryLockdownWhitelistContext(s: context) → b - - - Query whether context is on whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.queryLockdownWhitelistContext. - - - - - queryLockdownWhitelistUid(i: uid) → b - - - Query whether user id uid is on whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.queryLockdownWhitelistUid. - - - - - queryLockdownWhitelistUser(s: user) → b - - - Query whether user is on whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.queryLockdownWhitelistUser. - - - - - removeLockdownWhitelistCommand(s: command) → Nothing - - - Remove command from whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.removeLockdownWhitelistCommand. - - - Possible errors: NOT_ENABLED - - - - - removeLockdownWhitelistContext(s: context) → Nothing - - - Remove context from whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.removeLockdownWhitelistContext. - - - Possible errors: NOT_ENABLED - - - - - removeLockdownWhitelistUid(i: uid) → Nothing - - - Remove user id uid from whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.removeLockdownWhitelistUid. - - - Possible errors: NOT_ENABLED - - - - - removeLockdownWhitelistUser(s: user) → Nothing - - - Remove user from whitelist. - For runtime operation see org.fedoraproject.FirewallD1.policies.Methods.removeLockdownWhitelistUser. - - - Possible errors: NOT_ENABLED - - - - - setLockdownWhitelist((asasasai): settings) → Nothing - - - Set permanent lockdown-whitelist configuration to settings. - Settings are in format: commands, selinux contexts, users, uids - - - - commands (as): see command option in firewalld.lockdown-whitelist5. - selinux contexts (as): see selinux option in firewalld.lockdown-whitelist5. - users (as): see name attribute of user option in firewalld.lockdown-whitelist5. - uids (ai): see id attribute of user option in firewalld.lockdown-whitelist5. - - - - Possible errors: INVALID_TYPE - - - - - - - - Signals - - - LockdownWhitelistUpdated() - - - Emitted when permanent lockdown-whitelist configuration has been updated. - - - - - - - org.fedoraproject.FirewallD1.config.ipset diff --git a/doc/xml/firewalld.lockdown-whitelist.xml b/doc/xml/firewalld.lockdown-whitelist.xml deleted file mode 100644 index edbe8f7..0000000 --- a/doc/xml/firewalld.lockdown-whitelist.xml +++ /dev/null @@ -1,162 +0,0 @@ - - - - -]> - - - - - - - firewalld.lockdown-whitelist - firewalld - &authors; - - - - firewalld.lockdown-whitelist - 5 - - - - firewalld.lockdown-whitelist - firewalld lockdown whitelist configuration file - - - - - - /firewalld/lockdown-whitelist.xml - - - - - - Description - - - The firewalld lockdown-whitelist configuration file contains the selinux contexts, commands, users and user ids that are white-listed when firewalld lockdown feature is enabled (see firewalld.conf5 and firewall-cmd1). - - - - This example configuration file shows the structure of an lockdown-whitelist file: - - -<?xml version="1.0" encoding="utf-8"?> -<whitelist> - <selinux context="selinuxcontext"/> - <command name="commandline[*]"/> - <user {name="username|id="userid"}/> -</whitelist> - - - - - - Options - - The config can contain these tags and attributes. Some of them are mandatory, others optional. - - - - whitelist - - The mandatory whitelist start and end tag defines the lockdown-whitelist. This tag can only be used once in a lockdown-whitelist configuration file. There are no attributes for this. - - - - - selinux - - Is an optional empty-element tag and can be used several times to have more than one selinux contexts entries. A selinux entry has exactly one attribute: - - - - - context="string" - - - The context is the security (SELinux) context of a running application or service. - - - To get the context of a running application use ps -e --context and search for the application that should be white-listed. - - - Warning: If the context of an application is unconfined, then this will open access for more than the desired application. - - - - - - - - command - - Is an optional empty-element tag and can be used several times to have more than one command entry. A command entry has exactly one attribute: - - - - - name="string" - - - The command string is a complete command line including path and also attributes. - - - If a command entry ends with an asterisk '*', then all command lines starting with the command will match. If the '*' is not there the absolute command inclusive arguments must match. - - - Commands for user root and others is not always the same, the used path depends on the use of the PATH environment variable. - - - - - - - - - user - - Is an optional empty-element tag and can be used several times to white-list more than one user. A user entry has exactly one attribute of these: - - - - - name="string" - - - The user with the name string will be white-listed. - - - - - - id="integer" - - - The user with the id userid will be white-listed. - - - - - - - - - &seealso; - - ¬es; - - diff --git a/doc/xml/firewalld.policies.xml b/doc/xml/firewalld.policies.xml index 7895339..e5a2ccb 100644 --- a/doc/xml/firewalld.policies.xml +++ b/doc/xml/firewalld.policies.xml @@ -42,7 +42,7 @@ What is a policy? - A policy applies a set of rules to traffic flowing between + A policy applies a set of rules to traffic flowing between zones (see zones (see firewalld.zones 5 ). The policy affects diff --git a/doc/xml/seealso.xml b/doc/xml/seealso.xml index 13be102..d82665c 100644 --- a/doc/xml/seealso.xml +++ b/doc/xml/seealso.xml @@ -23,7 +23,6 @@ firewalld.direct5 firewalld.dbus5 firewalld.icmptype5 - firewalld.lockdown-whitelist5 firewall-offline-cmd1 firewalld.richlanguage5 firewalld.service5 diff --git a/firewalld.spec b/firewalld.spec index 0b64dff..79caa87 100644 --- a/firewalld.spec +++ b/firewalld.spec @@ -1,6 +1,6 @@ Summary: A firewall daemon with D-Bus interface providing a dynamic firewall Name: firewalld -Version: 2.1.2 +Version: 2.3.1 Release: 1%{?dist} URL: http://firewalld.org License: GPL-2.0-or-later @@ -52,6 +52,7 @@ are required by other packages that add firewalld configuration files. %package -n firewalld-test Summary: Firewalld testsuite +Requires: firewalld-filesystem = %{version}-%{release} %description -n firewalld-test This package provides the firewalld testsuite. @@ -59,6 +60,7 @@ This package provides the firewalld testsuite. %package -n firewall-applet Summary: Firewall panel applet Requires: %{name} = %{version}-%{release} +Requires: firewalld-filesystem = %{version}-%{release} Requires: firewall-config = %{version}-%{release} Requires: hicolor-icon-theme %if (0%{?fedora} >= 39 || 0%{?rhel} >= 10) @@ -78,6 +80,7 @@ the firewall settings. %package -n firewall-config Summary: Firewall configuration application Requires: %{name} = %{version}-%{release} +Requires: firewalld-filesystem = %{version}-%{release} Requires: hicolor-icon-theme Requires: gtk3 Requires: python3-gobject @@ -116,7 +119,7 @@ desktop-file-install --delete-original \ %systemd_preun firewalld.service %postun -%systemd_postun_with_restart firewalld.service +%systemd_postun firewalld.service %post -n firewall-applet @@ -167,7 +170,6 @@ fi %{_prefix}/lib/firewalld/xmlschema/*.xsd %attr(0750,root,root) %dir %{_sysconfdir}/firewalld %config(noreplace) %{_sysconfdir}/firewalld/firewalld.conf -%config(noreplace) %{_sysconfdir}/firewalld/lockdown-whitelist.xml %attr(0750,root,root) %dir %{_sysconfdir}/firewalld/helpers %attr(0750,root,root) %dir %{_sysconfdir}/firewalld/icmptypes %attr(0750,root,root) %dir %{_sysconfdir}/firewalld/ipsets @@ -176,7 +178,6 @@ fi %attr(0750,root,root) %dir %{_sysconfdir}/firewalld/zones %defattr(0644,root,root) %config(noreplace) %{_sysconfdir}/sysconfig/firewalld -#%attr(0755,root,root) %{_initrddir}/firewalld %{_unitdir}/firewalld.service %config(noreplace) %{_datadir}/dbus-1/system.d/FirewallD.conf %{_datadir}/polkit-1/actions/org.fedoraproject.FirewallD1.desktop.policy.choice @@ -219,6 +220,7 @@ fi %dir %{_prefix}/lib/firewalld/services %dir %{_prefix}/lib/firewalld/zones %dir %{_prefix}/lib/firewalld/xmlschema +%dir %{_datadir}/firewalld %{_rpmconfigdir}/macros.d/macros.firewalld %files -n firewalld-test @@ -255,11 +257,8 @@ fi %{_mandir}/man1/firewall-config*.1* %changelog -* Fri Apr 12 2024 Eric Garver - 2.1.2-1 -- release v2.1.2 - -* Mon Jan 29 2024 Eric Garver - 2.1.1-1 -- release v2.1.1 +* Tue Jun 10 2025 Eric Garver - 2.3.1-1 +- release v2.3.1 -* Fri Jan 05 2024 Eric Garver - 2.1.0-1 -- release v2.1.0 +* Mon Nov 04 2024 Eric Garver - 2.3.0-1 +- release v2.3.0 diff --git a/install-sh b/install-sh index 8175c64..ec298b5 100755 --- a/install-sh +++ b/install-sh @@ -1,7 +1,7 @@ #!/bin/sh # install - install a program, script, or datafile -scriptversion=2018-03-11.20; # UTC +scriptversion=2020-11-14.01; # UTC # This originates from X11R5 (mit/util/scripts/install.sh), which was # later released in X11R6 (xc/config/util/install.sh) with the @@ -69,6 +69,11 @@ posix_mkdir= # Desired mode of installed file. mode=0755 +# Create dirs (including intermediate dirs) using mode 755. +# This is like GNU 'install' as of coreutils 8.32 (2020). +mkdir_umask=22 + +backupsuffix= chgrpcmd= chmodcmd=$chmodprog chowncmd= @@ -99,18 +104,28 @@ Options: --version display version info and exit. -c (ignored) - -C install only if different (preserve the last data modification time) + -C install only if different (preserve data modification time) -d create directories instead of installing files. -g GROUP $chgrpprog installed files to GROUP. -m MODE $chmodprog installed files to MODE. -o USER $chownprog installed files to USER. + -p pass -p to $cpprog. -s $stripprog installed files. + -S SUFFIX attempt to back up existing files, with suffix SUFFIX. -t DIRECTORY install into DIRECTORY. -T report an error if DSTFILE is a directory. Environment variables override the default commands: CHGRPPROG CHMODPROG CHOWNPROG CMPPROG CPPROG MKDIRPROG MVPROG RMPROG STRIPPROG + +By default, rm is invoked with -f; when overridden with RMPROG, +it's up to you to specify -f if you want it. + +If -S is not specified, no backups are attempted. + +Email bug reports to bug-automake@gnu.org. +Automake home page: https://www.gnu.org/software/automake/ " while test $# -ne 0; do @@ -137,8 +152,13 @@ while test $# -ne 0; do -o) chowncmd="$chownprog $2" shift;; + -p) cpprog="$cpprog -p";; + -s) stripcmd=$stripprog;; + -S) backupsuffix="$2" + shift;; + -t) is_target_a_directory=always dst_arg=$2 @@ -255,6 +275,10 @@ do dstdir=$dst test -d "$dstdir" dstdir_status=$? + # Don't chown directories that already exist. + if test $dstdir_status = 0; then + chowncmd="" + fi else # Waiting for this to be detected by the "$cpprog $src $dsttmp" command @@ -301,22 +325,6 @@ do if test $dstdir_status != 0; then case $posix_mkdir in '') - # Create intermediate dirs using mode 755 as modified by the umask. - # This is like FreeBSD 'install' as of 1997-10-28. - umask=`umask` - case $stripcmd.$umask in - # Optimize common cases. - *[2367][2367]) mkdir_umask=$umask;; - .*0[02][02] | .[02][02] | .[02]) mkdir_umask=22;; - - *[0-7]) - mkdir_umask=`expr $umask + 22 \ - - $umask % 100 % 40 + $umask % 20 \ - - $umask % 10 % 4 + $umask % 2 - `;; - *) mkdir_umask=$umask,go-w;; - esac - # With -d, create the new directory with the user-specified mode. # Otherwise, rely on $mkdir_umask. if test -n "$dir_arg"; then @@ -326,52 +334,49 @@ do fi posix_mkdir=false - case $umask in - *[123567][0-7][0-7]) - # POSIX mkdir -p sets u+wx bits regardless of umask, which - # is incompatible with FreeBSD 'install' when (umask & 300) != 0. - ;; - *) - # Note that $RANDOM variable is not portable (e.g. dash); Use it - # here however when possible just to lower collision chance. - tmpdir=${TMPDIR-/tmp}/ins$RANDOM-$$ - - trap 'ret=$?; rmdir "$tmpdir/a/b" "$tmpdir/a" "$tmpdir" 2>/dev/null; exit $ret' 0 - - # Because "mkdir -p" follows existing symlinks and we likely work - # directly in world-writeable /tmp, make sure that the '$tmpdir' - # directory is successfully created first before we actually test - # 'mkdir -p' feature. - if (umask $mkdir_umask && - $mkdirprog $mkdir_mode "$tmpdir" && - exec $mkdirprog $mkdir_mode -p -- "$tmpdir/a/b") >/dev/null 2>&1 - then - if test -z "$dir_arg" || { - # Check for POSIX incompatibilities with -m. - # HP-UX 11.23 and IRIX 6.5 mkdir -m -p sets group- or - # other-writable bit of parent directory when it shouldn't. - # FreeBSD 6.1 mkdir -m -p sets mode of existing directory. - test_tmpdir="$tmpdir/a" - ls_ld_tmpdir=`ls -ld "$test_tmpdir"` - case $ls_ld_tmpdir in - d????-?r-*) different_mode=700;; - d????-?--*) different_mode=755;; - *) false;; - esac && - $mkdirprog -m$different_mode -p -- "$test_tmpdir" && { - ls_ld_tmpdir_1=`ls -ld "$test_tmpdir"` - test "$ls_ld_tmpdir" = "$ls_ld_tmpdir_1" - } - } - then posix_mkdir=: - fi - rmdir "$tmpdir/a/b" "$tmpdir/a" "$tmpdir" - else - # Remove any dirs left behind by ancient mkdir implementations. - rmdir ./$mkdir_mode ./-p ./-- "$tmpdir" 2>/dev/null - fi - trap '' 0;; - esac;; + # The $RANDOM variable is not portable (e.g., dash). Use it + # here however when possible just to lower collision chance. + tmpdir=${TMPDIR-/tmp}/ins$RANDOM-$$ + + trap ' + ret=$? + rmdir "$tmpdir/a/b" "$tmpdir/a" "$tmpdir" 2>/dev/null + exit $ret + ' 0 + + # Because "mkdir -p" follows existing symlinks and we likely work + # directly in world-writeable /tmp, make sure that the '$tmpdir' + # directory is successfully created first before we actually test + # 'mkdir -p'. + if (umask $mkdir_umask && + $mkdirprog $mkdir_mode "$tmpdir" && + exec $mkdirprog $mkdir_mode -p -- "$tmpdir/a/b") >/dev/null 2>&1 + then + if test -z "$dir_arg" || { + # Check for POSIX incompatibilities with -m. + # HP-UX 11.23 and IRIX 6.5 mkdir -m -p sets group- or + # other-writable bit of parent directory when it shouldn't. + # FreeBSD 6.1 mkdir -m -p sets mode of existing directory. + test_tmpdir="$tmpdir/a" + ls_ld_tmpdir=`ls -ld "$test_tmpdir"` + case $ls_ld_tmpdir in + d????-?r-*) different_mode=700;; + d????-?--*) different_mode=755;; + *) false;; + esac && + $mkdirprog -m$different_mode -p -- "$test_tmpdir" && { + ls_ld_tmpdir_1=`ls -ld "$test_tmpdir"` + test "$ls_ld_tmpdir" = "$ls_ld_tmpdir_1" + } + } + then posix_mkdir=: + fi + rmdir "$tmpdir/a/b" "$tmpdir/a" "$tmpdir" + else + # Remove any dirs left behind by ancient mkdir implementations. + rmdir ./$mkdir_mode ./-p ./-- "$tmpdir" 2>/dev/null + fi + trap '' 0;; esac if @@ -382,7 +387,7 @@ do then : else - # The umask is ridiculous, or mkdir does not conform to POSIX, + # mkdir does not conform to POSIX, # or it failed possibly due to a race condition. Create the # directory the slow way, step by step, checking for races as we go. @@ -411,7 +416,7 @@ do prefixes= else if $posix_mkdir; then - (umask=$mkdir_umask && + (umask $mkdir_umask && $doit_exec $mkdirprog $mkdir_mode -p -- "$dstdir") && break # Don't fail if two instances are running concurrently. test -d "$prefix" || exit 1 @@ -451,7 +456,18 @@ do trap 'ret=$?; rm -f "$dsttmp" "$rmtmp" && exit $ret' 0 # Copy the file name to the temp name. - (umask $cp_umask && $doit_exec $cpprog "$src" "$dsttmp") && + (umask $cp_umask && + { test -z "$stripcmd" || { + # Create $dsttmp read-write so that cp doesn't create it read-only, + # which would cause strip to fail. + if test -z "$doit"; then + : >"$dsttmp" # No need to fork-exec 'touch'. + else + $doit touch "$dsttmp" + fi + } + } && + $doit_exec $cpprog "$src" "$dsttmp") && # and set any options; do chmod last to preserve setuid bits. # @@ -477,6 +493,13 @@ do then rm -f "$dsttmp" else + # If $backupsuffix is set, and the file being installed + # already exists, attempt a backup. Don't worry if it fails, + # e.g., if mv doesn't support -f. + if test -n "$backupsuffix" && test -f "$dst"; then + $doit $mvcmd -f "$dst" "$dst$backupsuffix" 2>/dev/null + fi + # Rename the file to the real destination. $doit $mvcmd -f "$dsttmp" "$dst" 2>/dev/null || @@ -491,9 +514,9 @@ do # file should still install successfully. { test ! -f "$dst" || - $doit $rmcmd -f "$dst" 2>/dev/null || + $doit $rmcmd "$dst" 2>/dev/null || { $doit $mvcmd -f "$dst" "$rmtmp" 2>/dev/null && - { $doit $rmcmd -f "$rmtmp" 2>/dev/null; :; } + { $doit $rmcmd "$rmtmp" 2>/dev/null; :; } } || { echo "$0: cannot unlink or rename $dst" >&2 (exit 1); exit 1 diff --git a/missing b/missing index 625aeb1..1fe1611 100755 --- a/missing +++ b/missing @@ -3,7 +3,7 @@ scriptversion=2018-03-07.03; # UTC -# Copyright (C) 1996-2018 Free Software Foundation, Inc. +# Copyright (C) 1996-2021 Free Software Foundation, Inc. # Originally written by Fran,cois Pinard , 1996. # This program is free software; you can redistribute it and/or modify diff --git a/po/POTFILES.in b/po/POTFILES.in index 2731964..d5f4d8c 100644 --- a/po/POTFILES.in +++ b/po/POTFILES.in @@ -1,4 +1,5 @@ config/firewall-applet.desktop.in +config/firewall-config.appdata.xml.in config/firewall-config.desktop.in config/icmptypes/address-unreachable.xml config/icmptypes/bad-header.xml @@ -62,6 +63,7 @@ config/services/amqp.xml config/services/anno-1602.xml config/services/anno-1800.xml config/services/apcupsd.xml +config/services/aseqnet.xml config/services/audit.xml config/services/ausweisapp2.xml config/services/bacula-client.xml @@ -128,6 +130,8 @@ config/services/http.xml config/services/ident.xml config/services/imaps.xml config/services/imap.xml +config/services/iperf2.xml +config/services/iperf3.xml config/services/ipfs.xml config/services/ipp-client.xml config/services/ipp.xml @@ -173,9 +177,11 @@ config/services/mdns.xml config/services/memcache.xml config/services/minecraft.xml config/services/minidlna.xml +config/services/mndp.xml config/services/mongodb.xml config/services/mosh.xml config/services/mountd.xml +config/services/mpd.xml config/services/mqtt-tls.xml config/services/mqtt.xml config/services/mssql.xml @@ -217,12 +223,14 @@ config/services/pulseaudio.xml config/services/puppetmaster.xml config/services/quassel.xml config/services/radius.xml +config/services/radsec.xml config/services/rdp.xml config/services/redis-sentinel.xml config/services/redis.xml config/services/RH-Satellite-6.xml config/services/RH-Satellite-6-capsule.xml config/services/rpc-bind.xml +config/services/rootd.xml config/services/rquotad.xml config/services/rsh.xml config/services/rsyncd.xml @@ -235,6 +243,7 @@ config/services/sane.xml config/services/settlers-history-collection.xml config/services/sips.xml config/services/sip.xml +config/services/slimevr.xml config/services/slp.xml config/services/smtp-submission.xml config/services/smtps.xml @@ -250,8 +259,11 @@ config/services/ssdp.xml config/services/ssh.xml config/services/statsrv.xml config/services/steam-streaming.xml +config/services/steam-lan-transfer.xml config/services/stellaris.xml config/services/stronghold-crusader.xml +config/services/stun.xml +config/services/stuns.xml config/services/submission.xml config/services/supertuxkart.xml config/services/svdrp.xml @@ -271,6 +283,8 @@ config/services/tile38.xml config/services/tinc.xml config/services/tor-socks.xml config/services/transmission-client.xml +config/services/turn.xml +config/services/turns.xml config/services/upnp-client.xml config/services/vdsm.xml config/services/vnc-server.xml @@ -280,6 +294,7 @@ config/services/wbem-https.xml config/services/wbem-http.xml config/services/wireguard.xml config/services/ws-discovery-client.xml +config/services/ws-discovery-host.xml config/services/ws-discovery-tcp.xml config/services/ws-discovery-udp.xml config/services/ws-discovery.xml @@ -322,7 +337,6 @@ src/firewall/core/fw_icmptype.py src/firewall/core/fw_ifcfg.py src/firewall/core/fw_ipset.py src/firewall/core/fw_nm.py -src/firewall/core/fw_policies.py src/firewall/core/fw_policy.py src/firewall/core/fw.py src/firewall/core/fw_service.py @@ -340,7 +354,6 @@ src/firewall/core/io/ifcfg.py src/firewall/core/io/__init__.py src/firewall/core/io/io_object.py src/firewall/core/io/ipset.py -src/firewall/core/io/lockdown_whitelist.py src/firewall/core/io/policy.py src/firewall/core/io/service.py src/firewall/core/io/zone.py diff --git a/po/ar.po b/po/ar.po index eb8612f..f76d65f 100644 --- a/po/ar.po +++ b/po/ar.po @@ -18,7 +18,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2022-05-23 16:18+0000\n" "Last-Translator: Mostafa Gamal \n" "Language-Team: Arabic ps -e --" -"context." -msgstr "" -"السياق هو سياق أمان (SELinux) لتطبيق أو خدمة تعمل. للوصول إلى تطبيق أو خدمة " -"تعمل، استخدم ps -e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "إضافة سياق" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "تحرير سياق" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "إزالة سياق" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "السياقات" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"إذا كان إدخال أمر في القائمة البيضاء ينتهي بعلامة نجمية '*'، فستتطابق كل " -"سطور الأوامر التي تبدأ بالأمر. إذا لم توجد '*'، يجب أن تطابق الوسيطة الشاملة " -"الأمر المطلق." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "إضافة سطر أمر" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "تحرير سطر أمر" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "إزالة سطر أمر" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "سطور الأوامر" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "أسماء المستخدمين." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "إضافة اسم مستخدم" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "تحرير اسم مستخدم" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "إزالة اسم مستخدم" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "أسماء المستخدمين" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "معرفات المستخدمين." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "إضافة معرف مستخدم" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "تحرير معرف مستخدم" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "إزالة معرف مستخدم" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "معرفات المستخدمين" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "المنطقة الافتراضية الحالية للنظام." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "تم رفض السجل:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "وضع الفزع:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "المساعدون التلقائيون:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "الإقفال التام:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "المنطقة الافتراضية:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "الرجاء إدخال اسم واجهة:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "إعدادات IPSet الأساسية" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "الرجاء تكوين إعدادات ipset الأساسية:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "النوع:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "انتهاء المهلة الزمنية:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "حجم هاش:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maxelem:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "قيمة انتهاء المهلة الزمنية بالثواني" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "حجم هاش الأولي، الافتراضي 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "الحد الأقصى لعدد العناصر، الافتراضي 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "الرجاء تحديد ipset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "الرجاء توفير إدخال ipset:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "رفض السجل" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "الرجاء تحديد قيمة رفض السجل:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "علامة" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "الرجاء إدخال علامة بقناع اختياري." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "يصل عرض حقلي العلامة والقناع إلى 32 بت بأرقام غير موقعة." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "العلامة:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "القناع:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "الرجاء تحديد مساعد تتبع اتصال netfilter:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- تحديد -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "وحدة نمطية أخرى:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "المنفذ والميفاق" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "الرجاء إدخال منفذ وبروتوكول." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "قاعدة مباشرة" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "الرجاء تحديد ipv وجدول وأولوية سلسلة وإدخال الوسيطات." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "الأولوية:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "الرجاء إدخال بروتوكول." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "بروتوكول أخر:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "قاعدة منسقة" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "الرجاء إدخال قاعدة منسقة." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "للقائمة البيضاء أو السوداء لمضيف أو شبكة، ألغِ تنشيط العنصر." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "المصدر:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "الوجهة:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "السجل:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "التدقيق:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 وipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "معكوس" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1912,78 +1803,189 @@ msgstr "" "لتمكين هذا، يجب أن يكون الإجراء 'رفض' والعائلة إما 'ipv4' أو 'ipv6' (ليس " "كلاهما)" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "مع النوع:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "بالحد:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "البادئة:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "المستوى:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "العنصر:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "الإجراء:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "إعدادات الخدمة الأساسية" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "الرجاء تكوين إعدادات الخدمة الأساسية:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "الرجاء تحديد خدمة." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "الرجاء إدخال مصدر." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "معرف المستخدم" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "الرجاء إدخال معرف المستخدم." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "الرجاء إدخال اسم المستخدم." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "التسمية" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "إعدادات المنطقة الأساسية" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "الرجاء تكوين إعدادات المنطقة الأساسية:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "الهدف الافتراضي" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "الهدف:" + +#~ msgid "Context" +#~ msgstr "السياق" + +#~ msgid "Command line" +#~ msgstr "سطر الأوامر" + +#~ msgid "User name" +#~ msgstr "اسم المستخدم" + +#~ msgid "User id" +#~ msgstr "معرف المستخدم" + +#~ msgid "Please enter the command line." +#~ msgstr "الرجاء إدخال سطر الأوامر." + +#~ msgid "Please enter the context." +#~ msgstr "الرجاء إدخال السياق." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "يؤدي الإقفال التام إلى إقفال تكوين الجدار الناري بحيث يمكن للتطبيقات " +#~ "الموجودة في القائمة البيضاء للإقفال التام فقط تغييره." + +#~ msgid "Lockdown" +#~ msgstr "الإقفال التام" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "القائمة البيضاء للإقفال التام" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "ميزة الإقفال التام هي الإصدار الأصغر من سياسات التطبيقات والمستخدمين لـ " +#~ "firewalld. فهي تحد من تغييرات الجدار الناري. قد تحتوي القائمة البيضاء " +#~ "للإقفال التام على الأوامر والسياقات والمستخدمين ومعرفات المستخدمين." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "السياق هو سياق أمان (SELinux) لتطبيق أو خدمة تعمل. للوصول إلى تطبيق أو " +#~ "خدمة تعمل، استخدم ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "إضافة سياق" + +#~ msgid "Edit Context" +#~ msgstr "تحرير سياق" + +#~ msgid "Remove Context" +#~ msgstr "إزالة سياق" + +#~ msgid "Contexts" +#~ msgstr "السياقات" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "إذا كان إدخال أمر في القائمة البيضاء ينتهي بعلامة نجمية '*'، فستتطابق كل " +#~ "سطور الأوامر التي تبدأ بالأمر. إذا لم توجد '*'، يجب أن تطابق الوسيطة " +#~ "الشاملة الأمر المطلق." + +#~ msgid "Add Command Line" +#~ msgstr "إضافة سطر أمر" + +#~ msgid "Edit Command Line" +#~ msgstr "تحرير سطر أمر" + +#~ msgid "Remove Command Line" +#~ msgstr "إزالة سطر أمر" + +#~ msgid "Command lines" +#~ msgstr "سطور الأوامر" + +#~ msgid "User names." +#~ msgstr "أسماء المستخدمين." + +#~ msgid "Add User Name" +#~ msgstr "إضافة اسم مستخدم" + +#~ msgid "Edit User Name" +#~ msgstr "تحرير اسم مستخدم" + +#~ msgid "Remove User Name" +#~ msgstr "إزالة اسم مستخدم" + +#~ msgid "User names" +#~ msgstr "أسماء المستخدمين" + +#~ msgid "User ids." +#~ msgstr "معرفات المستخدمين." + +#~ msgid "Add User Id" +#~ msgstr "إضافة معرف مستخدم" + +#~ msgid "Edit User Id" +#~ msgstr "تحرير معرف مستخدم" + +#~ msgid "Remove User Id" +#~ msgstr "إزالة معرف مستخدم" + +#~ msgid "User Ids" +#~ msgstr "معرفات المستخدمين" + +#~ msgid "Lockdown:" +#~ msgstr "الإقفال التام:" + +#~ msgid "User ID" +#~ msgstr "معرف المستخدم" + +#~ msgid "Please enter the user id." +#~ msgstr "الرجاء إدخال معرف المستخدم." + +#~ msgid "Please enter the user name." +#~ msgstr "الرجاء إدخال اسم المستخدم." diff --git a/po/as.po b/po/as.po index 7aabf75..1611e17 100644 --- a/po/as.po +++ b/po/as.po @@ -13,7 +13,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2016-01-04 12:15+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Assamese (http://www.transifex.com/projects/p/firewalld/" @@ -29,11 +29,45 @@ msgstr "" msgid "Firewall Applet" msgstr "ফায়াৰৱাল এপ্লেট" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "ফায়াৰ্ৱাল বিন্যাস" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "ফায়াৰ্ৱাল" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "ফায়াৰ্ৱাল বিন্যাস" @@ -42,24 +76,24 @@ msgstr "ফায়াৰ্ৱাল বিন্যাস" msgid "firewall;network;security;iptables;netfilter;" msgstr "firewall;network;security;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "আন্তঃপৃষ্ঠ '%s' ৰ বাবে অঞ্চল বাছক" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "অবিকল্পিত অঞ্চল" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "সংযোগ '%s' ৰ বাবে অঞ্চল বাছক" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -109,153 +143,153 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "শিল্ড আপ" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "অধিসূচনাসমূহ সামৰ্থবান কৰক" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "ফায়াৰৱাল সংহতিসমূহ সম্পাদনা কৰক..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "সংযোগসমূহৰ অঞ্চলবোৰ পৰিবৰ্তন কৰক..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "শিল্ড আপ/ডাউন অঞ্চলবোৰ সংৰূপণ কৰক..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "সকলো নেটৱাৰ্ক ট্ৰাফিক ৰোধ কৰক" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "সংযোগসমূহ" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" -msgstr "" +msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "উৎসসমূহ" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "প্ৰমাণীকৰণ ব্যৰ্থ হল।" -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "অবৈধ তৰ্ক %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "নাম ইতিমধ্যে অস্তিত্ববান" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "ফায়াৰৱাল ডিমনলৈ কোনো সংযোগ নাই" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "সকলো নেটৱাৰ্ক ট্ৰাফিক ৰোধ কৰা হৈছে।" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "অবিকল্পিত অঞ্চল: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "আন্তঃপৃষ্ঠ '{interface}' ত সংযোগ '{connection}' ৰ বাবে সক্ৰিয় অঞ্চল '{zone}'" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "আন্তঃপৃষ্ঠ '{interface}' ৰ বাবে সক্ৰিয় অঞ্চল '{zone}'" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "উৎস {source} ৰ বাবে সক্ৰিয় অঞ্চল '{zone}'" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "কোনো সক্ৰিয় অঞ্চল নাই।" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallD লৈ সংযোগ স্থাপিত।" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallD লৈ সংযোগ বিচ্ছিন্ন হৈছে।" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD ক পুনৰ ল'ড কৰা হৈছে।" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "অবিকল্পিত অঞ্চলক '%s' লৈ পৰিবৰ্তন কৰা হৈছে।" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "নেটৱাৰ্ক ট্ৰাফিক আৰু ৰোধ কৰা হোৱা নাই।" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "সক্ৰিয়" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "নিষ্ক্ৰিয়" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -263,20 +297,20 @@ msgstr "" "আন্তঃপৃষ্ঠ '{interface}' ত সংযোগ '{connection}' ৰ বাবে অঞ্চল " "'{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "আন্তঃপৃষ্ঠ '{interface}' ৰ বাবে অঞ্চল '{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "আন্তঃপৃষ্ঠ '%s' ৰ বাবে অঞ্চল '%s' সক্ৰিয়" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "উৎস '{source}' ৰ বাবে অঞ্চল '{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "উৎস '%s' ৰ বাবে অঞ্চল '%s' সক্ৰিয়" @@ -321,328 +355,312 @@ msgstr "অসামৰ্থবান" msgid "Failed to load icons." msgstr "আইকনসমূহ ল'ড কৰিবলৈ ব্যৰ্থ।" -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "ব্যৱহাৰকাৰী নাম" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "চলনসময়" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "স্থায়ী" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "সেৱা" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "প'ৰ্ট" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "নিয়মনীতি" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "প'ৰ্ট" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "ঠিকনাৰ ধৰন:" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp ধৰণ" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "পৰিয়াল" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "কাৰ্য্য" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "উপাদান" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Src" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Dest" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "লগ" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "অডিট" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "উৎস" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "সঁকিয়নি" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "ভুল" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "গ্ৰহণ কৰক" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "নাকচ কৰক" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "ড্ৰপ কৰক" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "সীমা" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "সেৱা" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "পৰ্ট" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "প্ৰটোকল" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "ছদ্মবেশ" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "forward-port" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "স্তৰ" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "হয়" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "অঞ্চল" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "অঞ্চল '%s': সেৱা '%s' উপলব্ধ নহয়।" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "আতৰাওক" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "উপেক্ষা কৰক" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "অঞ্চল '%s': ICMP ধৰণ '%s' উপলব্ধ নহয়।" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "বিলট-ইন অঞ্চল, পুনৰ নামকৰণ সমৰ্থিত নহয়।" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "ছেকেণ্ড" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "মিনিট" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "ঘন্টা" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "দিন" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "আপাতকালীন" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "সতৰ্ক" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "মাৰাত্মক" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "ত্ৰুটি" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "সতৰ্কবাৰ্তা" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "ঘোষণা" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "তথ্য" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "ডিবাগ কৰক" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -652,81 +670,81 @@ msgstr "" "থাকে।\n" "আপুনি এই অঞ্চলটো মাস্কুৰেড কৰিব বিচাৰে নে?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "বিলট-ইন সেৱা, পুনৰ নামকৰণ সমৰ্থিত নহয়।" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "বিলট-ইন icmp, পুনৰ নামকৰণ সমৰ্থিত নহয়।" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "উৎস %s ৰ বাবে অঞ্চল বাছক" @@ -745,91 +763,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "অনুগ্ৰহ কৰি কমান্ড শাৰীলৈ যাওক।" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "অনুগ্ৰহ কৰি পৰিপ্ৰেক্ষতিত সুমুৱাওক।" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "অনুগ্ৰহ কৰি তলৰ তালিকাৰ পৰা অবিকল্পিত অঞ্চল বাছক।" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "প্ৰত্যক্ষ শৃংখল" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "অনুগ্ৰহ কৰি ipv আৰু টেবুল বাছক আৰু শৃংখল নাম সুমুৱাওক।" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "শৃংখল:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "ৰ'" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "সুৰক্ষা" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "টেবুল:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "প্ৰত্যক্ষ পাছথ্ৰু নিয়ম" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "অনুগ্ৰহ কৰি ipv বাছক আৰু args সুমুৱাওক।" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Args:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "প'ৰ্ট ফৰৱাৰ্ডিং" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "আপোনাৰ প্ৰয়োজনৰ মতে উৎস আৰু গন্তব্যৰ বিকল্প নিৰ্ব্বাচন কৰক ।" -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "প'ৰ্ট / প'ৰ্টেৰ সীমা:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP ঠিকনা:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "নিয়মনীতি:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "গন্তব্য" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -837,107 +847,107 @@ msgstr "" "স্থানীয় ভাবে আগবঢ়োৱা সক্ৰিয় কৰিলে, আপুনি এটা প'ৰ্ট নিৰ্ধাৰিত কৰিব লাগিব ।এই প'ৰ্ট " "উৎসৰ প'ৰ্টৰ পৰা বেলেগ হ'ব লাগি ব ।" -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "স্থানিয় ফৰৱাৰ্ডিং" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "অন্য এটা প'ৰ্টলৈ আগবঢ়োৱা হৈছে" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "ডাঠ ৰূপত থকা প্ৰৱিষ্টিবোৰ বাধ্যতামূলক, অন্য সকলো বৈকল্পিক।" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "নাম:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "সংস্কৰণ:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "সৰু:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "বিৱৰণ:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "পৰিয়াল:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "ভিত্তি ICMP ধৰণ সংহতিসমূহ" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "অনুগ্ৰহ কৰি ভিত্তি ICMP ধৰণ সংহতিসমূহ সংৰূপণ কৰক" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP ধৰণ" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "অনুগ্ৰহ কৰি এটা ICMP ধৰণ বাছক" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "নিবেশ যোগ কৰক" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "নথিপত্ৰ (_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "বিবিধ বিকল্প (_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Firewalld পুনৰ ল'ড কৰক" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -947,117 +957,101 @@ msgstr "" "পুনৰ ল'ড হোৱালৈ সকলো কেৱল চলনসময় পৰিবৰ্তনসমূহ পুনৰ ল'ডৰ সৈতে নহোৱা হব যদি সিহতো " "স্থায়ী সংৰূপত নাথাকিল হেতেন।" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "এটা নেটৱাৰ্ক সংযোগ থকা অঞ্চল পৰিবৰ্তন কৰক।" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "অবিকল্পিত অঞ্চল পৰিবৰ্তন কৰক" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "সংযোগসমূহ অথবা আন্তঃপৃষ্ঠসমূহৰ বাবে অবিকল্পিত অঞ্চল পৰিবৰ্তন কৰক।" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "পেনিক অৱস্থাৰ অৰ্থ সকলো অন্তৰগামী আৰু বহিৰ্গামী পেকেটসমূহ ড্ৰপ কৰা হব।" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "আতঙ্ক অৱস্থা" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"লকডাউনে ফায়াৰৱাল সংৰূপ লক কৰে যাতে কেৱল লকডাউন হোৱাইটলিস্টত থকা এপ্লিকেচনসমূহে " -"ইয়াক পৰিবৰ্তন কৰিব পাৰে।" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "লকডাউন" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "চলনসময় সংৰূপ চিৰস্থায়ী কৰক" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "চলনসময়ৰ পৰা চিৰস্থায়ী" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "দৰ্শন (_V)" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP ধৰণসমূহ" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "প্ৰত্যক্ষ সংৰূপ" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "লকডাউন হোৱাইটলিস্ট" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "সহায়তা (_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "সংৰূপ:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1066,7 +1060,7 @@ msgstr "" "বৰ্তমানে দৃশ্য সংৰূপ। চলনসময় সংৰূপ হল প্ৰকৃত সক্ৰিয় সংৰূপ। স্থায়ী সংৰূপ সেৱাৰ পিছত অথবা " "চিস্টেম পুনৰ ল'ড অথবা পুনাৰম্ভৰ পিছত সক্ৰিয় হব।" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1079,23 +1073,23 @@ msgstr "" "ছদ্মবেশ, পৰ্ট/পেকেট ফৰৱাৰ্ডিং, icmp, ফিল্টাৰসমূহ আৰু সমৃদ্ধ নিয়মসমূহ একত্ৰিত কৰে। " "অঞ্চলক আন্তঃপৃষ্ঠসমূহ আৰু উৎস ঠিকনাসমূহলৈ সংযুক্ত কৰিব পাৰি।" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "অঞ্চল যোগ কৰক" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "অঞ্চল সম্পাদনা কৰক" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "অঞ্চল আতৰাওক" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "অঞ্চলৰ অবিকল্পিতসমূহ ল'ড কৰক" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1105,11 +1099,11 @@ msgstr "" "নেটৱাৰ্কসমূহ যিসমূহে মেনিচক এই অঞ্চলৰ সৈতে সংযুক্ত সংযোগসমূহ, আন্তঃপৃষ্ঠসমূহ আৰু উৎসসমূহৰ " "পৰা প্ৰাপ্ত কৰিব পাৰে সেইসমূহে ভৰষাবান সেৱাসমূহ অভিগম কৰিব পাৰে।" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "সেৱাসমূহ" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1117,53 +1111,53 @@ msgstr "" "অতিৰিক্ত পৰ্ট অথবা পৰ্ট বিস্তাৰসমূহ যোগ কৰক, যি মেচিনৰ সৈতে সংযোগ কৰিব পৰা সকলো " "হস্ট অথবা নেটৱাৰ্কৰ বাবে অভিগম্য হব লাগে।" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "প'ৰ্ট" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "পৰ্ট সম্পাদনা কৰক" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "পৰ্ট আতৰাওক" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "পৰ্টসমূহ" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1173,11 +1167,11 @@ msgstr "" "Masquerading সহয়াক । আপোনাৰ স্থানীয় নেটৱৰ্ক প্ৰকাশিত নহ'ব আৰু ইন্টাৰনেটে এটা গৃহস্থ " "ৰূপে প্ৰস্তুত কৰা হ'ব । Masquerading অকল IPv4-ৰ ক্ষেত্ৰত প্ৰযোজ্য ।" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "ছদ্মবেশ অঞ্চল" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1185,11 +1179,11 @@ msgstr "" "যদি আপুনি ছদ্মবেশ সামৰ্থবান কৰে, আপোনাৰ IPv4 নেটৱাৰ্কসমূহৰ বাবে IP ফৰৱাৰ্ডিং " "সামৰ্থবান কৰা হব।" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Masquerading" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1200,19 +1194,19 @@ msgstr "" "এটা পৰ্টৰ পৰা অন্যলৈ যোগ কৰক। আন্তঃপৃষ্ঠ মাস্কুৰেইডেড থাকিলে অন্য চিস্টেমলৈ ফৰৱাৰ্ডিং " "উপযোগী হয়। পৰ্ট ফৰৱাৰ্ডিং কেৱল IPv4।" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "ফৰৱাৰ্ড পৰ্ট যোগ কৰক" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "ফৰৱাৰ্ড পৰ্ট সম্পাদনা কৰক" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "ফৰৱাৰ্ড পৰ্ট আতৰাওক" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1222,7 +1216,7 @@ msgstr "" "বাৰ্তাসমূহ পঠাবলৈ ব্যৱহাৰ কৰা হয়, কিন্তু অতিৰিক্তভাৱে তথ্যমূলক বাৰ্তাসমূহ যেনে ping " "অনুৰোধ আৰু উত্তৰৰ বাবেও ব্যৱহাৰ কৰা হয়।" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1230,41 +1224,41 @@ msgstr "" "তালিকাত ICMP ৰ ধৰণ চিহ্নিত কৰক, যাক গ্ৰহণ কৰা ন'হ'ব । শেষ সকলো ICMP ধৰণক " "ফায়াৰ্ৱালৰ মাজেদি যাব দিয়া হ'ব । অবিকল্পিত মান হ'ল কোনো সীমা নাই ।" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP ফিল্টাৰ" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "ইয়াত আপুনি অঞ্চলৰ বাবে সমৃদ্ধ ভাষা নিয়মসমূহ সংহতি কৰিব পাৰিব।" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "সমৃদ্ধ নিয়ম যোগ কৰক" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "সমৃদ্ধ নিয়ম সম্পাদন কৰক" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "সমৃদ্ধ নিয়ম আতৰাওক" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "সমৃদ্ধ নিয়মসমূহ" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1272,42 +1266,42 @@ msgstr "" "অঞ্চলৰ সৈতে আন্তহপৃষ্ঠসমূহ সংযুক্ত কৰিবলৈ প্ৰৱিষ্টিসমূহ যোগ কৰক। যদি আন্তঃপৃষ্ঠক এটা " "সংযোগে ব্যৱহাৰ কৰিব, অঞ্চলক সংযোগত ধাৰ্য্য কৰা অঞ্চললৈ সংহতি কৰা হব।" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "আন্তঃপৃষ্ঠ যোগ কৰক" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "আন্তঃপৃষ্ঠ সম্পাদন কৰক" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "আন্তঃপৃষ্ঠ আতৰাওক" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "উৎস যোগ কৰক" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "উৎস সম্পাদন কৰক" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "উৎস আতৰাওক" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "অঞ্চলবোৰ" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1315,55 +1309,55 @@ msgstr "" "এটা firewalld সেৱা হল পৰ্টসমূহ, প্ৰটোকলসমূহ, মডিউলসমূহ আৰু গন্তব্য ঠিকনাসমূহৰ এটা " "সংযুক্তি।" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "সেৱা যোগ কৰক" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "সেৱা সম্পাদনা কৰক" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "সেৱা আতৰাওক" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "সেৱাৰ অবিকল্পিতসমূহ ল'ড কৰক" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "নিবেশ সম্পাদনা" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "নিবেশ আঁতৰাওক" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "মডিউলসমূহ" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1372,15 +1366,15 @@ msgstr "" "যদি আপুনি গন্তব্য ঠিকনাসমূহ ধাৰ্য্য কৰে, সেৱা প্ৰৱিষ্টি গন্তব্য ঠিকনা আৰু ধৰণলৈ সীমিত " "থাকিব। যদি দুয়োটা প্ৰৱিষ্টি ৰিক্ত থাকে, তেন্তে কোনো সীমা নাথাকিব।" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1388,33 +1382,33 @@ msgstr "" "সেৱাসমূহক কেৱল স্থায়ী সংৰূপ দৰ্শনত পৰিবৰ্তন কৰিব পাৰি। সেৱাসমূহৰ চলনসময় সংৰূপ " "নিৰ্দিষ্ট কৰা আছে।" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1422,26 +1416,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1449,27 +1443,27 @@ msgstr "" "এটা firewalld icmptype এ firewalld ৰ বাবে এটা ইন্টাৰনেট নিয়ন্ত্ৰণ বাৰ্তা প্ৰটোকল " "(ICMP) ধৰণৰ তথ্য প্ৰদান কৰে।" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP ধৰণ যোগ কৰক" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP ধৰণ সম্পাদন কৰক" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ICMP ধৰণ আতৰাওক" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP ধৰণ অবিকল্পিতসমূহ ল'ড কৰক" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "এই ICMP ধৰণ IPv4 আৰু/অথবা IPv6 ৰ বাবে উপলব্ধ আছে নে ধাৰ্য্য কৰক।" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1477,7 +1471,7 @@ msgstr "" "ICMP ধৰণসমূহক কেৱল স্থায়ী সংৰূপ দৰ্শনত পৰিবৰ্তন কৰিব পাৰি। ICMP ধৰণসমূহৰ চলনসময় " "সংৰূপ নিৰ্দিষ্ট কৰা আছে।" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1485,11 +1479,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1501,7 +1495,7 @@ msgstr "" "কমান্ডসমূহ, প্ৰাচলসমূহ আৰু লক্ষ্যবোৰ। প্ৰত্যক্ষ সংৰূপক কেৱল শেষ উপায় হিচাপে ব্যৱহাৰ কৰিব " "লাগে যেতিয়া অন্য firewalld বৈশিষ্ট্যসমূহ ব্যৱহাৰ কৰা সম্ভব নহয়।" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1511,33 +1505,45 @@ msgstr "" "iptables ৰ বাবে হব, ipv6 ৰ সৈতে ip6tables ৰ বাবে হব আৰু eb ৰ সৈতে ইথাৰনেট " "ব্ৰিজবোৰ (ebtables) ৰ বাবে হব।" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "নিমৰ সৈতে ব্যৱহাৰ কৰিবলৈ অতিৰিক্ত শৃংখল।" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "শৃংখল যোগ কৰক" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "শৃংখল সম্পাদনা কৰক" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "শৃংখল আতৰাওক" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "শৃংখলসমূহ" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" "এটা প্ৰাথমিকতাৰ সৈতে এটা টেবুলৰ শৃংখললৈ তৰ্কসমূহ args ৰ সৈতে এটা নিয়ম যোগ কৰক।" -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "নিয়ম যোগ কৰক" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "নিয়ম সম্পাদন কৰক" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "নিয়ম আতৰাওক" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1552,23 +1558,11 @@ msgstr "" "যদি আপুনি সুনিশ্চিত কৰিব বিচাৰে যে এটা নিয়ম অন্য এটাৰ পিছত যোগ কৰা হব, প্ৰথমটোৰ " "বাবে এটা নিম্ন প্ৰাথমিকতা ব্যৱহাৰ কৰক আৰু নিম্নলিখিতৰ বাবে এটা উচ্চ ব্যৱহাৰ কৰক:" -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "নিয়ম যোগ কৰক" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "নিয়ম সম্পাদন কৰক" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "নিয়ম আতৰাওক" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "নিয়মসমূহ" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1577,310 +1571,207 @@ msgstr "" "পাছথ্ৰু নিয়মসমূহ ফায়াৰৱাললৈ প্ৰত্যক্ষভাৱে প্ৰেৰণ কৰা হয় আৰু বিশেষ শৃংখলত স্থাপন কৰা " "নহয়। সকলো iptables, ip6tables আৰু ebtables বিকল্পসমূহ ব্যৱহাৰ কৰিব পাৰি।" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" -"অনুগ্ৰহ কৰি পাছথ্ৰু নিয়মসমূহ ব্যৱহাৰ কৰোতে সাৱধান হব যাতে ফায়াৰৱাল ক্ষতিগ্ৰস্থ নহয়।" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "পাছথ্ৰু যোগ কৰক" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "পাছথ্ৰু সম্পাদন কৰক" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "পাছথ্ৰু আতৰাওক" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "পাছথ্ৰু" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"লকডাউন বৈশিষ্ট্য firewalld ৰ বাবে ব্যৱহাৰকাৰী আৰু এপ্লিকেচন নীতিসমূহৰ এটা লঘু " -"সংস্কৰণ। ই ফায়াৰৱাললৈ কৰা পৰিবৰ্তনসমূহ সীমিত কৰে। লকডাউন হোৱাইটলিস্টত কমান্ডসমূহ, " -"পৰিপ্ৰেক্ষতিত, ব্যৱহাৰকাৰীসকল আৰু ব্যৱহাৰকাৰী আইডিসমূহ থাকিব পাৰে।" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "পৰিপ্ৰেক্ষতিত যোগ কৰক" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "পৰিপ্ৰেক্ষতিত সম্পাদন কৰক" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "পৰিপ্ৰেক্ষতিত আতৰাওক" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "পৰিপ্ৰেক্ষতিতসমূহ" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"যদি ৱোহাইটলিস্টত এটা কমান্ড প্ৰৱিষ্টি এটা একস্টেৰিক্স '*' ৰ সৈতে অন্ত হয়, তেন্তে " -"কমান্ডৰ সৈতে আৰম্ভ হোৱা সকলো কমান্ড শাৰী মিল খাব। যদি '*' নাই সম্পূৰ্ণ কমান্ড " -"অন্তৰ্ভুক্ত তৰ্কসমূহ মিল খাব লাগিব।" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "কমান্ড শাৰী যোগ কৰক" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "কমান্ড শাৰী সম্পাদন কৰক" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "কমান্ড শাৰী আতৰাওক" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "কমান্ড শাৰীসমূহ" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "ব্যৱহাৰকাৰী নামসমূহ।" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "ব্যৱহাৰকাৰী নাম যোগ কৰক" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "ব্যৱহাৰকাৰী নাম সম্পাদন কৰক" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "ব্যৱহাৰকাৰী নাম আতৰাওক" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "ব্যৱহাৰকাৰী নামসমূহ" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "ব্যৱহাৰকাৰী আইডিবোৰ।" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "ব্যৱহাৰকাৰী আইডি যোগ কৰক" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "ব্যৱহাৰকাৰী আইডি সম্পাদন কৰক" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "ব্যৱহাৰকাৰী আইডি আতৰাওক" +"অনুগ্ৰহ কৰি পাছথ্ৰু নিয়মসমূহ ব্যৱহাৰ কৰোতে সাৱধান হব যাতে ফায়াৰৱাল ক্ষতিগ্ৰস্থ নহয়।" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "ব্যৱহাৰকাৰী আইডিবোৰ" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "পাছথ্ৰু" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "চিস্টেমৰ বৰ্তমান অবিকল্পিত অঞ্চল।" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "আতঙ্ক অৱস্থা:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "লকডাউন:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "অবিকল্পিত অঞ্চল:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "প'ৰ্ট আৰু নিয়মনীতি" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "অনুগ্ৰহ কৰি এটা পৰ্ট অথবা প্ৰটোকল সুমুৱাওক।" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "প্ৰত্যক্ষ নিয়ম" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "অনুগ্ৰহ কৰি ipv আৰু টেবুল, শৃংখল প্ৰাথমিকতা বাছক আৰু args সুমুৱাওক।" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "প্ৰাথমিকতা:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "অনুগ্ৰহ কৰি এটা প্ৰটোকল সুমুৱাওক।" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "অন্য প্ৰটোকল:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "সমৃদ্ধ নিয়ম" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "অনুগ্ৰহ কৰি এটা সমৃদ্ধ নিয়ম সুমুৱাওক।" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "হস্ট অথবা নেটৱাৰ্ক হোৱাইট অথবা ব্লেকলিস্টিংৰ বাবে উপাদানক নিষ্ক্ৰিয় কৰক।" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "উৎস:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "গন্তব্য:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "লগ:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "অডিট:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 আৰু ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "উলোটা" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1888,78 +1779,172 @@ msgstr "" "ইয়াক সামৰ্থবান কৰিবলৈ কাৰ্য্য 'reject' আৰু পৰিয়াল 'ipv4' অথবা 'ipv6' হব লাগিব " "(দুয়ো নহয়)।" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "চিহ্নিত ধৰণৰ সৈতে:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "চিহ্নিত সীমাৰ সৈতে:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "উপসৰ্গ:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "স্তৰ:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "উপাদান:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "কাৰ্য্য:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "ভিত্তি সেৱা সংহতিসমূহ" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "অনুগ্ৰহ কৰি ভিত্তি সেৱা সংহতিসমূহ সংৰূপণ কৰক:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "অনুগ্ৰহ কৰি এটা সেৱা বাছক।" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ব্যৱহাৰকাৰী ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "অনুগ্ৰহ কৰি ব্যৱহাৰকাৰী আইডি সুমুৱাওক।" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "অনুগ্ৰহ কৰি ব্যৱহাৰকাৰী নাম সুমুৱাওক।" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "ভিত্তি অঞ্চল সংহতিসমূহ" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "অনুগ্ৰহ কৰি ভিত্তি অঞ্চল সংহতিসমূহ সংৰূপণ কৰক:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "অবিকল্পিত লক্ষ্য" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "লক্ষ্য:" + +#~ msgid "User name" +#~ msgstr "ব্যৱহাৰকাৰী নাম" + +#~ msgid "Please enter the command line." +#~ msgstr "অনুগ্ৰহ কৰি কমান্ড শাৰীলৈ যাওক।" + +#~ msgid "Please enter the context." +#~ msgstr "অনুগ্ৰহ কৰি পৰিপ্ৰেক্ষতিত সুমুৱাওক।" + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "লকডাউনে ফায়াৰৱাল সংৰূপ লক কৰে যাতে কেৱল লকডাউন হোৱাইটলিস্টত থকা " +#~ "এপ্লিকেচনসমূহে ইয়াক পৰিবৰ্তন কৰিব পাৰে।" + +#~ msgid "Lockdown" +#~ msgstr "লকডাউন" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "লকডাউন হোৱাইটলিস্ট" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "লকডাউন বৈশিষ্ট্য firewalld ৰ বাবে ব্যৱহাৰকাৰী আৰু এপ্লিকেচন নীতিসমূহৰ এটা লঘু " +#~ "সংস্কৰণ। ই ফায়াৰৱাললৈ কৰা পৰিবৰ্তনসমূহ সীমিত কৰে। লকডাউন হোৱাইটলিস্টত " +#~ "কমান্ডসমূহ, পৰিপ্ৰেক্ষতিত, ব্যৱহাৰকাৰীসকল আৰু ব্যৱহাৰকাৰী আইডিসমূহ থাকিব পাৰে।" + +#~ msgid "Add Context" +#~ msgstr "পৰিপ্ৰেক্ষতিত যোগ কৰক" + +#~ msgid "Edit Context" +#~ msgstr "পৰিপ্ৰেক্ষতিত সম্পাদন কৰক" + +#~ msgid "Remove Context" +#~ msgstr "পৰিপ্ৰেক্ষতিত আতৰাওক" + +#~ msgid "Contexts" +#~ msgstr "পৰিপ্ৰেক্ষতিতসমূহ" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "যদি ৱোহাইটলিস্টত এটা কমান্ড প্ৰৱিষ্টি এটা একস্টেৰিক্স '*' ৰ সৈতে অন্ত হয়, তেন্তে " +#~ "কমান্ডৰ সৈতে আৰম্ভ হোৱা সকলো কমান্ড শাৰী মিল খাব। যদি '*' নাই সম্পূৰ্ণ কমান্ড " +#~ "অন্তৰ্ভুক্ত তৰ্কসমূহ মিল খাব লাগিব।" + +#~ msgid "Add Command Line" +#~ msgstr "কমান্ড শাৰী যোগ কৰক" + +#~ msgid "Edit Command Line" +#~ msgstr "কমান্ড শাৰী সম্পাদন কৰক" + +#~ msgid "Remove Command Line" +#~ msgstr "কমান্ড শাৰী আতৰাওক" + +#~ msgid "Command lines" +#~ msgstr "কমান্ড শাৰীসমূহ" + +#~ msgid "User names." +#~ msgstr "ব্যৱহাৰকাৰী নামসমূহ।" + +#~ msgid "Add User Name" +#~ msgstr "ব্যৱহাৰকাৰী নাম যোগ কৰক" + +#~ msgid "Edit User Name" +#~ msgstr "ব্যৱহাৰকাৰী নাম সম্পাদন কৰক" + +#~ msgid "Remove User Name" +#~ msgstr "ব্যৱহাৰকাৰী নাম আতৰাওক" + +#~ msgid "User names" +#~ msgstr "ব্যৱহাৰকাৰী নামসমূহ" + +#~ msgid "User ids." +#~ msgstr "ব্যৱহাৰকাৰী আইডিবোৰ।" + +#~ msgid "Add User Id" +#~ msgstr "ব্যৱহাৰকাৰী আইডি যোগ কৰক" + +#~ msgid "Edit User Id" +#~ msgstr "ব্যৱহাৰকাৰী আইডি সম্পাদন কৰক" + +#~ msgid "Remove User Id" +#~ msgstr "ব্যৱহাৰকাৰী আইডি আতৰাওক" + +#~ msgid "User Ids" +#~ msgstr "ব্যৱহাৰকাৰী আইডিবোৰ" + +#~ msgid "Lockdown:" +#~ msgstr "লকডাউন:" + +#~ msgid "User ID" +#~ msgstr "ব্যৱহাৰকাৰী ID" + +#~ msgid "Please enter the user id." +#~ msgstr "অনুগ্ৰহ কৰি ব্যৱহাৰকাৰী আইডি সুমুৱাওক।" + +#~ msgid "Please enter the user name." +#~ msgstr "অনুগ্ৰহ কৰি ব্যৱহাৰকাৰী নাম সুমুৱাওক।" diff --git a/po/ast.po b/po/ast.po index b03785a..c8e3f9a 100644 --- a/po/ast.po +++ b/po/ast.po @@ -6,7 +6,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: Automatically generated\n" "Language-Team: none\n" @@ -19,11 +19,44 @@ msgstr "" msgid "Firewall Applet" msgstr "" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +msgid "Runtime and permanent firewall configuration" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "" @@ -32,24 +65,24 @@ msgstr "" msgid "firewall;network;security;iptables;netfilter;" msgstr "" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -97,171 +130,171 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "" -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "" -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "" -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "" @@ -306,409 +339,393 @@ msgstr "" msgid "Failed to load icons." msgstr "" -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "" @@ -727,319 +744,297 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." msgstr "" -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " "system reload or restart." msgstr "" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1048,107 +1043,107 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " "hosts appear as a single address on the internet. Masquerading is IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1156,208 +1151,208 @@ msgid "" "IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " "messages like ping requests and replies." msgstr "" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." msgstr "" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " "limitation." msgstr "" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1365,58 +1360,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1424,11 +1419,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1436,444 +1431,335 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "" diff --git a/po/bg.po b/po/bg.po index a479d7b..88cf005 100644 --- a/po/bg.po +++ b/po/bg.po @@ -8,7 +8,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 09:43+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Bulgarian (http://www.transifex.com/projects/p/firewalld/" @@ -24,11 +24,45 @@ msgstr "" msgid "Firewall Applet" msgstr "Аплет на защитната стена" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Конфигуриране на защитната стена" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Защитна стена" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Конфигуриране на защитната стена" @@ -37,24 +71,24 @@ msgstr "Конфигуриране на защитната стена" msgid "firewall;network;security;iptables;netfilter;" msgstr "" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Зона '%s' активирана за интерфейс '%s'" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "Зона по подразбиране" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -105,153 +139,153 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "Вдигни защитите" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Разреши уведомленията" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Редактиране настройките на защитната стена..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Промяна зоните на връзките..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "Конфигуриране зоните за вдигане/сваляне на защитата..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Блокира целия мрежови трафик" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Няма връзка." -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" -msgstr "" +msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Източници" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Удостоверяването не успя." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Невалиден аргумент %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Името вече съществува" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Няма връзка с демона на защитната стена" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Целият мрежови трафик е блокиран." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "Зона по подразбиране: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "Зона '{zone}' е активна за връзка '{connection}' на интерфейс '{interface}'" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "Зона '{zone}' е активна за интерфейс '{interface}'" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "Зона '{zone}' активна за източник {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Няма активни зони." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "Връзката с FirewallD е осъществена." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "Връзката с FirewallD е изгубена." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD беше презареден." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "Подразбиращата се зона е сменена на '%s'." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "Мрежовият трафик вече не е блокиран." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "активиран" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "деактивиран" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -259,20 +293,20 @@ msgstr "" "Зона '{zone}' е {activated_deactivated} за връзка '{connection}' през " "интерфейс '{interface}'" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "Зона '{zone}' е {activated_deactivated} за интерфейс '{interface}'" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "Зона '%s' е активирана за интерфейс '%s'" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "Зона '{zone}' е {activated_deactivated} за източник '{source}'" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "Зона '%s' е активирана за източник '%s'" @@ -317,409 +351,393 @@ msgstr "" msgid "Failed to load icons." msgstr "Неуспех при зареждане на икони." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Услуга" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Порт" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Протокол" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Към порт" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Към адрес" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp тип" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Източник" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Внимание" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Грешка" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Зона" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Зона '%s': Услуга '%s' е недостъпна." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Премахване на зона" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Игнорирай" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Зона '%s': ICMP тип '%s' е недостъпен." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Вградена зона, преименуване не се поддържа." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Вградена услуга, преименуване не се поддържа." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "Вграден icmp, преименуване не се поддържа." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "Избор на зона за източник %s" @@ -738,91 +756,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "Моля, изберете подразбиращата се зона от списъка по-долу." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Пренасочване на порт" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "Моля, задайте настройките за източник и цел, според нуждите Ви." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Порт / Диапазон портове:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP адрес:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Протокол:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Назначение" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -830,222 +840,208 @@ msgstr "" "Ако разрешите локалното пренасочване, ще трябва да зададете порт. Той ще " "трябва да е различен от първоначалния порт." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Локално пренасочване" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Пренасочване към друг порт" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "Почернените елементи са задължителни, всички останали - не." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Име:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Версия:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Кратко:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Описание:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "Основни настройки на ICMP типове" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "Моля, конфигурирайте основните настройки на ICMP типове:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP тип" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Добавяне на запис" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Файл" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Опции" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Презареди " -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Смяна на подразбиращата се зона." -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Помощ" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1055,7 +1051,7 @@ msgstr "" "конфигурация. Постоянната конфигурация ще бъде активна след рестартиране на " "услугата или системата." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1064,86 +1060,86 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Добавяне на зона" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Редактиране на зона" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Премахване на зона" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "Зареждане на подразбиращото се за зоната" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Услуги" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Към порт" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Редактиране на зона" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Премахване на зона" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Портове" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1153,11 +1149,11 @@ msgstr "" "към Интернет. Вашата локална мрежа ще бъде невидима и хостовете в нея ще се " "представят с един единствен адрес в Интернет. Маскирането е само за IPv4." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Зона с маскиране" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1165,11 +1161,11 @@ msgstr "" "Ако разрешите маскирането, ще бъде разрешен и IP forwarding за Вашите IPv4 " "мрежи." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Маскиране" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1181,19 +1177,19 @@ msgstr "" "друга система работи само ако интерфейсът е маскиран. Пренасочването е само " "за IPv4." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "Добавяне пренасочване на порт" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "Редактиране пренасочването на порт" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "Премахване пренасочването на порт" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1203,7 +1199,7 @@ msgstr "" "изпращане на съобщения за грешки между компютри в мрежата, както и за " "информационни съобщения като ping запитвания и отговори." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1212,136 +1208,136 @@ msgstr "" "други ICMP типове преминаването през защитната стена е разрешено. По " "подразбиране ограничения няма." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP филтър" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "Зони" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Добавяне на услуга" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Редактиране на услуга" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Премахване на услуга" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Зарежда подразбиращото се за услугата" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Редактиране на запис" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Премахване на запис" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Модули" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1350,47 +1346,47 @@ msgstr "" "Ако зададете целеви адреси, услугите ще бъдат ограничени според целевия " "адрес и тип. Ако и двете са празни, ограничения няма." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1398,58 +1394,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Добавя ICMP тип" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Редактира ICMP типа" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Премахва ICMP типа" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "Зарежда подразбиращите се ICMP типове" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1457,11 +1453,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1469,444 +1465,335 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Текуща зона по подразбиране на системата." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Зона по подразбиране:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Порт и Протокол" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Моля, въведете порт и протокол." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Друг протокол:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Основни настройки на услугата" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Моля, конфигурирайте основните настройки на услугата:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Основни настройки на зоната" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Моля, конфигурирайте основните настройки на зоната:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Цел по подразбиране" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Цел:" diff --git a/po/bn_IN.po b/po/bn_IN.po index dca247d..c5d07c9 100644 --- a/po/bn_IN.po +++ b/po/bn_IN.po @@ -13,7 +13,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 09:43+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Bengali (India) (http://www.transifex.com/projects/p/" @@ -29,11 +29,45 @@ msgstr "" msgid "Firewall Applet" msgstr "ফায়ারওয়াল অ্যাপ্লেট" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "ফায়ারওয়াল কনফিগারেশন" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "ফায়ারওয়াল" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "ফায়ারওয়াল কনফিগারেশন" @@ -42,24 +76,24 @@ msgstr "ফায়ারওয়াল কনফিগারেশন" msgid "firewall;network;security;iptables;netfilter;" msgstr "firewall;network;security;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "ইন্টারফেস '%s' এর জন্য অঞ্চল নির্বাচন করুন" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "ডিফল্ট অঞ্চল" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "'%s' সংযোগের জন্য অঞ্চল নির্বাচন করুন" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -110,153 +144,153 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "শিল্ড ঊর্ধ্বে" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "বিজ্ঞপ্তি সক্রিয় করুন" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "ফায়ারওয়াল সেটিং সম্পাদন করুন..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "সংযোগের অঞ্চল পরিবর্তন করুন..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "শিল্ড ঊর্ধ্বে/নিম্নে অঞ্চল কনফিগার করুন..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "সকল নেটওয়ার্ক ট্র্যাফিক অবরুদ্ধ করুন" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "সংযোগ" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "ইন্টারফেস" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "উৎস" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "অনুমোদন ব্যর্থ।" -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "অবৈধ নাম" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "নাম ইতিমধ্যেই উপস্থিত" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "ফায়ারওয়াল ডিমোনে কোনো সংযোগ নেই" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "সকল নেটওয়ার্ক ট্র্যাফিক অবরুদ্ধ।" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "ডিফল্ট অঞ্চল: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "অঞ্চল '{zone}' '{connection}' সংযোগের জন্য সক্রিয়, '{interface}' ইন্টারফেসে" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "অঞ্চল '{zone}' '{interface}' ইন্টারফেসের জন্য সক্রিয়" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "অঞ্চল '{zone}' {source} সোর্সের জন্য সক্রিয়" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "কোনো সক্রিয় অঞ্চল নেই।" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallD এ সংযোগ স্থাপিত হয়েছে।" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallD এ সাথে সংযোগ বিচ্ছিন্ন হয়েছে।" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD অাবার লোড করা হয়েছে।" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "ডিফল্ট অঞ্চল '%s' এ পরিবর্তন করা হয়েছে।" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "নেটওয়ার্ক ট্র্যাফিক অার অবরুদ্ধ নেই।" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "সক্রিয় করা হয়েছে" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "নিষ্ক্রিয়" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -264,20 +298,20 @@ msgstr "" "অঞ্চল '{zone}' {activated_deactivated} '{connection}' সংযোগের জন্য, " "'{interface}' ইন্টারফেসে" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "অঞ্চল '{zone}' {activated_deactivated} '{interface}' ইন্টারফেসে জন্য" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "অঞ্চল '%s' '%s' ইন্টারফেসের জন্য সক্রিয় করা হয়েছে" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "অঞ্চল '{zone}' {activated_deactivated} '{source}' সোর্সের জন্য" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "অঞ্চল '%s' '%s' সোর্সের জন্য সক্রিয় করা হয়েছে" @@ -322,328 +356,312 @@ msgstr "নিষ্ক্রিয়" msgid "Failed to load icons." msgstr "অাইকনগুলি লোড করতে ব্যর্থ।" -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "ব্যবহারকারীর নাম" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "রানটাইম" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "স্থায়ী" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "পরিসেবা" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "পোর্ট" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "প্রোটোকল" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "উদ্দিষ্ট পোর্ট" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "উদ্দিষ্ট ঠিকানা" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp ধরন" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "পরিবার" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "কাজ" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "উপাদান" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Src" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Dest" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "লগ" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "অডিট" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "উৎস" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "সতর্কবার্তা" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "ত্রুটি" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "গ্রহণ করুন" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "প্রত্যাখ্যান করুন" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "ছাড়ুন" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "সীমা" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "পরিষেবা" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "পোর্ট" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "প্রোটোকল" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "masquerade" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "ফরোয়ার্ড-পোর্ট" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "স্তর" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "হ্যাঁ" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "অঞ্চল" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "অঞ্চল '%s': '%s' পরিষেবা উপলব্ধ নয়।" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "অপসারণ" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "অগ্রাহ্য করা হবে" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "অঞ্চল '%s': ICMP ধরন '%s' উপলব্ধ নয়।" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "বিল্ট-ইন অঞ্চল, নাম পরিবর্তন সমর্থিত নয়।" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "দ্বিতীয়" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "মিনিট" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "ঘন্টা" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "দিন" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "জরুরি" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "সাবধানবাণী" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "গুরুত্বপূর্ণ" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "ত্রুটি" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "সতর্কবার্তা" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "সূচনা" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "তথ্য" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "ডিবাগ" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -652,81 +670,81 @@ msgstr "" "ইন্টারফেস ছদ্মবেশ ধারণ করলে শুধুমাত্র তখনই অন্য সিস্টেমে ফরোয়ার্ডিং উপযোগী।\n" "অাপনি কি এই অঞ্চলকে ছদ্মবেশ পড়াতে চান?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "বিল্ট-ইন পরিষেবা, নাম পরিবর্তন সমর্থিত নয়।" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "বিল্ট-ইন icmp, নাম পরিবর্তন সমর্থিত নয়।" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "সোর্স '%s' এর জন্য অঞ্চল নির্বাচন করুন" @@ -745,91 +763,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "অনুগ্রহ করে কম্যান্ড লাইন উল্লেখ করুন।" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "অনুগ্রহ করে প্রসঙ্গ উল্লেখ করুন।" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "অনুগ্রহ করে নীচের তালিকা থেকে ডিফল্ট অঞ্চল নির্বাচন করুন।" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "সরাসারি চেন" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "অনুগ্রহ করে ipv এবং সারণী নির্বাচন করুন এবং চেনের নাম লিখুন।" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "চেন:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "raw" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "নিরাপত্তা" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "সারণী:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "ডাইরেক্ট Passthrough নিয়ম" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "অনুগ্রহ করে ipv নির্বাচন করুন এবং args প্রবেশ করান।" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Args:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "পোর্ট ফরওয়ার্ডিং" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "প্রয়োজন অনুসারে উৎস ও গন্তব্য সংক্রান্ত বিবিধ বিকল্পগুলি নির্বাচন করুন।" -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "পোর্ট / পোর্টের সীমা:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP ঠিকানা:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "প্রোটোকল:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "গন্তব্যস্থল" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -837,107 +847,107 @@ msgstr "" "স্থানীয়রূপে ফরওয়ার্ডিং করতে ইচ্ছুক হলে, একটি পোর্ট নির্দেশ করা আবশ্যক। উদ্দিষ্ট পোর্টটি " "উৎস পোর্টের থেকে পৃথক হওয়া আবশ্যক।" -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "স্থানীয়রূপে ফরওয়ার্ডিং" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "কোনো পৃথক পোর্টে ফরওয়ার্ড করা হবে" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "মোটা হরফে লেখা বাধ্যতামূলক, বাকি সব বৈকল্পিক।" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "নাম:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "সংস্করণ:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "সংক্ষিপ্ত:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "বিবরণ:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "পরিবার:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "প্রাথমিক ICMP ধরন সেটিং" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "অনুগ্রহ করে প্রাথমিক ICMP ধরন সেটিং কনফিগার করুন:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP প্রকৃতি" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "অনুগ্রহ করে একটি ICMP ধরন নির্বাচন করুন" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "এনট্রি যোগ করুন" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "ফাইল (_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "বিবিধ বিকল্প (_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Firewalld পুনরায় লোড করুন" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -947,117 +957,101 @@ msgstr "" "হবে। অর্থাৎ, পুনঃলোড পর্যন্ত হওয়া সমস্ত শুধুমাত্র রানটাইম পরিবর্তনগুলি পুনঃলোডের সাথে " "নষ্ট হয়ে যায়। যদি না তারা স্থায়ী কনফিগারেশনেও থেকে থাকে।" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "একটি নেটওয়ার্ক সংযোগ কোন অঞ্চলের সংগে সংযুক্ত তা পরিবর্তন করুন।" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "ডিফল্ট অঞ্চল পরিবর্তন করুন" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "সংযোগ বা ইন্টারফেসের জন্য ডিফল্ট অঞ্চল পরিবর্তন করুন।" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "প্যানিক মোডের অর্থ হল, সকল ইনকামিং এবং অাউটগোয়িং প্যাকেট ড্রপ করা হয়।" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "প্যানিক মোড" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"Lockdown ফায়ারওয়াল কনফিগারেশন লক করে, যাতে কিনা শুধুমাত্র lockdown whitelist এ " -"অ্যাপ্লিকেশন তার পরিবর্তন করতে পারে।" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "লকডাউন" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "রানটাইম কনফিগারেশন স্থায়ী করুন" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "রানটাইম থেকে স্থায়ী" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "প্রদর্শন (_V)" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP প্রকৃতি" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "ডাইরেক্ট কনফিগারেশন" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "লকডাউন হোয়াইটলিস্ট" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "সাহায্য (_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "কনফিগারেশন:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1066,7 +1060,7 @@ msgstr "" "বর্তমানে দৃশ্যমান কনফিগারেশন। রানটাইম কনফিগারেশন হল প্রকৃত সক্রিয় কনফিগারেশন। " "স্থায়ী কনফিগারেশন পরিষেবা বা সিস্টেম পুনঃলোড বা বন্ধ হয়ে চালু হওয়ার পরে সক্রিয় হবে।" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1079,23 +1073,23 @@ msgstr "" "প্রোটোকল, ম্যাসকোয়ারডিং, পোর্ট/প্যাকেট ফরোয়ার্ডিং, icmp ফিল্টার এবং রিচ রুল। অঞ্চল " "ইন্টারফেস এবং সোর্স ঠিকানার মধ্যে অাবদ্ধ থাকতে পারে।" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "অঞ্চল যোগ করুন" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "অঞ্চল সম্পাদন করুন" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "অঞ্চল সরান" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "অঞ্চল ডিফল্ট লোড করুন" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1105,11 +1099,11 @@ msgstr "" "সংযোগ, ইন্টারফেস এবং সোর্স থেকে মেশিনে পৌঁছাতে পারে এমন সকল হোস্ট এবং নেটওয়ার্ক " "থেকে বিশ্বস্ত পরিষেবাগুলি অ্যাক্সেসযোগ্য।" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "পরিষেবা" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1117,53 +1111,53 @@ msgstr "" "অতিরিক্ত পোর্ট বা পোর্ট রেঞ্জ যোগ করুন, যা মেশিনের সংগে সংযুক্ত করা যায় এমন সকল " "হোস্ট বা নেটওয়ার্কের জন্য অ্যাক্সেস হওয়া প্রয়োজন।" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "পোর্ট যোগ করুন" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "পোর্ট সম্পাদনা করুন" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "পোর্ট অপসারণ করুন" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "পোর্ট" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1173,11 +1167,11 @@ msgstr "" "Masquerading সহয়াক। আপনার স্থানীয় নেটওয়ার্ক প্রকাশিত হবে না ও ইন্টারনেটে একটি " "হোস্ট রূপে প্রস্তুত করা হবে। Masquerading শুধুমাত্র IPv4-র ক্ষেত্রে প্রযোজ্য।" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Masquerade অঞ্চল" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1185,11 +1179,11 @@ msgstr "" "অাপনি ম্যাসকিউরেডিং সক্রিয় করলে, IP ফরোয়ার্ডিং অাপনার IPv4 নেটওয়ার্কগুলির জন্য " "সক্রিয় করা হবে।" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Masquerading" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1200,19 +1194,19 @@ msgstr "" "ফরওয়ার্ড করার জন্য মান লিখুন। ইন্টারফেস masquerade করা থাকলে পৃথক সিস্টেমে পোর্ট " "ফরওয়ার্ড করা উপকারী হবে। পোর্ট ফরওয়ার্ডিং ব্যবস্থা শুধুমাত্র IPv4-র ক্ষেত্রে প্রযোজ্য।" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "ফরোয়ার্ড পোর্ট যোগ করুন" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "ফরোয়ার্ড পোর্ট সম্পাদনা করুন" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "ফরোয়ার্ড পোর্ট অপসারণ করুন" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1222,7 +1216,7 @@ msgstr "" "কম্পিউটারগুলির মধ্যে ত্রুটি বার্তা আদান প্রদান করা হয়। উপরন্তু, বিবিধ তথ্য যেমন ping-র " "অনুরোধ ও উত্তর প্রভৃতিও বিনিময় করার জন্য এটি ব্যবহৃত হয়।" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1231,41 +1225,41 @@ msgstr "" "র ধরনগুলি ফায়ারওয়ালের মধ্যে প্রবেশ করতে সক্ষম হবে। ডিফল্টরূপে কোনো প্রতিরোধ করা হয় " "না।" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP ফিল্টার" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "এখানে অাপনি অঞ্চলের জন্য সমৃদ্ধ ভাষা নিয়ম নির্দিষ্ট করতে পারবেন।" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "সমৃদ্ধ নিয়ম যোগ করুন" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "সমৃদ্ধ নিয়ম সম্পাদনা করুন" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "সমৃদ্ধ নিয়ম সরান" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "সমৃদ্ধ নিয়মগুলি" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1273,97 +1267,97 @@ msgstr "" "অঞ্চলে ইন্টারফেসগুলি অাবদ্ধ করতে এন্ট্রিগুলি যোগ করুন। ইন্টারফেস একটি সংযোগের দ্বারা " "ব্যবহৃত হলে, অঞ্চল সংযোগের দ্বারা নির্দিষ্ট অঞ্চলে নির্দিষ্ট হবে।" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "ইন্টারফেস যোগ করুন" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "ইন্টারফেস সম্পাদন করুন" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "ইন্টারফেস সরান" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "সোর্স যোগ করুন" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "সোর্স সম্পাদন করুন" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "সোর্স সরান" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "অঞ্চল" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" "একটি firewalld পরিষেবা হল পোর্ট, প্রোটোকল, মডিউল এবং গন্তব্য ঠিকানার সমন্বয়।" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "পরিষেবা যোগ করুন" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "পরিষেবা সম্পাদন করুন" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "পরিষেবা অপসারণ করুন" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "পরিষেবা ডিফল্ট লোড করুন" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "এনট্রি সম্পাদনা" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "এনট্রি অপসারণ" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "মডিউল" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1372,15 +1366,15 @@ msgstr "" "অাপনি গন্তব্য ঠিকানাগুলি নির্দিষ্ট করলে, পরিষেবা এন্ট্রি গন্তব্য ঠিকানা এবং ধরনের " "মধ্যেই সীমাবদ্ধ থাকবে। উভয় এন্ট্রিই খালি থাকলে, কোনো সীমাবদ্ধতা থাকে না।" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1388,33 +1382,33 @@ msgstr "" "পরিষেবাগুলি শুধুমাত্র স্থায়ী কনফিগারেশন রূপে পরিবর্তন করা যেতে পারে। পরিষেবাগুলির " "রানটাইম কনফিগারেশন নির্দিষ্ট।" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1422,26 +1416,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1449,27 +1443,27 @@ msgstr "" "একটি firewalld icmptype, firewalld এর জন্য একটি ইন্টারনেট কন্ট্রোল মেসেজ প্রোটোকল " "(ICMP) ধরনের জন্য তথ্য প্রদান করে।" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP ধরন যোগ করুন" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP ধরন সম্পাদন করুন" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ICMP ধরন অপসারণ করুন" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP ধরন ডিফল্ট যোগ করুন" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "IPv4 এবং/অথবা IPv6 এর জন্য এই ICMP ধরন উপলব্ধ কিনা তা নির্দিষ্ট করুন।" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1477,7 +1471,7 @@ msgstr "" "ICMP ধরনগুলি শুধুমাত্র স্থায়ী কনফিগারেশন রূপে পরিবর্তন করা যেতে পারে। ICMP ধরনগুলির " "রানটাইম কনফিগারেশন নির্দিষ্ট।" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1485,11 +1479,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1501,7 +1495,7 @@ msgstr "" "এবং টার্গেট জানতে হবে। অন্যান্য firewalld বৈশিষ্ট্য ব্যবহার করা সম্ভব না হলে, " "শুধুমাত্র তখনই শেষ মাধ্যম হিসাবে ডাইরেক্ট কনফিগারেশন ব্যবহার করা হবে।" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1511,33 +1505,45 @@ msgstr "" "হবে iptables, ipv6 এর ক্ষেত্রে ip6tables এবং eb এর ক্ষেত্রে ইথারনেট ব্রিজ " "(ebtables)।" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "নিয়মের সংগে ব্যবহার করার অতিরিক্ত চেন।" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "চেন যোগ করুন" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "চেন সম্পাদনা করুন" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "চেন সরান" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "চেন" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" "অগ্রাধিকার বিশিষ্ট একটি সারণীতে একটি চেনে অার্গুমেন্ট args সমেত একটি নিয়ম যোগ করুন।" -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "নিয়ম যোগ করুন" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "নিয়ম সম্পাদন করুন" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "নিয়ম সরান" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1553,23 +1559,11 @@ msgstr "" "করতে চাইলে, প্রথমটির জন্য একটি কম অগ্রাধিকার ব্যবহার করুন এবং নিম্নলিখিতের জন্য " "অপেক্ষাকৃত বেশি।" -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "নিয়ম যোগ করুন" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "নিয়ম সম্পাদন করুন" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "নিয়ম সরান" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "নিয়ম" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1578,313 +1572,210 @@ msgstr "" "passthrough নিয়ম ফায়ারওয়াল দিয়ে সরাসারি চালনা করা হয় এবং বিশেষ চেনে রাখা হয় " "না। সকল iptables, ip6tables এবং ebtables বিকল্প ব্যবহার করা যেতে পারে।" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" -"ফায়ারওয়াল যাতে ক্ষতিগস্থ না হয় তার জন্য অনুগ্রহ করে passthrough নিয়মের ক্ষেত্রে " -"যত্নবান হোন।" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "Passthrough যোগ করুন" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "Passthrough সম্পাদনা করুন" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "Passthrough সরান" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "Passthrough" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"লকডাউন বৈশিষ্ট্য firewalld এর জন্য ব্যবহারকারী এবং অ্যাপ্লিকেশন নীতির একটি ক্ষুদ্র " -"সংস্করণ। এটি ফায়ারওয়ালের পরিবর্তনগুলিকে সীমাবদ্ধ করে। লকডাউন হোয়াইটলিস্টের মধ্যে " -"কম্যান্ড, কনটেক্স, ব্যবহারকারী এবং ব্যবহারকারী অাইডি থাকতে পারে।" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "কনটেক্সট যোগ করুন" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "কনটেক্সট সম্পাদনা করুন" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "কনটেক্সট সরান" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "কনটেক্সট" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"whitelist এ কোনো কম্যান্ড এন্ট্রি তারকা চিহ্ন '*' দিয়ে সমাপ্ত হলে, কম্যান্ড দিয়ে শুরু " -"হওয়া সমস্ত কম্যান্ড লাইন মিলবে। '*' উপস্থিত না থাকলে, অার্গুমেন্ট সমেত চরম কম্যান্ড " -"অবশ্যই মিলতে হবে।" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "কমান্ড-লাইন যোগ করুন" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "কমান্ড-লাইন সম্পাদন করুন" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "কমান্ড-লাইন সরান" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "কম্যান্ড লাইন" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "ব্যবহারকারীর নাম‌।" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "ব্যবহারকারীর নাম যোগ করুন" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "ব্যবহারকারীর নাম সম্পাদন করুন" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "ব্যবহারকারীর নাম সরান" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "ব্যবহারকারীর নাম" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "ব্যবহারকারীর অাইডি।" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "ব্যবহারকারী অাইডি যোগ করুন" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "ব্যবহারকারীর অাইডি সম্পাদন করুন" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "ব্যবহারকারীর অাইডি সরান" +"ফায়ারওয়াল যাতে ক্ষতিগস্থ না হয় তার জন্য অনুগ্রহ করে passthrough নিয়মের ক্ষেত্রে " +"যত্নবান হোন।" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "ব্যবহারকারীর অাইডি" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Passthrough" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "সিস্টেমের বর্তমান ডিফল্ট অঞ্চল।" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "প্যানিক মোড:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "লকডাউন:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "ডিফল্ট অঞ্চল:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "পোর্ট এবং প্রোটোকল" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "অনুগ্রহ করে একটি পোর্ট এবং প্রোটোকল দিন।" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "ডাইরেক্ট নিয়ম" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "অনুগ্রহ করে ipv এবং সারণী, চেন অগ্রাধিকার নির্বাচন করুন এবং args প্রবেশ করান।" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "অগ্রাধিকার:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "অনুগ্রহ করে একটি প্রোটোকল দিন।" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "অন্য প্রোটোকল:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "সমৃদ্ধ নিয়ম" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "অনুগ্রহ করে একটি সমৃদ্ধ নিয়ম দিন।" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "" "হোস্ট বা নেটওয়ার্ক হোয়াইট বা কালো তালিকাভুক্তকরণের ক্ষেত্রে উপাদান নিষ্ক্রিয় করুন।" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "উৎসস্থল:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "গন্তব্য:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "লগ:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "অডিট:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 এবং ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "উল্টানো" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1892,78 +1783,172 @@ msgstr "" "এটিকে সক্ষম করতে হলে, অ্যাকশন 'রিজেক্ট' হতে হবে এবং ফ্যামিলি হয় 'ipv4' বা " "'ipv6' (উভয়ই নয়) হতে হবে।" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "ধরন সমেত:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "সীমা সমেত:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "প্রেফিক্স:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "স্তর:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "উপাদান:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "কাজ:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "প্রাথমিক পরিষেবা সেটিং" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "অনুগ্রহ করে প্রাথমিক পরিষেবা সেটিং কনফিগার করুন:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "অনুগ্রহ করে একটি পরিষেবা নির্বাচন করুন।" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ব্যবহারকারীর ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "অনুগ্রহ করে ব্যবহারকারীর অাইডি লিখুন।" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "অনুগ্রহ করে ব্যবহারকারীর নাম লিখুন।" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "প্রাথমিক অঞ্চল সেটিং" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "অনুগ্রহ করে প্রাথমিক অঞ্চল সেটিং কনফিগার করুন:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "ডিফল্ট টার্গেট" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "টার্গেট:" + +#~ msgid "User name" +#~ msgstr "ব্যবহারকারীর নাম" + +#~ msgid "Please enter the command line." +#~ msgstr "অনুগ্রহ করে কম্যান্ড লাইন উল্লেখ করুন।" + +#~ msgid "Please enter the context." +#~ msgstr "অনুগ্রহ করে প্রসঙ্গ উল্লেখ করুন।" + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Lockdown ফায়ারওয়াল কনফিগারেশন লক করে, যাতে কিনা শুধুমাত্র lockdown whitelist " +#~ "এ অ্যাপ্লিকেশন তার পরিবর্তন করতে পারে।" + +#~ msgid "Lockdown" +#~ msgstr "লকডাউন" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "লকডাউন হোয়াইটলিস্ট" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "লকডাউন বৈশিষ্ট্য firewalld এর জন্য ব্যবহারকারী এবং অ্যাপ্লিকেশন নীতির একটি ক্ষুদ্র " +#~ "সংস্করণ। এটি ফায়ারওয়ালের পরিবর্তনগুলিকে সীমাবদ্ধ করে। লকডাউন হোয়াইটলিস্টের " +#~ "মধ্যে কম্যান্ড, কনটেক্স, ব্যবহারকারী এবং ব্যবহারকারী অাইডি থাকতে পারে।" + +#~ msgid "Add Context" +#~ msgstr "কনটেক্সট যোগ করুন" + +#~ msgid "Edit Context" +#~ msgstr "কনটেক্সট সম্পাদনা করুন" + +#~ msgid "Remove Context" +#~ msgstr "কনটেক্সট সরান" + +#~ msgid "Contexts" +#~ msgstr "কনটেক্সট" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "whitelist এ কোনো কম্যান্ড এন্ট্রি তারকা চিহ্ন '*' দিয়ে সমাপ্ত হলে, কম্যান্ড দিয়ে " +#~ "শুরু হওয়া সমস্ত কম্যান্ড লাইন মিলবে। '*' উপস্থিত না থাকলে, অার্গুমেন্ট সমেত চরম " +#~ "কম্যান্ড অবশ্যই মিলতে হবে।" + +#~ msgid "Add Command Line" +#~ msgstr "কমান্ড-লাইন যোগ করুন" + +#~ msgid "Edit Command Line" +#~ msgstr "কমান্ড-লাইন সম্পাদন করুন" + +#~ msgid "Remove Command Line" +#~ msgstr "কমান্ড-লাইন সরান" + +#~ msgid "Command lines" +#~ msgstr "কম্যান্ড লাইন" + +#~ msgid "User names." +#~ msgstr "ব্যবহারকারীর নাম‌।" + +#~ msgid "Add User Name" +#~ msgstr "ব্যবহারকারীর নাম যোগ করুন" + +#~ msgid "Edit User Name" +#~ msgstr "ব্যবহারকারীর নাম সম্পাদন করুন" + +#~ msgid "Remove User Name" +#~ msgstr "ব্যবহারকারীর নাম সরান" + +#~ msgid "User names" +#~ msgstr "ব্যবহারকারীর নাম" + +#~ msgid "User ids." +#~ msgstr "ব্যবহারকারীর অাইডি।" + +#~ msgid "Add User Id" +#~ msgstr "ব্যবহারকারী অাইডি যোগ করুন" + +#~ msgid "Edit User Id" +#~ msgstr "ব্যবহারকারীর অাইডি সম্পাদন করুন" + +#~ msgid "Remove User Id" +#~ msgstr "ব্যবহারকারীর অাইডি সরান" + +#~ msgid "User Ids" +#~ msgstr "ব্যবহারকারীর অাইডি" + +#~ msgid "Lockdown:" +#~ msgstr "লকডাউন:" + +#~ msgid "User ID" +#~ msgstr "ব্যবহারকারীর ID" + +#~ msgid "Please enter the user id." +#~ msgstr "অনুগ্রহ করে ব্যবহারকারীর অাইডি লিখুন।" + +#~ msgid "Please enter the user name." +#~ msgstr "অনুগ্রহ করে ব্যবহারকারীর নাম লিখুন।" diff --git a/po/ca.po b/po/ca.po index 21c7595..3df5ad0 100644 --- a/po/ca.po +++ b/po/ca.po @@ -19,7 +19,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2018-08-20 10:43+0000\n" "Last-Translator: Robert Antoni Buj Gelonch \n" "Language-Team: Catalan (http://www.transifex.com/projects/p/firewalld/" @@ -35,11 +35,47 @@ msgstr "" msgid "Firewall Applet" msgstr "Miniaplicació del tallafoc" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +#, fuzzy +msgid "Allows to inspect and set:" +msgstr "Seleccioneu un ipset:" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Configuració del tallafoc" + +#: ../config/firewall-config.appdata.xml.in.h:4 +#, fuzzy +msgid "Predefined zones (levels of trust for network connections)" +msgstr "La zona predeterminada que s'utilitza en la connexió de xarxa «%s»" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Tallafoc" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Configuració del tallafoc" @@ -48,24 +84,24 @@ msgstr "Configuració del tallafoc" msgid "firewall;network;security;iptables;netfilter;" msgstr "tallafoc;xarxa;seguretat;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Selecciona la zona per a la interfície «%s»" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "Zona predeterminada" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "Selecciona la zona per a la connexió «%s»" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" "No s'ha pogut establir la zona {zone} per a la connexió {connection_name}" @@ -119,94 +155,94 @@ msgstr "Autors" msgid "License" msgstr "Llicència" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "Escuts aixecats" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Habilita les notificacions" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Edita els ajusts del tallafoc..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Canvia les zones de les connexions..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "Configura les zones d'escuts aixecats/baixats..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Bloqueja tot el trànsit de xarxa" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "Quant a" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Connexions" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "Interfícies" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Orígens" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Autentificació fallida." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "El nom no és vàlid" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "El nom ja existeix" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (Zona: {zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "{entry} (zona predeterminada: {default_zone})" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "No s'ha pogut obtenir les connexions de NetworkManager" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "Sense importacions disponibles de NetworkManager" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Sense connexió al dimoni del tallafoc" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Tot el trànsit de xarxa està bloquejat." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "Zona predeterminada: «%s»" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" @@ -214,55 +250,55 @@ msgstr "" "La zona predeterminada '{default_zone}' està activa per a la connexió " "'{connection}' en la interfície '{interface}'" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "La zona '{zone}' es troba activa per a la connexió '{connection}' en la " "interfície '{interface}'" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "La zona '{zone}' es troba activa per a la interfície '{interface}'" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "La zona '{zone}' es troba activa per a l'origen {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Sense zones actives." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "S'ha establert la connexió amb FirewallD." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "S'ha perdut la connexió amb FirewallD." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "S'ha tornat a carregar FirewallD." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "La zona predeterminada ha estat canviada a «%s»." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "El trànsit de xarxa ja no està bloquejat." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "activat" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "desactivat" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" @@ -270,7 +306,7 @@ msgstr "" "La zona predeterminada '{default_zone}' {activated_deactivated} per a la " "connexió '{connection}' en la interfície '{interface}'" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -278,21 +314,21 @@ msgstr "" "Zona '{zone}' {activated_deactivated} per a la connexió '{connection}' en la " "interfície '{interface}'" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" "Zona '{zone}' {activated_deactivated} per a la interfície '{interface}'" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "La zona «%s» es va activar per a la interfície «%s»" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "Zona '{zone}' {activated_deactivated} per a l'origen '{source}'" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "La zona «%s» es va activar per a l'origen «%s»" @@ -339,328 +375,312 @@ msgstr "inhabilitat" msgid "Failed to load icons." msgstr "S'ha produït un error en la càrrega de les icones." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "Context" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "Línia d'ordres" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "Nom d'usuari" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "Id. d'usuari" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "Taula" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "Encadenament" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "Prioritat" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "Arguments" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "Temps d'execució" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "Permanent" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Servei" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Port" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Protocol" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Cap al port" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Cap a l'adreça" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "Vincles" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "Entrada" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Tipus d'icmp" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "Família" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "Acció" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "Element" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Origen" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Destí" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "enregistra" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "Revisa" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "Interfície" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "Comentari" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Origen" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Advertència" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Error" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "accepta" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "rebutja" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "descarta" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "marca" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "límit" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "servei" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "port" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "protocol" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "emmascarament" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "bloqueig-icmp" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "icmp-type" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "reenviament-port" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "port-origen" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "nivell" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "sí" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Zona" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "Zona predeterminada: %s" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "Zona: %s" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Zona «%s»: El servei «%s» no està disponible." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Suprimeix" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Ignora" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Zona «%s»: El tipus d'ICMP «%s» no està disponible." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Zona integrada, no es permet el canvi de nom." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "segons" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "minuts" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "hores" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "dies" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "emergència" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "alerta" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "crític" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "error" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "advertència" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "notificació" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "informació" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "depuració" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -670,32 +690,32 @@ msgstr "" "està emmascarada.\n" "Voleu emmascarar aquesta zona?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Servei integrat, no es permet el canvi de nom." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "Si us plau, introduïu una adreça ipv4 de la forma adreça[/màscara]." -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "La màscara pot ser una màscara de xarxa o un número." -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "Si us plau, introduïu una adreça ipv6 de la forma adreça[/màscara]." -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "La màscara és un número." -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" "Si us plau, introduïu una adreça ipv4 o ipv6 de la forma adreça[/màscara]." -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." @@ -703,51 +723,51 @@ msgstr "" "La màscara pot ser una màscara de xarxa o un número per a ipv4.\n" "La màscara és un número per a ipv6." -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "ipset integrat, no es permet el canvi de nom." -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "Seleccioneu un fitxer" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "Fitxers de text" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "Tots els fitxers" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "Tot" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "Ajudant incrustat, el canvi de nom no està admès." -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "ICMP integrat, no es permet el canvi de nom." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "No s'ha pogut llegir el fitxer «%s»: %s" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "Selecciona la zona per a l'origen %s" @@ -766,92 +786,84 @@ msgid "Please select the automatic helpers value:" msgstr "Ajusts dels ajudants automàtics:" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "Introduïu la línia d'ordres." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "Introduïu el context." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "Seleccioneu la zona predeterminada de la llista de sota." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "Encadenament directe" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "Seleccioneu l'ipv i la taula i introduïu el nom de l'encadenament." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "Encadenament:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "en cru" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "seguretat" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "Taula:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "Regla de traspàs directe" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "Seleccioneu l'ipv i introduïu els arguments." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Arguments:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Reenviament de ports" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" "Seleccioneu les opcions d'origen i de destí segons les vostres necessitats." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Port o interval de ports:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "Adreça IP:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Protocol:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Destinació" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -859,107 +871,107 @@ msgstr "" "Si habiliteu el reenviament local, heu d'especificar un port. Aquest port ha " "de ser diferent del port origen." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Reenviament local" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Reenvia a un altre port" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "Ajusts de l'ajudant automàtic" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "Configureu els ajusts de l'ajudant automàtic:" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "Les entrades en negreta són obligatòries, i les altres són opcionals." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Nom:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Versió:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Resum:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Descripció:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "Família:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "Mòdul:" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "Ajudant" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "Seleccioneu un ajudant:" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "Base dels ajusts del tipus d'ICMP" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "Configureu la base dels ajusts del tipus d'ICMP:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "Tipus d'ICMP" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "Seleccioneu un tipus d'ICMP" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Afegeix una entrada" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "Afegeix entrades des d'un fitxer" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "Suprimeix l'entrada seleccionada" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "Suprimeix totes les entrades" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "Suprimeix entrades des d'un fitxer" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Fitxer" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Opcions" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Recarrega Firewalld" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -970,125 +982,108 @@ msgstr "" "que s'hagin fet en el temps d'execució fins a la nova recàrrega es perdran, " "sí no s'han fet també en la configuració permanent." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "Canvia la zona a la qual pertany una connexió de xarxa." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Canvia la zona predeterminada" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" "Canvia la zona predeterminada per a les connexions o per a les interfícies." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "Canvia la denegació de l'enregistrament" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "Canvia el valor de la denegació de l'enregistrament." -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "Configura l'assignació de l'ajudant automàtic" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "Configura l'establiment de l'assignació de l'ajudant automàtic." -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" "El mode pànic significa que tots els paquets d'entrada i de sortida són " "descartats." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "Mode pànic" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"El confinament bloqueja la configuració del tallafoc, d'aquesta manera " -"únicament les aplicacions en la llista blanca del confinament poden canviar-" -"ho." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "Confinament" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "Fes permanent la configuració temps d'execució" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "Temps d'execució a permanent" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "_Visualitza" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "IPSets" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "Tipus d'ICMP" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "Ajudants" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "Configuració directa" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "Llista blanca de confinaments" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "Vincles actius" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "A_juda" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "Canvia la zona" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "canvia la zona del vincle" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" "Oculta els vincles actius en temps d'execució a les zones, de les " "connexions, de les interfícies i dels orígens." -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" "Mostra els vincles actius en temps d'execució a les zones, de les " "connexions, de les interfícies i dels orígens." -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "Configuració:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1099,7 +1094,7 @@ msgstr "" "configuració activa després que el servei o el sistema es torni a carregar o " "iniciar." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1113,23 +1108,23 @@ msgstr "" "filtres icmp i regles d'enriquiment. La zona pot ser enllaçada a interfícies " "i adreces d'origen." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Afegeix una zona" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Edita la zona" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Suprimeix la zona" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "Carrega els valors predeterminats de la zona" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1140,11 +1135,11 @@ msgstr "" "puguin aconseguir connectar-se amb la màquina, les interfícies i els orígens " "enllaçats en aquesta zona." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Serveis" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1153,45 +1148,45 @@ msgstr "" "accessibles per a tots els amfitrions o xarxes perquè es puguin connectar " "amb la màquina." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Afegeix un port" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Edita el port" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Suprimeix el port" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Ports" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" "Afegiu els protocols que hagin de ser accessibles per a tots els amfitrions " "o xarxes." -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "Afegeix un protocol" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "Afegeix el protocol" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "Suprimeix el protocol" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "Protocols" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." @@ -1200,12 +1195,12 @@ msgstr "" "ser accessibles per a tots els amfitrions o xarxes perquè es puguin " "connectar amb la màquina." -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "Ports d'origen" # translation auto-copied from project firewalld, version RHEL-7, document po/firewalld, author Robert Antoni Buj Gelonch -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1216,11 +1211,11 @@ msgstr "" "els amfitrions apareixeran com una simple adreça en Internet. " "L'emmascarament únicament es pot utilitzar amb IPv4." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Zona emmascarada" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1228,11 +1223,11 @@ msgstr "" "Si habiliteu l'emmascarament, el reenviament IP estarà habilitat en les " "vostres xarxes IPv4." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Emmascarament" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1244,19 +1239,19 @@ msgstr "" "reenviament a un altre sistema és útil només si la interfície està " "emmascarada. El reenviament de ports únicament es pot utilitzar amb IPv4." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "Afegeix un reenviament de port" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "Edita el reenviament de port" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "Suprimeix el reenviament de port" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1266,7 +1261,7 @@ msgstr "" "els missatges d'error entre ordinadors en xarxa, però addicionalment per als " "missatges d'informació com ara sol·licituds i respostes del ping." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1275,7 +1270,7 @@ msgstr "" "tipus d'ICMP tenen permès passar pel tallafoc. Per defecte no hi ha cap " "limitació." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." @@ -1283,36 +1278,36 @@ msgstr "" "Si s'habilita Inverteix el filtre, s'accepten les entrades ICMP marcades i " "es rebutgen les altres. En una zona amb l'objectiu DROP, es deixen caure." -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "Inverteix el filtre" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "Filtre ICMP" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" "Aquí podeu establir les regles del llenguatge d'enriquiment per a la zona." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "Afegeix una regla d'enriquiment" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "Edita la regla d'enriquiment" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "Suprimeix la regla d'enriquiment" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "Regles d'enriquiment" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1321,19 +1316,19 @@ msgstr "" "interfície serà utilitzada per una connexió, la zona s'establirà a la zona " "indicada en la connexió." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "Afegeix una interfície" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "Edita la interfície" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "Suprimeix la interfície" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " @@ -1344,23 +1339,23 @@ msgstr "" "limitacions. El reenviament de ports i l'emmascarat no funcionarà per als " "vincles d'origen MAC." -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "Afegeix un origen" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "Edita l'origen" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "Suprimeix l'origen" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "Zones" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1368,23 +1363,23 @@ msgstr "" "Un servei firewalld és una combinació de ports, protocols, mòduls i adreces " "de destinació." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Afegeix un servei" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Edita el servei" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Suprimeix el servei" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Carrega els valors predeterminats del servei" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." @@ -1392,15 +1387,15 @@ msgstr "" "Afegiu els ports o els intervals de ports addicionals que hagin de ser " "accessibles per a tots els amfitrions o xarxes." -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Edita l'entrada" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Suprimeix l'entrada" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." @@ -1408,19 +1403,19 @@ msgstr "" "Afegiu els ports o els intervals de ports addicionals d'origen que hagin de " "ser accessibles per a tots els amfitrions o xarxes." -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "Port d'origen" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "Alguns serveis necessiten els mòduls de l'ajudant de Netfilter." -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Mòduls" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1430,15 +1425,15 @@ msgstr "" "limitada a l'adreça de destinació i al tipus. Si ambdues entrades estan " "buides, aleshores no hi ha cap limitació." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1446,7 +1441,7 @@ msgstr "" "Els serveis es poden canviar únicament en la vista de configuració " "permanent. La configuració en temps d'execució dels serveis és fixa." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " @@ -1454,27 +1449,27 @@ msgstr "" "Un IPSet pot utilitzar-se per crear llistes blanques o negres, és capaç " "d'emmagatzemar per exemple les adreces IP, els números dels ports o les MAC." -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "IPSet" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "Afegeix un IPSet" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "Edita l'IPSet" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "Suprimeix l'IPSet" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "Carrega els valors predeterminats d'IPSet" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1486,7 +1481,7 @@ msgstr "" "aquelles entrades que hagin estat afegides amb firewalld. Aquí no es " "llistaran aquelles entrades que s'hagin afegit directament amb l'ordre ipset." -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." @@ -1495,21 +1490,21 @@ msgstr "" "cap entrada visible. Les entrades s'han de supervisar directament amb " "l'ordre ipset." -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "Afegeix" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "Entrades" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" "Els IPSets únicament es poden crear en la vista de configuració permanent." -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1517,27 +1512,27 @@ msgstr "" "Un firewalld icmptype proporciona la informació per un tipus d'ICMP " "(Internet Control Message Protocol) per a firewalld." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Afegeix un tipus d'ICMP" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Edita el tipus d'ICMP" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Suprimeix el tipus d'ICMP" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "Carrega els valor predeterminats d'ICMP" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "Especifiqueu si aquest tipus d'ICMP està disponible per IPv4 i/o IPv6." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1545,7 +1540,7 @@ msgstr "" "Els tipus d'ICMP únicament es poden canviar en la vista de configuració " "permanent. La configuració dels tipus d'ICMP en temps d'execució és fixa." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1558,13 +1553,13 @@ msgstr "" "relacionats amb la senyalització de la connexió, per tant, sense l'ajudant " "són bloquejades pel tallafoc." -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" "Defineix els ports o els intervals de ports els quals estan monitorats per " "l'ajudant." -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1577,7 +1572,7 @@ msgstr "" "directa ha d'utilitzar-se únicament com a últim recurs quan no és possible " "utilitzar les altres funcions de firewalld." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1587,34 +1582,46 @@ msgstr "" "s'utilitzarà en iptables, amb ipv6 en ip6tables, i amb eb per als ponts de " "xarxa (ebtables)." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "Encadenaments addicionals per utilitzar amb regles." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "Afegeix un encadenament" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "Edita l'encadenament" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "Suprimeix l'encadenament" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "Encadenament" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" "Afegiu una regla amb arguments a un encadenament en una taula amb una " "prioritat." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "Afegeix una regla" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "Edita la regla" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "Suprimeix la regla" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1630,23 +1637,11 @@ msgstr "" "assegurar-vos que una regla sigui afegida després d'una altra, utilitzeu una " "prioritat inferior per a la primera i superior per a la següent." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "Afegeix una regla" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "Edita la regla" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "Suprimeix la regla" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "Regles" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1656,318 +1651,212 @@ msgstr "" "col·loquen en encadenaments especials. Es poden fer ús de totes les opcions " "d'iptables, d'ip6tables i d'ebtables." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "Aneu amb compte amb les regles de traspàs per no danyar el tallafoc." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "Afegeix un traspàs" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "Edita el traspàs" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "Suprimeix el traspàs" -#: ../src/firewall-config.glade.h:193 +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." +msgstr "Aneu amb compte amb les regles de traspàs per no danyar el tallafoc." + +#: ../src/firewall-config.glade.h:186 msgid "Passthrough" msgstr "Traspàs" -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"La funció de confinament és una versió lleugera de les polítiques d'usuari i " -"aplicació per a firewalld. Limita els canvis al tallafoc. La llista blanca " -"de confinaments pot contenir ordres, contexts, usuaris i id. d'usuaris." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" -"Aquest context és el context de seguretat (SELinux) d'una aplicació o servei " -"en execució. Per obtenir el context d'una aplicació en execució, utilitzeu " -"ps -e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Afegeix un context" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Edita el context" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Suprimeix el context" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Contexts" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"Si l'entrada d'una ordre en una llista blanca acaba amb '*', aleshores totes " -"les línies d'ordres que comencin amb la comanda coincidiran. Si no hi ha '*' " -"els arguments inclusius de la comanda absoluta han de coincidir." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Afegeix una línia d'ordres" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Edita la línia d'ordres" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Suprimeix la línia d'ordres" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Línies d'ordres" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Els noms d'usuaris." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Afegeix un nom d'usuari" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Edita el nom d'usuari" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Suprimeix el nom d'usuari" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Noms d'usuaris" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Id. d'usuaris" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Afegeix un Id. d'usuari" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Edita l'Id. d'usuari" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Suprimeix l'Id. d'usuari" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Id. d'usuaris" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "L'actual zona predeterminada del sistema." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Denegació de l'enregistrament:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Mode pànic:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Ajudants automàtics:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Confinament:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Zona predeterminada:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Introduïu el nom d'una interfície:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Base dels ajusts d'IPSet" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Configureu la base dels ajusts d'ipset:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Tipus:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Temps d'expiració:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Mida del hash:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Nombre màxim d'elements:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Valor del temps d'expiració en segons" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "mida del hash inicial, per defecte és 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Nombre màxim d'elements, per defecte és 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Seleccioneu un ipset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Introduïu una entrada ipset:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Denegació de l'enregistrament" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Seleccioneu el valor de la denegació de l'enregistrament:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Marca" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Introduïu una marca amb una màscara opcional." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" "El camp de la marca i el camp de la màscara són nombres sense signe de 32 " "bits d'amplada." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Marca:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Màscara:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Seleccioneu un ajudant conntrack de netfilter:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Selecciona -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Altres mòduls:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port i protocol" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Introduïu el port i el protocol." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Regla directa" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "Seleccioneu l'ipv i la taula, la prioritat de l'encadenament i introduïu els " "arguments." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Prioritat:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Introduïu un protocol." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Un altre protocol:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Regla d'enriquiment" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Introduïu una regla d'enriquiment." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Per a l'amfitrió o la xarxa en la llista blanca o en la llista negra " "desactiva l'element." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Origen:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destinació:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Enregistra:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Revisa:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 i ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "inverteix" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1975,78 +1864,192 @@ msgstr "" "Per habilitar-ho l'acció ha de ser «rebutja» i la família «ipv4» o " "«ipv6» (no ambdós)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "amb tipus:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Amb un límit de:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Prefix:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Nivell:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Element:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Acció:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Base dels ajusts del servei" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Configureu la base dels ajusts del servei:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Seleccioneu un servei." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Introduïu un origen." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Id. d'usuari" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Especifiqueu l'id. d'usuari." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Introduïu el nom d'usuari." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "etiqueta" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Base dels ajusts de la zona" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Configureu la base dels ajusts de la zona:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Destinació predeterminada" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Destinació:" + +#~ msgid "Context" +#~ msgstr "Context" + +#~ msgid "Command line" +#~ msgstr "Línia d'ordres" + +#~ msgid "User name" +#~ msgstr "Nom d'usuari" + +#~ msgid "User id" +#~ msgstr "Id. d'usuari" + +#~ msgid "Please enter the command line." +#~ msgstr "Introduïu la línia d'ordres." + +#~ msgid "Please enter the context." +#~ msgstr "Introduïu el context." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "El confinament bloqueja la configuració del tallafoc, d'aquesta manera " +#~ "únicament les aplicacions en la llista blanca del confinament poden " +#~ "canviar-ho." + +#~ msgid "Lockdown" +#~ msgstr "Confinament" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Llista blanca de confinaments" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "La funció de confinament és una versió lleugera de les polítiques " +#~ "d'usuari i aplicació per a firewalld. Limita els canvis al tallafoc. La " +#~ "llista blanca de confinaments pot contenir ordres, contexts, usuaris i " +#~ "id. d'usuaris." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Aquest context és el context de seguretat (SELinux) d'una aplicació o " +#~ "servei en execució. Per obtenir el context d'una aplicació en execució, " +#~ "utilitzeu ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "Afegeix un context" + +#~ msgid "Edit Context" +#~ msgstr "Edita el context" + +#~ msgid "Remove Context" +#~ msgstr "Suprimeix el context" + +#~ msgid "Contexts" +#~ msgstr "Contexts" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Si l'entrada d'una ordre en una llista blanca acaba amb '*', aleshores " +#~ "totes les línies d'ordres que comencin amb la comanda coincidiran. Si no " +#~ "hi ha '*' els arguments inclusius de la comanda absoluta han de coincidir." + +#~ msgid "Add Command Line" +#~ msgstr "Afegeix una línia d'ordres" + +#~ msgid "Edit Command Line" +#~ msgstr "Edita la línia d'ordres" + +#~ msgid "Remove Command Line" +#~ msgstr "Suprimeix la línia d'ordres" + +#~ msgid "Command lines" +#~ msgstr "Línies d'ordres" + +#~ msgid "User names." +#~ msgstr "Els noms d'usuaris." + +#~ msgid "Add User Name" +#~ msgstr "Afegeix un nom d'usuari" + +#~ msgid "Edit User Name" +#~ msgstr "Edita el nom d'usuari" + +#~ msgid "Remove User Name" +#~ msgstr "Suprimeix el nom d'usuari" + +#~ msgid "User names" +#~ msgstr "Noms d'usuaris" + +#~ msgid "User ids." +#~ msgstr "Id. d'usuaris" + +#~ msgid "Add User Id" +#~ msgstr "Afegeix un Id. d'usuari" + +#~ msgid "Edit User Id" +#~ msgstr "Edita l'Id. d'usuari" + +#~ msgid "Remove User Id" +#~ msgstr "Suprimeix l'Id. d'usuari" + +#~ msgid "User Ids" +#~ msgstr "Id. d'usuaris" + +#~ msgid "Lockdown:" +#~ msgstr "Confinament:" + +#~ msgid "User ID" +#~ msgstr "Id. d'usuari" + +#~ msgid "Please enter the user id." +#~ msgstr "Especifiqueu l'id. d'usuari." + +#~ msgid "Please enter the user name." +#~ msgstr "Introduïu el nom d'usuari." diff --git a/po/cs.po b/po/cs.po index f237fea..ba4306f 100644 --- a/po/cs.po +++ b/po/cs.po @@ -28,7 +28,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2021-12-03 22:16+0000\n" "Last-Translator: Pavel Borecki \n" "Language-Team: Czech ps -e --" -"context." -msgstr "" -"Kontext je kontext zabezpečení (SELinux) spuštěné aplikace nebo služby. Pro " -"získání kontextu běžící aplikace je nutné použít ps -e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Přidat kontext" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Upravit kontext" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Odebrat kontext" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Kontexty" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Pokud položka příkazu na seznamu povolených vyjímek končí hvězdičkou '*', " -"pak se všechny příkazové řádky začínající příkazem budou shodovat. Pokud tam " -"'*' není, musí se absolutní příkaz zahrnující argumenty shodovat." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Přidat příkazový řádek" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Upravit příkazový řádek" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Odebrat příkazový řádek" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Příkazové řádky" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Uživatelská jména." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Přidat uživatelské jméno" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Upravit uživatelské jméno" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Odebrat uživatelské jméno" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Uživatelská jména" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Identif. uživatelů." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Přidat identif. uživatele" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Upravit identif. uživatele" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Odebrat identif. uživatele" +"S pravidly přímého průchodu buďte opatrní, abyste bránu firewall celou " +"neúmyslně nevyřadili." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Identif. uživatelů" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Přímý průchod" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Stávající výchozí zóna systému." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Záznam zamítnutí:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Režim paniky:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Automatičtí pomocníci:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Uzamčení:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Výchozí zóna:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Zadejte název rozhraní:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Nastavení základního IPSetu" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Nakonfigurujte základní nastavení ipsetu:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Typ:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Časový limit:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Délka otisku:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maxelem:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Hodnota časového limitu v sekundách" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Počáteční délka otisku, výchozí hodnota 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Maximální počet prvků, výchozí 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Vyberte IPSet:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Zadejte položku ipset:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Záznam zamítnutí" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Vyberte hodnotu záznamu zamítnutí:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Označení" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Zadejte označení s volitelnou maskou." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "Kolonky označení a masky jsou obě 32 bitů dlouhá čísla bez znaménka." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Označení:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Maska:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Vyberte pomocníka netfilter conntrack:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Vybrat -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Jiný modul:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port a protokol" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Zadejte port a protokol." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Přímé pravidlo" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Vyberte ipv a tabulku, prioritu řetězce a zadejte argumenty." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Priorita:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Zadejte protokol." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Další protokol:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Košaté pravidlo" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Zadejte bohaté pravidlo." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Pokud chcete povolovat nebo odpírat přístup do sítě na základě seznamu, " "deaktivujte tento prvek." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Zdroj:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Cíl:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Záznam událostí:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audit:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "IPv4 a IPv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "obrácený" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1945,78 +1836,190 @@ msgstr "" "K povolení tohoto musí být Akce nastavena na „odmítnout“ a generace buď " "„IPv4“ nebo „IPv6“ (ne obojí)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "s Typem:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "S Limitem:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Předpona:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Úroveň:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Prvek:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Akce:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Nastavení hlavní služby" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Nastavte základní službu:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Vyberte službu." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Zadejte zdroj." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Identif. uživatele" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Zadejte identif. uživatele." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Zadejte uživatelské jméno." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "štítek" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Nastavení hlavní zóny" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Zadejte nastavení hlavní zóny:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Výchozí cíl" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Cíl:" + +#~ msgid "Context" +#~ msgstr "Kontext" + +#~ msgid "Command line" +#~ msgstr "Příkazový řádek" + +#~ msgid "User name" +#~ msgstr "Uživatelské jméno" + +#~ msgid "User id" +#~ msgstr "Identif. uživatele" + +#~ msgid "Please enter the command line." +#~ msgstr "Přejděte na příkazový řádek." + +#~ msgid "Please enter the context." +#~ msgstr "Zadejte kontext." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Uzamčení zablokuje změny nastavení brány firewall tak, že ho budou moci " +#~ "měnit pouze aplikace, které se nacházejí na seznamu povolených." + +#~ msgid "Lockdown" +#~ msgstr "Uzamčení" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Seznam výjimek z uzamčení" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Funkce uzamčení je odlehčená verze uživatelských a aplikačních politik " +#~ "pro firewalld. Omezuje změny na firewallu. Seznam povolených výjimek " +#~ "uzamčení může obsahovat příkazy, kontext, uživatele a identif. uživatelů." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Kontext je kontext zabezpečení (SELinux) spuštěné aplikace nebo služby. " +#~ "Pro získání kontextu běžící aplikace je nutné použít ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "Přidat kontext" + +#~ msgid "Edit Context" +#~ msgstr "Upravit kontext" + +#~ msgid "Remove Context" +#~ msgstr "Odebrat kontext" + +#~ msgid "Contexts" +#~ msgstr "Kontexty" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Pokud položka příkazu na seznamu povolených vyjímek končí hvězdičkou '*', " +#~ "pak se všechny příkazové řádky začínající příkazem budou shodovat. Pokud " +#~ "tam '*' není, musí se absolutní příkaz zahrnující argumenty shodovat." + +#~ msgid "Add Command Line" +#~ msgstr "Přidat příkazový řádek" + +#~ msgid "Edit Command Line" +#~ msgstr "Upravit příkazový řádek" + +#~ msgid "Remove Command Line" +#~ msgstr "Odebrat příkazový řádek" + +#~ msgid "Command lines" +#~ msgstr "Příkazové řádky" + +#~ msgid "User names." +#~ msgstr "Uživatelská jména." + +#~ msgid "Add User Name" +#~ msgstr "Přidat uživatelské jméno" + +#~ msgid "Edit User Name" +#~ msgstr "Upravit uživatelské jméno" + +#~ msgid "Remove User Name" +#~ msgstr "Odebrat uživatelské jméno" + +#~ msgid "User names" +#~ msgstr "Uživatelská jména" + +#~ msgid "User ids." +#~ msgstr "Identif. uživatelů." + +#~ msgid "Add User Id" +#~ msgstr "Přidat identif. uživatele" + +#~ msgid "Edit User Id" +#~ msgstr "Upravit identif. uživatele" + +#~ msgid "Remove User Id" +#~ msgstr "Odebrat identif. uživatele" + +#~ msgid "User Ids" +#~ msgstr "Identif. uživatelů" + +#~ msgid "Lockdown:" +#~ msgstr "Uzamčení:" + +#~ msgid "User ID" +#~ msgstr "Identif. uživatele" + +#~ msgid "Please enter the user id." +#~ msgstr "Zadejte identif. uživatele." + +#~ msgid "Please enter the user name." +#~ msgstr "Zadejte uživatelské jméno." diff --git a/po/da.po b/po/da.po index 89a9c34..3a595b7 100644 --- a/po/da.po +++ b/po/da.po @@ -13,7 +13,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-07-05 10:53+0000\n" "Last-Translator: scootergrisen \n" "Language-Team: Danish ps -e --" -"context." -msgstr "" -"Sammenhænget er sikkerhedenssammenhænget (SELinux) af et kørende program " -"eller tjeneste. Brug ps -e --context for at få sammenhænget af et " -"kørende program." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Tilføj sammenhæng" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Rediger sammenhæng" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Fjern sammenhæng" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Sammenhæng" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"Hvis et kommandopunkt på hvidlisten slutter med en stjerne '*', så matches " -"alle kommandolinjer som starte med kommandoen. Hvis ikke '*' er der, så skal " -"den absolutte kommando matche, inklusiv argumenter." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Tilføj kommandolinje" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Rediger kommandolinje" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Fjern kommandolinje" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Kommandolinjer" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Brugernavne." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Tilføj brugernavn" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Rediger brugernavn" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Fjern brugernavn" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Brugernavne" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Bruger-ID'er." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Tilføj bruger-ID" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Rediger bruger-ID" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Fjern bruger-ID" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Bruger-ID'er" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Systemets nuværende standardzone." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Lognægtelse:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Paniktilstand:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Automatiske hjælpere:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Lukning:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Standardzone:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Indtast venligst et grænsefladenavn:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Grundlæggende IP-sæt-indstillinger" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Konfigurer venligst grundlæggende IP-sæt-indstillinger:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Type:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Timeout:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Hashstørrelse:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maks. elem:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Timeoutværdi i sekunder" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Indledende hashstørrelse, standard 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Maks. antal elementer, standard 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Vælg venligst et IP-sæt:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Indtast venligst et ipset-punkt:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Lognægtelse" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Vælg venligst en lognægtelsesværdi:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Mærk" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Indtast venligst et mærke med en valgfri maske." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "Mærket og maskefeltet er begge 32 bit brede numre uden fortegn." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Mærke:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Maske:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Vælg venligst en netfilter conntrack-hjælper:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Vælg -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Andet module:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port og protokol" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Indtast venligst en port eller protokol." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Direkte regel" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Vælg venligst ipv og tabel, kæde, prioritet og indtast argumenterne." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Prioritet:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Indtast venligst en protokol." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Anden protokol:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Rigregel" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Indtast venligst en rigregel." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Deaktivér elementet for hvidlistning eller sortlisting af vært eller netværk." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Kilde:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destination:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Log:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audit:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 og ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "omvendt" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1941,78 +1831,191 @@ msgstr "" "For at aktivere, skal denne handling være 'afvis' og familje skal enten være " "'ipv4' eller 'ipv6' (ikke begge)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "med type:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Med grænse:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Præfiks:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Niveau:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Element:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Handling:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Grundlæggende tjenesteindstillinger" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Konfigurer venligst grundlæggende tjenesteindstillinger:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Vælg venligst en tjeneste." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Indtast venligst en kilde." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Bruger-ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Indtast venligst bruger-ID'et." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Indtast venligst brugernavnet." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "etiket" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Grundlæggende zoneindstillinger" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Konfigurer venligst grundlæggende zoneindstillinger:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Standardmål" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Mål:" + +#~ msgid "Context" +#~ msgstr "Sammenhæng" + +#~ msgid "Command line" +#~ msgstr "Kommandolinje" + +#~ msgid "User name" +#~ msgstr "Brugernavn" + +#~ msgid "User id" +#~ msgstr "Bruger-id" + +#~ msgid "Please enter the command line." +#~ msgstr "Indtast venligst kommandolinjen." + +#~ msgid "Please enter the context." +#~ msgstr "Indtast venligst sammenhænget." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Nedlukning låser firewall-konfiguration så kun programmer på " +#~ "nedlukningshvidliste kan ændre den." + +#~ msgid "Lockdown" +#~ msgstr "Lukning" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Lukningshvidliste" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Nedlukningsfaciliteten er en letvægtsversion af bruger- og " +#~ "programpolitikker til firewalld. Den begrænser ændringer til firewallen. " +#~ "Nedlukningshvidlisten kan indeholde kommandoer, sammenhæng og bruger-" +#~ "ID'er." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Sammenhænget er sikkerhedenssammenhænget (SELinux) af et kørende program " +#~ "eller tjeneste. Brug ps -e --context for at få sammenhænget af " +#~ "et kørende program." + +#~ msgid "Add Context" +#~ msgstr "Tilføj sammenhæng" + +#~ msgid "Edit Context" +#~ msgstr "Rediger sammenhæng" + +#~ msgid "Remove Context" +#~ msgstr "Fjern sammenhæng" + +#~ msgid "Contexts" +#~ msgstr "Sammenhæng" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Hvis et kommandopunkt på hvidlisten slutter med en stjerne '*', så " +#~ "matches alle kommandolinjer som starte med kommandoen. Hvis ikke '*' er " +#~ "der, så skal den absolutte kommando matche, inklusiv argumenter." + +#~ msgid "Add Command Line" +#~ msgstr "Tilføj kommandolinje" + +#~ msgid "Edit Command Line" +#~ msgstr "Rediger kommandolinje" + +#~ msgid "Remove Command Line" +#~ msgstr "Fjern kommandolinje" + +#~ msgid "Command lines" +#~ msgstr "Kommandolinjer" + +#~ msgid "User names." +#~ msgstr "Brugernavne." + +#~ msgid "Add User Name" +#~ msgstr "Tilføj brugernavn" + +#~ msgid "Edit User Name" +#~ msgstr "Rediger brugernavn" + +#~ msgid "Remove User Name" +#~ msgstr "Fjern brugernavn" + +#~ msgid "User names" +#~ msgstr "Brugernavne" + +#~ msgid "User ids." +#~ msgstr "Bruger-ID'er." + +#~ msgid "Add User Id" +#~ msgstr "Tilføj bruger-ID" + +#~ msgid "Edit User Id" +#~ msgstr "Rediger bruger-ID" + +#~ msgid "Remove User Id" +#~ msgstr "Fjern bruger-ID" + +#~ msgid "User Ids" +#~ msgstr "Bruger-ID'er" + +#~ msgid "Lockdown:" +#~ msgstr "Lukning:" + +#~ msgid "User ID" +#~ msgstr "Bruger-ID" + +#~ msgid "Please enter the user id." +#~ msgstr "Indtast venligst bruger-ID'et." + +#~ msgid "Please enter the user name." +#~ msgstr "Indtast venligst brugernavnet." diff --git a/po/de.po b/po/de.po index 2d9f316..93d4a9b 100644 --- a/po/de.po +++ b/po/de.po @@ -42,7 +42,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2022-09-16 21:19+0000\n" "Last-Translator: Daniel Ziegenberg \n" "Language-Team: German ps -e --" -"context." -msgstr "" -"Der Kontext ist der (SELinux-) Sicherheitskontext einer laufenden Anwendung " -"oder eines Dienstes. Um den Kontext einer laufenden Anwendung einzusehen, " -"verwenden Sie ps -e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Kontext hinzufügen" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Kontext bearbeiten" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Kontext entfernen" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Kontexte" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Falls ein Befehlseintrag der Positivliste mit einem Sternsymbol »*« endet, " -"werden alle Kommandozeilen, die mit dem Befehl beginnen ausgewertet. Falls " -"das »*«-Symbol nicht vorhanden ist, muss der absolute Befehl inklusive " -"Argumenten übereinstimmen." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Kommandozeile hinzufügen" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Kommandozeile bearbeiten" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Kommandozeile entfernen" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Kommandozeilen" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Benutzernamen." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Benutzernamen hinzufügen" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Benutzernamen bearbeiten" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Benutzernamen entfernen" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Benutzernamen" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Benutzerkennungen." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Benutzer-ID hinzufügen" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Benutzer-ID bearbeiten" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Benutzer-ID entfernen" +"Bitte seien Sie vorsichtig mit Durchgangsregeln damit Sie nicht den Firewall " +"beschädigen." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Benutzerkennungen" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Durchgang" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Aktuelle Standardzone des Systems" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Log Denied:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Panik-Modus:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Automatische Helfer:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Sperrung:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Standardzone:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Geben Sie einen Schnittstellennamen ein:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Grundlegende IPSet Einstellungen" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Bitte konfigurieren Sie die grundlegenden IPSet-Einstellungen:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Typ:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Timeout:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Hashgröße:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maxelem:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Timeout in Sekunden" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Ursprüngliche Hashgröße, Standard 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Max Anzahl von Elementen, Standard 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Bitte wählen Sie ein IPSet:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Geben Sie einen Ipset-Eintrag ein:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Log Denied" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Bitte wählen Sie einen Wert für LogDenied:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Markieren" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Bitte geben Sie eine Markierung mit optionaler Maske ein" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" "Die Felder für Markierung und Maske sind beides 32bit-breite, vorzeichenlose " "Zahlen." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Markieren:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Maskieren:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Bitte einen Netfilter Conntrack Helfer wählen:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Auswählen -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Andere Module:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port und Protokoll" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Bitte einen Port und ein Protokoll eingeben." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Direkte Regel" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Bitte wählen Sie ipv und table, " -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Priorität:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Bitte ein Protokoll angeben." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Anderes Protokoll:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Umfassende Regel" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Bitte eine umfassende Regel eingeben." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Element deaktivieren, um Positiv- oder Negativlisten für Host oder Netzwerk " "zu verwenden." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Quelle:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Ziel:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Log:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audit:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 und ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "invertiert" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1998,78 +1886,192 @@ msgstr "" "Zum Aktivieren muss diese Aktion 'reject' sein und die Familie muss entweder " "'ipv4' oder 'ipv6' sein (nicht beides)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "mit Typ:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Mit Begrenzung:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Präfix:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Stufe:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Element:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Aktion:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Dienst-Grundeinstellungen" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Bitte konfigurieren Sie Dienst-Grundeinstellungen:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Bitte einen Dienst auswählen." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Geben Sie eine Quelle ein." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Benutzerkennung" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Bitte die Benutzerkennung eingeben." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Bitte Benutzername eingeben." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "Kennung" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Grundlegende Zone-Einstellungen" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Bitte konfigurieren Sie die grundlegenden Zone-Einstellungen:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Standard-Ziel" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Ziel:" + +#~ msgid "Context" +#~ msgstr "Kontext" + +#~ msgid "Command line" +#~ msgstr "Befehlszeile" + +#~ msgid "User name" +#~ msgstr "Benutzername" + +#~ msgid "User id" +#~ msgstr "Benutzer-ID" + +#~ msgid "Please enter the command line." +#~ msgstr "Bitte die Befehlszeile eingeben." + +#~ msgid "Please enter the context." +#~ msgstr "Bitte den Kontext eingeben." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Lockdown sperrt die Firewall-Konfiguration, so dass nur Anwendungen auf " +#~ "der Sperr-Positivliste diese ändern können." + +#~ msgid "Lockdown" +#~ msgstr "Sperrung" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Sperr-Positivliste" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Die Sperroption ist eine einfache Version von Benutzer- und " +#~ "Anwendungsrichtlinien für firewalld. Sie begrenzt Änderungen an der " +#~ "Firewall. Die Sperr-Positivliste kann Befehle, Kontexte, Benutzer und " +#~ "Benutzer-IDs enthalten." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Der Kontext ist der (SELinux-) Sicherheitskontext einer laufenden " +#~ "Anwendung oder eines Dienstes. Um den Kontext einer laufenden Anwendung " +#~ "einzusehen, verwenden Sie ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "Kontext hinzufügen" + +#~ msgid "Edit Context" +#~ msgstr "Kontext bearbeiten" + +#~ msgid "Remove Context" +#~ msgstr "Kontext entfernen" + +#~ msgid "Contexts" +#~ msgstr "Kontexte" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Falls ein Befehlseintrag der Positivliste mit einem Sternsymbol »*« " +#~ "endet, werden alle Kommandozeilen, die mit dem Befehl beginnen " +#~ "ausgewertet. Falls das »*«-Symbol nicht vorhanden ist, muss der absolute " +#~ "Befehl inklusive Argumenten übereinstimmen." + +#~ msgid "Add Command Line" +#~ msgstr "Kommandozeile hinzufügen" + +#~ msgid "Edit Command Line" +#~ msgstr "Kommandozeile bearbeiten" + +#~ msgid "Remove Command Line" +#~ msgstr "Kommandozeile entfernen" + +#~ msgid "Command lines" +#~ msgstr "Kommandozeilen" + +#~ msgid "User names." +#~ msgstr "Benutzernamen." + +#~ msgid "Add User Name" +#~ msgstr "Benutzernamen hinzufügen" + +#~ msgid "Edit User Name" +#~ msgstr "Benutzernamen bearbeiten" + +#~ msgid "Remove User Name" +#~ msgstr "Benutzernamen entfernen" + +#~ msgid "User names" +#~ msgstr "Benutzernamen" + +#~ msgid "User ids." +#~ msgstr "Benutzerkennungen." + +#~ msgid "Add User Id" +#~ msgstr "Benutzer-ID hinzufügen" + +#~ msgid "Edit User Id" +#~ msgstr "Benutzer-ID bearbeiten" + +#~ msgid "Remove User Id" +#~ msgstr "Benutzer-ID entfernen" + +#~ msgid "User Ids" +#~ msgstr "Benutzerkennungen" + +#~ msgid "Lockdown:" +#~ msgstr "Sperrung:" + +#~ msgid "User ID" +#~ msgstr "Benutzerkennung" + +#~ msgid "Please enter the user id." +#~ msgstr "Bitte die Benutzerkennung eingeben." + +#~ msgid "Please enter the user name." +#~ msgstr "Bitte Benutzername eingeben." diff --git a/po/el.po b/po/el.po index 4175529..c0b9d9b 100644 --- a/po/el.po +++ b/po/el.po @@ -16,7 +16,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2016-01-04 12:27+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Greek (http://www.transifex.com/projects/p/firewalld/language/" @@ -32,11 +32,45 @@ msgstr "" msgid "Firewall Applet" msgstr "Μικροεφαρμογή τείχους προστασίας" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Ρύθμιση τείχους προστασίας" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Τείχος προστασίας" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Ρύθμιση τείχους προστασίας" @@ -45,24 +79,24 @@ msgstr "Ρύθμιση τείχους προστασίας" msgid "firewall;network;security;iptables;netfilter;" msgstr "" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Ζώνη '%s' ενεργοποιήθηκε για την διεπαφή '%s'" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -115,153 +149,153 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "Ασπίδες πάνω" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Ενεργοποίηση ειδοποιήσεων" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Επεξεργασία ρυθμίσεων τείχους προστασίας..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Αλλάξτε τις Ζώνες Σύνδεσης " -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "Επεξεργασία ζωνών ασπίδων πάνω/κάτω..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Φραγή όλης της κίνησης δικτύου" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Δεν υπάρχει σύνδεση." -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "<περιβάλλον>" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Η εξουσιοδότηση απέτυχε." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Το όρισμα %s είναι λάθος." -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Το όνομα ήδη υπάρχει " -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Δεν υπάρχει σύνδεση στον δαίμονα του Firewall" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Όλη η κίνηση δικτύου είναι φραγμένη." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "Ζώνη '{zone}' ενεργή για σύνδεση '{connection}' στην διεπαφή '{interface}'" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "Ζώνη '{zone}' ενεργή για την διεπαφή '{interface}'" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Δεν υπάρχουν ενεργές ζώνες" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "Η σύνδεση στο FirewallD επιτεύχθηκε." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "Η σύνδεση στο FirewallD χάθηκε." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "Έγινε επανεκκίνηση του FirewallD" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "Η προεπιλεγμένη ζώνη άλλαξε σε '%s'." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "Η κίνηση δικτύου δεν είναι άλλο φραγμένη." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "ενεργοποιήθηκε" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "απενεργοποιήθηκε" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -269,20 +303,20 @@ msgstr "" "Ζώνη '{zone}' {activated_deactivated} για σύνδεση '{connection}' στην " "διεπαφή '{interface}'" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "Ζώνη '{zone}' {activated_deactivated} για την διεπαφή '{interface}'" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "Ζώνη '%s' ενεργοποιήθηκε για την διεπαφή '%s'" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "" @@ -327,409 +361,393 @@ msgstr "" msgid "Failed to load icons." msgstr "Απέτυχε η φόρτωση εικονιδίων." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Υπηρεσία" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Πόρτα" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Πρωτόκολλο" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Στην πόρτα" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Στην διεύθυνση" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Τύπος Icmp" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Πηγή" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "προσοχή" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Σφάλμα" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Ζώνη" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Ζώνη '%s'. Η υπηρεσία '%s' δεν είναι διαθέσιμη " -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Αφαίρεσε την Ζώνη" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Αγνοήστε " -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Ζώνη '%s'. Ο τύπος ICMP '%s' δεν είναι διαθέσιμος." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Ενσωματωμένη ζώνη, η μετονομασία δεν υποστηρίζεται." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Ενσωματωμένη υπηρεσία, η μετονομασία δεν υποστηρίζεται." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "Ενσωματωμένος icmp, η μετονομασία δεν υποστηρίζεται." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "" @@ -748,92 +766,84 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Προώθηση πόρτας" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" "Παρακαλώ επιλέξτε τις επιλογές πηγής και προορισμού βάση των αναγκών σας." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Πόρτα / Εμβέλεια πόρτων:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "Διεύθυνση IP:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Πρωτόκολλο" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Προορισμός" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -841,223 +851,209 @@ msgstr "" "Αν ενεργοποιήσετε την τοπική προώθηση, πρέπει να καθορίσετε μια πόρτα. Αυτή " "η πόρτα πρέπει να είναι διαφορετική από την πηγαία πόρτα." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Τοπική προώθηση" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Προώθηση σε άλλη πόρτα" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "" "Οι καταχωρήσεις στα έντονα είναι απαραίτητες, όλες οι άλλες προαιρετικές." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Ονομασία:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Έκδοση:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Ταξηνόμηση:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Περιγραφή:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "Ρυθμίσεις βάσης τύπου ICMP" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "Παρακαλώ διαμορφώστε τις ρυθμίσεις βάσης τύπου ICMP:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "Τύπος ICMP" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Προσθήκη καταχώρησης" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Αρχείο" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Επιλογές" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Επανεκκίνηση Firewalld" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Αλλαγή προεπιλεγμένης ζώνης" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Βοήθεια" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1067,7 +1063,7 @@ msgstr "" "πραγματικά ενεργή διαμόρφωση. Η επίμονη διαμόρφωση θα είναι ενεργή μετά από " "επανεκκίνηση της υπηρεσίας ή του συστήματος." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1076,86 +1072,86 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Προσθήκη ζώνης" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Επεξεργασία ζώνης" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Αφαίρεση ζώνης" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "Φόρτωση προεπιλεγμένων ζώνης" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Υπηρεσίες" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Στην πόρτα" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Επεξεργασία της Ζώνης" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Αφαίρεσε την Ζώνη" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Πόρτες" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1166,11 +1162,11 @@ msgstr "" "και οι υπολογιστές θα εμφανίζονται ως μια μοναδική διεύθυνση στο ίντερνετ. " "Το μασκάρισμα είναι IPv4 μόνο." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Ζώνη μασκαρίσματος" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1178,11 +1174,11 @@ msgstr "" "Αν ενεργοποιήσετε το μασκάρισμα, Η προώθηση IP θα ενεργοποιηθεί για τα IPv4 " "δίκτυα σας." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Μασκάρισμα" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1194,19 +1190,19 @@ msgstr "" "σύστημα είναι χρήσιμη μόνο αν η διεπαφή είναι μασκαρισμένη. Η προώθηση " "πορτών είναι IPv4 μόνο." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "Πρόσθεση της Πύλης Προώθησης " -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "Εκδοση της Πύλης Προώθησης " -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "Αφαιρέστε την Πύλη Εισόδου Προώθησης " -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1216,7 +1212,7 @@ msgstr "" "αποστολή μηνυμάτων σφαλμάτων μεταξύ υπολογιστές του δικτύου, αλλά επιπλέον " "για ενημερωτικά μηνύματα όπως αιτήματα ping και απαντήσεις." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1225,136 +1221,136 @@ msgstr "" "Όλοι οι άλλοι τύποι ICMP επιτρέπονται να περάσουν το τείχος προστασίας. Η " "προεπιλογή είναι να μην υπάρχει κανένας περιορισμός." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "Φίλτρο ICMP" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Προσθήκη υπηρεσίας" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Επεξεργασία υπηρεσίας" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Αφαίρεση υπηρεσίας" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Φόρτωση προεπιλεγμένων υπηρεσίας" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Επεξεργασία καταχώρησης" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Αφαίρεση καταχώρησης" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Αρθρώματα" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1364,47 +1360,47 @@ msgstr "" "πρέπει να περιορίζεται στη διεύθυνση προορισμού και το είδος. Αν και οι δύο " "καταχωρίσεις είναι κενές, δεν υπάρχει περιορισμός." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1412,58 +1408,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Προσθήκη τύπου ICMP" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Επεξεργασία τύπου ICMP" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Αφαίρεση τύπου ICMP" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "Φόρτωση προεπιλεγμένων τύπου ICMP" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1471,11 +1467,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1483,444 +1479,335 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Τρέχουσα προεπιλεγμένη ζώνη συστήματος." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Προεπιλεγμένη ζώνη:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Πόρτα και πρωτόκολλο" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Παρακαλώ εισάγετε μια πόρτα και πρωτόκολλο" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Άλλο πρωτόκολλο" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Ρυθμίσεις υπηρεσίας βάσης" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Παρακαλώ διαμορφώστε τις ρυθμίσεις υπηρεσίας βάσης" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Ρυθμίσεις βάσης ζώνης" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Παρακαλώ διαμορφώστε τις ρυθμίσεις υπηρεσίας ζώνης" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Προεπιλεγμένος στόχος" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Στόχος:" diff --git a/po/en_GB.po b/po/en_GB.po index 1e80c2b..81b445b 100644 --- a/po/en_GB.po +++ b/po/en_GB.po @@ -11,7 +11,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 09:44+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: English (United Kingdom) (http://www.transifex.com/projects/p/" @@ -27,11 +27,45 @@ msgstr "" msgid "Firewall Applet" msgstr "Firewall Applet" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Firewall Configuration" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Firewall" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Firewall Configuration" @@ -40,24 +74,24 @@ msgstr "Firewall Configuration" msgid "firewall;network;security;iptables;netfilter;" msgstr "" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Select zone for interface '%s'" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -107,153 +141,153 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "Shields Up" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Enable Notifications" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Edit Firewall Settings..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Change Zones of Connections..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "Configure Shields UP/Down Zones..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Block all network traffic" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Connections" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" -msgstr "" +msgstr "Interfaces" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Sources" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Authorisation failed." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Invalid argument %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Name already exists" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "No connection to firewall daemon" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "All network traffic is blocked." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "Default Zone: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "Zone '{zone}' active for interface '{interface}'" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "Zone '{zone}' active for source {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "No Active Zones." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "Default zone changed to '%s'." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "Network traffic is not blocked anymore." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "activated" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "deactivated" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -261,20 +295,20 @@ msgstr "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "Zone '{zone}' {activated_deactivated} for interface '{interface}'" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "Zone '%s' activated for interface '%s'" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "Zone '{zone}' {activated_deactivated} for source '{source}'" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "Zone '%s' activated for source '%s'" @@ -319,409 +353,393 @@ msgstr "disabled" msgid "Failed to load icons." msgstr "Failed to load icons." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "User name" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Service" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Port" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Protocol" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "To Port" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "To Address" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp Type" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "Family" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "Action" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "Element" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Src" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Dest" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "log" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "Audit" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Source" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Warning" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Error" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "accept" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "reject" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "drop" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "limit" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "service" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "port" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "protocol" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "masquerade" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "forward-port" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "level" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "yes" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Zone" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Zone '%s': Service '%s' is not available." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Remove" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Ignore" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Zone '%s': ICMP type '%s' is not available." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Built-in zone, rename not supported." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "second" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "minute" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "hour" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "day" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "emergency" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "alert" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "critical" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "error" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "warning" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "notice" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "info" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "debug" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Built-in service, rename not supported." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "Built-in icmp, rename not supported." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "Select zone for source %s" @@ -740,92 +758,84 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "Please enter the command line." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "Please enter the context." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Port Forwarding" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" "Please select the source and destination options according to your needs." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Port / Port Range:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP address:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Protocol:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Destination" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -833,229 +843,215 @@ msgstr "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Local forwarding" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Forward to another port" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "Bold entries are mandatory, all others are optional." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Name:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Version:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Short:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Description:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "Family:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "Base ICMP Type Settings" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "Please configure base ICMP type settings:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP Type" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "Please select an ICMP type" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Add Entry" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_File" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Options" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Change Default Zone" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "Panic Mode" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP Types" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Help" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " "system reload or restart." msgstr "" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1064,23 +1060,23 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Add Zone" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Edit Zone" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Remove Zone" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "Load Zone Defaults" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1090,11 +1086,11 @@ msgstr "" "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Services" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1102,53 +1098,53 @@ msgstr "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "To Port" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Edit Port" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Remove Port" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Ports" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1158,21 +1154,21 @@ msgstr "" "network to the internet. Your local network will not be visible and the " "hosts appear as a single address on the internet. Masquerading is IPv4 only." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Masquerading" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1184,19 +1180,19 @@ msgstr "" "system is only useful if the interface is masqueraded. Port forwarding is " "IPv4 only." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "Add Forward Port" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "Edit Forward Port" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "Remove Forward Port" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1206,7 +1202,7 @@ msgstr "" "messages between networked computers, but additionally for informational " "messages like ping requests and replies." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1214,41 +1210,41 @@ msgstr "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP Filter" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "Here you can set rich language rules for the zone." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "Rich Rules" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1256,96 +1252,96 @@ msgstr "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "Zones" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Add Service" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Edit Service" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Remove Service" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Load Service Defaults" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Edit Entry" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Remove Entry" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Modules" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1355,47 +1351,47 @@ msgstr "" "the destination address and type. If both entries are empty, there is no " "limitation." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1403,58 +1399,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Add ICMP Type" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Edit ICMP Type" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Remove ICMP Type" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "Load ICMP Type Defaults" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1462,11 +1458,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1474,448 +1470,384 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Contexts" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Command lines" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "User names." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "User names" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "User ids." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "User Ids" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Current default zone of the system." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Panic Mode:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Lockdown:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Default Zone:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port and Protocol" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Please enter a port and protocol." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Please enter a protocol." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Other Protocol:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Rich Rule" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Please enter a rich rule." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "For host or network white or blacklisting deactivate the element." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Source:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destination:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Log:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audit:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 and ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "inverted" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "with Type:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "With limit:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Prefix:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Level:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Element:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Action:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Base Service Settings" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Please configure base service settings:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Please select a service." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "User ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Please enter the user id." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Please enter the user name." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Base Zone Settings" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Please configure base zone settings:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Default Target" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Target:" + +#~ msgid "User name" +#~ msgstr "User name" + +#~ msgid "Please enter the command line." +#~ msgstr "Please enter the command line." + +#~ msgid "Please enter the context." +#~ msgstr "Please enter the context." + +#~ msgid "Contexts" +#~ msgstr "Contexts" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." + +#~ msgid "Command lines" +#~ msgstr "Command lines" + +#~ msgid "User names." +#~ msgstr "User names." + +#~ msgid "User names" +#~ msgstr "User names" + +#~ msgid "User ids." +#~ msgstr "User ids." + +#~ msgid "User Ids" +#~ msgstr "User Ids" + +#~ msgid "Lockdown:" +#~ msgstr "Lockdown:" + +#~ msgid "User ID" +#~ msgstr "User ID" + +#~ msgid "Please enter the user id." +#~ msgstr "Please enter the user id." + +#~ msgid "Please enter the user name." +#~ msgstr "Please enter the user name." diff --git a/po/en_US.po b/po/en_US.po index f710c1e..7fa83b4 100644 --- a/po/en_US.po +++ b/po/en_US.po @@ -7,7 +7,7 @@ msgid "" msgstr "" "Project-Id-Version: firewalld\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-01-14 14:02+0000\n" "Last-Translator: Eric Garver \n" "Language-Team: English (United States) ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Add Context" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Edit Context" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Remove Context" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Contexts" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Add Command Line" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Edit Command Line" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Remove Command Line" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Command lines" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "User names." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Add User Name" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Edit User Name" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Remove User Name" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "User names" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "User ids." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Add User Id" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Edit User Id" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Remove User Id" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "User Ids" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Current default zone of the system." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Panic Mode:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Lockdown:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Default Zone:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port and Protocol" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Please enter a port and protocol." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Direct Rule" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Please select ipv and table, chain priority and enter the args." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Priority:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Please enter a protocol." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Other Protocol:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Rich Rule" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Please enter a rich rule." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "For host or network white or blacklisting deactivate the element." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Source:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destination:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Log:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audit:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 and ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "inverted" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1894,82 +1786,185 @@ msgstr "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "with Type:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "With limit:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Prefix:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Level:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Element:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Action:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Base Service Settings" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Please configure base service settings:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Please select a service." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "User ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Please enter the user id." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Please enter the user name." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Base Zone Settings" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Please configure base zone settings:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Default Target" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Target:" +#~ msgid "Context" +#~ msgstr "Context" + +#~ msgid "Command line" +#~ msgstr "Command line" + +#~ msgid "User name" +#~ msgstr "User name" + +#~ msgid "User id" +#~ msgstr "User id" + +#~ msgid "Please enter the command line." +#~ msgstr "Please enter the command line." + +#~ msgid "Please enter the context." +#~ msgstr "Please enter the context." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." + +#~ msgid "Lockdown" +#~ msgstr "Lockdown" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Lockdown Whitelist" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." + +#~ msgid "Add Context" +#~ msgstr "Add Context" + +#~ msgid "Edit Context" +#~ msgstr "Edit Context" + +#~ msgid "Remove Context" +#~ msgstr "Remove Context" + +#~ msgid "Contexts" +#~ msgstr "Contexts" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." + +#~ msgid "Add Command Line" +#~ msgstr "Add Command Line" + +#~ msgid "Edit Command Line" +#~ msgstr "Edit Command Line" + +#~ msgid "Remove Command Line" +#~ msgstr "Remove Command Line" + +#~ msgid "Command lines" +#~ msgstr "Command lines" + +#~ msgid "User names." +#~ msgstr "User names." + +#~ msgid "Add User Name" +#~ msgstr "Add User Name" + +#~ msgid "Edit User Name" +#~ msgstr "Edit User Name" + +#~ msgid "Remove User Name" +#~ msgstr "Remove User Name" + +#~ msgid "User names" +#~ msgstr "User names" + +#~ msgid "User ids." +#~ msgstr "User ids." + +#~ msgid "Add User Id" +#~ msgstr "Add User Id" + +#~ msgid "Edit User Id" +#~ msgstr "Edit User Id" + +#~ msgid "Remove User Id" +#~ msgstr "Remove User Id" + +#~ msgid "User Ids" +#~ msgstr "User Ids" + +#~ msgid "Lockdown:" +#~ msgstr "Lockdown:" + +#~ msgid "User ID" +#~ msgstr "User ID" + +#~ msgid "Please enter the user id." +#~ msgstr "Please enter the user id." + +#~ msgid "Please enter the user name." +#~ msgstr "Please enter the user name." + #~ msgid "Please enter the module name." #~ msgstr "Please enter the module name." diff --git a/po/es.po b/po/es.po index 2bd2c19..f70bc0f 100644 --- a/po/es.po +++ b/po/es.po @@ -32,7 +32,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-10-17 11:14+0000\n" "Last-Translator: Emilio Herrera \n" "Language-Team: Spanish ps -e --" -"context." -msgstr "" -"El contexto es el contexto de seguridad (SELinux) de una aplicación o " -"servicio en ejecución. Para obtener el contexto de una aplicación use ps " -"-e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Agregar contexto" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Editar contexto" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Eliminar contexto" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Contextos" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"Si una entrada de comando en la lista blanca finaliza con un asterisco '*', " -"entondes todas las líneas de comando que inicien con el comando dado " -"concidirán. Si el '*' no está ahí, entonces el comando y sus argumentos " -"dados deben coincidir tal como fueron dados." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Agregar línea de comandos" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Editar línea de comandos" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Eliminar línea de comandos" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Línea de comandos" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Nombres de usuario." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Agregar nombre de usuario" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Editar nombre de usuario" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Eliminar nombre de usuario" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Nombres de usuario" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Identificadores de usuario." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Agregar Id de usuario" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Editar Id de usuario" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Eliminar Id de usuario" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Identificadores de usuario" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Zona por defecto actual del sistema." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Registro de rechazos:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Modo pánico:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Agentes automáticos:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Bloqueo:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Zona por defecto:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Introduzca un nombre de interfaz:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Ajustes básicos de IPSet" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Configure los ajustes básicos de ipset:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Tipo:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Tiempo de espera:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Tamaño de hash:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Número máximo de elementos:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Tiempo de espera en segundos" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Tamaño inicial del hash (valor predeterminado: 1024)" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Máximo número de elementos; valor predeterminado: 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Por favor elija un IPSet:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Introduzca una entrada de ipset:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Registro de rechazos" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Elija un valor para el registro de rechazos:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Marca" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Introduzca una marca con una máscara opcional." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "Tanto la marca como la máscara son enteros de 32 bits sin signo." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Marca:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Máscara:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Por favor elija un agente netfilter de seguimiento de conexiones:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Elija -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Otro módulo:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Puerto y protocolo" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Introduzca el puerto y protocolo." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Regla directa" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Seleccione ipv, tabla y cadena de prioridad e ingrese los argumentos." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Prioridad:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Introduzca un protocolo." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Otro protocolo:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Reglas ricas" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Introduzca una regla rica." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Para permitir o denegar el listado de host o red desactive el elemento." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Origen:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destino:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Log:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Aviso:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 e ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "invertido" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1968,78 +1857,192 @@ msgstr "" "Para activar ésto, Acción debe ser 'reject' y Familia 'ipv4' o 'ipv6' (no " "ambas)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "con tipo:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Con límite:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Prefijo:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Nivel:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Elemento:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Acción:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Configuración de servicios base" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Configure los servicios base:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Seleccione un servicio." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Introduzca un origen." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ID de usuario" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Introduzca un id de usuario." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Introduzca un nombre de usuario." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "etiqueta" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Configuración de zona base" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Por favor configure la zona base:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Objetivo por defecto" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Objetivo:" + +#~ msgid "Context" +#~ msgstr "Contexto" + +#~ msgid "Command line" +#~ msgstr "Línea de comandos" + +#~ msgid "User name" +#~ msgstr "Nombre de usuario" + +#~ msgid "User id" +#~ msgstr "ID de usuario" + +#~ msgid "Please enter the command line." +#~ msgstr "Introduzca la línea de comandos." + +#~ msgid "Please enter the context." +#~ msgstr "Introduzca el contexto." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Lockdown bloquea la configuración del cortafuegos para que sólo las " +#~ "aplicaciones en la lista blanca lockdown sean capaces de cambiarla." + +#~ msgid "Lockdown" +#~ msgstr "Bloquear" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Lista blanca de bloqueo" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "La característica de bloqueo es una versión simple de políticas de " +#~ "usuario y aplicación para firewalld. Limita los cambios al cortafuego. La " +#~ "lista blanca de bloqueo puede contener comandos, contextos, usuarios e id " +#~ "de usuarios." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "El contexto es el contexto de seguridad (SELinux) de una aplicación o " +#~ "servicio en ejecución. Para obtener el contexto de una aplicación use " +#~ "ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "Agregar contexto" + +#~ msgid "Edit Context" +#~ msgstr "Editar contexto" + +#~ msgid "Remove Context" +#~ msgstr "Eliminar contexto" + +#~ msgid "Contexts" +#~ msgstr "Contextos" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Si una entrada de comando en la lista blanca finaliza con un asterisco " +#~ "'*', entondes todas las líneas de comando que inicien con el comando dado " +#~ "concidirán. Si el '*' no está ahí, entonces el comando y sus argumentos " +#~ "dados deben coincidir tal como fueron dados." + +#~ msgid "Add Command Line" +#~ msgstr "Agregar línea de comandos" + +#~ msgid "Edit Command Line" +#~ msgstr "Editar línea de comandos" + +#~ msgid "Remove Command Line" +#~ msgstr "Eliminar línea de comandos" + +#~ msgid "Command lines" +#~ msgstr "Línea de comandos" + +#~ msgid "User names." +#~ msgstr "Nombres de usuario." + +#~ msgid "Add User Name" +#~ msgstr "Agregar nombre de usuario" + +#~ msgid "Edit User Name" +#~ msgstr "Editar nombre de usuario" + +#~ msgid "Remove User Name" +#~ msgstr "Eliminar nombre de usuario" + +#~ msgid "User names" +#~ msgstr "Nombres de usuario" + +#~ msgid "User ids." +#~ msgstr "Identificadores de usuario." + +#~ msgid "Add User Id" +#~ msgstr "Agregar Id de usuario" + +#~ msgid "Edit User Id" +#~ msgstr "Editar Id de usuario" + +#~ msgid "Remove User Id" +#~ msgstr "Eliminar Id de usuario" + +#~ msgid "User Ids" +#~ msgstr "Identificadores de usuario" + +#~ msgid "Lockdown:" +#~ msgstr "Bloqueo:" + +#~ msgid "User ID" +#~ msgstr "ID de usuario" + +#~ msgid "Please enter the user id." +#~ msgstr "Introduzca un id de usuario." + +#~ msgid "Please enter the user name." +#~ msgstr "Introduzca un nombre de usuario." diff --git a/po/et.po b/po/et.po index 7b3c92d..6574e6f 100644 --- a/po/et.po +++ b/po/et.po @@ -11,7 +11,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2022-06-12 21:18+0000\n" "Last-Translator: H A \n" "Language-Team: Estonian " -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Autentimine nurjus." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Vigane argument %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Tulemüüri teenusega ühendus puudub" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Kogu võrguliiklus on blokeeritud." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Puudub aktiivne tsoon." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "Ühendus FirewallD-ga loodi." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "Ühendus FirewallD-ga kaotati." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirrewallD on uuesti laaditud." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "Vaikimisi tsoon muudeti '%s'-ks" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "Võrguliiklus ei ole enam blokeeritud." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "aktiveeritud" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "deaktiveeritud" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "" @@ -314,409 +348,393 @@ msgstr "" msgid "Failed to load icons." msgstr "Ikoonide laadimine nurjus." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Teenus" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Port" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Protokoll" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Porti" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Aadressile" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp tüüp" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Allikas" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Hoiatus" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Viga" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Tsoon" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Eemalda tsoon" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Sisse ehitatud tsoon, ümbernimetamine pole toetatud." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Sisse ehitatud teenus, ümbernimetamine pole toetatud." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "Sisse ehitatud icmp, ümbernimetamine pole toetatud." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "" @@ -735,319 +753,297 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Pordi edasisuunamine" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Port / Portide vahemik:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP aadress:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Protokoll:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Sihtkoht" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." msgstr "" -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Kohalik edasisuunamine" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Suuna teise porti" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "Rasvased kirjed on kohustuslikud, kõik teised aga valikulised." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Nimi:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Versioon:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Lühike:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Kirjeldus:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP tüüp" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Lisa kirje" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Fail" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Valikud" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Laadi FirewallD uuesti" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Muuda vaikimisi tsooni" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Abi" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " "system reload or restart." msgstr "" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1056,107 +1052,107 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Lisa tsoon" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Muuda tsooni" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Eemalda tsoon" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "Laadi vaikimisi tsoon" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Teenused" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Porti" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Muuda tsooni" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Eemalda tsoon" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Pordid" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " "hosts appear as a single address on the internet. Masquerading is IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Maskeerimine tsoon" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Maskeerimine" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1164,208 +1160,208 @@ msgid "" "IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " "messages like ping requests and replies." msgstr "" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." msgstr "" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP filter" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Lisa teenus" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Muuda teenust" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Eemalda teenus" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Laadi teenuse vaikeväärtused" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Muuda kirjet" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Eemalda kirje" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Moodulid" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " "limitation." msgstr "" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1373,58 +1369,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Lisa ICMP tüüp" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Muuda ICMP tüüpe" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Eemalda ICMP tüüp" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1432,11 +1428,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1444,444 +1440,335 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Süsteemi aktiivne vaikimisi tsoon" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Vaikimisi tsoon:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port ja protokoll" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Palun sisesta port ja protokoll." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Teine protokoll:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Baasteenuste sätted" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Baas tsoonide sätted" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Vaikimisi sihtmärk" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Sihtmärk:" diff --git a/po/eu.po b/po/eu.po index 05c0d2b..d87673c 100644 --- a/po/eu.po +++ b/po/eu.po @@ -10,7 +10,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 09:43+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Basque (http://www.transifex.com/projects/p/firewalld/" @@ -26,11 +26,45 @@ msgstr "" msgid "Firewall Applet" msgstr "Suhesiaren applet-a" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Suhesiaren konfigurazioa" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Suhesia" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Suhesiaren konfigurazioa" @@ -39,24 +73,24 @@ msgstr "Suhesiaren konfigurazioa" msgid "firewall;network;security;iptables;netfilter;" msgstr "" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -104,171 +138,171 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Gaitu jakinarazpenak" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Editatu suhesiaren ezarpenak..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "" -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Blokeatu sareko trafiko guztia" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Konexiorik ez." -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Autentikazioak huts egin du." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "argumentu baliogabea %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "aktibatuta" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "desaktibatuta" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "" @@ -313,409 +347,393 @@ msgstr "" msgid "Failed to load icons." msgstr "Huts egin du ikonoak kargatzean." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Zerbitzua" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Ataka" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Protokoloa" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Atakara:" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Helbidera:" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp mota" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Iturburua" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Abisua" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Errorea" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "ezikusi" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "" @@ -734,319 +752,297 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Ataka birbidalketa" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP helbidea:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Protokoloa:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Helburua" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." msgstr "" -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Birbidalketa lokala" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Birbidali beste ataka batera" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Izena:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Bertsioa:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Laburra:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Deskribapena:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP mota" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Gehitu sarrera" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Fitxategia" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Aukerak" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Birkargatu Firewalld" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Laguntza" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " "system reload or restart." msgstr "" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1055,107 +1051,107 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Zerbitzuak" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Atakara" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Atakak" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " "hosts appear as a single address on the internet. Masquerading is IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1163,208 +1159,208 @@ msgid "" "IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " "messages like ping requests and replies." msgstr "" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." msgstr "" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP iragazkia" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Gehitu zerbitzua" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Editatu zerbitzua" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Kendu zerbitzua" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Kargatu zerbitzu lehenetsiak" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Editatu sarrera" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Kendu sarrera" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Moduluak" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " "limitation." msgstr "" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1372,58 +1368,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Gehitu ICMP mota" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Editatu ICMP mota" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Kendu ICMP mota" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "Kargatu ICMP mota lehenetsiak" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1431,11 +1427,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1443,444 +1439,335 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Ataka eta protokoloa" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Mesedez sartu ataka bat eta protokoloa." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Beste protokolo bat:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Helburu lehenetsia" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Helburua" diff --git a/po/fa.po b/po/fa.po index 23abe6c..4141277 100644 --- a/po/fa.po +++ b/po/fa.po @@ -6,7 +6,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-01-14 14:02+0000\n" "Last-Translator: Ahmad Haghighi \n" "Language-Team: Persian ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "" diff --git a/po/fi.po b/po/fi.po index 7a51a40..38ef4c9 100644 --- a/po/fi.po +++ b/po/fi.po @@ -16,7 +16,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2021-02-17 19:40+0000\n" "Last-Translator: Jan Kuparinen \n" "Language-Team: Finnish ps -e --" -"context." -msgstr "" -"Konteksti on käynnissä olevan sovelluksen tai palvelun suojauskonteksti " -"(SELinux). Saadaksesi käynnissä olevan sovelluksen konteksti käytä ps -" -"e --context ." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Lisää konteksti" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Muokkaa kontekstia" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Poista konteksti" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Kontekstit" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"Jos sallittujen luettelon komentomerkintä päättyy tähdellä \"*\", kaikki " -"komennolla alkavat komentorivit vastaavat. Jos \"*\" ei ole siellä, " -"absoluuttinen komento argumentteineen on vastattava merkintää." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Lisää komentorivi" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Muokkaa komentoriviä" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Poista komentorivi" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Komentorivit" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Käyttäjänimet." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Lisää käyttäjänimi" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Muokkaa käyttäjänimeä" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Poista käyttäjänimi" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Käyttäjänimet" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Käyttäjä-ID:t." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Lisää käyttäjä-ID" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Muokkaa käyttäjä-ID:tä" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Poista käyttäjä-ID" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Käyttäjä-ID:t" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Järjestelmän nykyinen oletusalue." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Loki kielletty:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Paniikkitila:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Automaattiset apurit:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Lukitus:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Oletusalue:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Anna liitännän nimi:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Perus IPSet-asetukset" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Määrittele perus ipsetin asetukset:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Tyyppi:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Aikakatkos:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Hash-koko:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maxelementti:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Aikakatkaisun arvo sekunneissa" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Aloitus hash koko, oletuksena 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Elementtien suurin määrä, oletuksena 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Valitse ipset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Anna ipset-merkintä:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Loki kielletty" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Valitse log denied -arvo:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Merkitse" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Anna merkintä mahdollisen peitteen kanssa." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" "Merkki- ja peitekentät ovat molemmat 32 bitin levyisiä etumerkittömiä " "numeroita." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Merkitse:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Peite:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Valitse netfilter conntrack-avustaja:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Valitse -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Muu moduuli:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Portti ja protokolla" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Syötä portti ja protokolla." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Suora sääntö" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Valitse ipv ja taulukko, ketjuprioriteetti ja anna argumentit." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Prioriteetti:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Syötä protokolla." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Muu protokolla:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Monipuolinen sääntö" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Kirjoita monipuolinen sääntö." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Jotta isäntä tai verkko sallimis- tai estolistat toimisivat, deaktivoi " "elementti." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Lähde:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Kohde:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Loki:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Auditointi:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 ja ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "käänteinen" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1949,78 +1838,191 @@ msgstr "" "Jotta tämä toiminto toiminnon on oltava 'hylkää' ja perheen joko 'ipv4' tai " "'ipv6' (ei molempia)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "tyypin kanssa:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "rajoituksen kanssa:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Etuliite:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Taso:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Elementti:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Toiminto:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Perus palvelun asetukset" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Määrittele perus palvelun asetukset:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Valitse palvelu." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Anna lähde." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Käyttäjä ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Syötä käyttäjä ID." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Syötä käyttäjänimi." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "nimiö" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Perus alue asetukset" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Määrittele perus alue asetukset:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Oletuskohde" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Kohde:" + +#~ msgid "Context" +#~ msgstr "Konteksti" + +#~ msgid "Command line" +#~ msgstr "Komentorivi" + +#~ msgid "User name" +#~ msgstr "Käyttäjänimi" + +#~ msgid "User id" +#~ msgstr "Käyttäjätunniste" + +#~ msgid "Please enter the command line." +#~ msgstr "Syötä komento." + +#~ msgid "Please enter the context." +#~ msgstr "Syötä konteksti." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Lukitus lukitsee palomuurin asetukset siten, että vain sallittujen " +#~ "listalla olevat sovellukset voivat muuttaa palomuurin asetuksia." + +#~ msgid "Lockdown" +#~ msgstr "Lukitus" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Lukituksen sallittujen lista" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Lukitusominaisuus on kevyt versio palomuurin käyttäjä- ja " +#~ "sovelluskäytännöistä. Se rajoittaa palomuuriin tehtäviä muutoksia. " +#~ "Lukituksen sallittujen luettelo voi sisältää komentoja, asiayhteyksiä, " +#~ "käyttäjiä ja käyttäjätunnuksia." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Konteksti on käynnissä olevan sovelluksen tai palvelun suojauskonteksti " +#~ "(SELinux). Saadaksesi käynnissä olevan sovelluksen konteksti käytä " +#~ "ps -e --context ." + +#~ msgid "Add Context" +#~ msgstr "Lisää konteksti" + +#~ msgid "Edit Context" +#~ msgstr "Muokkaa kontekstia" + +#~ msgid "Remove Context" +#~ msgstr "Poista konteksti" + +#~ msgid "Contexts" +#~ msgstr "Kontekstit" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Jos sallittujen luettelon komentomerkintä päättyy tähdellä \"*\", kaikki " +#~ "komennolla alkavat komentorivit vastaavat. Jos \"*\" ei ole siellä, " +#~ "absoluuttinen komento argumentteineen on vastattava merkintää." + +#~ msgid "Add Command Line" +#~ msgstr "Lisää komentorivi" + +#~ msgid "Edit Command Line" +#~ msgstr "Muokkaa komentoriviä" + +#~ msgid "Remove Command Line" +#~ msgstr "Poista komentorivi" + +#~ msgid "Command lines" +#~ msgstr "Komentorivit" + +#~ msgid "User names." +#~ msgstr "Käyttäjänimet." + +#~ msgid "Add User Name" +#~ msgstr "Lisää käyttäjänimi" + +#~ msgid "Edit User Name" +#~ msgstr "Muokkaa käyttäjänimeä" + +#~ msgid "Remove User Name" +#~ msgstr "Poista käyttäjänimi" + +#~ msgid "User names" +#~ msgstr "Käyttäjänimet" + +#~ msgid "User ids." +#~ msgstr "Käyttäjä-ID:t." + +#~ msgid "Add User Id" +#~ msgstr "Lisää käyttäjä-ID" + +#~ msgid "Edit User Id" +#~ msgstr "Muokkaa käyttäjä-ID:tä" + +#~ msgid "Remove User Id" +#~ msgstr "Poista käyttäjä-ID" + +#~ msgid "User Ids" +#~ msgstr "Käyttäjä-ID:t" + +#~ msgid "Lockdown:" +#~ msgstr "Lukitus:" + +#~ msgid "User ID" +#~ msgstr "Käyttäjä ID" + +#~ msgid "Please enter the user id." +#~ msgstr "Syötä käyttäjä ID." + +#~ msgid "Please enter the user name." +#~ msgstr "Syötä käyttäjänimi." diff --git a/po/fr.po b/po/fr.po index dc83b72..37c2aca 100644 --- a/po/fr.po +++ b/po/fr.po @@ -34,7 +34,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-07-09 09:27+0000\n" "Last-Translator: Julien Humbert \n" "Language-Team: French ps -e --" -"context." -msgstr "" -"Le contexte est le contexte de sécurité (SELinux) d’une application en cours " -"d’exécution ou d’un service. Pour obtenir le contexte d’une application en " -"cours d’exécution utilisez ps -e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Ajouter un contexte" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Modifier un contexte" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Supprimer un contexte" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Contextes" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Si une commande de la liste blanche se termine par un astérisque « * », " -"alors toutes les lignes de commande commençant par cette commande seront " -"prises en compte. Si « * » est absent alors la commande seule sera prise en " -"compte." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Ajouter une ligne de commande" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Afficher une ligne de commande" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Supprimer une ligne de commande" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Lignes de commande" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Noms d’utilisateur" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Ajouter un nom d’utilisateur" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Modifier un nom d’utilisateur" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Supprimer un nom d’utilisateur" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Noms d’utilisateur" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Identifiants d’utilisateur" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Ajouter un identifiant utilisateur" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Afficher un identifiant utilisateur" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Supprimer un identifiant utilisateur" +"Veuillez être prudent avec les règles passthrough pour ne pas endommager le " +"pare-feu." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Identifiants d’utilisateur" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Passthrough" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Zone actuelle par défaut du système." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "DéniDeLog :" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Mode panique :" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Assistants automatiques :" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Verrouiller :" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Zone par défaut :" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Veuillez saisir un nom d’interface :" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Paramètres IPSet de base" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Veuillez configurer les paramètres de l’IPSet de base :" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Type :" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Timeout :" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Taille du hachage :" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maxelem :" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Valeur du timeout en secondes" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Taille du hachage initial, valeur par défaut : 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Nombre maximal d’éléments, valeur par défaut : 65 536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Veuillez sélectionner un IPSet :" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Veuillez saisir une entrée IPSet :" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "DéniDeLog" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Veuillez sélectionner la valeur du DéniDeLog :" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Marque" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Veuillez saisir une marque avec un masque en option." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" "Les champs marque et masque sont tous les deux des nombres non signés de 32 " "octets de largeur." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Marque :" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Masque :" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Veuillez sélectionner un assistant conntrack netfilter :" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Sélectionner -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Autre module :" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port et protocole" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Veuillez saisir un port et un protocole." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Règle directe" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "Veuillez sélectionner l’ipv et la table, la chaine prioritaire et saisissez " "las arguments." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Priorité :" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Veuillez saisir un protocole." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Autres protocoles :" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Règle riche" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Veuillez saisir une règle riche." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "Pour l’hôte ou le réseau, autorisez ou désactivez l’élément." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Source :" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destination :" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Journal :" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audit :" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 et ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "inversé" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1986,78 +1874,192 @@ msgstr "" "Pour activer ceci, Action doit être paramétré sur « reject » et Famille soit " "sur « Ipv4 » ou « Ipv6 » (pas les deux)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "avec le type :" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "avec la limite :" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Préfixe :" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Niveau :" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Élément :" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Action :" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Paramètres du service de base" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Veuillez configurer les paramètres du service de base :" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Veuillez sélectionner un service." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Veuillez saisir une source." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ID utilisateur" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Veuillez saisir l’ID de l’utilisateur." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Veuillez saisir le nom d’utilisateur." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "étiquette" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Paramètres de la zone de base" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Veuillez configurer les paramètres de la zone de base :" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Cible par défaut" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Cible :" + +#~ msgid "Context" +#~ msgstr "Contexte" + +#~ msgid "Command line" +#~ msgstr "Ligne de commande" + +#~ msgid "User name" +#~ msgstr "Nom d’utilisateur" + +#~ msgid "User id" +#~ msgstr "Identifiant utilisateur" + +#~ msgid "Please enter the command line." +#~ msgstr "Veuillez saisir la ligne de commande." + +#~ msgid "Please enter the context." +#~ msgstr "Veuillez saisir le contexte." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Lockdown verrouille la configuration du pare-feu afin que seules les " +#~ "applications de la liste blanche puissent la modifier." + +#~ msgid "Lockdown" +#~ msgstr "Verrouillage" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Liste blanche" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "La fonction verrouillage est une version allégée de l’utilisateur et des " +#~ "politiques d’application pour FirewallD. Elle limite les modifications au " +#~ "pare-feu. La liste blanche peut comprendre des commandes, des contextes, " +#~ "des utilisateurs et des identifiants d’utilisateur." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Le contexte est le contexte de sécurité (SELinux) d’une application en " +#~ "cours d’exécution ou d’un service. Pour obtenir le contexte d’une " +#~ "application en cours d’exécution utilisez ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "Ajouter un contexte" + +#~ msgid "Edit Context" +#~ msgstr "Modifier un contexte" + +#~ msgid "Remove Context" +#~ msgstr "Supprimer un contexte" + +#~ msgid "Contexts" +#~ msgstr "Contextes" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Si une commande de la liste blanche se termine par un astérisque « * », " +#~ "alors toutes les lignes de commande commençant par cette commande seront " +#~ "prises en compte. Si « * » est absent alors la commande seule sera prise " +#~ "en compte." + +#~ msgid "Add Command Line" +#~ msgstr "Ajouter une ligne de commande" + +#~ msgid "Edit Command Line" +#~ msgstr "Afficher une ligne de commande" + +#~ msgid "Remove Command Line" +#~ msgstr "Supprimer une ligne de commande" + +#~ msgid "Command lines" +#~ msgstr "Lignes de commande" + +#~ msgid "User names." +#~ msgstr "Noms d’utilisateur" + +#~ msgid "Add User Name" +#~ msgstr "Ajouter un nom d’utilisateur" + +#~ msgid "Edit User Name" +#~ msgstr "Modifier un nom d’utilisateur" + +#~ msgid "Remove User Name" +#~ msgstr "Supprimer un nom d’utilisateur" + +#~ msgid "User names" +#~ msgstr "Noms d’utilisateur" + +#~ msgid "User ids." +#~ msgstr "Identifiants d’utilisateur" + +#~ msgid "Add User Id" +#~ msgstr "Ajouter un identifiant utilisateur" + +#~ msgid "Edit User Id" +#~ msgstr "Afficher un identifiant utilisateur" + +#~ msgid "Remove User Id" +#~ msgstr "Supprimer un identifiant utilisateur" + +#~ msgid "User Ids" +#~ msgstr "Identifiants d’utilisateur" + +#~ msgid "Lockdown:" +#~ msgstr "Verrouiller :" + +#~ msgid "User ID" +#~ msgstr "ID utilisateur" + +#~ msgid "Please enter the user id." +#~ msgstr "Veuillez saisir l’ID de l’utilisateur." + +#~ msgid "Please enter the user name." +#~ msgstr "Veuillez saisir le nom d’utilisateur." diff --git a/po/gl.po b/po/gl.po index b627006..ead0bb8 100644 --- a/po/gl.po +++ b/po/gl.po @@ -9,7 +9,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 09:45+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Galician (http://www.transifex.com/projects/p/firewalld/" @@ -25,11 +25,45 @@ msgstr "" msgid "Firewall Applet" msgstr "Applet de devasa" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Configuración da devasa" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Devasa" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Configuración da devasa" @@ -38,24 +72,24 @@ msgstr "Configuración da devasa" msgid "firewall;network;security;iptables;netfilter;" msgstr "" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Escolla a zona para a interface «%s»" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -106,154 +140,154 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Activar as notificacións" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Editar a configuración da devasa..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Cambiar as zonas das conexións..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Bloquear todo o tráfico da rede" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Conexións" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "Interfaces" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Fallou a autorización." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "O nome non é válido" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Xa existe ese nome" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Non hai ningunha conexión co daemon da devasa" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Todo o tráfico da rede está bloqueado." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "A zona «{zone}» está activa para a conexión «{connection}» na interface " "«{interface}»" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "A zona '{zone}' está activa para a interface '{interface}'" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Non hai ningunha zona activa." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "Estabeleceuse unha conexión a FirewallD." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "Perdeuse a conexión a FirewallD." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "Cargouse FirewallD de novo." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "A zona por omisión cambiou a «%s»." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "O tráfico da rede xa non está bloqueado." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "activado" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "desactivado" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -261,21 +295,21 @@ msgstr "" "A zona «{zone}» está {activated_deactivated} para a conexión «{connection}» " "na interface «{interface}»" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" "A zona «{zone}» está {activated_deactivated} na interface «{interface}»" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "A zona «%s» está acivada na interface «%s»" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "" @@ -320,409 +354,393 @@ msgstr "" msgid "Failed to load icons." msgstr "Fallou a carga das iconas." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Servizo" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Porto" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Protocolo" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Ao porto" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Ao enderezo" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Tipo de ICMP" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Orixe" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Aviso" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Erro" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Zona" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Zona «%s»: O servizo «%s» non está dispoñíbel." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Retirar" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Ignorar" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Zona «%s»: O tipo de ICMP «%s» non está dispoñíbel." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "" @@ -741,91 +759,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Encamiñamento dos portos" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "Escolla as opcións de orixe e destino segundo as súas necesidades." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Porto / Intervalo de portos:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "Enderezo de IP:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Protocolo:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Destino" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -833,222 +843,208 @@ msgstr "" "Para activar o encamiñamento local hai que indicar un porto. Este porto ten " "que ser diferente do porto de orixe." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Encamiñamento local" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Encamiñar a outro porto" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "A entradas en negra son obrigatorias; todas as demais son opcionais." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Nome:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Versión:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Curto:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Descrición:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "Configuración dos tipos de ICMP de base" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "Configure os tipos de ICMP de base:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "Tipo de ICMP" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Engadir unha entrada" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Ficheiro" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Opcións" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Cargar Firewalld de novo" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Cambiar a zona por omisión" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "A_xuda" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1058,7 +1054,7 @@ msgstr "" "configuración activa real. A configuración permanente estará activa despois " "de recargar ou reiniciar o servizo ou o sistema." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1067,107 +1063,107 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Engadir unha zona" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Editar a zona" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Retirar a zona" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Servizos" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Engadir un porto" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Edita o porto" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Retirar o porto" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Portos" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " "hosts appear as a single address on the internet. Masquerading is IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1175,19 +1171,19 @@ msgid "" "IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "Engadir un porto de encamiñamento" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "Editar un porto de encamiñamento" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "Retirar un porto de encamiñamento" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1198,7 +1194,7 @@ msgstr "" "rede, mais, alén disto, tamén para mensaxes informativos como solicitudes e " "respostas de ping." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1207,136 +1203,136 @@ msgstr "" "dos tipos de ICMP terán permitido pasar a devasa. Por omisión non hai " "limitación." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "Filtro de ICMP" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Engadir un servizo" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Editar o servizo" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Retirar o servizo" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Editar a entrada" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Retirar a entrada" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Módulos" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1346,47 +1342,47 @@ msgstr "" "enderezo e tipo de destino. Se ambas as dúas entradas estiveren baleiras non " "hai limitación." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1394,58 +1390,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Engadir un tipo de ICMP" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Editar o tipo de ICMP" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Retirar o tipo de ICMP" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1453,11 +1449,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1465,444 +1461,335 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Zona por omisión actual do sistema." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Zona por omisión" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Porto e protocolo" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Introduza un porto e un protocolo." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Outro protocolo:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Configuración dos servizos de base" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Configure as opcións dos servizos de base:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Configuración das zonas de base" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Configure as opcións das zonas de base:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Destino por omisión" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Destino:" diff --git a/po/gu.po b/po/gu.po index 55c9044..17d30bb 100644 --- a/po/gu.po +++ b/po/gu.po @@ -14,7 +14,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 09:45+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Gujarati (http://www.transifex.com/projects/p/firewalld/" @@ -30,11 +30,45 @@ msgstr "" msgid "Firewall Applet" msgstr "ફાયરવોલ ઍપલેટ" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "ફાયરવોલ રૂપરેખાંકન" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "ફાયરવોલ" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "ફાયરવોલ રૂપરેખાંકન" @@ -43,24 +77,24 @@ msgstr "ફાયરવોલ રૂપરેખાંકન" msgid "firewall;network;security;iptables;netfilter;" msgstr "ફાયરવોસ;નેટવર્ક;સુરક્ષા;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "ઇન્ટરફેસ '%s' માટે વિસ્તારને પસંદ કરો" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "મૂળભૂત વિસ્તાર" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "જોડાણ '%s' માટે વિસ્તારને પસંદ કરો" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -110,152 +144,152 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "શીલ્ડ અપ" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "નોંધણીઓને સક્રિય કરો" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "ફાયરવોલ સુયોજનોમાં ફેરફાર કરો..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "જોડાણોનાં વિસ્તારોને બદલો..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "શીલ્ડ અપ/ડાઉન વિસ્તારોને રૂપરેખાંકિત કરો..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "બધા નેટવર્ક ટ્રાફિકને બ્લોક કરો" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "જોડાણો" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" -msgstr "" +msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "સ્ત્રોતો" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "સત્તાધિકરણ નિષ્ફળ." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "અયોગ્ય દલીલ %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "નામ પહેલેથી જ અસ્તિત્વ ધરાવે છે" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "ફાયરવોલ ડિમન માટે જોડાણ નથી" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "બધા નેટવર્ક ટ્રાફિક બ્લોક થયેલ છે." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "મૂળભૂત વિસ્તાર: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "ઇન્ટરફેસ '{interface}' પર જોડાણ '{connection}' માટે વિસ્તાર '{zone}' સક્રિય" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "ઇન્ટરફેસ '{interface}' માટે વિસ્તાર '{zone}' સક્રિય" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "સ્ત્રોત {source} માટે વિસ્તાર '{zone}' સક્રિય" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "સક્રિય વિસ્તારો નથી." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallD માં જોડાણને સ્થાપિત કરેલ છે." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallD માં જોડાણ ગુમ થયેલ છે." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD ને પુન:લાવી દેવામાં આવ્યુ છે." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "'%s' માં મૂળભૂત વિસ્તારને બદલેલ છે." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "નેટવર્ક ટ્રાફિક હવે બ્લોક થયેલ નથી." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "સક્રિય" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "નિષ્ક્રિય" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -263,20 +297,20 @@ msgstr "" "ઇન્ટરફેસ '{interface}' પર જોડાણ '{connection}' માટે વિસ્તાર " "'{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "ઇન્ટરફેસ '{interface}' માટે વિસ્તાર '{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "ઇન્ટરફેસ '%s' માટે સક્રિય થયેલ વિસ્તાર '%s'" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "સ્ત્રોત '{source}' માટે વિસ્તાર '{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "સ્ત્રોત '%s' માટે સક્રિય થયેલ વિસ્તાર '%s'" @@ -321,409 +355,393 @@ msgstr "નિષ્ક્રિય" msgid "Failed to load icons." msgstr "ચિહ્નોને લાવવામાં નિષ્ફળતા." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "વપરાશકર્તા નામ" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "રનટાઇમ" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "કાયમી" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "સેવા" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "પોર્ટ" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "પ્રોટોકોલ" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "પોર્ટ પ્રતિ" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "સરનામા પ્રતિ" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp પ્રકાર" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "કુટુંબ" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "ક્રિયા" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "ઘટક" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Src" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "અંતિમ મુકામ" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "લૉગ" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "ઓડિટ" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "સ્ત્રોત" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "ચેતવણી" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "ભૂલ" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "સ્વીકારો" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "રદ કરો" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "છોડી દો" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "મર્યાદા" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "સેવા" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "પોર્ટ" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "પ્રોટોકોલ" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "માસ્કરેડ" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "forward-port" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "સ્તર" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "હાં" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "વિસ્તાર" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "વિસ્તાર '%s': સેવા '%s' ઉપલબ્ધ નથી." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "દૂર કરો" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "અવગણો" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "વિસ્તાર '%s': ICMP પ્રકાર '%s' ઉપલબ્ધ નથી." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "બિલ્ટ-ઇન વિસ્તાર, નામ બદલવાનું આધારભૂત નથી." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "સેકંડ" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "મિનિટ" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "કલાક" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "દિવસ" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "તત્કાલ" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "સાવધાન" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "જટિલ" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "ભૂલ" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "ચેતવણી" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "સૂચના" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "જાણકારી" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "ડિબગ" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "ફોર્વડીંગ એ ફક્ત બીજી સિસ્ટમ માટે ઉપયોગી છે જો ઇન્ટરફેસ માસ્કરેડ છે. " -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "બિલ્ટ-ઇન સેવા, નામ બદલવાનું આધારભૂત નથી." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "બિલ્ટ-ઇન icmp, નામ બદલવાનું આધારભૂત નથી." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "સ્ત્રોત %s માટે વિસ્તારને પસંદ કરો" @@ -742,91 +760,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "મહેરબાની કરીને આદેશ વાક્યને દાખલ કરો." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "મહેરબાની કરીને સંદર્ભને દાખલ કરો." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "મહેરબાની કરીને નીચેની યાદીમાંથી મૂળભૂત વિસ્તારને પસંદ કરો." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "સીધી કતાર" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "મહેરબાની કરીને ipv અને કોષ્ટકને પસંદ કરો અને કતાર નામને દાખલ કરો." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "કતાર:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "કાચુ" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "સુરક્ષા" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "કોષ્ટક:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "સીધા પાસથ્રુ નિયમ" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "મહેરબાની કરીને ipv ને પસંદ કરો અને દલીલોને દાખલ કરો." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "દલીલો:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "પોર્ટ ફોરવર્ડીંગ" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "મહેરબાની કરીને તમારી જરૂરીયાત અનુસાર સ્રોત અને અંતિમ મુકામ વિકલ્પો પસંદ કરો." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "પોર્ટ / પોર્ટ વિસ્તાર:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP સરનામું:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "પ્રોટોકોલ:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "લક્ષ્ય" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -834,107 +844,107 @@ msgstr "" "જો તમે સ્થાનિય આગળ ધપાવવાનું સક્રિય કરો, તો તમારે પોર્ટ સ્પષ્ટ કરવો પડે. આ પોર્ટ સ્રોત " "પોર્ટથી અલગ હોવો જોઈએ." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "સ્થાનિય આગળ ધપાવવાનું" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "અન્ય પોર્ટ આગળ ધપાવો" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "બોલ્ડ પ્રવેશો ફરજિયાત છે, બધુ બીજુ વૈકલ્પિક છે." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "નામ:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "આવૃત્તિ:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "ટૂંકુ:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "વર્ણન:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "કુટુંબ:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "મૂળભૂત ICMP પ્રકાર સુયોજનો" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "મહેરબાની કરીને મૂળભૂત ICMP પ્રકાર સુયોજનોને રૂપરેખાંકિત કરો:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP પ્રકાર" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "મહેરબાની કરીને ICMP પ્રકારને પસંદ કરો" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "નોંધણીને ઉમેરો" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "ફાઈલ (_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "વિકલ્પો (_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Firewalld ને પુન:લાવો" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -944,117 +954,101 @@ msgstr "" "કે બધી રનટાઇમ એ ફક્ત ફેરફારો પૂર્ણ કર્યા જ્યાં સુધી ફરી લાવવાનું એ ફરી લાવવા સાથે ગુમ થઇ " "જાય જો તેઓ કાયમી રૂપરેખાંકનમાં પણ ન આવ્યા હોય." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "બદલો કે જે વિસ્તાર જે નેટવર્ક જોડાણ સાથે સંકળાય છે." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "મૂળભૂત વિસ્તારને બદલો" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "જોડાણો અથવા ઇન્ટરફેસ માટે મૂળભૂત વિસ્તારને બદલો." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "પેનિક સ્થિતિ એનો મતલબ એ થાય કે આવતા અને જતા પેકેટો એ તૂટી જાય છે." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "પેનિક સ્થિતિ" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"લૉકડાઉન ફાયરવોલ રૂપરેખાંકનને તાળુ મારે છે તેથી ફક્ત લૉકડાઉન સફેદયાદી પર ફક્ત કાર્યક્રમો એ " -"તેને બદલવા સક્ષમ છે." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "લોકડાઉન" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "કાયમ માટે રનટાઇમ રૂપરેખાંકનને બનાવો" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "કાયમ કરવા માટે રનટાઇમ" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "દૃશ્ય (_V)" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP પ્રકારો" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "સીધુ રૂપરેખાંકન" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "લોકડાઉન વાઇટલીસ્ટ" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "મદદ (_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "રૂપરેખાંકન:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1063,7 +1057,7 @@ msgstr "" "હાલમાં દૃશ્યમાન રૂપરેખાંકન. રનટાઇમ રૂપરેખાંકન એ ચોક્કસ સક્રિય રૂપરેખાંકન છે. કાયમી રૂપરેખાંકન " "સેવા પછી સક્રિય થશે અથવા સિસ્ટમ રિલોડ અથવા પુન:શરૂ થાય છે." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1076,23 +1070,23 @@ msgstr "" "પેકેટ ફોર્વડીંગ, icmp ફિલ્ટરો અને કિંમતી નિયમોને બેગુ કરે છે. વિસ્તાર ઇન્ટરફેસ અને સ્ત્રોત " "સરનામાંને બાઉન્ડ કરી શકે છે." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "વિસ્તારને ઉમેરો" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "વિસ્તારમાં ફેરફાર કરો" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "વિસ્તારને દૂર કરો" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "મૂળભૂત વિસ્તારોને લાવો" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1102,11 +1096,11 @@ msgstr "" "સેવાઓ બધા યજમાનો અને નેટવર્કોમાંથી વાપરી શકાય છે કે જે જોડાણો, ઇન્ટરફેસ અને આ વિસ્તારમાં " "સ્ત્રોત બાઉન્ડ સુધી પહોંચી શકાય છે." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "સેવાઓ" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1114,53 +1108,53 @@ msgstr "" "વધારાનાં પોર્ટ અને પોર્ટ સીમાઓને ઉમેરો, કે જે બધા યજમાનો અથવા નેટવર્કો માટે વાપરવાની " "જરૂર છે કે જે મશીન માટે જોડાઇ શકે છે." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "પોર્ટ પ્રતિ" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "પોર્ટમાં ફેરફાર કરો" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "પોર્ટને દૂર કરો" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "પોર્ટ" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1170,22 +1164,22 @@ msgstr "" "નેટવર્કને ઈન્ટરનેટ સાથે જોડે. તમારું સ્થાનિક નેટવર્ક દૃશ્યમાન હશે નહિં અને ઈન્ટરનેટ માટે એક " "યજમાન તરીકે દેખાશે. માસ્કરેડીંગ એ માત્ર IPv4 હોય છે." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "માસ્કરેડ વિસ્તાર" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" "જો તમે માસ્કરેડીંગને સક્રિય કરો તો, IP ફોર્વડીંગ એ તમારાં IPv4 નેટવર્કો માટે સક્રિય થશે." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "માસ્કરેડીંગ" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1196,19 +1190,19 @@ msgstr "" "અન્ય સિસ્ટમ પર આગળ ધપાવવા માટે પ્રવેશો ઉમેરો. અન્ય સિસ્ટમમાં આગળ ધપાવવાનું એ માત્ર ત્યારે " "જ ઉપયોગી છે જો ઈન્ટરફેસ માસ્કરેડ થયેલ હોય. પોર્ટ આગળ ધપાવવાનું એ માત્ર IPv4 છે." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "ફોર્વડ પોર્ટને ઉમેરો" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "ફોર્વડ પોર્ટમાં ફેરફાર કરો" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "ફોર્વડ પોર્ટને દૂર કરો" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1218,7 +1212,7 @@ msgstr "" "મોકલવા માટે વપરાય છે, પરંતુ વધુમાં જાણકારી સંદેશાઓ માટે જેમ કે પીંગ અરજીઓ અને પ્રત્યુત્તરો " "માટે." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1226,41 +1220,41 @@ msgstr "" "ICMP પ્રકારોને યાદીમાં ચિહ્નિત કરો, કે જેઓ નકારાવા જોઈએ. બાકીના બધા ICMP પ્રકારો " "ફાયરવોલ પસાર કરવા માટે માન્ય છે. મૂળભૂત એ કોઈ મર્યાદા નથી." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP ગાળક" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "અહિંયા તમે વિસ્તાર માટે કિંમતી ભાષા નિયમોને સુયોજિત કરી શકાય છે." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "મજબૂત નિયમ ઉમેરો" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "મજબૂત નિયમમાં ફેરફાર કરો" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "મજબૂત નિયમને દૂર કરો" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "કિંમતી નિયમો" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1268,96 +1262,96 @@ msgstr "" "વિસ્તારમાં ઇન્ટરફેસને બાઇન્ડ કરવા માટે નોંધણીને ઉમેરો. જો ઇન્ટરફેસ એ જોડાણ દ્દારા વાપરેલ " "હશે, વિસ્તાર એ જોડાણનાં ખાસ વિસ્તારમાં સુયોજિત હશે." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "ઇન્ટરફેસને ઉમેરો" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "ઇન્ટરફેસમાં ફેરફાર કરો" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "ઇન્ટરફેસને દૂર કરો" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "સ્ત્રોતને ઉમેરો" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "સ્ત્રોતમાં ફેરફાર કરો" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "સ્ત્રોતને દૂર કરો" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "વિસ્તારો" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "firewalld સેવા એર પોર્ટ, પ્રોટોકોલ, મોડ્યુલો અને લક્ષ્ય સરનામાંનું સંયોજન છે." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "સેવાને ઉમેરો" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "સેવામાં ફેરફાર કરો" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "સેવાને દૂર કરો" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "સિસ્ટમ મૂળભૂતને લાવો" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "નોંધણી માં પ્રવેશ કરો" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "નોંધણી દૂર કરો" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "મોડ્યુલો" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1366,48 +1360,48 @@ msgstr "" "જો તમે લક્ષ્ય સરનામાંને સ્પષ્ટ કરો તો, સેવા પ્રવેશ એ લક્ષ્ય સરનામાં અને પ્રકારને મર્યાદિત " "કરશે. જો બંને નોંધણી ખાલી હોય તો, ત્યાં મર્યાદા નથી." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" "સેવાઓ ફક્ત કાયમી રૂપરેખાંકન દૃશ્યમાં બદલી શકાય છે. સેવાઓની રનટાઇમ રૂપરેખાંકન સુધારેલ છે." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1415,26 +1409,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1442,27 +1436,27 @@ msgstr "" "firewalld icmptype એ firewalld માટે Internet Control Message Protocol (ICMP) " "પ્રકાર માટે જાણકારીને પૂરુ પાડે છે." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP પ્રકારને ઉમેરો" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP પ્રકારમાં ફેરફાર કરો" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ICMP પ્રકારને દૂર કરો" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP પ્રકાર મૂળભૂતોને લાવો" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "સ્પષ્ટ કરો શું આ ICMP પ્રકાર એ IPv4 અને/અથવા IPv6 માટે ઉપલબ્ધ છે." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1470,7 +1464,7 @@ msgstr "" "ICMP પ્રકારો ફક્ત કાયમી રૂપરેખાંકન દૃશ્યમાં બદલી શકાય છે. ICMP પ્રકારોની રનટાઇમ " "રૂપરેખાંકન સુધારેલ છે." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1478,11 +1472,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1494,7 +1488,7 @@ msgstr "" "રૂપરેખાંકન એ છેલ્લા પુન:ક્રમાંકિત તરીકે ફક્ત વાપરવુ જોઇએ જ્યારે તે બીજા firewalld લક્ષણોને " "વાપરવા શક્ય નથી." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1504,32 +1498,44 @@ msgstr "" "iptables માટે હશે, ipv6 સાથે ip6tables માટે હશે અને eb સાથે ઇથરનેટ બ્રિજ માટે હશે " "(ebtables)." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "નિયમો સાથે વાપરવા માટે વધારાની કતારો." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "કતાર ઉમેરો" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "કતારમાં ફેરફાર કરો" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "કતારને દૂર કરો" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "કતારો" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "પ્રાધાન્ય સાથે કોષ્ટકમાં કતાર માટે દલીલો સાથે નિયમને ઉમેરો." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "નિયમને ઉમેરો" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "નિયમમાં ફેરફાર કરો" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "નિયમને દૂર કરો" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1543,23 +1549,11 @@ msgstr "" "અને આ નિયમોનો ક્રમ સુધારેલ નથી અને બદલી શકાય છે. જો તમે ખાતરી કરવા માંગો તો નિયમ " "બીજા એક પછી ઉમેરાશે, પહેલી માટે નીચા પ્રાધાન્યને વાપરો અને નીચેનાં માટે ઉચ્ચ." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "નિયમને ઉમેરો" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "નિયમમાં ફેરફાર કરો" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "નિયમને દૂર કરો" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "નિયમો" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1568,308 +1562,206 @@ msgstr "" "પાસથ્રુ નિયમો એ સીધુ firewall મારફતે પસાર થયેલ છે અને ખાસ કતારોમાં સ્થિત થયેલ છે. બધા " "iptables, ip6tables અને ebtables વિકલ્પોને વાપરી શકાય છે." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "મહેરબાની કરીને પાસથ્રુ નિયમો એ ફાયરવોલને ઇજા પહોંચાડે નહિં તે રીતે સાચવો." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "પાસથ્રુને ઉમેરો" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "પાસથ્રુમાં ફેરફાર કરો" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "પાસથ્રુને દૂર કરો" -#: ../src/firewall-config.glade.h:193 +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." +msgstr "મહેરબાની કરીને પાસથ્રુ નિયમો એ ફાયરવોલને ઇજા પહોંચાડે નહિં તે રીતે સાચવો." + +#: ../src/firewall-config.glade.h:186 msgid "Passthrough" msgstr "પાસથ્રુ" -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"લોકડાઉન લક્ષણ એ firewalld માટે વપરાશકર્તા અને કાર્યક્રમ પોલિસીઓની આવૃત્તિ છે. તે " -"ફાયરવોલ માટે ફેરફારોને મર્યાદિત કરે છે. લોકડાઉન વાઇટલીસ્ટ એ આદેશો, સંદર્ભો, વપરાશકર્તા " -"અને વપરાશકર્તા ids ને સમાવે છે." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "સંદર્ભ ઉમેરો" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "સંદર્ભમાં ફેરફાર કરો" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "સંદર્ભ દૂર કરો" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "સંદર્ભ" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"જો વાઇટલીસેટ પર આદેશ પ્રવેશ એ એસ્ટ્રીંક '*' સાથે અંત થાય તો, પછી બધા આદેશ સાથે શરૂ થતા " -"આદેશ વાક્યો એ બંધબેસશે. જો '*' ત્યાં ન હોય તો ખાસ આદેશ સમાવતી દલીલો બંધબેસવી જ જોઇએ." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "આદેશ વાક્યને ઉમેરો" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "આદેશ વાક્યમાં ફેરફાર કરો" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "આદેશ વાક્યને દૂર કરો" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "આદેશ વાક્યો" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "વપરાશકર્તા નામો." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "વપરાશકર્તા નામને ઉમેરો" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "વપરાશકર્તાનામમાં ફેરફાર કરો" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "વપરાશકર્તાનામને દૂર કરો" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "વપરાશકર્તા નામો" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "વપરાશકર્તા ids." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "વપરાશકર્તા Id ને ઉમેરો" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "વપરાશકર્તા Id માં ફેરફાર કરો" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "વપરાશકર્તા Id ને દૂર કરો" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "વપરાશકર્તા ids" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "સિસ્ટમનો વર્તમાન મૂળભૂત વિસ્તાર." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "પેનિક સ્થિતિ:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "લોકડાઉન:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "મૂળભૂત વિસ્તાર:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "પોર્ટ અને પ્રોટોકોલ" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "મહેરબાની કરીને પોર્ટ અને પ્રોટોકોલને દાખલ કરો." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "સીધો નિયમ" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "મહેરબાની કરીને ipv અને કોષ્ટકને પસંદ કરો, કતાર પ્રાધાન્ય અને દલીલોને દાખલ કરો." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "પ્રાધાન્ય:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "મહેરબાની કરીને પ્રોટોકોલને દાખલ કરો." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "બીજા પ્રોટોકોલ:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "કિંમતી નિયમ" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "કિંમતી નિયમ દાખલ કરો." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "યજમાન માટે અથવા નેટવર્ક સફેદ અથવા કાળી યાદી ઘટકને નિષ્ક્રિય કરે છે." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "સ્ત્રોત:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "લક્ષ્ય:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "લૉગ:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "ઓડિટ:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 અને ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "ઉલટુ કરાયેલું" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1877,78 +1769,172 @@ msgstr "" "આને સક્રિય કરવા માટે ક્રિયા 'રદ કરો' હોવી જોઇએ અને પરિવાર પ્રકાર 'ipv4' અથવા " "'ipv6' (બંને નહિ) હોવો જોઇએ." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "પ્રકાર સાથે:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "મર્યાદા સાથે:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "પૂર્વગ:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "સ્તર:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "ઘટક:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "ક્રિયા:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "મૂળભૂત સેવા સુયોજનો" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "મહેરબાની કરીને મૂળભૂત સેવા સુયોજનોને રૂપરેખાંકિત કરો:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "મહેરબાની કરીને સેવાને પસંદ કરો." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "વપરાશકર્તા ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "મહેરબાની કરીને વપરાશકર્તા id ને દાખલ કરો." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "મહેરબાની કરીને વપરાશકર્તા નામને દાખલ કરો." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "મૂળભૂત વિસ્તાર સુયોજનો" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "મહેરબાની કરીને મૂળભૂત વિસ્તાર સુયોજનોને રૂપરેખાંકિત કરો:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "મૂળભૂત લક્ષ્ય" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "લક્ષ્ય:" + +#~ msgid "User name" +#~ msgstr "વપરાશકર્તા નામ" + +#~ msgid "Please enter the command line." +#~ msgstr "મહેરબાની કરીને આદેશ વાક્યને દાખલ કરો." + +#~ msgid "Please enter the context." +#~ msgstr "મહેરબાની કરીને સંદર્ભને દાખલ કરો." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "લૉકડાઉન ફાયરવોલ રૂપરેખાંકનને તાળુ મારે છે તેથી ફક્ત લૉકડાઉન સફેદયાદી પર ફક્ત " +#~ "કાર્યક્રમો એ તેને બદલવા સક્ષમ છે." + +#~ msgid "Lockdown" +#~ msgstr "લોકડાઉન" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "લોકડાઉન વાઇટલીસ્ટ" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "લોકડાઉન લક્ષણ એ firewalld માટે વપરાશકર્તા અને કાર્યક્રમ પોલિસીઓની આવૃત્તિ છે. તે " +#~ "ફાયરવોલ માટે ફેરફારોને મર્યાદિત કરે છે. લોકડાઉન વાઇટલીસ્ટ એ આદેશો, સંદર્ભો, " +#~ "વપરાશકર્તા અને વપરાશકર્તા ids ને સમાવે છે." + +#~ msgid "Add Context" +#~ msgstr "સંદર્ભ ઉમેરો" + +#~ msgid "Edit Context" +#~ msgstr "સંદર્ભમાં ફેરફાર કરો" + +#~ msgid "Remove Context" +#~ msgstr "સંદર્ભ દૂર કરો" + +#~ msgid "Contexts" +#~ msgstr "સંદર્ભ" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "જો વાઇટલીસેટ પર આદેશ પ્રવેશ એ એસ્ટ્રીંક '*' સાથે અંત થાય તો, પછી બધા આદેશ સાથે શરૂ " +#~ "થતા આદેશ વાક્યો એ બંધબેસશે. જો '*' ત્યાં ન હોય તો ખાસ આદેશ સમાવતી દલીલો બંધબેસવી જ " +#~ "જોઇએ." + +#~ msgid "Add Command Line" +#~ msgstr "આદેશ વાક્યને ઉમેરો" + +#~ msgid "Edit Command Line" +#~ msgstr "આદેશ વાક્યમાં ફેરફાર કરો" + +#~ msgid "Remove Command Line" +#~ msgstr "આદેશ વાક્યને દૂર કરો" + +#~ msgid "Command lines" +#~ msgstr "આદેશ વાક્યો" + +#~ msgid "User names." +#~ msgstr "વપરાશકર્તા નામો." + +#~ msgid "Add User Name" +#~ msgstr "વપરાશકર્તા નામને ઉમેરો" + +#~ msgid "Edit User Name" +#~ msgstr "વપરાશકર્તાનામમાં ફેરફાર કરો" + +#~ msgid "Remove User Name" +#~ msgstr "વપરાશકર્તાનામને દૂર કરો" + +#~ msgid "User names" +#~ msgstr "વપરાશકર્તા નામો" + +#~ msgid "User ids." +#~ msgstr "વપરાશકર્તા ids." + +#~ msgid "Add User Id" +#~ msgstr "વપરાશકર્તા Id ને ઉમેરો" + +#~ msgid "Edit User Id" +#~ msgstr "વપરાશકર્તા Id માં ફેરફાર કરો" + +#~ msgid "Remove User Id" +#~ msgstr "વપરાશકર્તા Id ને દૂર કરો" + +#~ msgid "User Ids" +#~ msgstr "વપરાશકર્તા ids" + +#~ msgid "Lockdown:" +#~ msgstr "લોકડાઉન:" + +#~ msgid "User ID" +#~ msgstr "વપરાશકર્તા ID" + +#~ msgid "Please enter the user id." +#~ msgstr "મહેરબાની કરીને વપરાશકર્તા id ને દાખલ કરો." + +#~ msgid "Please enter the user name." +#~ msgstr "મહેરબાની કરીને વપરાશકર્તા નામને દાખલ કરો." diff --git a/po/hi.po b/po/hi.po index b2ced94..8064a7e 100644 --- a/po/hi.po +++ b/po/hi.po @@ -10,7 +10,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2016-01-04 12:28+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Hindi (http://www.transifex.com/projects/p/firewalld/language/" @@ -26,11 +26,45 @@ msgstr "" msgid "Firewall Applet" msgstr "फ़ायरवॉल एप्लेट" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "फायरवाल विन्यास " + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "फायरवाल" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "फायरवाल विन्यास " @@ -39,24 +73,24 @@ msgstr "फायरवाल विन्यास " msgid "firewall;network;security;iptables;netfilter;" msgstr "firewall;network;security;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "अंतरफलक '%s' के लिए क्षेत्र चुनें." #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "तयशुदा क्षेत्र" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "'%s' कनेक्शन के लिए क्षेत्र चुनें" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -106,153 +140,153 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "रक्षा करें" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "अधिसूचना सक्रिय करें" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "फ़ायरवॉल सेटिंग संपादित करें..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "कनेक्शन के क्षेत्र बदलें..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "शील्ड अप/डाउन क्षेत्र विन्यस्त करें..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "सारे संजाल ट्रैफिक रोकें" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "कनेक्शन" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "अंतरफलक" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "स्रोत" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "प्राधिकरण विफल" -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "अवैध नाम" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "नाम पहले से मौज़ूद है" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "फ़ायरवॉल डेमॉन में कोई कनेक्शन नहीं" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "सभी संजाल ट्रैफिक ब्लॉक किए गए." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "तयशुदा क्षेत्र: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "क्षेत्र '{zone}' सक्रिय है '{connection}' कनेक्शन के लिए '{interface}' अंतरफलक पर" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "क्षेत्र '{zone}' सक्रिय है '{interface}' अंतरफलक के लिए" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "क्षेत्र '{zone}' सक्रिय है {source} स्रोत के लिए" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "कोई सक्रिय क्षेत्र नहीं" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallD में कनेक्शन स्थापित हो गया." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallD लॉस्ट में कनेक्शन." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD को फिर लोड किया गया." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "तयशुदा क्षेत्र '%s' में बदला गया." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "संजाल ट्रैफिक अब ब्लॉक नहीं हैं." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "सक्रियकृत" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "निष्क्रियकृत" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -260,20 +294,20 @@ msgstr "" "क्षेत्र '{zone}' {activated_deactivated} है '{connection}' कनेक्शन के लिए " "'{interface}' अंतरफलक पर" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "क्षेत्र '{zone}' {activated_deactivated} है '{interface}' अंतरफलक के लिए" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "क्षेत्र '%s' सक्रिय है अंतरफलक '%s' के लिए" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "क्षेत्र '{zone}' {activated_deactivated} है '{source}' स्रोत के लिए" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "क्षेत्र '%s' सक्रिय है स्रोत '%s' के लिए" @@ -318,328 +352,312 @@ msgstr "निष्क्रियकृत" msgid "Failed to load icons." msgstr "चिह्न लोड करने में असमर्थ." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "उपयोक्ता नाम" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "रनटाइम" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "स्थायी" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "सेवा" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "पोर्ट" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "प्रोटोकॉल" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "पोर्ट में:" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "पता में:" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp प्रकार" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "परिवार" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "क्रिया" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "तत्व" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Src" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Dest" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "लॉग" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "ऑडिट" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "स्रोत" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "चेतावनी" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "त्रुटि" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "स्वीकारें" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "अस्वीकारें" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "छोड़ें" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "सीमित करें" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "सेवा" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "पोर्ट" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "प्रोटोकॉल" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "मुखौटा" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "forward-port" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "स्तर" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "हाँ" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "क्षेत्र" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "क्षेत्र '%s': सेवा '%s' उपलब्ध नहीं है." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "हटाएँ" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "अनदेखा करें" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "क्षेत्र '%s': ICMP प्रकार '%s' उपलब्ध नहीं है." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "बिल्ट इन क्षेत्र, नाम बदलना समर्थित नहीं." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "सेकेंड" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "मिनट" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "घंटा" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "दिन" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "आपातकाल" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "चेतावनी" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "गंभीर" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "त्रुटि" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "चेतावनी" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "सूचना" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "सूचना" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "डिबग" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -648,81 +666,81 @@ msgstr "" "किसी दूसरे तंत्र में अग्रसारण तभी उपयोगी है जब अंतरफलक छद्म होता है.\n" "क्या आप इस क्षेत्र का वेष लेना चाहते हैं?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "बिल्ट इन सेवा, नाम बदलना समर्थित नहीं." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "बिल्ट इन icmp, नाम बदलना समर्थित नहीं." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "स्रोत '%s' के लिए क्षेत्र चुनें." @@ -741,91 +759,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "कृपया कमांड लाइन दर्ज करें." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "कृपया संदर्भ दर्ज करें." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "कृपया नीचे दिए गए सूची से तयशुदा क्षेत्र चुनें." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "प्रत्यक्ष शृंखला" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "कृपया ipv चुनेें और शृंखला नाम सारणी दर्ज करें." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "शृंखला:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "कच्चा" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "सुरक्षा" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "सारणीः" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "प्रत्यक्ष पासथ्रू नियम" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "कृपया ipv चुनें और args दर्ज करें." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Args:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "पोर्ट अग्रसारण" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "अपनी जरूरत मुताबिक स्रोत व गंतव्य चुनें." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "पोर्ट / पोर्ट परिसर:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "आईपी पता:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "प्रोटोकॉल:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "गंतव्य" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -833,107 +843,107 @@ msgstr "" "यदि आप स्थानीय अग्रसारण सक्रिय करते हैं, आपको एक पोर्ट को निर्दिष्ट करना है. इस पोर्ट " "को स्रोत पोर्ट से भिन्न होना है." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "स्थानीय अग्रसारण" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "दूसरे पोर्ट में अग्रसारित करें" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "बोल्ड प्रविष्टि अनिवार्य हैं, सभी अन्य वैकल्पिक हैं." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "नाम:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "संस्करण:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "छोटा:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "वर्णनः" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "परिवारः" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "बेस ICMP प्रकार सेटिंग" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "कृपया बेस ICMP प्रकार सेटिंग विन्यस्त करें:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP प्रकार" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "एक आईसीएमपी प्रकार चुनें" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "प्रविष्टि जोड़ें" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "फ़ाइल (_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "विकल्प (_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Firewalld फिर लोड करें" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -942,117 +952,101 @@ msgstr "" "फायरवॉल नियम फिर लोड करता है. मौजूदा स्थायी विन्यास एक नया रनटाइम विन्यास बन " "जाएगा. यानी सभी रनटाइम केवल तभी लोड होता है जब वे स्थायी विन्यास में होते हैं." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "बदलें कि कौन से क्षेत्र में संजाल कनेक्शन का अवयव है." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "तयशुदा क्षेत्र बदलें" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "कनेक्शन या अंतरफलक के लिए तयशुदा क्षेत्र बदलें." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "पैनिक अवस्था का अर्थ है कि सभी इनकमिंग और आउटगोइंग पैकेट छोड़े जाते हैं." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "पैनिक अवस्था" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"लॉकडाउन फ़ायरवॉल विन्यास लॉक करता है ताकि लॉकडाउन ह्वाइटलिस्ट पर केवल अनुप्रयोग इसे " -"बदल सकें." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "लॉकडाउन" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "रनटाइम विन्यास स्थाई बनाएँ" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "कार्यसमय से स्थाई" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "देखें (_V)" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP प्रकार" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "सीधा विन्यास" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "लॉकडाउन व्हाइटलिस्ट" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "मदद (_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "विन्यास:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1061,7 +1055,7 @@ msgstr "" "मौजूदा दृश्य विन्यास. रनटाइम विन्यास एक वास्तविक विन्यास है. स्थायी विन्यास सेवा या तंत्र " "रिलोड या फिर आरंभ करने के बाद सक्रिय होगा." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1073,23 +1067,23 @@ msgstr "" "परिभाषित करता है. यह क्षेत्र सेवा, पोर्ट, प्रोटोकॉल, प्रच्छन्न, पोर्ट/पैकेट अग्रसारण, icmp " "फिल्टर और रिच नियम को एकीकृत करता है. यह क्षेत्र अंतरफलक और स्रोत पता से बंधा रहता है." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "क्षेत्र जोड़ें" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "क्षेत्र संपादित करें" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "क्षेत्र हटाएँ" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "तयशुदा क्षेत्र लोड करें" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1099,11 +1093,11 @@ msgstr "" "सेवाओं को सभी मेजबान या संजाल से अभिगम योग्य होता है जो मशीन तक इस क्षेत्र में कनेक्शन, " "अंतरफलक और स्रोत बाउंड से पहुँच सकता है." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "सेवाएँ" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1111,53 +1105,53 @@ msgstr "" "अतिरिक्त पोर्ट व पोर्ट परिसर को जोड़ें, जो सभी मेजबान या संजाल के लिए अभिगम योग्य होना " "चाहिए दो मशीन से कनेक्ट कर सकता है." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "पोर्ट जोड़ें" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "पोर्ट संपादित करें" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "पोर्ट हटाएँ" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "पोर्ट" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1167,21 +1161,21 @@ msgstr "" "संजाल को कनेक्ट करता है. आपका स्थानीय संजाल दृश्य नहीं होगा और इंटरनेट के लिए एक मेजबान के " "रूप में प्रकट होगा. मुखौटा सिर्फ IPv4 है." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "प्रच्छन्न क्षेत्र" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "यदि आप प्रच्छन्न सक्रिय कर रहे हैं, IP को आपको IPv4 के लिए सक्रिय किया जाएगा." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "मुखौटा" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1192,19 +1186,19 @@ msgstr "" "स्थानीय सिस्टम से दूसरे सिस्टम में. दूसरे सिस्टम में अग्रसारण सिर्फ तभी उपयोगी है यदि अंतरफलक " "को मुखौटा दिया जाता है. पोर्ट अग्रसारण सिर्फ IPv4 है." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "फॉरवॉर्ड पोर्ट जोड़ें" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "फॉरवॉर्ड पोर्ट संपादित करें" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "फॉरवॉर्ड पोर्ट हटाएँ" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1214,7 +1208,7 @@ msgstr "" "संजालित कंप्यूटर के बीच, लेकिन सूचनात्मक संदेश के लिए अतिरिक्त रूप से जैसे कि पिंग आग्रह और " "जवाब के लिए." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1222,41 +1216,41 @@ msgstr "" "सूची में ICMP प्रकार चिह्नित करें, जो अस्वीकृत किया जाना चाहिए. सभी दूसरे ICMP प्रकार को " "फायरवाल भेज देने की स्वीकृति है. तयशुदा में कोई सीमा नहीं है." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP फिल्टर" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "यहाँ आप क्षेत्र से जुड़ा रिच भाषा नियम सेट कर सकते हैं." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "रिच नियम जोड़ें" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "रिच नियम का संपादन करें" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "रिच नियम मिटाएँ" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "रिच नियम" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1264,96 +1258,96 @@ msgstr "" "क्षेत्र में अंतरफलक बाइंड करने के लिए प्रविष्टि बाइंड करें. यदि अंतरफलक किसी कनेक्शन के द्वारा " "प्रयोग किया जाता है, तो इस क्षेत्र को निर्दिष्ट क्षेत्र में कनेक्शन में सेट किया जाएगा." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "अंतरफलक जोड़ें" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "अंतरफलक का संपादन करें" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "अंतरफलक हटाएँ" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "स्त्रोत जोड़ें" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "श्रोत संपादित करें" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "स्रोत हटाएँ" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "क्षेत्र" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "firewalld सेवा पोर्ट, प्रोटोकॉल, मॉड्यूल, और गंतव्य पता का संयोग है." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "सेवा जोड़ें" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "सेवा का संपादन करें" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "सेवा हटाएँ" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "सेवा तयशुदा लोड करें" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "प्रविष्टि संपादित करें" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "प्रविष्टि हटाएँ" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "मॉड्यूल" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1362,48 +1356,48 @@ msgstr "" "यदि आप गंतव्य पता को निर्दिष्ट करते हैं, तो सेवा प्रविष्ट गंतव्य पता और प्रकार में सीमित " "होगी. यदि दोनों प्रविष्टि रिक्त है, तो कोई सीमा नहीं है." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" "सेवा को स्थायी विन्यास दृश्य में केवल बदला जा सकता है. सेवा का रनटाइम विन्यास फिक्स्ड है." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1411,26 +1405,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1438,27 +1432,27 @@ msgstr "" "firewalld icmptype इंटरनेट कंट्रोल मैसेज प्रोटोकॉल (ICMP) प्रकार के लिए firewalld के " "लिए सूचना प्रदान करता है." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP प्रकार जोड़ें" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP प्रकार संपादित करें" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ICMP प्रकार हटाएँ" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP प्रकार तयशुदा लोड करें" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "निर्दिष्ट करें कि यह ICMP प्रकार IPv4 और/या IPv6 के लिए उपलब्ध है." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1466,7 +1460,7 @@ msgstr "" "ICMP प्रकार को स्थायी विन्यास दृश्य में केवल बदला जा सकता है. ICMP प्रकार का रनटाइम " "विन्यास फिक्स्ड है." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1474,11 +1468,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1490,7 +1484,7 @@ msgstr "" "विन्यास केवल अंतिम हल के रूप में प्रयोग किया जा सकता है जबकि दूसरे फ़ायरवॉल किए फीचर संभव " "नहीं हैं." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1500,32 +1494,44 @@ msgstr "" "iptables के लिए होगा, ip6tables के लिए ipv6 के साथ और इथरनेट ब्रिज के लिए eb " "(ebtables) के साथ." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "नियम के साथ उपयोग के लिए अतिरिक्त शृंखला." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "शृंखला जोड़ें" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "शृंखला संपादित करें" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "शृंखला हटाएँ" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "शृंखला" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "args वितर्क के साथ कोई नियम शृंखला में जोड़ें प्राथमिकता के साथ एक सारणी में." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "नियम जोड़ें" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "नियम का संपादन करें" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "नियम मिटाएँ" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1541,23 +1547,11 @@ msgstr "" "प्राथमिकता का जोड़ें कि एक नियम एक के बाद एक जोड़े जाएँगे, पहले से कम प्राथमिकता का " "उपयोग करें और निम्नलिखित के लिए उच्चतर जोड़े जाएँगे." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "नियम जोड़ें" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "नियम का संपादन करें" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "नियम मिटाएँ" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "नियम " -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1566,309 +1560,206 @@ msgstr "" "पासथ्रू नियम सीधे फायरवॉल के द्वारा भेजा जा सकता है और विशेष शृंखला में स्थापित नहीं है. " "सभी iptables, ip6tables और ebtables विकल्प का उपयोग किया जा सकता है." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "पासथ्रू नियम के साथ कृपया ध्यान रखें ताकि फ़ायरवॉल का नुकसान न हो." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "पासथ्रू जोड़ें" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "पासथ्रू संपादित करें" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "पासथ्रू हटाएँ" -#: ../src/firewall-config.glade.h:193 +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." +msgstr "पासथ्रू नियम के साथ कृपया ध्यान रखें ताकि फ़ायरवॉल का नुकसान न हो." + +#: ../src/firewall-config.glade.h:186 msgid "Passthrough" msgstr "पासथ्रू" -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"lockdown विशेषता उपयोक्ता और अनुप्रयोग नीति के हल्के संस्करण के लिए firewalld है. यह " -"फ़ायरवॉल में परिवर्तन परिसीमित करता है. लॉकडाउन ह्वाइटलिस्च में कमांड, संदर्भ, उपयोक्ता " -"और उपयोक्ता आईडी समाहित है." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "संदर्भ जोड़ें" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "संदर्भ संपादित करें" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "संदर्भ हटाएँ" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "संदर्भ" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"यदि ह्वाइटलिस्ट पर किसी कमांड प्रविष्ट का अंत तारांकन '*' से होता है, तो सभी कमांड " -"लाइन जो कमांड से आरंभ होता है मेल खाएगा. यदि '*' वहाँ नहीं है, तो निरपेक्ष कमांड " -"अंतर्निवेशित तर्क को जरूर मेल खाना चाहिए." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "कमांड लाइन जोड़ें" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "कमांड लाइन संपादित करें" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "कमांड लाइन हटाएँ" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "कमांड लाइन" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "उपयोक्ता नाम." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "उपयोक्ता नाम जोड़ें" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "उपयोक्ता नाम का संपादन करें" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "उपयोक्ता नाम हटाएँ" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "उपयोक्ता नाम" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "उपयोक्ता आईडी" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "उपयोक्ता आईडी जोड़ें" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "उपयोक्ता आईडी संपादित करें" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "उपयोक्ता आईडी निकालें" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "उपयोक्ता आईडी" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "तंत्र का मौजूदा तयशुदा क्षेत्र" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "पैनिक अवस्था:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "लॉकडाउन:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "तयशुदा क्षेत्र:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "पोर्ट और प्रोटोकॉल" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "कृपया कोई पोर्ट और प्रोटोकॉल दर्ज करें." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "प्रत्यक्ष नियम" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "कृपया ipv और सारणी, शृंखला प्राथमिकता चुनें और args दर्ज करें." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "प्राथमिकता:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "एक वैध प्रोटोकॉल दर्ज कीजिए." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "अन्य प्रोटोकॉल:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "रिच नियम" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "कृपया कोई रिच नियम दर्ज कीजिए." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "मेजबान या संजाल श्वेत या ब्लैकलिस्टिंग के लिए तत्व को निष्क्रिय करें." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "स्रोत:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "गंतव्य:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "लॉग:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "ऑडिट:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 और ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "उल्टा" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1876,78 +1767,172 @@ msgstr "" "इसे सक्रिय करने के लिए क्रिया को 'अस्वीकार' करने की जरूरत है और फैमिली को 'ipv4' या " "'ipv6' (दोनों नहीं) होना चाहिए." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "प्रकार के साथ:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "सीमा के साथ:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "प्रीफ़िक्स:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "स्तरः" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "तत्व:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "क्रिया:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "आधार सेवा सेटिंग्स" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "कृपया बेस सेवा सेटिंग्स विन्यस्त कीजिए:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "कृपया कोई सेवा चुनें." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "उपयोक्ता ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "कृपया उपयोक्ता आईडी दाखिल करें." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "कृपया उपयोक्ता नाम दाखिल करें." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "आधार क्षेत्र सेटिंग्स" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "कृपया बेस क्षेत्र सेटिंग्स विन्यस्त कीजिए:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "तयशुदा लक्ष्य" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "लक्ष्यः" + +#~ msgid "User name" +#~ msgstr "उपयोक्ता नाम" + +#~ msgid "Please enter the command line." +#~ msgstr "कृपया कमांड लाइन दर्ज करें." + +#~ msgid "Please enter the context." +#~ msgstr "कृपया संदर्भ दर्ज करें." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "लॉकडाउन फ़ायरवॉल विन्यास लॉक करता है ताकि लॉकडाउन ह्वाइटलिस्ट पर केवल अनुप्रयोग " +#~ "इसे बदल सकें." + +#~ msgid "Lockdown" +#~ msgstr "लॉकडाउन" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "लॉकडाउन व्हाइटलिस्ट" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "lockdown विशेषता उपयोक्ता और अनुप्रयोग नीति के हल्के संस्करण के लिए firewalld है. यह " +#~ "फ़ायरवॉल में परिवर्तन परिसीमित करता है. लॉकडाउन ह्वाइटलिस्च में कमांड, संदर्भ, " +#~ "उपयोक्ता और उपयोक्ता आईडी समाहित है." + +#~ msgid "Add Context" +#~ msgstr "संदर्भ जोड़ें" + +#~ msgid "Edit Context" +#~ msgstr "संदर्भ संपादित करें" + +#~ msgid "Remove Context" +#~ msgstr "संदर्भ हटाएँ" + +#~ msgid "Contexts" +#~ msgstr "संदर्भ" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "यदि ह्वाइटलिस्ट पर किसी कमांड प्रविष्ट का अंत तारांकन '*' से होता है, तो सभी कमांड " +#~ "लाइन जो कमांड से आरंभ होता है मेल खाएगा. यदि '*' वहाँ नहीं है, तो निरपेक्ष कमांड " +#~ "अंतर्निवेशित तर्क को जरूर मेल खाना चाहिए." + +#~ msgid "Add Command Line" +#~ msgstr "कमांड लाइन जोड़ें" + +#~ msgid "Edit Command Line" +#~ msgstr "कमांड लाइन संपादित करें" + +#~ msgid "Remove Command Line" +#~ msgstr "कमांड लाइन हटाएँ" + +#~ msgid "Command lines" +#~ msgstr "कमांड लाइन" + +#~ msgid "User names." +#~ msgstr "उपयोक्ता नाम." + +#~ msgid "Add User Name" +#~ msgstr "उपयोक्ता नाम जोड़ें" + +#~ msgid "Edit User Name" +#~ msgstr "उपयोक्ता नाम का संपादन करें" + +#~ msgid "Remove User Name" +#~ msgstr "उपयोक्ता नाम हटाएँ" + +#~ msgid "User names" +#~ msgstr "उपयोक्ता नाम" + +#~ msgid "User ids." +#~ msgstr "उपयोक्ता आईडी" + +#~ msgid "Add User Id" +#~ msgstr "उपयोक्ता आईडी जोड़ें" + +#~ msgid "Edit User Id" +#~ msgstr "उपयोक्ता आईडी संपादित करें" + +#~ msgid "Remove User Id" +#~ msgstr "उपयोक्ता आईडी निकालें" + +#~ msgid "User Ids" +#~ msgstr "उपयोक्ता आईडी" + +#~ msgid "Lockdown:" +#~ msgstr "लॉकडाउन:" + +#~ msgid "User ID" +#~ msgstr "उपयोक्ता ID" + +#~ msgid "Please enter the user id." +#~ msgstr "कृपया उपयोक्ता आईडी दाखिल करें." + +#~ msgid "Please enter the user name." +#~ msgstr "कृपया उपयोक्ता नाम दाखिल करें." diff --git a/po/hr.po b/po/hr.po index 85f6137..256f2aa 100644 --- a/po/hr.po +++ b/po/hr.po @@ -6,7 +6,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: Automatically generated\n" "Language-Team: none\n" @@ -19,11 +19,44 @@ msgstr "" msgid "Firewall Applet" msgstr "" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +msgid "Runtime and permanent firewall configuration" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "" @@ -32,24 +65,24 @@ msgstr "" msgid "firewall;network;security;iptables;netfilter;" msgstr "" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -97,171 +130,171 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "" -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "" -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "" -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "" @@ -306,409 +339,393 @@ msgstr "" msgid "Failed to load icons." msgstr "" -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "" @@ -727,319 +744,297 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." msgstr "" -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " "system reload or restart." msgstr "" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1048,107 +1043,107 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " "hosts appear as a single address on the internet. Masquerading is IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1156,208 +1151,208 @@ msgid "" "IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " "messages like ping requests and replies." msgstr "" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." msgstr "" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " "limitation." msgstr "" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1365,58 +1360,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1424,11 +1419,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1436,444 +1431,335 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "" diff --git a/po/hu.po b/po/hu.po index 8d3b776..ec61877 100644 --- a/po/hu.po +++ b/po/hu.po @@ -25,7 +25,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-07-21 14:28+0000\n" "Last-Translator: Balázs Meskó \n" "Language-Team: Hungarian ps -e --" -"context." -msgstr "" -"A környezet egy futó alkalmazás vagy szolgáltatás biztonsági (SELinux) " -"környezete. Egy futó alkalmazás környezetének lekéréséhez használja a ps " -"-e --context parancsot." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Környezet hozzáadása" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Környezet szerkesztése" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Környezet eltávolítása" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Környezetek" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"Ha a fehér listán egy parancsbejegyzés csillaggal „*” végződik, akkor az " -"összes parancssor illeszkedni fog, amely azzal a paranccsal kezdődik. Ha a " -"„*” nincs ott, akkor az abszolút parancsnak – beleértve az argumentumokat – " -"egyeznie kell." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Parancssor hozzáadása" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Parancssor szerkesztése" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Parancssor eltávolítása" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Parancssorok" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Felhasználónevek." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Felhasználónév hozzáadása" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Felhasználónév szerkesztése" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Felhasználónév eltávolítása" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Felhasználónevek" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Felhasználó-azonosítók." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Felhasználó-azonosító hozzáadása" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Felhasználó-azonosító szerkesztése" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Felhasználó-azonosító eltávolítása" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Felhasználó-azonosítók" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "A rendszer jelenlegi alapértelmezett zónája." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Megtagadottak naplója:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Pánik mód:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Automatikus segédek:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Zárolás:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Alapértelmezett zóna:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Adjon meg egy csatolónevet:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Alap IP-készlet beállítások" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Adja meg az alap IP-készlet beállításokat:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Típus:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Időkorlát:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Hash méret:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Legnagyobb elem:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Időkorlát értéke másodpercben" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Kezdeti hash méret, alapértelmezetten 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Elemek legnagyobb száma, alapértelmezetten 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Válasszon egy IP-készletet:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Adjon meg egy ipset-bejegyzést:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Megtagadottak naplózása" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Válassza ki a megtagadottak naplózásának értékét:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Megjelölés" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Adjon meg egy jelölést egy nem kötelező maszkkal." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" "A jelölés és a maszk mezők mindegyike 32-bit széles, előjel nélküli szám." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Jelölés:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Maszk:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Válasszon egy netfilter conntrack segítőt:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Válasszon -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Egyéb modul:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port és protokoll" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Adjon meg egy portot és egy protokollt." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Közvetlen szabály" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "Válasszon ipv-t és táblát, valamint láncprioritást, majd adja meg az " "argumentumokat." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Prioritás:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Adjon meg egy protokollt." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Egyéb protokoll:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Gazdag szabály" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Adjon meg egy gazdag szabályt." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "A gépnél vagy hálózatnál a fehér- vagy feketelista használata letiltja az " "elemet." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Forrás:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Cél:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Napló:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audit:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "IPv4 és IPv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "fordított" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1975,78 +1863,192 @@ msgstr "" "A művelet engedélyezéséhez „elutasítás” értékűnek, a családnak pedig vagy " "„IPv4”-nek, vagy „IPv6”-nak (nem mindkettő) kell lennie." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "ezzel a típussal:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Ezzel a korláttal:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Előtag:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Szint:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Elem:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Művelet:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Alap szolgáltatás beállítások" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Állítsa be az alap szolgáltatás beállításokat:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Válasszon egy szolgáltatást." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Adjon meg egy forrást." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Felhasználó-azonosító" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Adja meg a felhasználó-azonosítót." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Adja meg a felhasználónevet." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "címke" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Alap zóna beállítások" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Állítsa be az alap zóna beállításokat:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Alapértelmezett cél" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Cél:" + +#~ msgid "Context" +#~ msgstr "Környezet" + +#~ msgid "Command line" +#~ msgstr "Parancssor" + +#~ msgid "User name" +#~ msgstr "Felhasználónév" + +#~ msgid "User id" +#~ msgstr "Felhasználóazonosító" + +#~ msgid "Please enter the command line." +#~ msgstr "Adja meg a parancssort." + +#~ msgid "Please enter the context." +#~ msgstr "Adja meg a környezetet." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "A zárolás lezárja a tűzfal beállítását, így csak azok az alkalmazások " +#~ "képesek megváltoztatni azt, amelyek rajta vannak a fehér listán." + +#~ msgid "Lockdown" +#~ msgstr "Zárolás" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Zárolási fehér lista" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "A zárolás funkció a felhasználó- és alkalmazásházirendek egyszerűsített " +#~ "verziója a firewalld programnál. Korlátozza a változtatásokat a tűzfalon. " +#~ "A zárolás fehér lista tartalmazhat parancsokat, környezeteket, " +#~ "felhasználókat és felhasználó-azonosítókat." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "A környezet egy futó alkalmazás vagy szolgáltatás biztonsági (SELinux) " +#~ "környezete. Egy futó alkalmazás környezetének lekéréséhez használja a " +#~ "ps -e --context parancsot." + +#~ msgid "Add Context" +#~ msgstr "Környezet hozzáadása" + +#~ msgid "Edit Context" +#~ msgstr "Környezet szerkesztése" + +#~ msgid "Remove Context" +#~ msgstr "Környezet eltávolítása" + +#~ msgid "Contexts" +#~ msgstr "Környezetek" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Ha a fehér listán egy parancsbejegyzés csillaggal „*” végződik, akkor az " +#~ "összes parancssor illeszkedni fog, amely azzal a paranccsal kezdődik. Ha " +#~ "a „*” nincs ott, akkor az abszolút parancsnak – beleértve az " +#~ "argumentumokat – egyeznie kell." + +#~ msgid "Add Command Line" +#~ msgstr "Parancssor hozzáadása" + +#~ msgid "Edit Command Line" +#~ msgstr "Parancssor szerkesztése" + +#~ msgid "Remove Command Line" +#~ msgstr "Parancssor eltávolítása" + +#~ msgid "Command lines" +#~ msgstr "Parancssorok" + +#~ msgid "User names." +#~ msgstr "Felhasználónevek." + +#~ msgid "Add User Name" +#~ msgstr "Felhasználónév hozzáadása" + +#~ msgid "Edit User Name" +#~ msgstr "Felhasználónév szerkesztése" + +#~ msgid "Remove User Name" +#~ msgstr "Felhasználónév eltávolítása" + +#~ msgid "User names" +#~ msgstr "Felhasználónevek" + +#~ msgid "User ids." +#~ msgstr "Felhasználó-azonosítók." + +#~ msgid "Add User Id" +#~ msgstr "Felhasználó-azonosító hozzáadása" + +#~ msgid "Edit User Id" +#~ msgstr "Felhasználó-azonosító szerkesztése" + +#~ msgid "Remove User Id" +#~ msgstr "Felhasználó-azonosító eltávolítása" + +#~ msgid "User Ids" +#~ msgstr "Felhasználó-azonosítók" + +#~ msgid "Lockdown:" +#~ msgstr "Zárolás:" + +#~ msgid "User ID" +#~ msgstr "Felhasználó-azonosító" + +#~ msgid "Please enter the user id." +#~ msgstr "Adja meg a felhasználó-azonosítót." + +#~ msgid "Please enter the user name." +#~ msgstr "Adja meg a felhasználónevet." diff --git a/po/ia.po b/po/ia.po index f8fb5c0..de7f9ca 100644 --- a/po/ia.po +++ b/po/ia.po @@ -8,7 +8,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 09:58+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Interlingua (http://www.transifex.com/projects/p/firewalld/" @@ -24,11 +24,45 @@ msgstr "" msgid "Firewall Applet" msgstr "Applet de parafoco" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Configuration de parafoco" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Parafoco" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Configuration de parafoco" @@ -37,24 +71,24 @@ msgstr "Configuration de parafoco" msgid "firewall;network;security;iptables;netfilter;" msgstr "" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -102,171 +136,171 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "" -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "" -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Blocar tote le traffico de rete" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "" -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "" @@ -311,409 +345,393 @@ msgstr "" msgid "Failed to load icons." msgstr "" -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "" @@ -732,319 +750,297 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." msgstr "" -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " "system reload or restart." msgstr "" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1053,107 +1049,107 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " "hosts appear as a single address on the internet. Masquerading is IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1161,208 +1157,208 @@ msgid "" "IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " "messages like ping requests and replies." msgstr "" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." msgstr "" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " "limitation." msgstr "" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1370,58 +1366,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1429,11 +1425,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1441,444 +1437,335 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "" diff --git a/po/id.po b/po/id.po index aab044b..c59e82e 100644 --- a/po/id.po +++ b/po/id.po @@ -3,7 +3,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2018-05-22 09:00+0000\n" "Last-Translator: Ferdi Saptanera \n" "Language-Team: Indonesian\n" @@ -18,11 +18,45 @@ msgstr "" msgid "Firewall Applet" msgstr "Aplikasi Firewall" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Pengaturan Firewall" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Firewall" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Pengaturan Firewall" @@ -31,24 +65,24 @@ msgstr "Pengaturan Firewall" msgid "firewall;network;security;iptables;netfilter;" msgstr "firewall;network;security;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Pilih zona untuk antarmuka '%s'" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "Zona Standar" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "Pilih zona untuk sambungan '%s'" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -101,171 +135,171 @@ msgstr "Penulis" msgid "License" msgstr "Lisensi" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "Perisai Menyala" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Nyalakan Pemberitahuan" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Sunting Pengaturan Firewall..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Ubah Zona Sambungan" -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "Susun Zona Perisai Nyala/Mati" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Blokir semua lalu lintas jaringan" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "Tentang" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Sambungan" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "Antarmuka" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Sumber" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Otorisasi gagal." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Nama tidak valid" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Nama sudah ada" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (Zona: {zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "{entry} (Zona Standar: {default_zone})" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "Gagal mendapatkan sambungan dari NetworkManager" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "Tidak ada impor NetworkManager yang tersedia" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Tidak ada sambungan ke daemon firewall" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Semua lalu lintas jaringan diblokir." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "" @@ -310,409 +344,393 @@ msgstr "" msgid "Failed to load icons." msgstr "" -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "" @@ -731,319 +749,297 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." msgstr "" -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " "system reload or restart." msgstr "" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1052,107 +1048,107 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " "hosts appear as a single address on the internet. Masquerading is IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1160,208 +1156,208 @@ msgid "" "IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " "messages like ping requests and replies." msgstr "" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." msgstr "" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " "limitation." msgstr "" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1369,58 +1365,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1428,11 +1424,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1440,444 +1436,335 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "" diff --git a/po/it.po b/po/it.po index 74aa015..d13be6b 100644 --- a/po/it.po +++ b/po/it.po @@ -37,7 +37,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-07-10 16:27+0000\n" "Last-Translator: Enrico Bella \n" "Language-Team: Italian ps -e --" -"context." -msgstr "" -"Il contesto è il contesto di sicurezza (SELinux) di un’applicazione o di un " -"servizio in esecuzione. Per ottenere il contesto di un’applicazione in " -"esecuzione, utilizzare ps -e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Aggiungi Contesto" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Modifica Contesto" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Rimuovi Contesto" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Contesti" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Se una voce di comando nella whitelist finisce per asterisco '*', tutti i " -"comandi che iniziano per il comando corrisponderanno. Se non c'è '*' il " -"comando assoluto compresi argomenti dovrà corrispondere." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Aggiungi Riga di Comando" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Modifica Riga di Comando" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Rimuovi Riga di Comando" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Linee di comando" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Nomi utente." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Aggiungi Nome Utente" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Modifica Nome Utente" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Rimuovi Nome Utente" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Nomi utenti" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "ID utenti." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Aggiungi Id Utente" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Modifica Id Utente" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Rimuovi Id Utente" +"Siate prudenti con le regole di passthrough per non danneggiare il firewall." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "ID Utenti" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Passthrough" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Zona predefinita di sistema corrente." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Log negato:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Modalità Panico:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Assistenti Automatici:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Lockdown:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Zona Predefinita:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Immettere un nome per l'interfaccia:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Impostazioni di base IPSet" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Configurare le impostazioni di base ipset:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Tipo:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Timeout:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Dimensione hash:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Elem max:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Valore del timeout in secondi" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Dimensione hash iniziale, valore predefinito 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Numero max di elementi, valore predefinito 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Per favore selezionare un ipset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Immettere una voce IPSet:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Log negato" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Selezionare il valore del log negato:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Contrassegno" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Inserire un contrassegno con una maschera opzionale." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" "Contrassegno e campi del contrassegno sono entrambi numeri senza segno a 32 " "bit." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Contrassegno:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Maschera:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Immettere un helper per il controllo della connessione di Netfiler:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Seleziona -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Altro Modulo:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Porta e protocollo" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Inserire una porta ed un protocollo." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Regola Diretta" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "Prego selezionare l'ipv e la tabella, la priorità della catena e inserire " "gli argomenti." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Priorità:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Per cortesia scegli un protocollo" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Altro Protocollo:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Regola Estesa" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Inserire una regola estesa." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "Per host o rete bianca o in lista nera disattivare l'elemento." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Sorgente:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destinazione:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Log:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Controllo:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 e ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "invertito" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1988,78 +1878,190 @@ msgstr "" "Per abilitarlo, Action deve essere 'reject' e Family 'ipv4' o 'ipv6' (non " "entrambi)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "con Tipo:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Con limite:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Prefisso:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Livello" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Elemento:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Azione:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Impostazioni Servizi di Base" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Configurare le impostazioni del servizio di base:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Per favore selezionare un servizio." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Immettere una sorgente." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ID utente" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Per favore inserire l'id utente" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Per favore inserire il nome utente" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "etichetta" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Impostazioni Base Zone" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Impostare la configurazione della base zone:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Destinazione Predefinita" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Destinazione:" + +#~ msgid "Context" +#~ msgstr "Contesto" + +#~ msgid "Command line" +#~ msgstr "Linea di comando" + +#~ msgid "User name" +#~ msgstr "Nome utente" + +#~ msgid "User id" +#~ msgstr "ID utente" + +#~ msgid "Please enter the command line." +#~ msgstr "Inserire il comando." + +#~ msgid "Please enter the context." +#~ msgstr "Inserire il contesto." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Lockdown blocca la configurazione del firewall in modo che solo le " +#~ "applicazioni nella lockdown whitelist possano cambiarla." + +#~ msgid "Lockdown" +#~ msgstr "Lockdown" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Whitelist lockdown" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "La funzionalità lockdown è una versione light delle politiche dell'utente " +#~ "e dell'applicazione per firewalld. Limita le modifiche del firewall. La " +#~ "whitelist lockdown può contenere, comandi, contesti, utenti e user id." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Il contesto è il contesto di sicurezza (SELinux) di un’applicazione o di " +#~ "un servizio in esecuzione. Per ottenere il contesto di un’applicazione in " +#~ "esecuzione, utilizzare ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "Aggiungi Contesto" + +#~ msgid "Edit Context" +#~ msgstr "Modifica Contesto" + +#~ msgid "Remove Context" +#~ msgstr "Rimuovi Contesto" + +#~ msgid "Contexts" +#~ msgstr "Contesti" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Se una voce di comando nella whitelist finisce per asterisco '*', tutti i " +#~ "comandi che iniziano per il comando corrisponderanno. Se non c'è '*' il " +#~ "comando assoluto compresi argomenti dovrà corrispondere." + +#~ msgid "Add Command Line" +#~ msgstr "Aggiungi Riga di Comando" + +#~ msgid "Edit Command Line" +#~ msgstr "Modifica Riga di Comando" + +#~ msgid "Remove Command Line" +#~ msgstr "Rimuovi Riga di Comando" + +#~ msgid "Command lines" +#~ msgstr "Linee di comando" + +#~ msgid "User names." +#~ msgstr "Nomi utente." + +#~ msgid "Add User Name" +#~ msgstr "Aggiungi Nome Utente" + +#~ msgid "Edit User Name" +#~ msgstr "Modifica Nome Utente" + +#~ msgid "Remove User Name" +#~ msgstr "Rimuovi Nome Utente" + +#~ msgid "User names" +#~ msgstr "Nomi utenti" + +#~ msgid "User ids." +#~ msgstr "ID utenti." + +#~ msgid "Add User Id" +#~ msgstr "Aggiungi Id Utente" + +#~ msgid "Edit User Id" +#~ msgstr "Modifica Id Utente" + +#~ msgid "Remove User Id" +#~ msgstr "Rimuovi Id Utente" + +#~ msgid "User Ids" +#~ msgstr "ID Utenti" + +#~ msgid "Lockdown:" +#~ msgstr "Lockdown:" + +#~ msgid "User ID" +#~ msgstr "ID utente" + +#~ msgid "Please enter the user id." +#~ msgstr "Per favore inserire l'id utente" + +#~ msgid "Please enter the user name." +#~ msgstr "Per favore inserire il nome utente" diff --git a/po/ja.po b/po/ja.po index e0ce922..f8be843 100644 --- a/po/ja.po +++ b/po/ja.po @@ -23,7 +23,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2021-07-10 21:04+0000\n" "Last-Translator: simmon \n" "Language-Team: Japanese ps -e --" -"context." -msgstr "" -"コンテキストは実行中のアプリケーションやサービスのセキュリティーコンテキスト" -"(SELinux コンテキスト)です。実行中のアプリケーションのコンテキストを確認する" -"には、ps -e --contextコマンドを使用します。" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "コンテキストの追加" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "コンテキストの編集" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "コンテキストの削除" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "コンテキスト" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"ホワイトリストのコマンドがアスタリスク '*' で終わっている場合、そのコマンドか" -"ら始まるすべてのコマンドラインに一致します。もし '*' がなければ、引数を含め、" -"コマンドが完全に一致する必要があります。" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "コマンドラインの追加" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "コマンドラインの編集" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "コマンドラインの削除" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "コマンドライン" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "ユーザー名。" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "ユーザー名の追加" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "ユーザー名の編集" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "ユーザー名の削除" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "ユーザー名" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "ユーザー ID。" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "ユーザー ID の追加" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "ユーザー ID の編集" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "ユーザー ID の削除" +"パススルールールを追加する場合、ファイアウォールを壊さないよう注意してくださ" +"い。" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "ユーザー ID" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "パススルー" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "現在のシステムの標準ゾーン。" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "拒否されたログ:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "パニックモード:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "オートマチックヘルパー:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "ロックダウン:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "標準ゾーン:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "インターフェース名を入力してください:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "基本 IPSet 設定" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "基本IPSet設定を設定してください:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "タイプ:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "タイムアウト:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "ハッシュサイズ:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "最大要素:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "タイムアウトの秒数" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "ハッシュサイズの初期値、デフォルトは 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "要素の最大数、デフォルトは 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "IPSet を選択してください:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "IPSetエントリーを入力してください:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "拒否されたログ" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "拒否されたログの値を選択してください:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "マーク" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "オプションのマスクと共にマークを入力してください。" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "マークとマスクフィールドはどちらも 32 ビットの符号なし数値になります。" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "マーク:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "マスク:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "netfilter conntrack ヘルパーを選択してください:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- 選択 -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "その他のモジュール:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "ポートとプロトコル" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "ポートおよびプロトコルを入力してください。" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "ダイレクトルール" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "ipv、テーブル、チェイン優先度および引数を入力してください。" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "優先度:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "プロトコルを入力してください。" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "他のプロトコル:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "高度なルール" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "高度なルールを入力してください。" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "ホストまたはネットワークの場合、要素を許可または拒否して非アクティブ化しま" "す。" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "送信元:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "送信先:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "ログ:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "監査:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "IPv4 と IPv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "反転" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1959,78 +1848,191 @@ msgstr "" "これを有効にするには、アクションを 'reject' にし、ファミリーを 'ipv4' または " "'ipv6' のいずれか (両方ではない) にする必要があります。" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "タイプ:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "有効期限:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "プレフィックス:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "レベル:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "要素:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "アクション:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "基本サービス設定" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "基本サービス設定を設定してください:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "サービスを選択してください。" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "ソースを入力してください。" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ユーザー ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "ユーザー ID を入力してください。" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "ユーザー名を入力してください。" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "ラベル" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "基本ゾーン設定" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "基本ゾーン設定を設定してください:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "標準ターゲット" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "ターゲット:" + +#~ msgid "Context" +#~ msgstr "コンテキスト" + +#~ msgid "Command line" +#~ msgstr "コマンドライン" + +#~ msgid "User name" +#~ msgstr "ユーザー名" + +#~ msgid "User id" +#~ msgstr "ユーザーID" + +#~ msgid "Please enter the command line." +#~ msgstr "コマンドラインを入力してください。" + +#~ msgid "Please enter the context." +#~ msgstr "コンテキストを入力してください。" + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "ロックダウンにより、ロックダウン・ホワイトリストにあるアプリケーションのみ" +#~ "がファイアウォール設定を変更できるようにロックします。" + +#~ msgid "Lockdown" +#~ msgstr "ロックダウン" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "ロックダウン・ホワイトリスト" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "ロックダウン機能はユーザーとアプリケーションのポリシーの firewalld 向け軽" +#~ "量バージョンです。これにより、ファイアウォールへの変更が制限されます。ロッ" +#~ "クダウン・ホワイトリストは、コマンド、コンテキスト、ユーザーおよびユー" +#~ "ザー ID を含められます。" + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "コンテキストは実行中のアプリケーションやサービスのセキュリティーコンテキス" +#~ "ト(SELinux コンテキスト)です。実行中のアプリケーションのコンテキストを確認" +#~ "するには、ps -e --contextコマンドを使用します。" + +#~ msgid "Add Context" +#~ msgstr "コンテキストの追加" + +#~ msgid "Edit Context" +#~ msgstr "コンテキストの編集" + +#~ msgid "Remove Context" +#~ msgstr "コンテキストの削除" + +#~ msgid "Contexts" +#~ msgstr "コンテキスト" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "ホワイトリストのコマンドがアスタリスク '*' で終わっている場合、そのコマン" +#~ "ドから始まるすべてのコマンドラインに一致します。もし '*' がなければ、引数" +#~ "を含め、コマンドが完全に一致する必要があります。" + +#~ msgid "Add Command Line" +#~ msgstr "コマンドラインの追加" + +#~ msgid "Edit Command Line" +#~ msgstr "コマンドラインの編集" + +#~ msgid "Remove Command Line" +#~ msgstr "コマンドラインの削除" + +#~ msgid "Command lines" +#~ msgstr "コマンドライン" + +#~ msgid "User names." +#~ msgstr "ユーザー名。" + +#~ msgid "Add User Name" +#~ msgstr "ユーザー名の追加" + +#~ msgid "Edit User Name" +#~ msgstr "ユーザー名の編集" + +#~ msgid "Remove User Name" +#~ msgstr "ユーザー名の削除" + +#~ msgid "User names" +#~ msgstr "ユーザー名" + +#~ msgid "User ids." +#~ msgstr "ユーザー ID。" + +#~ msgid "Add User Id" +#~ msgstr "ユーザー ID の追加" + +#~ msgid "Edit User Id" +#~ msgstr "ユーザー ID の編集" + +#~ msgid "Remove User Id" +#~ msgstr "ユーザー ID の削除" + +#~ msgid "User Ids" +#~ msgstr "ユーザー ID" + +#~ msgid "Lockdown:" +#~ msgstr "ロックダウン:" + +#~ msgid "User ID" +#~ msgstr "ユーザー ID" + +#~ msgid "Please enter the user id." +#~ msgstr "ユーザー ID を入力してください。" + +#~ msgid "Please enter the user name." +#~ msgstr "ユーザー名を入力してください。" diff --git a/po/ka.po b/po/ka.po index e97219b..a8d7a62 100644 --- a/po/ka.po +++ b/po/ka.po @@ -10,7 +10,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2022-07-31 08:19+0000\n" "Last-Translator: Temuri Doghonadze \n" "Language-Team: Georgian " -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "წყაროები" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "ავტორიზება ვერ მოხერხდა." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "არასწორი სახელი" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "სახელი უკვე არსებობს" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (ზონა: {zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "{entry} (ნაგულისხმები ზონა: {default_zone})" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "NetworkManager-დან კავშირების მიღების შეცდომა" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "NetworkManager-დან შემოტანა მიუწვდომელია" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Firewalld-სთან დაკავშირება შეუძლებელია" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "ქსელის ტრაფიკის სრულიად დაიბლოკა." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "ნაგულისხმები ზონა: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" @@ -202,55 +238,55 @@ msgstr "" "კავშირის ({connection}) ინტერფეისზე ({interface}) ნაგულისხმები ზონაa " "({default_zona}) აქტიური" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "ინტერფეისის ({interface}) შეერთებაზე ({connection}) გააქტიურებულია ზონა " "'{zone}'" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "ზონა '{zone}' აქტიურია ინტერფეისისთვის '{interface}'" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "ზონა '{zone}' აქტიურია წყაროსთვის {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "აქტიური ზონები არაა." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallD-თან კავშირი დამყარდა." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallD-თან კავშირი გაწყდა." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD გადაიტვირთა." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "ნაგულისხმევი ზონა შეიცვალა - '%s'." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "ქსელური ტრაფიკი აღარაა დაბლოკილი." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "აქტივირებული" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "დეაქტივირებული" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" @@ -258,7 +294,7 @@ msgstr "" "ინტერფეისზე ({interface}) შეერთებაზე ({connection}) {activated_deactivated} " "ნაგულისხმები ზონა \"{default_zone}\"" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -266,20 +302,20 @@ msgstr "" "ინტერფეისზე '{interface}' შეერთებისთვის '{connection}' ზონა " "'{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "ზონა '{zone}' {activated_deactivated} ინტერფეისისთვის '{interface}'" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "ზონა '%s' გააქტიურდა ინტერფესისთვის '%s'" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "ზონა '{zone}' {activated_deactivated} წყაროსთვის '{source}'" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "ზონა '%s' აქტიურია წყაროსთვის '%s'" @@ -326,328 +362,312 @@ msgstr "გამორთულია" msgid "Failed to load icons." msgstr "ხატულების ჩატვირთვა ვერ მოხერხდა." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "კონტექსტი" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "ბრძანების სტრიქონი" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "მომხმარებლის სახელი" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "მომხმარებლის ID" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "ცხრილი" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "ჯაჭვი" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "პრიორიტეტი" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "არგუმენტები" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "მუშები" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "მუდმივი" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "სერვისი" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "პორტი" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "ოქმი" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "პორტისკენ" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "მისამართისკენ" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "გადაბმები" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "ჩანაწერი" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp-ის ტიპი" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "ოჯახი" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "ქმედება" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "ელემენტი" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "წყარო" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "სამიზნე" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "ჟურნალი" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "აუდიტი" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "ინტერფეისი" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "კომენტარი" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "წყარო" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "ყურადღება" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "შეცდომა" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "თანხმობა" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "უარყოფა" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "გადაგდება" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "დანიშვნა" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "ლიმიტი" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "სერვსი" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "პორტი" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "პროტოკოლი" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "მასკარადი" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-ის ბლოკირება" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "icmp-ის ტიპი" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "პორტის გადამისამართება" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "საწყისი პორტი" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "დონე" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "დიახ" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "ზონა" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "ნაგულისხმები ზონა: %s" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "ზონა: %s" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "ზინა '%s': სერვისი '%s' მიუწვდომელია." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "ზონის ამოღება" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "იგნორირება" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "ზონა '%s': ICMP-ის ტიპი '%s' მიუწვდომელია." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "ჩადგმული ზონა, სახელის შეცვლა შეუძლებელია." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "წამი" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "წუთი" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "საათი" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "დღე" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "სასწრაფო" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "გაფრთხილება" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "კრიტიკული" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "შეცდომა" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "გაფრთხილება" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "შეტყობინება" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "ინფორმაცია" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "გამართვა" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -656,31 +676,31 @@ msgstr "" "სხვა სისტემაზე გადაგზავნა საჭიროა, თუ ინტერფეისზე მასკარადია ჩართული.\n" "გნებავთ ამ ზონის მასკარადის ჩართვა?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "ჩადგმული სერვისი, სახელის შეცვლა შეუძლებელია." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "შეიყვანეთ Ipv4 მისამართი ფორმით მისამართი[/ნიღაბი]." -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "ნიღაბი შეიძლება ან ქსელის ნიღაბი იყოს, ან რიცხვი." -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "შეიყვანეთ ipv6 მისამართი ფორმით მისამართი[/ნიღაბი]." -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "ნიღაბი რიცხვია." -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "შეიყვანეთ ipv4 ან ipv6 მისამართი ფორმით მისამართი[/ნიღაბი]." -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." @@ -688,51 +708,51 @@ msgstr "" "ნიღაბი შეიძლება იყოს ან ქსელის ნიღაბი, ან რიცხვი ipv4-სთვის.\n" "ipv6-ის ნიღაბი რიცხვია." -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "ჩაშენებული IPSet-ს სახელს ვერ გადაარქმევთ." -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "აირჩიეთ ფაილი" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "ტექსტური ფაილები" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "ყველა ფაილი" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "ყველა" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "ჩადგმულ დამხმარეს სახელს ვერ გადაარქმევთ." -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "ჩადგმული icmp, სახელის შეცვლა შეუძლებელია." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "ფაილის (%s) წაკითხვის შეცდომა: %s" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "აირჩიეთ ზონა წყაროსთვის (%s)" @@ -751,91 +771,83 @@ msgid "Please select the automatic helpers value:" msgstr "აირჩიეთ ავტომატური დამხმარის მნიშვნელობა:" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "შეიყვანეთ ბრძანების სტრიქონი." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "შეიყვანეთ კონტექსტი." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "აირჩიეთ ნაგულისხმები ზონა ქვემოთ მოცემული სიიდან." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "პირდაპირი ჯაჭვი" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "აირჩიეთ ipv6 და ცხრილი და შეიყვანეთ ჯაჭვის სახელი." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv :" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "ჯაჭვი:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "raw" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "უსაფრთხოება" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "ცხრილი:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "პირდაპირი გამჭოლი წესი" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "აირჩიეთ ipv-ი და შეიყვანეთ არგუმენტები." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "არგუმენტები:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "პორტის გადამისამართება" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "მოირგეთ წყარო და დანიშნულების წერტილი საჭიროების მიხედვით." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "პორტი / პორტების დიაპაზონი:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP მისამართი:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "ოქმი:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "დანიშნულება" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -843,107 +855,107 @@ msgstr "" "თუ აპირებთ, ჩართოთ ლოკალური გადამისამართება, უნდა მიუთითოთ პორტი. პორტის " "ნომერი პორტის საწყის ნომერს არ უნდა უდრიდეს." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "ადგილზე გადამისამართება" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "სხვა პორტისკენ გადამისამართება" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "საბაზისო დამხმარის მორგება" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "მოირგეთ საბაზისო დამხმარე:" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "სქელი ჩანაწერები აუცილებელია, დანარჩენები არასავალდებულო." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "სახელი:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "ვერსია:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "მოკლე:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "აღწერა:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "ოჯახი:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "მოდული:" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "დამხმარე" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "აირჩიეთ დამხმარე:" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "ICMP-ის ტიპის საბაზისო მორგება" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "აირჩიეთ საბაზისო ICMP-ის ტიპის პარამეტრები:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP-ის ტიპი" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "აირჩიეთ ICMP-ის ტიპი" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "ჩანაწერის დამატება" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "ჩანაწერების ფაილიდან დამატება" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "მონიშნული ჩანაწერის წაშლა" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "ყველა ჩანაწერის წაშლა" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "ჩანაწერების ფაილიდან წაშლა" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_ფაილი" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_პარამეტრები" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Firewalld-ის გადატვირთვა" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -954,128 +966,112 @@ msgstr "" "კონფიგურაციაზე შესრულებული ცვლილებები დაიკარგება, თუ ისინი მუდმივ " "კონფიგურაციაშიც არაა გაწერილი." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "ქსელური შეერთების ზონის არჩევა." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "ნაგულისხმევი ზონის შეცვლა" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "შეერთების ან ინტერფეისის ნაგულისხმები ზონის შეცვლა." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "ჟურნალის აკრძალვის შეცვლა" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "LogDenied-ის მნიშვნელობის შეცვლა." -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "დამხმარეების ავტომატურად მიმაგრების მორგება" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "მოირგეთ დამხმარის ავტომატური მიმაგრება." -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" "პანიკური რეჟიმი ნიშნავს, რომ ყველა შემომავალი და გამავალი პაკეტები " "დაიგნორება." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "პანიკის რეჟიმი" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"დაბლოკვის რეჟიმი დაბლოკავს ბრანდმაუერის კონფიგურაციას ისე, რომ მხოლოდ " -"აპლიკაციებს ექნებათ ცვლილებების შეტანის უფლება, რომლებიც ხელითაა განბლოკილი." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "დაბლოკილი" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "გაშვებული კონფიგურაციის გამუდმივება" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "გაშვებულიდან მუდმივამდე" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "_ხედი" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "IPSet" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP-ის ტიპები" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "დამხმარეები" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "პირდაპირი კონფიგურაცია" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "თეთრი სია დაბლოკილია" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "აქტიური ბმები" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "და_ხმარება" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "ზონის შეცვლა" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "მიმაგრების ზონის შეცვლა" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" "მიერთებების, ინტერფეისებისა და წყაროების ზონებზე აქტიური მიბმების დამალვა" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" "მიერთებების, ინტერფეისებისა და წყაროების ზონებზე აქტიური მიბმების ჩვენება" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "კონფიგურაცია:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " "system reload or restart." msgstr "" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1084,99 +1080,99 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "ზონის დამატება" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "ზონის რედაქტირება" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "ზონის ამოღება" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "ზონის ნაგულისხმები მნიშვნელობების ჩატვირთვა" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "სერვისები" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "პორტისკენ" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "ზონის რედაქტირება" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "ზონის ამოღება" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "პორტები" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" "დაამატეთ პროტოკოლები, რომლებიც ხელმისაწვდომი უნდა იყოს ყველა ჰოსტისთვის ან " "ქსელისთვის." -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "პროტოკოლის დამატება" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "პროტოკოლის ჩასწორება" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "პროტოკოლის წაშლა" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "პროტოკოლები" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "საწყისი პორტები" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " "hosts appear as a single address on the internet. Masquerading is IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "მასკარადირებული ზონა" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1184,11 +1180,11 @@ msgstr "" "თუ ჩართავთ მასკარადს, IP გადამისამართება ჩართული იქნება თქვენი IPv4 " "ქსელებისთვის." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "მასკარადი" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1196,107 +1192,107 @@ msgid "" "IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "გადამისამართების პორტის დამატება" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "გადამისამართების პორტის რედაქტირება" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "გადამისამართების პორტის ამოღება" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " "messages like ping requests and replies." msgstr "" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." msgstr "" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "ფილტრის ინვერსია" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP ფილტრი" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "აქ შეგიძლიათ დააყენოთ მდიდარი ენის წესები ზონისთვის." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "მდიდარი წესის დამატება" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "მდიდარი წესის ჩასწორება" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "მდიდარი წესის წაშლა" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "მდიდარი წესები" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "ინტერფეისის დამატება" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "ინტერფეისის ჩასწორება" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "ინტერფეისის წაშლა" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "წყაროს დამატება" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "წყაროს ჩასწორება" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "წყაროს წაშლა" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "ზონები" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1304,23 +1300,23 @@ msgstr "" "Firewall სერვისი არის პორტების, პროტოკოლების, მოდულების და დანიშნულების " "მისამართების კომბინაცია." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "სერვისის დამატება" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "სერვისის რედაქტირება" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "სერვისის ამოღება" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "სერვისის ნაგულისხმები მნიშვნელობების ჩატვირთვა" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." @@ -1328,15 +1324,15 @@ msgstr "" "დაამატეთ დამატებითი პორტები ან პორტის დიაპაზონები, რომლებიც ხელმისაწვდომი " "უნდა იყოს ყველა ჰოსტისთვის ან ქსელისთვის." -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "ჩანაწერის რედაქტირება" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "ჩანაწერის ამოღება" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." @@ -1344,66 +1340,66 @@ msgstr "" "დაამატეთ დამატებითი წყაროს პორტები ან პორტის დიაპაზონები, რომლებიც " "ხელმისაწვდომი უნდა იყოს ყველა ჰოსტისთვის ან ქსელისთვის." -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "საწყისი პორტი" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "ზოგიერთი სერვისისთვის Netfilter დამხმარე მოდულებია საჭირო." -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "მოდულები" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " "limitation." msgstr "" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "IPset" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "IPSet-ის დამატება" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "IPSet-ის ჩასწორება" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "IPSet-ის წაშლა" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "IPSet-ის ნაგულისხმები მნიშვნელობების ჩატვირთვა" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1411,60 +1407,60 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "დამატება" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "ჩანაწერები" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" "IPSet-ების შექმნა და წაშლა მხოლოდ მუდმივი კონფიგურაციის ხედში შეგიძლიათ." -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP-ის ტიპის დამატება" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP-ის ტიპის რედაქტირება" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ICMP-ის ტიპის ამოღება" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP-ის ტიპის ნაგულისხმები მნიშვნელობების ჩატვირთვა" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" "მიუთითეთ, არის თუ არა ICMP-ის ეს ტიპი ხელმისაწვდომი IPv4 ან/და IPv6-სთვის." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1472,13 +1468,13 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" "აღწერეთ პორტები ან პორტების დიაპაზონი, რომელსაც ეს დამხმარე გაუწევს " "მონიტორინგს." -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1491,444 +1487,433 @@ msgstr "" "კონფიგურაცია უნდა იქნას გამოყენებული მხოლოდ როგორც უკიდურესი საშუალება, " "როდესაც შეუძლებელია firewall-ის სხვა მახასიათებლების გამოყენება." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "წესებთან ერთად გამოსაყენებელი დამატებითი ჯაჭვები." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "ჯაჭვის დამატება" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "ჯაჭვის ჩასწორება" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "ჯაჭვის წაშლა" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "ჯაჭვები" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "წესის დამატება" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "წესის ჩასწორება" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "წესის წაშლა" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "წესები" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "გამჭოლის დამატება" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "გამჭოლის ჩასწორება" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "გამჭოლის წაშლა" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "გამჭოლი" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "კონტექსტის დამატება" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "კონტექსტის ჩასწორება" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "კონტექსტის წაშლა" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "კონტექსტი" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "ბრძანების სტრიქონის დამატება" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "ბრძანების სტრიქონის ჩასწორება" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "ბრძანების სტრიქონის წაშლა" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "ბრძანების სტრიქონი" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "მომხმარებლის სახელები." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "მომხმარებლის სახელის დამატება" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "მომხმარებლის სახელის ჩასწორება" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "მომხმარებლის სახელის წაშლა" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "მომხმარებლის სახელები" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "მომხმარებლის ID-ები." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "მომხმარებლის ID-ის დამატება" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "მომხმარებლის ID-ის ჩასწორება" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "მომხმარებლის ID-ის წაშლა" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "მომხმარებლის ID-ები" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "გამჭოლი" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "სისტემის მიმდინარე ნაგულისხმები ზონა." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "ჟურნალში ჩაწერის შეცდომა:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "პანიკის რეჟიმი:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "ავტომატური დამხმარეები:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "დაბლოკილი:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "ნაგულისხმევი ზონა:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "შეიყვანეთ ინტერფეისის სახელი:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "IPSet-ის საბაზისო მორგება" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "მოირგეთ საბაზისო IPSet:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "ტიპი:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "ხანგრძლივობა:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "ჰეშის ზომა:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "მაქს.ელემ:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "ვადის დრო წამებში" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "ჰეშის საწყისი ზომა. ნაგულისხმები 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "ელემენტების მაქსიმალური რაოდენობა. ნაგულისხმები 65535" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "აირჩიეთ IPSet:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "შეიყვანეთ IPSet-ის ჩანაწერი:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "ჟურნალის აკრძალვა" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "აირჩიეთ ჟურნალის აკრძალვის მნიშვნელობა:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "დანიშვნა" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "შეიყვანეთ ნიღაბი არასავალდებულო ნიღბით." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "ნიშნის და ნიღბის ველები ორივე 32-ბიტიანი ფართო უნიშნო რიცხვებია." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "დანიშვნა:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "ნიღაბი:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "აირჩიეთ netfilter conntrack დამხმარე:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- მონიშნეთ -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "სხვა მოდული:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "პორტი და ოქმი" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "გთხოვთ შეიყვანოთ პორტი და ოქმი." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "პირდაპირი წესი" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "აირჩიეთ ipv და ცხრილი, ჯაჭვის პრიორიტეტი და შეიყვანეთ არგუმენტები." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "პრიორიტეტი:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "შეიყვანეთ პროტოკოლი." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "სხვა ოქმი:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "მდიდარი წესი" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "შეიყვანეთ მდიდარი წესი." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "წყარო:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "სამიზნე:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "ჟურნალი:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "აუდიტი:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 და ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "ინვერსია" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "ტიპით:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "ლიმიტით:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "პრეფიქსი:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "დონე:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "ელემენტი:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "ქმედება:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "სერვისის საბაზისო მორგება" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "მოირგეთ საბაზისო სერვისი:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "აირჩიეთ სერვისი." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "შეიყვანეთ წყარო." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "მომხმარებლის ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "შეიყვანეთ მომხმარებლის ID." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "შეიყვანეთ მომხმარებლის სახელი." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "ჭდე" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "ზონის საბაზისო მორგება" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "მოირგეთ საბაზისო ზონა:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "ნაგულისხმები სამიზნე" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "სამიზნე:" + +#~ msgid "Context" +#~ msgstr "კონტექსტი" + +#~ msgid "Command line" +#~ msgstr "ბრძანების სტრიქონი" + +#~ msgid "User name" +#~ msgstr "მომხმარებლის სახელი" + +#~ msgid "User id" +#~ msgstr "მომხმარებლის ID" + +#~ msgid "Please enter the command line." +#~ msgstr "შეიყვანეთ ბრძანების სტრიქონი." + +#~ msgid "Please enter the context." +#~ msgstr "შეიყვანეთ კონტექსტი." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "დაბლოკვის რეჟიმი დაბლოკავს ბრანდმაუერის კონფიგურაციას ისე, რომ მხოლოდ " +#~ "აპლიკაციებს ექნებათ ცვლილებების შეტანის უფლება, რომლებიც ხელითაა " +#~ "განბლოკილი." + +#~ msgid "Lockdown" +#~ msgstr "დაბლოკილი" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "თეთრი სია დაბლოკილია" + +#~ msgid "Add Context" +#~ msgstr "კონტექსტის დამატება" + +#~ msgid "Edit Context" +#~ msgstr "კონტექსტის ჩასწორება" + +#~ msgid "Remove Context" +#~ msgstr "კონტექსტის წაშლა" + +#~ msgid "Contexts" +#~ msgstr "კონტექსტი" + +#~ msgid "Add Command Line" +#~ msgstr "ბრძანების სტრიქონის დამატება" + +#~ msgid "Edit Command Line" +#~ msgstr "ბრძანების სტრიქონის ჩასწორება" + +#~ msgid "Remove Command Line" +#~ msgstr "ბრძანების სტრიქონის წაშლა" + +#~ msgid "Command lines" +#~ msgstr "ბრძანების სტრიქონი" + +#~ msgid "User names." +#~ msgstr "მომხმარებლის სახელები." + +#~ msgid "Add User Name" +#~ msgstr "მომხმარებლის სახელის დამატება" + +#~ msgid "Edit User Name" +#~ msgstr "მომხმარებლის სახელის ჩასწორება" + +#~ msgid "Remove User Name" +#~ msgstr "მომხმარებლის სახელის წაშლა" + +#~ msgid "User names" +#~ msgstr "მომხმარებლის სახელები" + +#~ msgid "User ids." +#~ msgstr "მომხმარებლის ID-ები." + +#~ msgid "Add User Id" +#~ msgstr "მომხმარებლის ID-ის დამატება" + +#~ msgid "Edit User Id" +#~ msgstr "მომხმარებლის ID-ის ჩასწორება" + +#~ msgid "Remove User Id" +#~ msgstr "მომხმარებლის ID-ის წაშლა" + +#~ msgid "User Ids" +#~ msgstr "მომხმარებლის ID-ები" + +#~ msgid "Lockdown:" +#~ msgstr "დაბლოკილი:" + +#~ msgid "User ID" +#~ msgstr "მომხმარებლის ID" + +#~ msgid "Please enter the user id." +#~ msgstr "შეიყვანეთ მომხმარებლის ID." + +#~ msgid "Please enter the user name." +#~ msgstr "შეიყვანეთ მომხმარებლის სახელი." diff --git a/po/kn.po b/po/kn.po index ec99e99..9d1c438 100644 --- a/po/kn.po +++ b/po/kn.po @@ -13,7 +13,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 09:59+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Kannada (http://www.transifex.com/projects/p/firewalld/" @@ -29,11 +29,45 @@ msgstr "" msgid "Firewall Applet" msgstr "ಫೈರ್ವಾಲ್ ಆಪ್ಲೆಟ್" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "ಫೈರ್ವಾಲ್ ಸ್ವರೂಪಣೆ" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "ಫೈರ್ವಾಲ್" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "ಫೈರ್ವಾಲ್ ಸ್ವರೂಪಣೆ" @@ -42,24 +76,24 @@ msgstr "ಫೈರ್ವಾಲ್ ಸ್ವರೂಪಣೆ" msgid "firewall;network;security;iptables;netfilter;" msgstr "ಫೈರ್ವಾಲ್;ಜಾಲಬಂಧ;ಸುರಕ್ಷತೆ;iptables;ನೆಟ್‌ಫಿಲ್ಟರ್‌;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "'%s' ಸಂಪರ್ಕಸಾಧನಕ್ಕಾಗಿ ವಲಯವನ್ನು ಆರಿಸಿ." #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "ಪೂರ್ವನಿಯೋಜಿತ ವಲಯ" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "'%s' ಸಂಪರ್ಕಕ್ಕಾಗಿ ವಲಯವನ್ನು ಆರಿಸಿ" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -109,154 +143,154 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "ಶೀಲ್ಡ್ಸ್ ಅಪ್" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "ಸೂಚನೆಗಳನ್ನು ಸಕ್ರಿಯಗೊಳಿಸು" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "ಫೈರ್ವಾಲ್ ಸಿದ್ಧತೆಗಳನ್ನು ಸಂಪಾದಿಸು..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "ಸಂಪರ್ಕಗಳ ವಲಯಗಳನ್ನು ಬದಲಾಯಿಸು..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "ಶೀಲ್ಡ್ಸ್ ಅಪ್/ಡೌನ್ ವಲಯಗಳನ್ನು ಸಂರಚಿಸು..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "ಎಲ್ಲಾ ಜಾಲಬಂಧ ಸಂಚಾರವನ್ನು ನಿರ್ಬಂಧಿಸು" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "ಸಂಪರ್ಕಗಳು" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" -msgstr "" +msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "ಆಕರಗಳು" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "ದೃಢೀಕರಣವು ವಿಫಲಗೊಂಡಿದೆ." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "ಅಮಾನ್ಯವಾದ ಆರ್ಗ್ಯುಮೆಂಟ್ %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "ಹೆಸರು ಈಗಾಗಲೆ ಅಸ್ತಿತ್ವದಲ್ಲಿದೆ" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "ಫೈರ್ವಾಲ್ ಡೀಮನ್‌ನೊಂದಿಗೆ ಸಂಪರ್ಕವು ಕಡಿದು ಹೋಗಿದೆ" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "ಎಲ್ಲಾ ಜಾಲಬಂಧ ಸಂಚಾರವನ್ನು ನಿರ್ಬಂಧಿಸಲಾಗಿದೆ." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "ಪೂರ್ವನಿಯೋಜಿತ ವಲಯ: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "'{interface}' ಸಂಪರ್ಕಸಾಧನದಲ್ಲಿನ '{connection}' ಸಂಪರ್ಕಕ್ಕಾಗಿನ '{zone}' ವಲಯವು " "ಸಕ್ರಿಯವಾಗಿದೆ" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "'{interface}' ಸಂಪರ್ಕಸಾಧನಕ್ಕಾಗಿನ '{zone}' ವಲಯವು ಸಕ್ರಿಯವಾಗಿದೆ" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "'{source}' ಆಕರಕ್ಕಾಗಿನ '{zone}' ವಲಯವು ಸಕ್ರಿಯವಾಗಿದೆ" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "ಯಾವುದೆ ಸಕ್ರಿಯ ವಲಯಗಳಿಲ್ಲ." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallID ಗೆ ಸಂಪರ್ಕವನ್ನು ಸಾಧಿಸಲಾಗಿದೆ." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallID ಗೆ ಸಂಪರ್ಕವು ತಪ್ಪಿ ಹೋಗಿದೆ." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD ಅನ್ನು ಮರಳಿ ಲೋಡ್ ಮಾಡಲಾಗಿದೆ." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "ಪೂರ್ವನಿಯೋಜಿತ ವಲಯವನ್ನು '%s' ಗೆ ಬದಲಾಯಿಸಲಾಗಿದೆ." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "ಜಾಲಬಂಧ ಸಂಚಾರವನ್ನು ಈಗ ನಿರ್ಬಂಧಿಸಲಾಗಿಲ್ಲ." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "ಸಕ್ರಿಯಗೊಂಡಿದೆ" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "ನಿಷ್ಕ್ರಿಯಗೊಂಡಿದೆ" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -264,20 +298,20 @@ msgstr "" "'{interface}' ಸಂಪರ್ಕಸಾಧನದಲ್ಲಿನ '{connection}' ಸಂಪರ್ಕಕ್ಕಾಗಿನ " "'{zone}' {activated_deactivated} ವಲಯ" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "'{interface}' ಸಂಪರ್ಕಸಾಧನಕ್ಕಾಗಿ '{zone}' {activated_deactivated} ವಲಯ" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "'%s' ಸಂಪರ್ಕಸಾಧನಕ್ಕಾಗಿ '%s' ವಲಯವನ್ನು ಸಕ್ರಿಯಗೊಳಿಸಲಾಗಿದೆ." -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "'{source}' ಆಕರಕ್ಕಾಗಿ '{zone}' {activated_deactivated} ವಲಯ" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "'%s' ಆಕರಕ್ಕಾಗಿ '%s' ವಲಯವನ್ನು ಸಕ್ರಿಯಗೊಳಿಸಲಾಗಿದೆ." @@ -322,328 +356,312 @@ msgstr "ನಿಷ್ಕ್ರಿಯಗೊಂಡ" msgid "Failed to load icons." msgstr "ಚಿಹ್ನೆಗಳನ್ನು ಲೋಡ್ ಮಾಡುವಲ್ಲಿ ವಿಫಲತೆ." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "ಬಳಕೆದಾರ ಹೆಸರು" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "ಚಾಲನಾಸಮಯ" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "ಶಾಶ್ವತ" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "ಸೇವೆ" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "ಸಂಪರ್ಕ ಸ್ಥಾನ" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "ಪ್ರೊಟೊಕಾಲ್" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "ಸಂಪರ್ಕ ಸ್ಥಾನಕ್ಕೆ" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "ಗೆ ವಿಳಾಸ" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp ಬಗೆ" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "ಕುಟುಂಬ" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "ಕ್ರಿಯೆ" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "ಅಂಶ" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Src" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Dest" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "ಲಾಗ್" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "ಆಡಿಟ್" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "ಆಕರ" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "ಎಚ್ಚರಿಕೆ" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "ದೋಷ" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "ಸ್ವೀಕರಿಸು" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "ತಿರಸ್ಕರಿಸು" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "ಬಿಟ್ಟುಬಿಡು" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "ಮಿತಿ" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "ಸೇವೆ" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "ಸಂಪರ್ಕಸ್ಥಾನ" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "ಪ್ರೊಟೊಕಾಲ್" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "ಛದ್ಮವೇಷಗೊಳಿಕೆ" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "ಫಾರ್ವಾರ್ಡ್-ಸಂಪರ್ಕಸ್ಥಾನ" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "ಮಟ್ಟ" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "ಹೌದು" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "ವಲಯ" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "ವಲಯ '%s': '%s' ಸೇವೆಯು ಲಭ್ಯವಿಲ್ಲ." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "ತೆಗೆದು ಹಾಕು" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "ಕಡೆಗಣಿಸು" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "ವಲಯ '%s': ICMP '%s' ಬಗೆಯು ಲಭ್ಯವಿಲ್ಲ." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "ಒಳನಿರ್ಮಿತ ವಲಯ, ಮರುಹೆಸರಿಸುವಿಕೆಗೆ ಬೆಂಬಲವಿಲ್ಲ." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "ಎರಡನೆಯ" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "ನಿಮಿಷ" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "ಗಂಟೆ" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "ದಿನ" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "ತುರ್ತು" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "ಎಚ್ಚರಿಕೆ" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "ಸಂದಿಗ್ಧ" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "ದೋಷ" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "ಎಚ್ಚರಿಕೆ" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "ಸೂಚನೆ" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "ಮಾಹಿತಿ" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "ದೋಷನಿವಾರಣೆ" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -653,81 +671,81 @@ msgstr "" "ಉಪಯೋಗಕ್ಕೆ ಬರುತ್ತದೆ.\n" "ನೀವು ಈ ವಲಯವನ್ನು ಛದ್ಮವೇಶಗೊಳಿಸಲು ಬಯಸುವಿರಾ?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "ಒಳ-ನಿರ್ಮಿತ ಸೇವೆ, ಮರುಹೆಸರಿಸುವಿಕೆಗೆ ಬೆಂಬಲವಿಲ್ಲ." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "ಒಳ-ನಿರ್ಮಿತ icmp, ಮರುಹೆಸರಿಸುವಿಕೆಗೆ ಬೆಂಬಲವಿಲ್ಲ." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "'%s' ಆಕರಕ್ಕಾಗಿ ವಲಯವನ್ನು ಆರಿಸಿ." @@ -746,91 +764,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "ದಯವಿಟ್ಟು ಒಂದು ಆದೇಶಸಾಲನ್ನು ನಮೂದಿಸಿ." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "ದಯಮಾಡಿ ಸನ್ನಿವೇಶವನ್ನು ನಮೂದಿಸಿ." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "ದಯವಿಟ್ಟು ಈ ಕೆಳಗಿನ ಪಟ್ಟಿಯಿಂದ ಪೂರ್ವನಿಯೋಜಿತ ವಲಯವನ್ನು ಆರಿಸಿಕೊಳ್ಳಿ." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "ನೇರ ಸರಣಿ" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "ದಯವಿಟ್ಟು ipv ಮತ್ತು ಕೋಷ್ಟಕವನ್ನು ಆರಿಸಿ ನಂತರ ಸರಣಿಯ ಹೆಸರನ್ನು ಆರಿಸಿ." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "ಸರಣಿ:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "raw" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "ಸುರಕ್ಷತೆ" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "ಕೋಷ್ಟಕ:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "ನೇರ ಪಾಸ್‌ತ್ರೂ ನಿಯಮ" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "ದಯವಿಟ್ಟು ipv ಅನ್ನು ಆರಿಸಿ ನಂತರ args ಅನ್ನು ನಮೂದಿಸಿ." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Args:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "ಸಂಪರ್ಕ ಸ್ಥಾನ ಫಾರ್ವಾರ್ಡಿಂಗ್" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "ನಿಮ್ಮ ಅಗತ್ಯಗಳಿಗನುಗುಣವಾಗಿ ದಯವಿಟ್ಟು ಮೂಲ ಹಾಗು ಉದ್ದಿಷ್ಟ ಸ್ಥಳದ ಆಯ್ಕೆಗಳನ್ನು ಆರಿಸಿ." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "ಸಂಪರ್ಕ ಸ್ಥಾನ/ಸಂಪರ್ಕ ವ್ಯಾಪ್ತಿ:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP ವಿಳಾಸ:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "ಪ್ರೊಟೋಕಾಲ್‌:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "ಗುರಿ" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -838,107 +848,107 @@ msgstr "" "ನೀವು ಸ್ಥಳೀಯ ಫಾರ್ವಾಡಿಂಗ್ ಅನ್ನು ಶಕ್ತಗೊಳಿಸಿದಲ್ಲಿ, ನೀವು ಒಂದು ಸಂಪರ್ಕಸ್ಥಾನವನ್ನು ಸೂಚಿಸಬೇಕು. " "ಈ ಸಂಪರ್ಕಸ್ಥಾನವು ಮೂಲ ಸಂಪರ್ಕಸ್ಥಾನಕ್ಕೆ ಪ್ರತ್ಯೇಕವಾಗಿರಬೇಕು." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "ಸ್ಥಳೀಯ ಫಾರ್ವಾರ್ಡಿಂಗ್" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "ಬೇರೊಂದು ಸಂಪರ್ಕಸ್ಥಾನಕ್ಕೆ ಫಾರ್ವಾರ್ಡ್ ಮಾಡು" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "ಬೋಲ್ಡ್ ನಮೂದುಗಳು ಖಡ್ಡಾಯವಾಗಿರುತ್ತವೆ, ಮಿಕ್ಕವೆಲ್ಲಾ ಐಚ್ಛಿಕವಾಗಿರುತ್ತವೆ." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "ಹೆಸರು:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "ಆವೃತ್ತಿ:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "ಸಂಕ್ಷಿಪ್ತ:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "ವಿವರಣೆ:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "ಕುಟುಂಬ:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "ಮೂಲಭೂತ ICMP ಬಗೆ ಸಿದ್ಧತೆಗಳು" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "ದಯವಿಟ್ಟು ಮೂಲಭೂತ ICMP ಬಗೆ ಸಿದ್ಧತೆಗಳನ್ನು ಸಂರಚಿಸಿ:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP ಬಗೆ" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "ದಯವಿಟ್ಟು ಒಂದು ICMP ಬಗೆಯನ್ನು ಆರಿಸಿ" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "ನಮೂದನ್ನು ಸೇರಿಸಿ" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "ಕಡತ(_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "ಆಯ್ಕೆಗಳು(_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "FirewallD ಅನ್ನು ಮರಳಿ ಲೋಡ್ ಮಾಡು" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -949,119 +959,103 @@ msgstr "" "ಇದ್ದರೂ ಸಹ ಅವುಗಳನ್ನು ಮರಳಿ ಲೋಡ್ ಆಗುವವರೆಗೆ ಮಾಡಲಾಗುತ್ತದೆ, ಮತ್ತು ಅವುಗಳು ಮರಳಿ ಲೋಡ್ " "ಮಾಡಿದಾಗ ಇಲ್ಲವಾಗುತ್ತದೆ." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "ಒಂದು ಜಾಲಬಂಧ ಸಂಪರ್ಕವು ಯಾವ ವಲಯಕ್ಕೆ ಸಂಬಂಧಿಸಿದೆ ಎನ್ನುವುದನ್ನು ಬದಲಾಯಿಸಿ." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "ಪೂರ್ವನಿಯೋಜಿತ ವಲಯವನ್ನು ಬದಲಿಸು" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "ಸಂಪರ್ಕಗಳು ಅಥವ ಸಂಪರ್ಕಸಾಧನಗಳಿಗಾಗಿನ ಪೂರ್ವನಿಯೋಜಿತ ವಲಯವನ್ನು ಬದಲಿಸಿ." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" "ಪ್ಯಾನಿಕ್ ಸ್ಥಿತಿ ಎಂದರೆ ಎಲ್ಲಾ ಒಳಬರುವ ಮತ್ತು ಹೊರಹೋಗುವ ಪ್ಯಾಕೆಟ್‌ಗಳನ್ನು ಬಿಟ್ಟುಬಿಡಲಾಗುತ್ತದೆ " "ಎಂದರ್ಥ." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "ಪ್ಯಾನಿಕ್ ಸ್ಥಿತಿ" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"ಕೇವಲ ಲಾಕ್‌ಡೌನ್ ವೈಟ್‌ಲಿಸ್ಟಿನಲ್ಲಿನ ಅನ್ವಯಗಳು ಮಾತ್ರ ಬದಲಾಯಿಸಲು ಅವಕಾಶ ಇರುವಂತೆ ಫೈರ್ವಾಲ್ " -"ಸಂರಚನೆಯನ್ನು ಲಾಕ್‌ಡೌನ್ ಲಾಕ್ ಮಾಡುತ್ತದೆ." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "ಲಾಕ್‌ಡೌನ್" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "ಚಾಲನಾಸಮಯದ ಸಂರಚನೆಯನ್ನು ಶಾಶ್ವತವಾಗಿಸು" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "ಶಾಶ್ವತವಾದ ಚಾಲನಾಸಮಯ" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "ನೋಟ (_V)" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP ಬಗೆಗಳು" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "ನೇರ ಸಂರಚನೆ" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "ಲಾಕ್‌ಡೌನ್ ವೈಟ್‌ಲಿಸ್ಟ್" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "ಸಹಾಯ(_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "ಸಂರಚನೆ:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1071,7 +1065,7 @@ msgstr "" "ಸಂರಚನೆಯು ಸೇವೆ ಅಥವ ವ್ಯವಸ್ಥೆಯನ್ನು ಮರಳಿ ಲೋಡ್ ಮಾಡುವಿಕೆ ಅಥವ ಮರಳಿ ಆರಂಭಿಸುವಿಕೆಯ ನಂತರ " "ಸಕ್ರಿಯವಾಗುತ್ತದೆ." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1085,23 +1079,23 @@ msgstr "" "ಫಿಲ್ಟರುಗಳು ಮತ್ತು ಸಮೃದ್ಧ ನಿಯಮಗಳನ್ನು ಹೊಂದಿರುತ್ತದೆ. ವಲಯವು ಸಂಪರ್ಕಸಾಧನಗಳು ಮತ್ತು ಆಕರ " "ವಿಳಾಸಗಳಿಗೆ ಬದ್ಧವಾಗಿರಬಹುದು." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "ವಲಯವನ್ನು ಸೇರಿಸು" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "ವಲಯವನ್ನು ಸಂಪಾದಿಸು" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "ವಲಯವನ್ನು ತೆಗೆದುಹಾಕು" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "ವಲಯದ ಪೂರ್ವನಿಯೋಜಿತಗಳನ್ನು ಲೋಡ್ ಮಾಡು" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1111,11 +1105,11 @@ msgstr "" "ಬರುವ ಸಂಪರ್ಕಗಳು, ಸಂಪರ್ಕಸಾಧನಗಳು (ಇಂಟರ್ಫೇಸಸ್) ಮತ್ತು ಆಕರಗಳಿಂದ ತಲುಪುವ ಎಲ್ಲಾ ಅತಿಥೇಯಗಳಿಂದ " "ಹಾಗು ಜಾಲಬಂಧಗಳಿಂದ ನಿಲುಕಿಸಿಕೊಳ್ಳಬಹುದಾಗಿರುತ್ತವೆ." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "ಸೇವೆಗಳು" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1123,53 +1117,53 @@ msgstr "" "ಗಣಕಕ್ಕೆ ಸಂಪರ್ಕ ಜೋಡಿಸುವ ಎಲ್ಲಾ ಅತಿಥೇಯಗಳಿಂದ ಅಥವ ಜಾಲಬಂಧಗಳಿಂದ ನಿಲುಕಿಸಿಕೊಳ್ಳಬಹುದಾದಂತ " "ಹೆಚ್ಚುವರಿ ಸಂಪರ್ಕಸ್ಥಾನಗಳನ್ನು ಅಥವ ಸಂಪರ್ಕಸ್ಥಾನ ವ್ಯಾಪ್ತಿಗಳನ್ನು ಸೇರಿಸಿ." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "ಸಂಪರ್ಕ ಸ್ಥಾನಕ್ಕೆ" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "ಸಂಪರ್ಕಸ್ಥಾನವನ್ನು ಸಂಪಾದಿಸು" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "ಸಂಪರ್ಕಸ್ಥಾನವನ್ನು ತೆಗೆದುಹಾಕು" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "ಸಂಪರ್ಕಸ್ಥಾನಗಳು" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1179,11 +1173,11 @@ msgstr "" "ಛದ್ಮವೇಶಗೊಳಿಕೆಯು(Masquerading) ಸಹಾಯಕವಾಗುತ್ತದೆ. ನಿಮ್ಮ ಸ್ಥಳೀಯ ಜಾಲಬಂಧವು ಅಂತರ್ಜಾಲಕ್ಕೆ " "ಒಂದು ಅತಿಥೇಯವಾಗಿ ಗೋಚರಿಸುವುದಿಲ್ಲ. ಛದ್ಮವೇಶಿಸುವುದು IPv4 ನಲ್ಲಿ ಮಾತ್ರ." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "ಛದ್ಮವೇಷಗೊಳಿಕೆ ವಲಯ" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1191,11 +1185,11 @@ msgstr "" "ನೀವು ಛದ್ಮವೇಶಗೊಳಿಕೆಯನ್ನು ಸಕ್ರಿಯಗೊಳಿಸುವುದಾದರೆ, IP ಫಾರ್ವಾರ್ಡಿಂಗ್ ಅನ್ನು IPv4 " "ಜಾಲಬಂಧಗಳಿಗಾಗಿ ಸಕ್ರಿಯಗೊಳಿಸಬಹುದಾಗಿರುತ್ತದೆ." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "ಛದ್ಮವೇಷಗೊಳಿಕೆ" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1207,19 +1201,19 @@ msgstr "" "ಸಂಪರ್ಕಸಾಧನವು ಮರೆಮಾಚಲ್ಪಟ್ಟಿದ್ದಲ್ಲಿ ಮಾತ್ರ ಪ್ರಯೋಜನಕಾರಿಯಾಗುತ್ತದೆ. ಸಂಪರ್ಕಸ್ಥಾನ ಫಾರ್ವಾಡಿಂಗ್ " "ಕೇವಲ IPv4 ಮಾತ್ರ ಆಗಿರುತ್ತದೆ." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "ಫಾರ್ವಾರ್ಡ್ ಸಂಪರ್ಕಸ್ಥಾನವನ್ನು ಸೇರಿಸು" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "ಫಾರ್ವಾರ್ಡ್ ಸಂಪರ್ಕಸ್ಥಾನವನ್ನು ಸಂಪಾದಿಸು" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "ಫಾರ್ವಾರ್ಡ್ ಸಂಪರ್ಕಸ್ಥಾನವನ್ನು ಸಂಪಾದಿಸು" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1229,7 +1223,7 @@ msgstr "" "ಸಂದೇಶಗಳನ್ನು ಕಳುಹಿಸಲು ಬಳಸಲ್ಪಡುತ್ತದೆ, ಆದರೆ ಇದರ ಜೊತೆಗೆ ಮಾಹಿತಿಯ ಸಂದೇಶಗಳಾದಂತಹ ಪಿಂಗ್ " "ಮನವಿಗಳು ಹಾಗು ಪ್ರತ್ಯುತ್ತರಗಳನ್ನೂ ಸಹ ಕಳುಹಿಸಲು ಬಳಸಲ್ಪಡುತ್ತದೆ." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1237,41 +1231,41 @@ msgstr "" "ಪಟ್ಟಿಯಲ್ಲಿರುವ ತಿರಸ್ಕರಿಸಬೇಕಿರುವ ICMP ಬಗೆಗಳನ್ನು ಗುರುತು ಹಾಕಿ. ಎಲ್ಲಾ ಇತರೆ ICMP ಬಗೆಗಳು " "ಫೈರ್ವಾಲ್ ಮೂಲಕ ಹಾದುಹೋಗಲು ಅನುಮತಿಸಲ್ಪಡುತ್ತವೆ. ಪೂರ್ವನಿಯೋಜಿತವಾಗಿ ಯಾವುದೆ ಮಿತಿ ಇರುವುದಿಲ್ಲ." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP ಶೋಧಕ" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "ಇಲ್ಲಿ ನೀವು ವಲಯಕ್ಕಾಗಿ ಸಮೃದ್ಧ ಭಾಷಾ ನಿಯಮಗಳನ್ನು ಹೊಂದಿಸಬಹುದು." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "ಸಮೃದ್ಧ ನಿಯಮವನ್ನು ಸೇರಿಸು" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "ಸಮೃದ್ಧ ನಿಯಮವನ್ನು ಸಂಪಾದಿಸು" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "ಸಮೃದ್ಧ ನಿಯಮ ತೆಗೆದುಹಾಕು" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "ಸಮೃದ್ಧ ನಿಯಮಗಳು" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1279,42 +1273,42 @@ msgstr "" "ಸಂಪರ್ಕಸಾಧನಗಳನ್ನು ವಲಯಕ್ಕೆ ಬೈಂಡ್ ಮಾಡಲು ನಮೂದುಗಳನ್ನು ಸೇರಿಸಿ. ಸಂಪರ್ಕಸಾಧನವನ್ನು ಒಂದು " "ಸಂಪರ್ಕದಿಂದ ಬಳಸಲಾಗುತ್ತಿದ್ದರೆ, ವಲಯವನ್ನು ಸಂಪರ್ಕದಿಂದ ಸೂಚಿಸಲಾದ ವಲಯಕ್ಕೆ ಹೊಂದಿಸಲಾಗುತ್ತದೆ." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "ಸಂಪರ್ಕಸಾಧನವನ್ನು ಸೇರಿಸು" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "ಸಂಪರ್ಕಸಾಧನವನ್ನು ಸಂಪಾದಿಸು" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "ಸಂಪರ್ಕಸಾಧನವನ್ನು ತೆಗೆದುಹಾಕು" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "ಒಂದು‌ ಆಕರವನ್ನು ಸೇರಿಸು" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "ಆಕರವನ್ನು ಸಂಪಾದಿಸು" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "ಆಕರವನ್ನು ಸಂಪಾದಿಸು" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "ವಲಯಗಳು" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1322,55 +1316,55 @@ msgstr "" "ಒಂದು firewalld ಸೇವೆಯು ಸಂಪರ್ಕಸ್ಥಾನಗಳು, ಪ್ರೊಟೊಕಾಲ್‌ಗಳು, ಮಾಡ್ಯೂಲ್‌ಗಳು ಮತ್ತು ಉದ್ಧೇಶಿತ " "ವಿಳಾಸಗಳ ಒಂದು ಸಂಯೋಜನೆಯಾಗಿರುತ್ತದೆ." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "ಸೇವೆಯನ್ನು ಸೇರಿಸು" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "ಸೇವೆಯನ್ನು ಸಂಪಾದಿಸು" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "ಸೇವೆಯನ್ನು ತೆಗೆದುಹಾಕು" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "ಸೇವೆ ಪೂರ್ವನಿಯೋಜಿತಗಳನ್ನು ಲೋಡ್ ಮಾಡು" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "ನಮೂದನ್ನು ಸಂಪಾದಿಸಿ" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "ನಮೂದನ್ನು ತೆಗೆದುಹಾಕಿ" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "ಮಾಡ್ಯೂಲ್‌ಗಳು" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1379,15 +1373,15 @@ msgstr "" "ನೀವು ಉದ್ಧೇಶಿತ ವಿಳಾಸವನ್ನು ಸೂಚಿಸಿದಲ್ಲಿ, ಸೇವೆಯ ನಮೂದನ್ನು ಉದ್ಧೇಶಿತ ವಿಳಾಸ ಮತ್ತು ಬಗೆಗೆ " "ಮಿತಿಗೊಳಿಸಲಾಗುತ್ತದೆ. ಎರಡೂ ನಮೂದಗಳನ್ನು ಖಾಲಿ ಬಿಟ್ಟಲ್ಲಿ, ಯಾವುದೆ ಮಿತಿ ಇರುವುದಿಲ್ಲ." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1395,33 +1389,33 @@ msgstr "" "ಸೇವೆಗಳನ್ನು ಶಾಶ್ವತ ಸಂರಚನಾ ನೋಟದಲ್ಲಿ ಮಾತ್ರ ಬಳಸಲು ಸಾಧ್ಯವಿರುತ್ತದೆ. ಸೇವೆಗಳ ಚಾಲನಾಸಮಯ " "ಸಂರಚನೆಯು ನಿಶ್ಚಿತವಾಗಿರುತ್ತದೆ." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1429,26 +1423,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1456,27 +1450,27 @@ msgstr "" "ಒಂದು firewalld icmptype ಎನ್ನುವುದು firewalld ಗಾಗಿನ ಇಂಟರ್ನೆಟ್ ಕಂಟ್ರೋಲ್ ಮೆಸೇಜಿಂಗ್ " "ಪ್ರೊಟೊಕಾಲ್ (ICMP) ಗಾಗಿ ಮಾಹಿತಿಯನ್ನು ಒದಗಿಸುತ್ತದೆ." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP ಬಗೆಯನ್ನು ಸೇರಿಸಿ" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP ಬಗೆಯನ್ನು ಸೇರಿಸು" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ICMP ಬಗೆಯನ್ನು ತೆಗೆದುಹಾಕು" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP ಬಗೆಯ ಪೂರ್ವನಿಯೋಜಿತಗಳನ್ನು ಲೋಡ್ ಮಾಡು" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "ಈ ICMP ಬಗೆಯು IPv4 ಮತ್ತು/ಅಥವ IPv6 ಗಾಗಿ ಲಭ್ಯವಿದೆಯೆ ಎನ್ನುವುದನ್ನು ಸೂಚಿಸಿ." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1484,7 +1478,7 @@ msgstr "" "ICMP ಬಗೆಗಳನ್ನು ಶಾಶ್ವತ ಸಂರಚನಾ ನೋಟದಲ್ಲಿ ಮಾತ್ರ ಬಳಸಲು ಸಾಧ್ಯವಿರುತ್ತದೆ. ICMP ಬಗೆಗಳ " "ಚಾಲನಾಸಮಯ ಸಂರಚನೆಯು ನಿಶ್ಚಿತವಾಗಿರುತ್ತದೆ." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1492,11 +1486,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1509,7 +1503,7 @@ msgstr "" "ಬೇರವಾವುದೆ firewalld ಯ ಸೌಲಭ್ಯಗಳನ್ನು ಬಳಸಲು ಸಾಧ್ಯವಾಗದೆ ಇದ್ದಾಗ ಮಾತ್ರ ಕೊನೆಯ ಉಪಾಯವಾಗಿ " "ಬಳಸಬೇಕ." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1519,34 +1513,46 @@ msgstr "" "ಇದು iptables ಗಾಗಿ, ip6tables ಗಾಗಿ ipv6 ನೊಂದಿಗೆ ಮತ್ತು ಎತರ್ನೆಟ್ ಬ್ರಿಜ್‌ಗಳಿಗಾಗಿ " "(ebtables) eb ಇರುತ್ತದೆ." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "ನಿಯಮಗಳೊಂದಿಗೆ ಬಳಸಲು ಹೆಚ್ಚುವರಿ ಸರಣಿಗಳು." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "ಸರಣಿಯನ್ನು ಸೇರಿಸು" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "ಸರಣಿಯನ್ನು ಸಂಪಾದಿಸು" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "ಸರಣಿಯನ್ನು ತೆಗೆದುಹಾಕು" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "ಸರಣಿಗಳು" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" "ಒಂದು ಆದ್ಯತೆಯೊಂದಿಗೆ ಕೋಷ್ಟಕವೊಂದರಲ್ಲಿ ಒಂದು ಸರಣಗೆ ಆರ್ಗ್ಯುಮೆಂಟ್‌ಗಳ args ನೊಂದಿಗೆ ಒಂದು " "ನಿಯಮವನ್ನು ಸೇರಿಸು." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "ನಿಯಮವನ್ನು ಸೇರಿಸು" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "ನಿಯಮವನ್ನು ಸೇರಿಸು" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "ನಿಯಮವನ್ನು ತೆಗೆದುಹಾಕು" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1562,23 +1568,11 @@ msgstr "" "ನಿಯಮವನ್ನು ಸೇರಿಸಬೇಕು ಎನ್ನುವುದನ್ನು ಖಚಿತಪಡಿಸಿಕೊಳ್ಳಲು ನೀವು ಬಯಸಿದಲ್ಲಿ, ಮೊದಲನೆಯದಕ್ಕೆ " "ಕಡಿಮೆ ಆದ್ಯತೆಯನ್ನು ಮತ್ತು ನಂತರದವುಗಳಿಗೆ ಹೆಚ್ಚಿನ ಆದ್ಯತೆಯನ್ನು ಬಳಸಿ." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "ನಿಯಮವನ್ನು ಸೇರಿಸು" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "ನಿಯಮವನ್ನು ಸೇರಿಸು" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "ನಿಯಮವನ್ನು ತೆಗೆದುಹಾಕು" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "ನಿಯಮಗಳು" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1588,310 +1582,207 @@ msgstr "" "ವಿಶೇಷ ಸರಣಿಗಳಲ್ಲಿ ಇರಿಸಲಾಗುವುದಿಲ್ಲ. ಎಲ್ಲಾ iptables, ip6tables ಮತ್ತು ebtables " "ಆಯ್ಕೆಗಳನ್ನು ಬಳಸಬಹುದು." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "ಪಾಸ್‌ತ್ರೂ ನಿಯಮಗಳು ಫೈರ್ವಾಲ್‌ಗೆ ತೊಂದರೆ ಮಾಡದಂತೆ ದಯವಿಟ್ಟು ಎಚ್ಚರವಹಿಸಿ." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "ಪಾಸ್‌ತ್ರೂ ಅನ್ನು ಸೇರಿಸು" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "ಪಾಸ್‌ತ್ರೂ ಅನ್ನು ಸಂಪಾದಿಸು" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "ಪಾಸ್‌ತ್ರೂ ಅನ್ನು ತೆಗೆದುಹಾಕು" -#: ../src/firewall-config.glade.h:193 +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." +msgstr "ಪಾಸ್‌ತ್ರೂ ನಿಯಮಗಳು ಫೈರ್ವಾಲ್‌ಗೆ ತೊಂದರೆ ಮಾಡದಂತೆ ದಯವಿಟ್ಟು ಎಚ್ಚರವಹಿಸಿ." + +#: ../src/firewall-config.glade.h:186 msgid "Passthrough" msgstr "ಪಾಸ್‌ತ್ರೂ" -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"ಲಾಕ್‌ಡೌನ್ ಸೌಲಭ್ಯವು firewalld ಗಾಗಿನ ಬಳಕೆದಾರ ಮತ್ತು ಅನ್ವಯ ಪಾಲಿಸಿಗಳ ಒಂದು ಹಗುರ " -"ಆವೃತ್ತಿಯಾಗಿದೆ. ಇದು ಫೈರ್‌ವಾಲ್‌ಗೆ ಬದಲಾವಣೆಗಳನ್ನು ಮಿತಿಗೊಳಿಸುತ್ತದೆ. ಲಾಕ್‌ಡೌನ್‌ ವೈಟ್‌ಲಿಸ್ಟ್ " -"ಆದೇಶಗಳು, ಸನ್ನಿವೇಶಗಳು, ಬಳಕೆದಾರರು ಮತ್ತು ಬಳಕೆದಾರ idಗಳನ್ನು ಹೊಂದಿರುತ್ತದೆ." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "ಸನ್ನಿವೇಶವನ್ನು ಸೇರಿಸು" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "ಸನ್ನಿವೇಶವನ್ನು ಸಂಪಾದಿಸು" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "ಸನ್ನಿವೇಶವನ್ನು ತೆಗೆದುಹಾಕು" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "ಸನ್ನಿವೇಶಗಳು" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"ವೈಟ್‌ಲಿಸ್ಟಿನಲ್ಲಿನ ಒಂದು ಆದೇಶದ ನಮೂದು ಒಂದು ಆಸ್ಟೆರಿಸ್ಕ್ '*' ಇಂದ ಕೊನೆಗೊಳ್ಳುತ್ತಿದ್ದರೆ, " -"ಆದೇಶದಿಂದ ಆರಂಭಗೊಳ್ಳುವ ಎಲ್ಲಾ ಆದೇಶ ಸಾಲುಗಳು ಹೊಂದಿಕೆಯಾಗುತ್ತವೆ. '*' ಇಲ್ಲದೆ ಇದ್ದಲ್ಲಿ, " -"ಪರಿಪೂರ್ಣವಾದ ಆದೇಶವನ್ನು ಹೊಂದಿರುವ ಆರ್ಗ್ಯುಮೆಂಟ್‌ಗಳು ಹೊಂದಿಕೆಯಾಗುವುದು ಅತ್ಯಗತ್ಯ." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "ಆಜ್ಞಾ ಸಾಲನ್ನು ಸೇರಿಸು" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "ಆಜ್ಞಾ ಸಾಲನ್ನು ಸಂಪಾದಿಸು" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "ಆಜ್ಞಾ ಸಾಲನ್ನು ತೆಗೆದುಹಾಕು" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "ಆದೇಶ ಸಾಲುಗಳು" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "ಬಳಕೆದಾರ ಹೆಸರುಗಳು." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "ಬಳಕೆದಾರ ಹೆಸರನ್ನು ಸೇರಿಸು" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "ಬಳಕೆದಾರ ಹೆಸರನ್ನು ಸಂಪಾದಿಸು" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "ಬಳಕೆದಾರ ಹೆಸರನ್ನು ತೆಗೆದುಹಾಕು" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "ಬಳಕದಾರ ಹೆಸರುಗಳು" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "ಬಳಕೆದಾರ idಗಳು." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "ಬಳಕೆದಾರ Idಯನ್ನು ಸೇರಿಸು" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "ಬಳಕೆದಾರ Idಯನ್ನು ಸಂಪಾದಿಸು" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "ಬಳಕೆದಾರ Id ಯನ್ನು ತೆಗೆದುಹಾಕು" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "ಬಳಕೆದಾರ idಗಳು" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "ವ್ಯವಸ್ಥೆಯ ಪ್ರಸಕ್ತ ಪೂರ್ವನಿಯೋಜಿತ ವಲಯ." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "ಪ್ಯಾನಿಕ್ ಸ್ಥಿತಿ:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "ಲಾಕ್‌ಡೌನ್:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "ಪೂರ್ವನಿಯೋಜಿತ ವಲಯ:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "ಸಂಪರ್ಕ ಸ್ಥಾನ ಹಾಗು ಪ್ರೋಟೊಕಾಲ್" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "ಒಂದು ಸಂಪರ್ಕಸ್ಥಾನ ಮತ್ತು ಪ್ರೊಟೊಕಾಲ್ ಅನ್ನು ನಮೂದಿಸಿ." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "ನೇರ ನಿಯಮ" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "ದಯವಿಟ್ಟು ipv ಮತ್ತು ಕೋಷ್ಟಕವನ್ನು, ಸರಣಿ ಆದ್ಯತೆಯನ್ನು ಆರಿಸಿ ನಂತರ args ಅನ್ನು ನಮೂದಿಸಿ." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "ಆದ್ಯತೆ:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "ದಯವಿಟ್ಟು ಒಂದು ಪ್ರೊಟೊಕಾಲ್ ಅನ್ನು ನಮೂದಿಸಿ." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "ಇತರೆ ಪ್ರೊಟೊಕಾಲ್:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "ಸಮೃದ್ಧ ನಿಯಮ" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "ದಯವಿಟ್ಟು ಒಂದು ಸಮೃದ್ಧ ನಿಯಮವನ್ನು ನಮೂದಿಸು." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "ಆತಿಥೇಯ ಅಥವ ಜಾಲಬಂಧದ ವೈಟ್ ಅಥವ ಬ್ಲಾಕ್‌ಲಿಸ್ಟ್ ಮಾಡುವಿಕೆಗಾಗಿ ಅಂಶವನ್ನು ನಿಷ್ಕ್ರಿಯೊಳಿಸಿ." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "ಆಕರ:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "ಗುರಿ:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "ಲಾಗ್:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "ಆಡಿಟ್:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 ಮತ್ತು ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "ವಿಲೋಮಗೊಳಿಸಿದ" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1899,78 +1790,172 @@ msgstr "" "ಇದನ್ನು ನಿಷ್ಕ್ರಿಯಗೊಳಿಸಲು ಕ್ರಿಯೆಯು 'reject' ಮತ್ತು ಕುಟುಂಬವು (ಫ್ಯಾಮಿಲಿ) 'ipv4' ಅಥವ " "'ipv6' (ಎರಡೂ ಒಟ್ಟಿಗೆ ಅಲ್ಲ) ಆಗಿರಬೇಕು." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "ಬಗೆಯೊಂದಿಗೆ:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "ಮಿತಿಯೊಂದಿಗೆ:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "ಪೂರ್ವಪ್ರತ್ಯಯ:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "ಮಟ್ಟ:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "ಅಂಶ:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "ಕ್ರಿಯೆ:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "ಮೂಲಭೂತ ಸೇವೆಯ ಸಿದ್ಧತೆಗಳು" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "ದಯವಿಟ್ಟು ಮೂಲಭೂತ ಸೇವೆಯ ಸಿದ್ಧತೆಗಳನ್ನು ಸಂರಚಿಸಿ:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "ದಯವಿಟ್ಟು ಒಂದು ಸೇವೆಯನ್ನು ಆರಿಸಿ." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ಬಳಕೆದಾರ ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "ಬಳಕೆದಾರ id ಯನ್ನು ಇಲ್ಲಿ ನಮೂದಿಸಿ." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "ಬಳಕೆದಾರ ಹೆಸರನ್ನು ಇಲ್ಲಿ ನಮೂದಿಸಿ." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "ಮೂಲಭೂತ ವಲಯ ಸಿದ್ಧತೆಗಳು" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "ದಯವಿಟ್ಟು ಮೂಲಭೂತ ವಲಯ ಸಿದ್ಧತೆಗಳನ್ನು ಸಂರಚಿಸಿ:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "ಪೂರ್ವನಿಯೋಜಿತ ಗುರಿ" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "ಗುರಿ:" + +#~ msgid "User name" +#~ msgstr "ಬಳಕೆದಾರ ಹೆಸರು" + +#~ msgid "Please enter the command line." +#~ msgstr "ದಯವಿಟ್ಟು ಒಂದು ಆದೇಶಸಾಲನ್ನು ನಮೂದಿಸಿ." + +#~ msgid "Please enter the context." +#~ msgstr "ದಯಮಾಡಿ ಸನ್ನಿವೇಶವನ್ನು ನಮೂದಿಸಿ." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "ಕೇವಲ ಲಾಕ್‌ಡೌನ್ ವೈಟ್‌ಲಿಸ್ಟಿನಲ್ಲಿನ ಅನ್ವಯಗಳು ಮಾತ್ರ ಬದಲಾಯಿಸಲು ಅವಕಾಶ ಇರುವಂತೆ ಫೈರ್ವಾಲ್ " +#~ "ಸಂರಚನೆಯನ್ನು ಲಾಕ್‌ಡೌನ್ ಲಾಕ್ ಮಾಡುತ್ತದೆ." + +#~ msgid "Lockdown" +#~ msgstr "ಲಾಕ್‌ಡೌನ್" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "ಲಾಕ್‌ಡೌನ್ ವೈಟ್‌ಲಿಸ್ಟ್" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "ಲಾಕ್‌ಡೌನ್ ಸೌಲಭ್ಯವು firewalld ಗಾಗಿನ ಬಳಕೆದಾರ ಮತ್ತು ಅನ್ವಯ ಪಾಲಿಸಿಗಳ ಒಂದು ಹಗುರ " +#~ "ಆವೃತ್ತಿಯಾಗಿದೆ. ಇದು ಫೈರ್‌ವಾಲ್‌ಗೆ ಬದಲಾವಣೆಗಳನ್ನು ಮಿತಿಗೊಳಿಸುತ್ತದೆ. ಲಾಕ್‌ಡೌನ್‌ ವೈಟ್‌ಲಿಸ್ಟ್ " +#~ "ಆದೇಶಗಳು, ಸನ್ನಿವೇಶಗಳು, ಬಳಕೆದಾರರು ಮತ್ತು ಬಳಕೆದಾರ idಗಳನ್ನು ಹೊಂದಿರುತ್ತದೆ." + +#~ msgid "Add Context" +#~ msgstr "ಸನ್ನಿವೇಶವನ್ನು ಸೇರಿಸು" + +#~ msgid "Edit Context" +#~ msgstr "ಸನ್ನಿವೇಶವನ್ನು ಸಂಪಾದಿಸು" + +#~ msgid "Remove Context" +#~ msgstr "ಸನ್ನಿವೇಶವನ್ನು ತೆಗೆದುಹಾಕು" + +#~ msgid "Contexts" +#~ msgstr "ಸನ್ನಿವೇಶಗಳು" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "ವೈಟ್‌ಲಿಸ್ಟಿನಲ್ಲಿನ ಒಂದು ಆದೇಶದ ನಮೂದು ಒಂದು ಆಸ್ಟೆರಿಸ್ಕ್ '*' ಇಂದ ಕೊನೆಗೊಳ್ಳುತ್ತಿದ್ದರೆ, " +#~ "ಆದೇಶದಿಂದ ಆರಂಭಗೊಳ್ಳುವ ಎಲ್ಲಾ ಆದೇಶ ಸಾಲುಗಳು ಹೊಂದಿಕೆಯಾಗುತ್ತವೆ. '*' ಇಲ್ಲದೆ ಇದ್ದಲ್ಲಿ, " +#~ "ಪರಿಪೂರ್ಣವಾದ ಆದೇಶವನ್ನು ಹೊಂದಿರುವ ಆರ್ಗ್ಯುಮೆಂಟ್‌ಗಳು ಹೊಂದಿಕೆಯಾಗುವುದು ಅತ್ಯಗತ್ಯ." + +#~ msgid "Add Command Line" +#~ msgstr "ಆಜ್ಞಾ ಸಾಲನ್ನು ಸೇರಿಸು" + +#~ msgid "Edit Command Line" +#~ msgstr "ಆಜ್ಞಾ ಸಾಲನ್ನು ಸಂಪಾದಿಸು" + +#~ msgid "Remove Command Line" +#~ msgstr "ಆಜ್ಞಾ ಸಾಲನ್ನು ತೆಗೆದುಹಾಕು" + +#~ msgid "Command lines" +#~ msgstr "ಆದೇಶ ಸಾಲುಗಳು" + +#~ msgid "User names." +#~ msgstr "ಬಳಕೆದಾರ ಹೆಸರುಗಳು." + +#~ msgid "Add User Name" +#~ msgstr "ಬಳಕೆದಾರ ಹೆಸರನ್ನು ಸೇರಿಸು" + +#~ msgid "Edit User Name" +#~ msgstr "ಬಳಕೆದಾರ ಹೆಸರನ್ನು ಸಂಪಾದಿಸು" + +#~ msgid "Remove User Name" +#~ msgstr "ಬಳಕೆದಾರ ಹೆಸರನ್ನು ತೆಗೆದುಹಾಕು" + +#~ msgid "User names" +#~ msgstr "ಬಳಕದಾರ ಹೆಸರುಗಳು" + +#~ msgid "User ids." +#~ msgstr "ಬಳಕೆದಾರ idಗಳು." + +#~ msgid "Add User Id" +#~ msgstr "ಬಳಕೆದಾರ Idಯನ್ನು ಸೇರಿಸು" + +#~ msgid "Edit User Id" +#~ msgstr "ಬಳಕೆದಾರ Idಯನ್ನು ಸಂಪಾದಿಸು" + +#~ msgid "Remove User Id" +#~ msgstr "ಬಳಕೆದಾರ Id ಯನ್ನು ತೆಗೆದುಹಾಕು" + +#~ msgid "User Ids" +#~ msgstr "ಬಳಕೆದಾರ idಗಳು" + +#~ msgid "Lockdown:" +#~ msgstr "ಲಾಕ್‌ಡೌನ್:" + +#~ msgid "User ID" +#~ msgstr "ಬಳಕೆದಾರ ID" + +#~ msgid "Please enter the user id." +#~ msgstr "ಬಳಕೆದಾರ id ಯನ್ನು ಇಲ್ಲಿ ನಮೂದಿಸಿ." + +#~ msgid "Please enter the user name." +#~ msgstr "ಬಳಕೆದಾರ ಹೆಸರನ್ನು ಇಲ್ಲಿ ನಮೂದಿಸಿ." diff --git a/po/ko.po b/po/ko.po index 502cc32..a5f18ee 100644 --- a/po/ko.po +++ b/po/ko.po @@ -20,7 +20,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2022-06-06 06:18+0000\n" "Last-Translator: 김인수 \n" "Language-Team: Korean ps -e --" -"context." -msgstr "" -"컨텍스트는 실행 중인 응용프로그램이나 서비스의 보안 (SELinux) 컨텍스트입니" -"다. 실행 중인 응용프로그램의 컨텍스트를 얻으려면 ps -e --context를 " -"사용합니다." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "문맥 추가" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "문맥 편집" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "문맥 제거" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "컨텍스트" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"화이트리스트의 명령이 별표 '*'로 끝나는 경우 해당 명령으로 시작하는 모든 명령" -"행과 일치하게 됩니다. '*'가 없을 경우 인수를 포함하여 명령이 정확하게 일치해" -"야 합니다." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "명령행 추가" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "명령행 편집" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "명령행 제거" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "명령행" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "사용자 이름." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "사용자 이름 추가" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "사용자 이름 편집" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "사용자 이름 제거" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "사용자 이름" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "사용자 ID." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "사용자 ID 추가" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "사용자 ID 편집" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "사용자 ID 제거" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "사용자 ID" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "시스템의 현재 기본 영역입니다." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "로그 거부:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "패닉 모드:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "자동 헬퍼:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "잠금:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "기본 영역:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "인터페이스 이름을 입력해 주십시오:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "기본 IPSet 설정" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "기본 IPSet을 설정하십시오:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "유형:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "제한 시간:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "해시 크기:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "최대 요소:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "제한 시간 값 (초 단위)" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "초기 해시 크기, 기본값 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "최대 요소 값, 기본값 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "IPSet을 선택하십시오:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "ipset 항목을 입력해 주십시오:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "로그 거부" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "로그 거부 값을 선택하십시오:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "마크" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "mask 옵션으로 마크를 입력하십시오." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "마크 및 mask 필드는 32 비트의 부호없는 숫자입니다." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "마크:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Mask:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Netfilter conntrack 도움를 선택해 주십시오.:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- 선택 -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "기타 모듈:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "포트 및 프로토콜" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "포트 및 프로토콜을 입력하십시오." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "직접 규칙" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "ipv 및 테이블, 체인 우선 순위를 선택하고 인수를 입력하십시오." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "우선 순위:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "프로토콜을 입력하십시오." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "다른 프로토콜:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "고급 규칙" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "고급 규칙을 입력하십시오." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "호스트 또는 네트워크의 경우 허용 또는 거부 목록에 따라 요소가 비활성화됩니다." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "소스:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "수신지:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "기록:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "감사:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 및 ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "변환됨" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1926,78 +1816,190 @@ msgstr "" "이를 활성화하려면 작업을 '거부'하고 'ipv4' 또는 'ipv6' 중 하나 (둘 중 하나)" "의 제품군을 선택합니다." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "유형:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "제한:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "접두부:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "단계:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "요소:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "동작:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "기본 서비스 설정" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "기본 서비스 설정을 구성 하십시오:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "서비스를 선택하십시오." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "소스를 입력해 주십시오." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "사용자 ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "사용자 ID를 입력하십시오." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "사용자 이름을 입력하십시오." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "레이블" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "기본 영역 설정" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "기본 영역 설정을 구성 하십시오:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "기본 대상" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "대상:" + +#~ msgid "Context" +#~ msgstr "문맥" + +#~ msgid "Command line" +#~ msgstr "명령행" + +#~ msgid "User name" +#~ msgstr "사용자 이름" + +#~ msgid "User id" +#~ msgstr "사용자 ID" + +#~ msgid "Please enter the command line." +#~ msgstr "명령행을 입력하십시오." + +#~ msgid "Please enter the context." +#~ msgstr "컨텍스트를 입력하십시오." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "잠금 기능은 방화벽 설정을 잠금하여 잠금 화이트 리스트에 있는 응용프로그램" +#~ "만 변경 할 수 있게 합니다." + +#~ msgid "Lockdown" +#~ msgstr "잠금" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "잠금 화이트리스트" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "잠금 기능은 firewalld의 사용자와 응용프로그램 정책에 대한 경량 버전입니" +#~ "다. 이는 방화벽 변경을 제한합니다. 잠금 화이트 리스트에는 명령, 내용, 사용" +#~ "자 및 사용자 ID가 포함되어 있습니다." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "컨텍스트는 실행 중인 응용프로그램이나 서비스의 보안 (SELinux) 컨텍스트입니" +#~ "다. 실행 중인 응용프로그램의 컨텍스트를 얻으려면 ps -e --context" +#~ "를 사용합니다." + +#~ msgid "Add Context" +#~ msgstr "문맥 추가" + +#~ msgid "Edit Context" +#~ msgstr "문맥 편집" + +#~ msgid "Remove Context" +#~ msgstr "문맥 제거" + +#~ msgid "Contexts" +#~ msgstr "컨텍스트" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "화이트리스트의 명령이 별표 '*'로 끝나는 경우 해당 명령으로 시작하는 모든 " +#~ "명령행과 일치하게 됩니다. '*'가 없을 경우 인수를 포함하여 명령이 정확하게 " +#~ "일치해야 합니다." + +#~ msgid "Add Command Line" +#~ msgstr "명령행 추가" + +#~ msgid "Edit Command Line" +#~ msgstr "명령행 편집" + +#~ msgid "Remove Command Line" +#~ msgstr "명령행 제거" + +#~ msgid "Command lines" +#~ msgstr "명령행" + +#~ msgid "User names." +#~ msgstr "사용자 이름." + +#~ msgid "Add User Name" +#~ msgstr "사용자 이름 추가" + +#~ msgid "Edit User Name" +#~ msgstr "사용자 이름 편집" + +#~ msgid "Remove User Name" +#~ msgstr "사용자 이름 제거" + +#~ msgid "User names" +#~ msgstr "사용자 이름" + +#~ msgid "User ids." +#~ msgstr "사용자 ID." + +#~ msgid "Add User Id" +#~ msgstr "사용자 ID 추가" + +#~ msgid "Edit User Id" +#~ msgstr "사용자 ID 편집" + +#~ msgid "Remove User Id" +#~ msgstr "사용자 ID 제거" + +#~ msgid "User Ids" +#~ msgstr "사용자 ID" + +#~ msgid "Lockdown:" +#~ msgstr "잠금:" + +#~ msgid "User ID" +#~ msgstr "사용자 ID" + +#~ msgid "Please enter the user id." +#~ msgstr "사용자 ID를 입력하십시오." + +#~ msgid "Please enter the user name." +#~ msgstr "사용자 이름을 입력하십시오." diff --git a/po/lt.po b/po/lt.po index e1323f7..671d921 100644 --- a/po/lt.po +++ b/po/lt.po @@ -4,7 +4,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2019-05-13 08:05+0000\n" "Last-Translator: Moo \n" "Language-Team: Lithuanian\n" @@ -13,18 +13,53 @@ msgstr "" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Zanata 4.6.2\n" -"Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && " -"(n%100<10 || n%100>=20) ? 1 : 2)\n" +"Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && (n" +"%100<10 || n%100>=20) ? 1 : 2)\n" #: ../config/firewall-applet.desktop.in.h:1 ../src/firewall-applet.in:450 msgid "Firewall Applet" msgstr "Užkardos programėlė" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Užkardos konfigūravimas" + +#: ../config/firewall-config.appdata.xml.in.h:4 +#, fuzzy +msgid "Predefined zones (levels of trust for network connections)" +msgstr "Numatytoji zona, naudojama ryšio „%s“" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Užkarda" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Užkardos konfigūravimas" @@ -33,24 +68,24 @@ msgstr "Užkardos konfigūravimas" msgid "firewall;network;security;iptables;netfilter;" msgstr "užkarda;tinklas;saugumas;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Pasirinkite zoną, skirtą sąsajai „%s“" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "Numatytoji zona" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "Pasirinkite zoną, skirtą ryšiui „%s“" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "Nepavyko ryšiui {connection_name} nustatyti zoną {zone}" @@ -102,94 +137,94 @@ msgstr "Autoriai" msgid "License" msgstr "Licencija" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "Įjungti skydus" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Įjungti pranešimus" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Taisyti užkardos nustatymus..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Keisti ryšių zonas..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "Konfigūruoti įjungtų/išjungtų skydų zonas..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Blokuoti visą tinklo duomenų srautą" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "Apie" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Ryšiai" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "Sąsajos" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Šaltiniai" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Nepavyko suteikti prieigos teises." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Neteisingas pavadinimas" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Pavadinimas jau yra" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (Zona: {zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "{entry} (Numatytoji zona: {default_zone})" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "Nepavyko gauti ryšių iš NetworkManager" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "Nėra prieinami jokie NetworkManager importavimai" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Nėra ryšio su užkardos tarnyba" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Visas tinklo duomenų srautas yra užblokuotas." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "Numatytoji zona: „%s“" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" @@ -197,54 +232,54 @@ msgstr "" "Numatytoji zona „{default_zone}“ yra aktyvi ryšiui „{connection}“ ties " "sąsaja „{interface}“" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "Zona „{zone}“ yra aktyvi ryšiui „{connection}“ ties sąsaja „{interface}“" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "Zona „{zone}“ yra aktyvi sąsajai „{interface}“" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "Zona „{zone}“ yra aktyvi sąsajai {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Nėra jokių aktyvių zonų." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "Užmegztas ryšys su FirewallD." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "Prarastas ryšys su FirewallD." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD buvo įkelta iš naujo." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "Numatytoji zona pakeista į „%s“." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "Tinklo duomenų srautas daugiau nebėra užblokuotas." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "aktyvuota" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "pasyvinta" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" @@ -252,7 +287,7 @@ msgstr "" "Numatytoji zona „{default_zone}“ yra {activated_deactivated} ryšiui " "„{connection}“ ties sąsaja „{interface}“" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -260,20 +295,20 @@ msgstr "" "Zona „{zone}“ yra {activated_deactivated} ryšiui „{connection}“ ties sąsaja " "„{interface}“" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "Zona „{zone}“ yra {activated_deactivated} sąsajai „{interface}“" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "Zona „%s“ yra aktyvuota sąsajai „%s“" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "Zona „{zone}“ yra {activated_deactivated} šaltiniui „{source}“" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "Zona „%s“ yra aktyvuota šaltiniui „%s“" @@ -320,328 +355,312 @@ msgstr "išjungta" msgid "Failed to load icons." msgstr "Nepavyko įkelti piktogramų." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "Kontekstas" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "Komandų eilutė" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "Naudotojo vardas" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "Naudotojo id" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "Lentelė" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "Grandinė" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "Pirmenybė" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "Argumentai" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "Vykdymo trukmės" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "Ilgalaikė" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Tarnyba" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Prievadas" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Protokolas" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Į prievadą" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Į adresą" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "Susiejimai" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "Įrašas" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp tipas" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "Šeima" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "Veiksmas" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "Elementas" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Šalt." -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Pask." -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "Sąsaja" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "Komentaras" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Šaltinis" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Įspėjimas" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Klaida" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "priimti" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "atmesti" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "žymėti" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "prievadas" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "protokolas" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "taip" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Zona" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "Numatytoji zona: %s" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "Zona: %s" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Zona „%s“: Tarnyba „%s“ yra neprieinama." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Šalinti" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Nepaisyti" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Zona „%s“: ICMP tipas „%s“ yra neprieinamas." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Įtaisytoji zona, pervadinimas yra nepalaikomas." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "sekundė" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "minutė" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "valanda" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "diena" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "klaida" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "įspėjimas" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "informacija" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "derinimas" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -651,31 +670,31 @@ msgstr "" "maskuojama.\n" "Ar norite maskuoti šią zoną?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Įtaisytoji tarnyba, pervadinimas yra nepalaikomas." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "Kaukė gali būti tinklo kaukė arba skaičius." -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "Kaukė yra skaičius." -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." @@ -683,51 +702,51 @@ msgstr "" "Kaukė gali būti tinklo kaukė arba, ipv4 atveju, gali būti skaičius.\n" "Kaukė, ipv6 atveju, yra skaičius." -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "Pasirinkite failą" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "Tekstiniai failai" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "Visi failai" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "Visi" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "Įtaisytasis pagelbiklis, pervadinimas yra nepalaikomas." -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "Įtaisytasis icmp, pervadinimas yra nepalaikomas." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "Nepavyko skaityti failą „%s“: %s" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "" @@ -746,91 +765,83 @@ msgid "Please select the automatic helpers value:" msgstr "Pasirinkite automatinių pagelbiklių reikšmę:" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "Įveskite komandų eilutę." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "Įveskite kontekstą." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "Pasirinkite numatytąją zoną iš sąrašo žemiau." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "Tiesioginė grandinė" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "Pasirinkite ipv bei lentelę ir įveskite grandinės pavadinimą." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "Grandinė:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "saugumas" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "Lentelė:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Argumentai:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Prievadų peradresavimas" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "Pasirinkite šaltinio ir paskirties parametrus pagal savo poreikius." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Prievadas / Prievadų rėžis:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP adresas:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Protokolas:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Paskirtis" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -838,107 +849,107 @@ msgstr "" "Jeigu įjungsite vietinį peradresavimą, turėsite nurodyti prievadą. Šis " "prievadas turės būti kitoks nei šaltinio prievadas." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Vietinis peradresavimas" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Peradresuoti į kitą prievadą" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "Pusjuodžiai įrašai yra privalomi, visi kiti – nebūtini." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Pavadinimas:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Versija:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Sutrumpinimas:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Aprašas:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "Šeima:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "Modulis:" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "Pagelbiklis" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "Pasirinkite pagelbiklį:" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP tipas" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "Pasirinkite ICMP tipą" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Pridėti įrašą" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "Pridėti įrašus iš failo" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "Šalinti pažymėtus įrašus" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "Šalinti visus įrašus" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "Šalinti įrašus iš failo" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Failas" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Parametrai" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Įkelti Firewalld iš naujo" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -949,115 +960,101 @@ msgstr "" "vykdymo trukmės pakeitimai bus prarasti, jeigu jų nebuvo taip pat ir " "ilgalaikėje konfigūracijoje." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "Keisti kuriai zonai priklausys tinklo ryšys." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Keisti numatytąją zoną" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "Keisti numatytąją ryšių ir sąsajų zoną." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "Konfigūruoti automatinių pagelbiklių priskyrimą" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "Konfigūruoti automatinių pagelbiklių priskyrimo nustatymą." -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "Panikos veiksena" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "Paversti vykdymo trukmės konfigūracija į ilgalaikę" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "Vykdymo trukmės į ilgalaikę" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "_Rodinys" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP tipai" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "Pagelbikliai" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "Tiesioginė konfigūracija" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "Aktyvūs susiejimai" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "Ž_inynas" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "Keisti zoną" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "Keisti susiejimo zoną" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "Konfigūracija:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1067,7 +1064,7 @@ msgstr "" "aktyvi konfigūracija. Ilgalaikė konfigūracija bus aktyvi po tarnybos ar " "sistemos įkelimo iš naujo, ar paleidimo iš naujo." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1080,97 +1077,97 @@ msgstr "" "maskavimai, prievadų/paketų peradresavimai, icmp filtrai ir išsamios " "taisyklės. Zona gali būti susieta su sąsajomis ir šaltinio adresais." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Pridėti zoną" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Taisyti zoną" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Šalinti zoną" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Tarnybos" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Pridėti prievadą" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Taisyti prievadą" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Šalinti prievadą" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Prievadai" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "Pridėti protokolą" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "Taisyti protokolą" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "Šalinti protokolą" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "Protokolai" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " "hosts appear as a single address on the internet. Masquerading is IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Maskuoti zoną" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1178,11 +1175,11 @@ msgstr "" "Jeigu įjungsite maskavimą, tuomet jūsų IPv4 tinklams bus įjungtas IP " "peradresavimas." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Maskavimas" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1190,19 +1187,19 @@ msgid "" "IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1213,47 +1210,47 @@ msgstr "" "tinkle, o taip pat ir informacinius pranešimus, tokius kaip ryšio " "patikrinimų užklausas ir atsakymus." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." msgstr "" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "Invertuoti filtrą" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP filtras" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "Čia galite nustatyti zonai išsamios kalbos taisykles." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "Pridėti išsamią taisyklę" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "Taisyti išsamią taisyklę" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "Šalinti išsamią taisyklę" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "Išsamios taisyklės" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1261,19 +1258,19 @@ msgstr "" "Pridėkite įrašus, norėdami susieti sąsajas su zona. Jeigu ryšys naudos " "sąsają, tuomet zona bus nustatyta į tą, kuri yra nurodyta ryšyje." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "Pridėti sąsają" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "Taisyti sąsają" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "Šalinti sąsają" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " @@ -1283,23 +1280,23 @@ msgstr "" "galite susieti su MAC šaltinio adresu, tačiau su apribojimais. Prievadų " "peradresavimas ir maskavimas neveiks su MAC šaltinio susiejimais." -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "Pridėti šaltinį" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "Taisyti šaltinį" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "Šalinti šaltinį" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "Zonos" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1307,70 +1304,70 @@ msgstr "" "Firewalld tarnyba yra prievadų, protokolų, modulių ir paskirties adresų " "kombinacija." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Pridėti tarnybą" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Taisyti tarnybą" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Šalinti tarnybą" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Taisyti įrašą" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Šalinti įrašą" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Moduliai" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " "limitation." msgstr "" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1378,33 +1375,33 @@ msgstr "" "Tarnybos gali būti keičiamos tik ilgalaikės konfigūracijos rodinyje. Tarnybų " "vykdymo trukmės konfigūracija yra fiksuota." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1412,52 +1409,52 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "Pridėti" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "Įrašai" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Pridėti ICMP tipą" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Taisyti ICMP tipą" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Šalinti ICMP tipą" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "Nurodykite ar šis ICMP tipas yra prieinamas IPv4 ir/ar IPv6." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1465,7 +1462,7 @@ msgstr "" "ICMP tipai gali būti keičiami tik ilgalaikės konfigūracijos rodinyje. ICMP " "tipų vykdymo trukmės konfigūracija yra fiksuota." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1473,12 +1470,12 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" "Apibrėžkite prievadus ar prievadų rėžius, kurie bus stebimi pagelbiklio." -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1486,447 +1483,419 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "Papildomos grandinės, kurios bus naudojamos su taisyklėmis." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "Pridėti grandinę" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "Taisyti grandinę" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "Šalinti grandinę" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "Grandinės" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "Pridėti taisyklę" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "Taisyti taisyklę" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "Šalinti taisyklę" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "Taisyklės" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Pridėti kontekstą" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Taisyti kontekstą" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Šalinti kontekstą" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Kontekstai" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Pridėti komandų eilutę" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Taisyti komandų eilutę" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Šalinti komandų eilutę" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Komandų eilutės" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Naudotojų vardai." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Pridėti naudotojo vardą" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Taisyti naudotojo vardą" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Šalinti naudotojo vardą" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Naudotojų vardai" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Naudotojų id." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Pridėti naudotojo Id" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Taisyti naudotojo Id" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Šalinti naudotojo Id" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Naudotojų Id" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Dabartinė numatytoji sistemos zona." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Panikos veiksena:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Automatiniai pagelbikliai:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Numatytoji zona:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Įveskite sąsajos pavadinimą:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Tipas:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Laiko limitas:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Laiko limitas, sekundėmis" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Pradinis maišos dydis, numatytasis 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Maksimalus elementų skaičius, numatytasis 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Žymėti" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Įveskite žymėjimą ir neprivalomai kaukę." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "Žymėjimo ir kaukės laukai abudu yra 32 bitų pločio skaičiai be ženklo." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Žymėjimas:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Kaukė:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Pasirinkite -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Kitas modulis:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Prievadas ir protokolas" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Įveskite prievadą ir protokolą." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Tiesioginė taisyklė" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Pirmenybė:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Įveskite protokolą." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Kitas protokolas:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Išsami taisyklė" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Įveskite išsamią taisyklę" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Serverio ar tinklo įtraukimui į baltąjį ar juodąjį sąrašą, pasyvinkite " "elementą." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Šaltinis:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Paskirtis:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Registruoti:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 ir ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "invertuota" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "naudojant tipą:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "naudojant ribą:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Priešdėlis:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Elementas:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Veiksmas:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Pasirinkite tarnybą." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Įveskite šaltinį." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Naudotojo ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Įveskite naudotojo id." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Įveskite naudotojo vardą." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "etiketė" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "" + +#~ msgid "Context" +#~ msgstr "Kontekstas" + +#~ msgid "Command line" +#~ msgstr "Komandų eilutė" + +#~ msgid "User name" +#~ msgstr "Naudotojo vardas" + +#~ msgid "User id" +#~ msgstr "Naudotojo id" + +#~ msgid "Please enter the command line." +#~ msgstr "Įveskite komandų eilutę." + +#~ msgid "Please enter the context." +#~ msgstr "Įveskite kontekstą." + +#~ msgid "Add Context" +#~ msgstr "Pridėti kontekstą" + +#~ msgid "Edit Context" +#~ msgstr "Taisyti kontekstą" + +#~ msgid "Remove Context" +#~ msgstr "Šalinti kontekstą" + +#~ msgid "Contexts" +#~ msgstr "Kontekstai" + +#~ msgid "Add Command Line" +#~ msgstr "Pridėti komandų eilutę" + +#~ msgid "Edit Command Line" +#~ msgstr "Taisyti komandų eilutę" + +#~ msgid "Remove Command Line" +#~ msgstr "Šalinti komandų eilutę" + +#~ msgid "Command lines" +#~ msgstr "Komandų eilutės" + +#~ msgid "User names." +#~ msgstr "Naudotojų vardai." + +#~ msgid "Add User Name" +#~ msgstr "Pridėti naudotojo vardą" + +#~ msgid "Edit User Name" +#~ msgstr "Taisyti naudotojo vardą" + +#~ msgid "Remove User Name" +#~ msgstr "Šalinti naudotojo vardą" + +#~ msgid "User names" +#~ msgstr "Naudotojų vardai" + +#~ msgid "User ids." +#~ msgstr "Naudotojų id." + +#~ msgid "Add User Id" +#~ msgstr "Pridėti naudotojo Id" + +#~ msgid "Edit User Id" +#~ msgstr "Taisyti naudotojo Id" + +#~ msgid "Remove User Id" +#~ msgstr "Šalinti naudotojo Id" + +#~ msgid "User Ids" +#~ msgstr "Naudotojų Id" + +#~ msgid "User ID" +#~ msgstr "Naudotojo ID" + +#~ msgid "Please enter the user id." +#~ msgstr "Įveskite naudotojo id." + +#~ msgid "Please enter the user name." +#~ msgstr "Įveskite naudotojo vardą." diff --git a/po/ml.po b/po/ml.po index 3d94372..7c0bf9b 100644 --- a/po/ml.po +++ b/po/ml.po @@ -8,7 +8,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 10:00+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Malayalam (http://www.transifex.com/projects/p/firewalld/" @@ -24,11 +24,45 @@ msgstr "" msgid "Firewall Applet" msgstr "ഫയര്‍വോള്‍ ആപ്ലെറ്റ്" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "ഫയര്‍വോള്‍ ക്രമീകരണം" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "ഫയര്‍വോള്‍" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "ഫയര്‍വോള്‍ ക്രമീകരണം" @@ -37,24 +71,24 @@ msgstr "ഫയര്‍വോള്‍ ക്രമീകരണം" msgid "firewall;network;security;iptables;netfilter;" msgstr "firewall;network;security;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "'%s' ഇന്റര്‍ഫെയിസിനു് മേഘല തെരഞ്ഞെടുക്കുക" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "സ്വതവേയുളഅള മേഖല" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "'%s' കണക്ഷനു് മേഖല തെരഞ്ഞെടുക്കുക" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -104,152 +138,152 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "ഷീള്‍ഡ്സ് അപ്പ്" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "അറിയിപ്പുകള്‍ പ്രവര്‍ത്തന സജ്ജമാക്കുക" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "ഫയര്‍വോള്‍ സജ്ജീകരണങ്ങള്‍ ചിട്ടപ്പെടുത്തുക..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "കണക്ഷനുകള്‍ക്കുള്ള മേഘലകള്‍ മാറ്റുക..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "ഷീള്‍ഡ്സ് അപ്പ്/ഡൌണ്‍ മേഘലകള്‍ ക്രമീകരിയ്ക്കുക..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "എല്ലാ നെറ്റ്‌വര്‍ക്ക് ട്രാഫിക്കും തടയുക" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "കണക്ഷനുകള്‍" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" -msgstr "" +msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "ശ്രോതസ്സുകള്‍" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "ആധികാരികത ഉറപ്പാക്കല്‍ പരാജയപ്പെട്ടു." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "തെറ്റായ ആര്‍ഗ്യുമെന്റ് %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "പേരു് നിലവിലുണ്ടു്" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "ഫയര്‍വോള്‍ ഡെമണിലേക്കു് കണക്ഷന്‍ ലഭ്യമല്ല" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "എല്ലാ നെറ്റ്‌വര്‍ക്ക് ട്രാഫിക്കും തടഞ്ഞിരിയ്ക്കുന്നു" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "സ്വതവേയുള്ള മേഘല: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "'{interface}' ഇന്റര്‍ഫെയിസില്‍ '{connection}' കണക്ഷനു് സജീവമായ '{zone}' മേഘല" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "'{interface}' ഇന്റര്‍ഫെയിസില്‍ സജീവമായ '{zone}' മേഘല" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "{source} ശ്രോതസ്സില്‍‍ സജീവമായ '{zone}' മേഘല" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "സജീവമായ മേഘലകള്‍ ലഭ്യമല്ല." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallD-യ്ക്കുള്ള കണക്ഷന്‍ സ്ഥാപിച്ചിരിയ്ക്കുന്നു." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallD-ലേക്കുള്ള കണക്ഷന്‍ നഷ്ടമായി." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD വീണ്ടും ലഭ്യമാക്കിയിരിയ്ക്കുന്നു." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "സ്വതവേയുള്ള മേഘല '%s' ആയി മാറ്റിയിരിയ്ക്കുന്നു." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "നെറ്റ്‌വര്‍ക്ക് ട്രാഫിക്ക് ഇനി തടസ്സപ്പെടുത്തിയിട്ടില്ല." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "സജീവമാക്കിയിരിക്കുന്നു" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "നിര്‍ജ്ജീവമാക്കിയിരിയ്ക്കുന്നു" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -257,21 +291,21 @@ msgstr "" "'{interface}' ഇന്റര്‍ഫെയിസില്‍ '{connection}' കണക്ഷനു് സജീവമായ " "'{zone}'{activated_deactivated} മേഘല" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" "'{interface}' ഇന്റര്‍ഫെയിസില്‍ സജീവമായ '{zone}' {activated_deactivated} മേഘല" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "'%s' മേഘല '%s' ഇന്റര്‍ഫെയിസിനു് സജീവമാക്കിയിരിയ്ക്കുന്നു" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "'{source}' ശ്രോതസ്സിനുള്ള '{zone}' {activated_deactivated} മേഘല" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "'%s' മേഘല '%s' ശ്രോതസ്സിനു് സജീവമാക്കിയിരിയ്ക്കുന്നു" @@ -316,328 +350,312 @@ msgstr "പ്രവര്‍ത്തന രഹിതം" msgid "Failed to load icons." msgstr "ചിഹ്നങ്ങള്‍ ലഭ്യമാക്കുന്നതില്‍ പരാജയപ്പെട്ടു." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "ഉപയോക്തൃനാമം" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "പ്രവര്‍ത്തനസമയം" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "സ്ഥിരമായ" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "സേവനം" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "പോര്‍ട്ട്" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "സമ്പ്രദായം" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "ഏത്തിച്ചേരണ്ട പോര്‍ട്ട്" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "ഏത്തിച്ചേരണ്ട വിലാസം:" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "ഐസിഎംപി തരം" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "കുടുംബം" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "പ്രവര്‍ത്തനം" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "എലമെന്റ്" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "ശ്രോതസ്സ്" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "ലക്ഷ്യം" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "ലോഗ്" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "ഓഡിറ്റ് ചെയ്യുക" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "ശ്രോതസ്സ്" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "മുന്നറിയിപ്പ്" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "പിഴവ്" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "സ്വീകരിയ്ക്കുക" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "നിരസിയ്ക്കുക" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "ഉപേക്ഷിയ്ക്കുക" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "പരിധി" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "സേവനം " -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "പോര്‍ട്ട്" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "സമ്പ്രദായം " -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "മാസ്ക്യുറേഡിംങ്" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "forward-port" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "നില" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "ഉവ്വു്" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "മേഘല" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "'%s' മേഘല: '%s' സര്‍വീസ് തരം ലഭ്യമല്ല." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "നീക്കം ചെയ്യുക" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "അവഗണിയ്ക്കുക" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "'%s' മേഘല: '%s' ഐസിഎംപി തരം ലഭ്യമല്ല." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "ബിള്‍ട്ടിന്‍ zone, rename പിന്തുണയ്ക്കുന്നില്ല." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "നിമിഷം" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "മിനിറ്റ്" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "മണിക്കൂര്‍" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "ദിവസം" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "emergency" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "alert" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "critical" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "പിശക്" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "മുന്നറിയിപ്പു്" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "notice" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "വിവരം" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "debug" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -647,81 +665,81 @@ msgstr "" "പ്രയോജനകരമാകൂ.\n" "ഈ മേഖല മാസ്ക്യുറേഡ് ചെയ്യണമോ ?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "ബിള്‍ട്ടിന്‍ service, rename പിന്തുണയ്ക്കുന്നില്ല." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "ബിള്‍ട്ടിന്‍ icmp, rename പിന്തുണയ്ക്കുന്നില്ല." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "'%s' ശ്രോതസ്സിനു് മേഘല തെരഞ്ഞെടുക്കുക" @@ -740,91 +758,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "ദയവായി കമാന്‍ഡ് ലൈന്‍ നല്‍കുക." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "ദയവായി സന്ദര്‍ഭം നല്‍കുക." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "താഴെ കാണിച്ചിട്ടുള്ള പട്ടികയില്‍ നിന്നും സ്വതവേയുള്ള മേഘല ദയവായി തെരഞ്ഞെടുക്കുക." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "ഡയറക്ട് ചെയിന്‍" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "ipv, പട്ടിക എന്നിവ തെരഞ്ഞെടുത്തു്, ചെയിന്റെ പേരു് നല്‍കുക." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "ചെയിന്‍:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "raw" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "സുരക്ഷ" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "പട്ടിക:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "നേരിട്ടുള്ള പാസ്ത്രൂ നിയമം" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "ipv ദയവായി തെരഞ്ഞെടുത്തു് ആര്‍ഗ്യുമെന്റുകള്‍ നല്‍കുക." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "ആര്‍ഗ്യുമെന്റുകള്‍:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "പോര്‍ട്ട് ഫോര്‍‍വേര്‍‍ഡിംഗ്" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "നിങ്ങളുടെ ആവശ്യ‌മനുസരിച്ച് ഉറവിട, ലക്ഷ്യ പോര്‍ട്ടുകള്‍ തെരഞ്ഞെടുക്കുക." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "പോര്‍ട്ട് / പോര്‍ട്ട് പരിധി:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "ഐപി വിലാസം:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "സമ്പ്രദായം:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "ലക്ഷ്യസ്ഥലം" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -832,107 +842,107 @@ msgstr "" "നിങ്ങള്‍ ലോക്കല്‍ ഫോര്‍വേര്‍ഡിങ് സജ്ജമാക്കിയാല്‍, പോര്‍ട്ട് നല്‍കേണ്ടതാണ്. ഇത് ഉറവിട പോര്‍ട്ടില്‍ നിന്നും " "വ്യ‌‌ത്യ‌‌സ്തമാണ്." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "ലോക്കല്‍ ഫോര്‍വേഡിങ്" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "മറ്റൊരു പോര്‍ട്ടിലേക്ക് അയയ്ക്കുക" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "കട്ടിയിലുള്ള എന്‍ട്രികള്‍ നിര്‍ബന്ധമാണു്, മറ്റൊന്നും നിര്‍ബന്ധമല്ല." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "പേരു്:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "പതിപ്പു്‌:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "ലഘു:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "വിവരണം:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "കുടുംബം:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "അടിസ്ഥാന ഐസിഎംപി തരം സജ്ജീകരണങ്ങള്‍" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "ദയവായി അടിസ്ഥാന ഐസിഎംപി തരം സജ്ജീകരണങ്ങള്‍ ക്രമീകരിയ്ക്കുക: " -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP തരത്തിലുള്ള" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "ഒരു ഐസിഎംപി തരം ദയവായി തെരഞ്ഞെടുക്കുക" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "എന്‍ട്രി ചേര്‍ക്കുക" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "ഫയല്‍ (_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "ഐഛികങ്ങള്‍ (_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Firewalld വീണ്ടും ലഭ്യമാക്കുക" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -942,117 +952,101 @@ msgstr "" "ക്രമീകരണമാകുന്നു. അതായതു്, സ്ഥിരമായ ക്രമീകരണത്തിലില്ലെങ്കില്‍, പ്രവര്‍ത്തന സമയത്തു് വരുത്തിയ " "മാറ്റങ്ങള്‍ വീണ്ടും ലഭ്യമാക്കുമ്പോള്‍ നഷ്ടമാകുന്നു." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "ഒരു നെറ്റ്‌വര്‍ക്ക് കണക്ഷനുള്ള മേഖല മാറ്റുക." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "സ്വതവേയുള്ള മേഘല മാറ്റുക" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "കണക്ഷനുകള്‍ക്കും ഇന്റര്‍ഫെയിസുകള്‍ക്കുമുള്ള സ്വതവേയുള്ള മേഖല മാറ്റുക." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "പാനിക്ക് മോഡിനര്‍ത്ഥം വരുന്നതും പോകുന്നതുമായ എല്ലാ പാക്കറ്റുകളും ഇല്ലാതാക്കുന്നു് എന്നാണു്." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "പാനിക്ക് മോഡ്" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"ലോക്ക്‍ഡൌണ്‍ ഫയര്‍വോള്‍ ക്രമീകരണം പൂട്ടുന്നു. ഇങ്ങനെ വൈറ്റ്‌ലിസ്റ്റിലുള്ള പ്രയോഗങ്ങള്‍ക്കു് മാത്രമേ ഇതില്‍ " -"മാറ്റം വരുത്തുവാന്‍ സാധ്യമാകൂ." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "ലോക്ക് ഡൌണ്‍" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "പ്രവര്‍ത്തന ക്രമീകരണം സ്ഥിരമാക്കുക" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "പ്രവര്‍ത്തനസമയം സ്ഥിരമാക്കല്‍" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "_കാഴ്ച" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ഐസിഎംപി തരങ്ങള്‍" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "നേരിട്ടുള്ള ക്രമീകരണം" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "ലോക്ക്ഡൌണ്‍ വൈറ്റ് ലിസ്റ്റ്" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "സഹായം (_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "ക്രമീകരണം:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1062,7 +1056,7 @@ msgstr "" "സിസ്റ്റം വീണ്ടും ലഭ്യമാക്കുന്നതിനു് അല്ലെങ്കില്‍ വീണ്ടും ആരംഭിയ്ക്കുന്നതിനു് ശേഷം എന്നേക്കുമുള്ള " "ക്രമീകരണം സജീവമാകുന്നു." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1072,40 +1066,40 @@ msgid "" msgstr "" "മേഘലയ്ക്കുള്ള നെറ്റ്‌വര്‍ക്ക് കണക്ഷനുകള്‍, ഇന്റര്‍ഫെയിസുകള്‍, ശ്രോതസ്സ് വിലാസങ്ങള്‍ എന്നിവയ്ക്കുള്ള വിശ്വസ്തത " "firewalld മേഘല നിഷ്കര്‍ഷിയ്ക്കുന്നു. സര്‍വീസുകള്‍, പോര്‍ട്ടുകള്‍, സമ്പ്രദായങ്ങള്‍, മാസ്ക്യൂറേഡിങ്, പോര്‍ട്ട്/" -"പാക്കറ്റ് ഫോര്‍വേഡിങ്, icmp ഫില്‍റ്ററുകള്‍, റിച്ച് റൂളുകള്‍ എന്നിവ മേഘലയില്‍ ലഭ്യമാകുന്നു. " -"ഇന്റര്‍ഫെയിസുകളും ശ്രോതസ്സിനുള്ള വിലാസങ്ങളും അനുസരിച്ചാണു് മേഘല." +"പാക്കറ്റ് ഫോര്‍വേഡിങ്, icmp ഫില്‍റ്ററുകള്‍, റിച്ച് റൂളുകള്‍ എന്നിവ മേഘലയില്‍ ലഭ്യമാകുന്നു. ഇന്റര്‍" +"ഫെയിസുകളും ശ്രോതസ്സിനുള്ള വിലാസങ്ങളും അനുസരിച്ചാണു് മേഘല." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "മേഘല ചേര്‍ക്കുക" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "മേഘല ചിട്ടപ്പെടുത്തുക" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "മേഘല നീക്കം ചെയ്യുക" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "സ്വതവേയുള്ള മേഘല ലഭ്യമാക്കുക" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" "ഏതെല്ലാം സര്‍‍വീസുകളാണ് വിശ്വസനീയം എന്ന് നിങ്ങള്‍ക്ക് ഇവിടെ വ്യ‌ക്തമാക്കാം. ഈ മേഘലയ്ക്കുള്ള " -"ശ്രോതസ്സുകളും ഇന്റര്‍ഫെയിസുകളും കണക്ഷനുകളിലും നിന്നും സിസ്റ്റത്തിലേക്കുള്ള എല്ലാ ഹോസ്റ്റുകളും " -"നെറ്റ്‌വര്‍ക്കുകളും വിശ്വസനീയമായ സേവനങ്ങള്‍ക്കു് ലഭ്യമാകുന്നു." +"ശ്രോതസ്സുകളും ഇന്റര്‍ഫെയിസുകളും കണക്ഷനുകളിലും നിന്നും സിസ്റ്റത്തിലേക്കുള്ള എല്ലാ ഹോസ്റ്റുകളും നെറ്റ്‌വര്‍" +"ക്കുകളും വിശ്വസനീയമായ സേവനങ്ങള്‍ക്കു് ലഭ്യമാകുന്നു." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "സര്‍വീസുകള്‍" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1113,53 +1107,53 @@ msgstr "" "അധികമായ പോര്‍ട്ടുകള്‍ അല്ലെങ്കില്‍ പോര്‍ട്ട് പരിധികളും ചേര്‍ക്കുക, സിസ്റ്റത്തിലേക്കു് കണക്ട് ചെയ്യുവാന്‍ " "സാധ്യമായ നെറ്റ്‌വര്‍ക്കുകള്‍ അല്ലെങ്കില്‍ എല്ലാം ഹോസ്റ്റുകളിലേക്കുള്ള ഇവയ്ക്കു് പ്രവേശിയ്ക്കേണ്ടതുണ്ടു്." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "ഏത്തിച്ചേരണ്ട പോര്‍ട്ട്" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "പോര്‍ട്ട് ചിട്ടപ്പെടുത്തുക" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "പോര്‍ട്ട് നീക്കം ചെയ്യുക" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "പോര്‍ട്ടുകള്‍" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1167,26 +1161,26 @@ msgid "" msgstr "" "നിങ്ങളുടെ പ്രാദേശിക ശൃംഖലാ പ്രവര്‍ത്തനത്തിനെ ഇന്റര്‍നെറ്റുമായി ബന്ധപ്പെടുത്തുന്നതിനായി ഒരു " "ആതിഥേയന്‍ അല്ലെങ്കില്‍ റൂട്ടര്‍ നിങ്ങള്‍ ക്രമീകരിക്കുന്നു എങ്കില്‍ മാസ്ക്യുറേഡിംഗ് നിങ്ങള്‍ക്ക് " -"പ്രയോജനകരമാകുന്നു. നിങ്ങളുടെ പ്രാദേശിക ശൃംഖലാകര്മ്മം അദൃശ്യ‌മായിരിക്കും, മാത്രമല്ല, " -"ഇന്റര്‍നെറ്റില്‍ ആതിഥേയനെ ഒരു വിലാസമായി കണക്കാക്കുന്നു. മാസ്ക്യുറേഡിംഗ് IPv4 മാത്രമാണ്." +"പ്രയോജനകരമാകുന്നു. നിങ്ങളുടെ പ്രാദേശിക ശൃംഖലാകര്മ്മം അദൃശ്യ‌മായിരിക്കും, മാത്രമല്ല, ഇന്റര്‍" +"നെറ്റില്‍ ആതിഥേയനെ ഒരു വിലാസമായി കണക്കാക്കുന്നു. മാസ്ക്യുറേഡിംഗ് IPv4 മാത്രമാണ്." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "മാസ്ക്യുറേഡ് മേഘല" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" -"മാസ്ക്യുറേഡിങ് പ്രവര്‍ത്തന സജ്ജമാക്കുന്നെങ്കില്‍, നിങ്ങളുടെ IPv4 നെറ്റ്‌വര്‍ക്കു് ഐപി ഫോര്‍വേഡിങ് " -"പ്രവര്‍ത്തന സജ്ജമാക്കുന്നു." +"മാസ്ക്യുറേഡിങ് പ്രവര്‍ത്തന സജ്ജമാക്കുന്നെങ്കില്‍, നിങ്ങളുടെ IPv4 നെറ്റ്‌വര്‍ക്കു് ഐപി ഫോര്‍വേഡിങ് പ്രവര്‍" +"ത്തന സജ്ജമാക്കുന്നു." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "മാസ്ക്യുറേഡിംഗ്" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1195,22 +1189,22 @@ msgid "" msgstr "" "ഒരു പ്രാദേശിക വ്യവ്സ്ഥയിലുള്ള പോര്‍ട്ടില്‍ നിന്നും മറ്റൊന്നിലേക്ക് അല്ലെങ്കില്‍ ഒരു പ്രാദേശിക " "വ്യ‌വസ്ഥയില്‍നിന്നും മറ്റൊന്നിലേക്ക് പോര്‍ട്ടുകള്‍ അയയ്ക്കുന്നതിനായി എന്ട്രികള്‍ നല്‍കുക. വിനിമയതലം " -"മാസ്ക്യുറേഡ് ചെയ്തെങ്കില്‍ മാത്രമേ മറ്റൊരു സിസ്റ്റമിലേക്ക് അയയ്ക്കുന്നതില്‍ പ്രയോജനമുള്ളൂ. പോര്‍ട്ട് " -"ഫോര്‍വേര്‍ഡിംഗ് IPv4 മാത്രമാണ്." +"മാസ്ക്യുറേഡ് ചെയ്തെങ്കില്‍ മാത്രമേ മറ്റൊരു സിസ്റ്റമിലേക്ക് അയയ്ക്കുന്നതില്‍ പ്രയോജനമുള്ളൂ. പോര്‍ട്ട് ഫോര്‍" +"വേര്‍ഡിംഗ് IPv4 മാത്രമാണ്." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "ഫോര്‍വേഡ് പോര്‍ട്ട് ചേര്‍ക്കുക" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "ഫോര്‍വേഡ് പോര്‍ട്ട് ചിട്ടപ്പെടുത്തുക" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "ഫോര്‍വേഡ് പോര്‍ട്ട് നീക്കം ചെയ്യുക" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1220,7 +1214,7 @@ msgstr "" "ഇന്റര്‍നെറ്റ് കണ്ട്രോള്‍ മെസേജ് പ്രോട്ടോക്കോള്‍ (ICMP) ഉപയോഗിക്കുന്നത്. കൂടാതെ, വിവരങ്ങള്‍ " "ലഭ്യ‌മാക്കുവാന്‍ സഹായിക്കുന്ന പിങ് അപേക്ഷകള്‍ക്കും മറുപടികള്‍ക്കും ഇവ ഉപയോഗിക്കുന്നു." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1228,41 +1222,41 @@ msgstr "" "പട്ടികയില്‍ നിന്നും വേണ്ട എന്ന് തീരുമാനിക്കേണ്ട ICMP തരത്തിലുള്ളവ അടയാളപ്പെടുത്തുക. മറ്റെല്ലാ " "ICMP തരത്തിലുള്ളവയും ഫയര്‍വോള്‍ കടക്കുന്നതിന് അനുവാദമുള്ളവയാണ്. പരിമിതികളില്ലാത്തതാണ് സഹജം." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP ഫില്‍‌റ്റര്‍" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "മേഘലയ്ക്കുള്ള റിച്ച് ഭാഷ നിയമങ്ങള്‍ നിങ്ങള്‍ക്കിവിടെ സജ്ജമാക്കാം." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "റിച്ച് റൂള്‍ ചേര്‍ക്കുക" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "റിച്ച് റൂള്‍ ചിട്ടപ്പെട്ടുത്തുക" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "റിച്ച് റൂള്‍ നീക്കം ചെയ്യുക" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "റിച്ച് റൂളുകള്‍" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1270,98 +1264,98 @@ msgstr "" "മേഘലയ്ക്കു് സംയോജക ഘടകങ്ങള്‍ ബൈന്‍ഡ് ചെയ്യുന്നതിനു് എന്‍ട്രികള്‍ ചേര്‍ക്കുക. സംയോജകഘടകം ഒരു കണക്ഷന്‍ " "ഉപയോഗിയ്ക്കുന്നെങ്കില്‍, കണക്ഷനില്‍ വ്യക്തമാക്കിയിരിയ്ക്കുന്ന മേഘലയായി ഈ മേഘല സജ്ജമാക്കുന്നു." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "ഇന്റര്‍ഫെയിസ് ചേര്‍ക്കുക" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "ഇന്റര്‍ഫെയിസില്‍ മാറ്റം വരുത്തുക" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "ഇന്റര്‍ഫെയിസ് നീക്കം ചെയ്യുക" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "ഒരു ശ്രോതസ്സ് ചേര്‍ക്കുക" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "ശ്രോതസ്സില്‍ മാറ്റം വരുത്തുക" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "ശ്രോതസ്സ് നീക്കം ചെയ്യുക" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "മേഘലകള്‍" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -"പോര്‍ട്ടുകള്‍, സമ്പ്രദായങ്ങള്‍, ഘടകങ്ങള്‍, ലക്ഷ്യ വിലാസങ്ങള്‍ എന്നിവയെ ഒന്നിച്ചു് ഒരു firewalld " -"സര്‍വീസായി കണക്കാക്കുന്നു." +"പോര്‍ട്ടുകള്‍, സമ്പ്രദായങ്ങള്‍, ഘടകങ്ങള്‍, ലക്ഷ്യ വിലാസങ്ങള്‍ എന്നിവയെ ഒന്നിച്ചു് ഒരു firewalld സര്‍" +"വീസായി കണക്കാക്കുന്നു." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "സര്‍വീസ് ചേര്‍ക്കുക" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "സര്‍വീസ് ചിട്ടപ്പെടുത്തുക" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "സര്‍വീസ് നീക്കം ചെയ്യുക" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "സ്വതവേയുള്ള സര്‍വീസ് ലഭ്യമാക്കുക" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "എന്‍ട്രി ചിട്ടപ്പെടുത്തുക" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "എന്‍ട്രി നീക്കം ചെയ്യുക" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "ഘടകങ്ങള്‍" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1370,15 +1364,15 @@ msgstr "" "ലക്ഷ്യസ്ഥാന വിലാസങ്ങള്‍ നല്‍കുന്നെങ്കില്‍, ലക്ഷ്യസ്ഥാന വിലാസം , തരം എന്നതില്‍ സര്‍വീസ് എന്‍ട്രി " "ഒതുങ്ങുന്നു. രണ്ടു് എന്‍ട്രികളും കാലിയെങ്കില്‍ ഒരു പരിമിതികളുമില്ല." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1386,33 +1380,33 @@ msgstr "" "സ്ഥിരമായുള്ള ക്രമീകരണ കാഴ്ചയില്‍ മാത്രമേ സര്‍വീസുകള്‍ക്കു് മാറ്റം വരുത്തുവാന്‍ സാധിയ്ക്കൂ. സര്‍വീസുകളുടെ " "പ്രവര്‍ത്തന ക്രമീകരണം പരിഹരിച്ചിരിയ്ക്കുന്നു." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1420,26 +1414,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1447,27 +1441,27 @@ msgstr "" "firewalld-യ്ക്കുള്ളൊരു ഇന്റര്‍നെറ്റ് കണ്ട്രോള്‍ മസ്സേജ് പ്രോട്ടോക്കോള്‍ (ഐസിഎംപി) തരത്തിനുള്ള " "വിവരങ്ങള്‍ ഒരു firewalld icmptype ലഭ്യമാക്കുന്നു." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ഐസിഎംപി തരം ചേര്‍ക്കുക" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ഐസിഎംപി തരം ചിട്ടപ്പെടുത്തുക" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ഐസിഎംപി തരം നീക്കം ചെയ്യുക" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ഐസിഎംപി തരത്തിലുള്ളവ ലഭ്യമാക്കുക" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "IPv4, IPv6 എന്നിവയ്ക്കു് ഐസിഎംപി തരം ലഭ്യമാണോ എന്നു് വ്യക്തമാക്കുക." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1475,7 +1469,7 @@ msgstr "" "സ്ഥിരമായുള്ള ക്രമീകരണ കാഴ്ചയില്‍ മാത്രമേ ഐസിഎംപി തരങ്ങള്‍ക്കു് മാറ്റം വരുത്തുവാന്‍ സാധിയ്ക്കൂ. " "ഐസിഎംപി തരങ്ങളുടെ പ്രവര്‍ത്തന ക്രമീകരണം പരിഹരിച്ചിരിയ്ക്കുന്നു." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1483,11 +1477,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1495,11 +1489,11 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" "നേരിട്ടുള്ള ക്രമീകരണം ഫയര്‍വോളിലേക്കു് കൂടുതല്‍ അനുമതി നല്‍കുന്നു. ഈ ഐച്ഛികങ്ങള്‍ക്കു്, ഉപയോക്താവു് " -"അടിസ്ഥാന iptables ശൈലികള്‍, അതായതു്, പട്ടികകള്‍, ചെയിനുകള്‍, കമാന്‍ഡുകള്‍, പരാമീറ്ററുകള്‍, " -"ടാര്‍ഗറ്റുകള്‍ എന്നിവ അറിയേണ്ട ആവശ്യമുണ്ടു്. മറ്റു് firewalld വിശേഷതകള്‍ ഉപയോഗിയ്ക്കുവാന്‍ സാധ്യമല്ല " +"അടിസ്ഥാന iptables ശൈലികള്‍, അതായതു്, പട്ടികകള്‍, ചെയിനുകള്‍, കമാന്‍ഡുകള്‍, പരാമീറ്ററുകള്‍, ടാര്‍" +"ഗറ്റുകള്‍ എന്നിവ അറിയേണ്ട ആവശ്യമുണ്ടു്. മറ്റു് firewalld വിശേഷതകള്‍ ഉപയോഗിയ്ക്കുവാന്‍ സാധ്യമല്ല " "എന്നുറപ്പുള്ളപ്പോള്‍ മാത്രം നേരിട്ടുള്ള ക്രമീകരണം ഉപയോഗിയ്ക്കുവാന്‍ പാടുള്ളൂ." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1509,33 +1503,45 @@ msgstr "" "ipv4 - iptables, ipv6 - ip6tables, eb - ഇഥര്‍നെറ്റ് ബ്രിഡ്ജുകള്‍ക്കു് (ebtables) " "എന്നിങ്ങനെയാകുന്നു." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "നിയമങ്ങള്‍ക്കൊപ്പം ഉപയോഗിയ്ക്കുന്നതിനുള്ള അധികമായ ചെയിനുകള്‍." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "ചെയിന്‍ ചേര്‍ക്കുക" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "ചെയിനില്‍ മാറ്റം വരുത്തുക" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "ചെയിന്‍ നീക്കം ചെയ്യുക" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "ചെയിനുകള്‍" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" "മുന്‍ഗണനയ്ക്കൊപ്പം ഒരു പട്ടികയില്‍ ഒരു ചെയിനിനു് args ആര്‍ഗ്യുമെന്റുകള്‍ക്കൊപ്പം ഒരു നിയമം ചേര്‍ക്കുക." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "നിയമം ചേര്‍ക്കുക" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "നിയമത്തില്‍ മാറ്റം വരുത്തുക" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "നിയമം‍ നീക്കം ചെയ്യുക" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1549,23 +1555,11 @@ msgstr "" "തലത്തിലാകുന്നു. ഇവയുടെ ക്രമം സ്ഥിരമല്ല, മാറ്റുവാന്‍ സാധ്യമാകുന്നു. ഒന്നിനു് ശേഷം മറ്റൊന്നായി " "നിയമം ചേര്‍ക്കുന്നതിനു്, ആദ്യം മുന്‍ഗണന കുറഞ്ഞതു് ഉപയോഗിയ്ക്കുക ശേഷം മുന്‍ഗണന കൂടിയതു്, അങ്ങനെ..." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "നിയമം ചേര്‍ക്കുക" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "നിയമത്തില്‍ മാറ്റം വരുത്തുക" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "നിയമം‍ നീക്കം ചെയ്യുക" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "നിയമങ്ങള്‍" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1574,311 +1568,208 @@ msgstr "" "പാസ്ത്രൂ നിയമങ്ങള്‍ പ്രത്യേക ചെയിനിലല്ല, പക്ഷേ നേരിട്ടു് ഫയര്‍വോളിലേക്കു് അയയ്ക്കുന്നു. iptables, " "ip6tables, ebtables എന്നിവയെല്ലാം ഉപയോഗിയ്ക്കാം." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "പാസ്ത്രൂ നിയമങ്ങള്‍ ഫയര്‍വോളിനെ ബാധിയ്ക്കുന്നില്ലെന്നു് ദയവായി ഉറപ്പു് വരുത്തുക." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "പാസ്ത്രൂ ചേര്‍ക്കുക" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "പാസ്ത്രൂ ചിട്ടപ്പെടുത്തുക" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "പാസ്ത്രൂ നീക്കം ചെയ്യുക" -#: ../src/firewall-config.glade.h:193 +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." +msgstr "പാസ്ത്രൂ നിയമങ്ങള്‍ ഫയര്‍വോളിനെ ബാധിയ്ക്കുന്നില്ലെന്നു് ദയവായി ഉറപ്പു് വരുത്തുക." + +#: ../src/firewall-config.glade.h:186 msgid "Passthrough" msgstr "പാസ്ത്രൂ" -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"firewalld-യ്ക്കുള്ള ഉപയോക്താവിനും പ്രയോഗത്തിനുമുള്ള ലളിതമായ പോളിസികളാണു് ലോക്ക്ഡൌണ്‍ വിശേഷത. " -"ഇതു് ഫയര്‍വോളില്‍ മാത്രമേയുള്ളൂ. ലോക്ക്ഡൌണ്‍ വൈറ്റ് ലിസ്റ്റില്‍ കമാന്‍ഡുകള്‍, സന്ദര്‍ഭങ്ങള്‍, ഉപയോക്താക്കള്‍, " -"ഉപയോക്തൃ ഐഡികള്‍ എന്നിവ അടങ്ങുന്നു." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "സന്ദര്‍ഭം ചേര്‍ക്കുക" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "സന്ദര്‍ഭം ചിട്ടപ്പെടുത്തുക" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "സന്ദര്‍ഭം നീക്കം ചെയ്യുക" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "സന്ദര്‍ഭങ്ങള്‍" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"വൈറ്റ് ലിസ്റ്റിലുള്ളൊരു കമാന്‍ഡ് എന്‍ട്രി '*'-ല്‍ അവസാനിയ്ക്കുന്നെങ്കില്‍, കമാന്‍‍ഡില്‍ ആരംഭിയ്ക്കുന്ന എല്ലാ " -"കമാന്‍ഡ് ലൈനുകളും ചേരുന്നു. '*' ലഭ്യമല്ലെങ്കില്‍, ആര്‍ഗ്യുമെന്റുകള്‍ ഉള്‍പ്പടെയുള്ള ആബ്സല്യൂട്ട് കമാന്‍ഡും " -"പൊരുത്തപ്പെടണം. " - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "കമാന്‍ഡ് ലൈന്‍ ചേര്‍ക്കുക" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "കമാന്‍ഡ് ലൈന്‍ ചിട്ടപ്പെടുത്തുക" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "കമാന്‍ഡ് ലൈന്‍ നീക്കം ചെയ്യുക" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "കമാന്‍ഡ് ലൈനുകള്‍" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "ഉപയോക്താവിന്റെ പേരുകള്‍." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "ഉപയോക്തൃനാമം ചേര്‍ക്കുക" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "ഉപയോക്തൃനാമം ചിട്ടപ്പെടുത്തുക" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "ഉപയോക്തൃനാമം നീക്കം ചെയ്യുക" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "ഉപയോക്താവിന്റെ പേരുകള്‍" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "ഉപയോക്താവിന്റെ ഐഡികള്‍." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "ഉപയോക്തൃ ഐഡി ചേര്‍ക്കുക" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "ഉപയോക്തൃ ഐഡിയില്‍ മാറ്റം വരുത്തുക" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "ഉപയോക്തൃ ഐഡി നീക്കം ചെയ്യുക" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "ഉപയോക്താവിന്റെ ഐഡികള്‍" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "സിസ്റ്റത്തില്‍ നിലവില്‍ സ്വതവേയുള്ള മേഘല." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "പാനിക്ക് മോഡ്:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "ലോക്ക്ഡൌണ്‍:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "സ്വതവേയുള്ള മേഘല:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "പോര്‍ട്ടും സമ്പ്രദായവും" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "ഒരു പോര്‍ട്ടും സമ്പ്രദായവും ദയവായി നല്‍കുക." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "നേരിട്ടുള്ള നിയമം" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "ipv, പട്ടിക, ചെയിന്‍ മുന്‍ഗണം എന്നിവ പരിശോധിച്ചു് ആര്‍ഗ്യുമെന്റുകള്‍ നല്‍കുക." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "മുന്‍ഗണന:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "ദയവായി ഒരു സമ്പ്രദായം നല്‍കുക." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "മറ്റുള്ള സമ്പ്രദായം:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "റിച്ച് റൂള്‍" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "ദയവായി ഒരു റിച്ച് റൂള്‍ നല്‍കുക." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "" -"ഹോസ്റ്റ് അല്ലെങ്കില്‍ നെറ്റ്‌വര്‍ക്കിനു്, വൈറ്റ് അല്ലെങ്കില്‍ ബ്ലാക്ക് ലിസ്റ്റ് ചെയ്തതിനു് എലമെന്റ് " -"നിര്‍ജീവമാക്കുക." +"ഹോസ്റ്റ് അല്ലെങ്കില്‍ നെറ്റ്‌വര്‍ക്കിനു്, വൈറ്റ് അല്ലെങ്കില്‍ ബ്ലാക്ക് ലിസ്റ്റ് ചെയ്തതിനു് എലമെന്റ് നിര്‍" +"ജീവമാക്കുക." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "ശ്രോതസ്സ്:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "ലക്ഷ്യസ്ഥാനം:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "ലോഗ്:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "ഓഡിറ്റ് ചെയ്യുക:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4-ഉം ipv6-ഉം" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "വിപിരീതമായ" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1886,78 +1777,172 @@ msgstr "" "പ്രവര്‍ത്തനസജ്ജമാക്കുന്നതിനായി, ഈ പ്രവര്‍ത്തി 'reject' ചെയ്തു് കുടുംബം 'ipv4' അല്ലെങ്കില്‍ " "'ipv6' ആയിരിയ്ക്കണം (രണ്ടും പാടില്ല )." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "തരം:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "പരിധി:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "പ്രീഫിക്സ്:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "തലം:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "എലമെന്റ്:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "പ്രവര്‍ത്തി:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "അടിസ്ഥാന സര്‍വീസ് സജ്ജീകരണങ്ങള്‍" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "അടിസ്ഥാന സര്‍വീസ് സജ്ജീകരണങ്ങള്‍ ദയവായി ക്രമീകരിയ്ക്കുക:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "ദയവായി ഒരു സര്‍വീസ് തെരഞ്ഞെടുക്കുക." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ഉപയോക്തൃ ഐഡി" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "ദയവായി ഉപയോക്തൃ ഐഡി നല്‍കുക." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "ദയവായി ഉപയോക്തൃനാമം നല്‍കുക." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "അടിസ്ഥാന മേഘല സജ്ജീകരണങ്ങള്‍" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "ദയവായി അടിസ്ഥാന മേഘല സജ്ജീകരണങ്ങള്‍ ക്രമീകരിയ്ക്കുക:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "സ്വതവേയുള്ള ലക്ഷ്യസ്ഥാനം" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "ലക്ഷ്യസ്ഥാനം:" + +#~ msgid "User name" +#~ msgstr "ഉപയോക്തൃനാമം" + +#~ msgid "Please enter the command line." +#~ msgstr "ദയവായി കമാന്‍ഡ് ലൈന്‍ നല്‍കുക." + +#~ msgid "Please enter the context." +#~ msgstr "ദയവായി സന്ദര്‍ഭം നല്‍കുക." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "ലോക്ക്‍ഡൌണ്‍ ഫയര്‍വോള്‍ ക്രമീകരണം പൂട്ടുന്നു. ഇങ്ങനെ വൈറ്റ്‌ലിസ്റ്റിലുള്ള പ്രയോഗങ്ങള്‍ക്കു് മാത്രമേ ഇതില്‍ " +#~ "മാറ്റം വരുത്തുവാന്‍ സാധ്യമാകൂ." + +#~ msgid "Lockdown" +#~ msgstr "ലോക്ക് ഡൌണ്‍" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "ലോക്ക്ഡൌണ്‍ വൈറ്റ് ലിസ്റ്റ്" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "firewalld-യ്ക്കുള്ള ഉപയോക്താവിനും പ്രയോഗത്തിനുമുള്ള ലളിതമായ പോളിസികളാണു് ലോക്ക്ഡൌണ്‍ " +#~ "വിശേഷത. ഇതു് ഫയര്‍വോളില്‍ മാത്രമേയുള്ളൂ. ലോക്ക്ഡൌണ്‍ വൈറ്റ് ലിസ്റ്റില്‍ കമാന്‍ഡുകള്‍, സന്ദര്‍ഭങ്ങള്‍, " +#~ "ഉപയോക്താക്കള്‍, ഉപയോക്തൃ ഐഡികള്‍ എന്നിവ അടങ്ങുന്നു." + +#~ msgid "Add Context" +#~ msgstr "സന്ദര്‍ഭം ചേര്‍ക്കുക" + +#~ msgid "Edit Context" +#~ msgstr "സന്ദര്‍ഭം ചിട്ടപ്പെടുത്തുക" + +#~ msgid "Remove Context" +#~ msgstr "സന്ദര്‍ഭം നീക്കം ചെയ്യുക" + +#~ msgid "Contexts" +#~ msgstr "സന്ദര്‍ഭങ്ങള്‍" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "വൈറ്റ് ലിസ്റ്റിലുള്ളൊരു കമാന്‍ഡ് എന്‍ട്രി '*'-ല്‍ അവസാനിയ്ക്കുന്നെങ്കില്‍, കമാന്‍‍ഡില്‍ ആരംഭിയ്ക്കുന്ന " +#~ "എല്ലാ കമാന്‍ഡ് ലൈനുകളും ചേരുന്നു. '*' ലഭ്യമല്ലെങ്കില്‍, ആര്‍ഗ്യുമെന്റുകള്‍ ഉള്‍പ്പടെയുള്ള ആബ്സല്യൂട്ട് " +#~ "കമാന്‍ഡും പൊരുത്തപ്പെടണം. " + +#~ msgid "Add Command Line" +#~ msgstr "കമാന്‍ഡ് ലൈന്‍ ചേര്‍ക്കുക" + +#~ msgid "Edit Command Line" +#~ msgstr "കമാന്‍ഡ് ലൈന്‍ ചിട്ടപ്പെടുത്തുക" + +#~ msgid "Remove Command Line" +#~ msgstr "കമാന്‍ഡ് ലൈന്‍ നീക്കം ചെയ്യുക" + +#~ msgid "Command lines" +#~ msgstr "കമാന്‍ഡ് ലൈനുകള്‍" + +#~ msgid "User names." +#~ msgstr "ഉപയോക്താവിന്റെ പേരുകള്‍." + +#~ msgid "Add User Name" +#~ msgstr "ഉപയോക്തൃനാമം ചേര്‍ക്കുക" + +#~ msgid "Edit User Name" +#~ msgstr "ഉപയോക്തൃനാമം ചിട്ടപ്പെടുത്തുക" + +#~ msgid "Remove User Name" +#~ msgstr "ഉപയോക്തൃനാമം നീക്കം ചെയ്യുക" + +#~ msgid "User names" +#~ msgstr "ഉപയോക്താവിന്റെ പേരുകള്‍" + +#~ msgid "User ids." +#~ msgstr "ഉപയോക്താവിന്റെ ഐഡികള്‍." + +#~ msgid "Add User Id" +#~ msgstr "ഉപയോക്തൃ ഐഡി ചേര്‍ക്കുക" + +#~ msgid "Edit User Id" +#~ msgstr "ഉപയോക്തൃ ഐഡിയില്‍ മാറ്റം വരുത്തുക" + +#~ msgid "Remove User Id" +#~ msgstr "ഉപയോക്തൃ ഐഡി നീക്കം ചെയ്യുക" + +#~ msgid "User Ids" +#~ msgstr "ഉപയോക്താവിന്റെ ഐഡികള്‍" + +#~ msgid "Lockdown:" +#~ msgstr "ലോക്ക്ഡൌണ്‍:" + +#~ msgid "User ID" +#~ msgstr "ഉപയോക്തൃ ഐഡി" + +#~ msgid "Please enter the user id." +#~ msgstr "ദയവായി ഉപയോക്തൃ ഐഡി നല്‍കുക." + +#~ msgid "Please enter the user name." +#~ msgstr "ദയവായി ഉപയോക്തൃനാമം നല്‍കുക." diff --git a/po/mr.po b/po/mr.po index 66f769b..52cb9f1 100644 --- a/po/mr.po +++ b/po/mr.po @@ -15,7 +15,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 10:00+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Marathi (http://www.transifex.com/projects/p/firewalld/" @@ -31,11 +31,45 @@ msgstr "" msgid "Firewall Applet" msgstr "फायरवॉल ॲपलेट" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "फायरवॉल संयोजना" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "फायरवॉल" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "फायरवॉल संयोजना" @@ -44,24 +78,24 @@ msgstr "फायरवॉल संयोजना" msgid "firewall;network;security;iptables;netfilter;" msgstr "फायरवॉल;नेटवर्क;सुरक्षा;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "संवाद '%s' करिता क्षेत्र निवडा" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "पूर्वनिर्धारित झोन" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "जोडणी '%s' करिता झोन निवडा" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -111,152 +145,152 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "शिल्डस् अप" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "सूचना सुरू करा" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "फायरवॉल सेटिंग्ज संपादित करा..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "जोडणींचे क्षेत्रांमध्ये बदल करा..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "शिल्डस् अप किंवा डाउन क्षेत्र संरचीत करा..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "सर्व नेटवर्क ट्राफिक अडवा" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "जोडणी" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" -msgstr "" +msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "सोअर्सेस" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "ओळख पटवणे अपयशी." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "अवैध बाब %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "नाव आधीपासूनच अस्तित्वात आहे" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "firewall डिमनकरिता जोडणी नाही" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "सर्व नेटवर्क ट्राफिक अडवले आहे." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "पूर्वनिर्धारित क्षेत्र: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "संवाद '{interface}' वरील जोडणी '{connection}' करिता क्षेत्र '{zone}' सक्रीय" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "संवाद '{interface}' करिता क्षेत्र '{zone}' सक्रीय" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "स्रोत {source} करिता क्षेत्र '{zone}' सक्रीय" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "सक्रीय क्षेत्र नाही." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallD करिता जोडणी स्थापीत केले." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallD करिता जोडणी हरवले." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD पुन्हा लोड केले आहे." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "पूर्वनिर्धारित क्षेत्रला '%s' करिता बदलले आहे." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "नेटवर्क ट्राफिक यापुढे अडवले जात नाही." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "सक्रीय केले" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "निष्क्रीय केले" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -264,20 +298,20 @@ msgstr "" "संवाद '{interface}' वरील जोडणी '{connection}' करिता क्षेत्र " "'{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "संवाद '{interface}' करिता क्षेत्र '{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "क्षेत्र '%s' सक्रीय केले, संवाद '%s' करिता" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "सोअर्स '{source}' करिता क्षेत्र '{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "सोअर्स '%s' करिता क्षेत्र '%s' सक्रीय केले" @@ -322,328 +356,312 @@ msgstr "बंद केले" msgid "Failed to load icons." msgstr "चिन्ह लोड करण्यास अपयशी." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "वापरकर्ता नाव" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "रनटाइम" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "कायम" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "सेवा" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "पोर्ट" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "शिष्टाचार" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "प्रति पोर्ट" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "प्रति पत्ता" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "ICMP प्रकार" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "फॅमिली" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "कृती" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "घटक" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Src" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "लक्ष्य" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "लॉग" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "ऑडिट" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "सोअर्स" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "ताकीद" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "त्रुटी" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "स्वीकार करा" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "नकारा" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "वगळा" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "मर्यादा" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "सर्व्हिस" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "पोर्ट" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "प्रोटोकॉल" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "मास्क्युरेड" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "forward-port" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "स्तर" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "होय" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "क्षेत्र" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "क्षेत्र '%s': सर्व्हिस '%s' अनुपलब्ध." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "काढून टाका" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "दुर्लक्ष करा" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "क्षेत्र '%s': ICMP प्रकार '%s' अनुपलब्ध." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "बिल्ट-इन झोन, पुनःनाव देणे समर्थीत नाही." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "सेकंद" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "मिनिट" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "तास" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "दिवस" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "संकट" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "सावधानता" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "गंभीर" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "त्रुटी" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "सावधानता" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "सूचना" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "माहिती" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "डिबग करा" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -652,81 +670,81 @@ msgstr "" "संवाद संक्रमीत झाले असल्यावरच इतर प्रणालीकरिता फॉरवर्ड करणे उपयोगी ठरते.\n" "तुम्हाला हे झोन मास्क्युरेड करायचे ?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "बिल्ट-इन सर्व्हिस, पुनःनामांकन समर्थीत नाही." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "बिल्ट-इन icmp, पुनःनाव देणे समर्थीत नाही." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "सोअर्स %s करिता क्षेत्र निवडा" @@ -745,91 +763,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "कृपया आदेश ओळ द्या." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "कृपया संदर्भ द्या." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "कृपया खालील सूचीपासून पूर्वनिर्धारित झोन निवडा." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "डाइरेक्ट चैन" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "कृपया ipv आणि तक्ता निवडा आणि चैनचे नाव द्या." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "चैन:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "रॉ" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "सुरक्षा" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "तक्ता:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "डाइरेक्ट पासथ्रु नियम" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "कृपया ipv निवडा आणि बाबी द्या." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "बाबी:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "पोर्ट फॉरवर्डीग" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "कृपया स्त्रोत व लक्ष्य पर्याय तुमच्या आवश्यकतेप्रणाणे वापरा." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "पोर्ट / पोर्ट क्षेत्र:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP पत्ता:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "प्रोटोकॉल:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "लक्ष्य" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -837,107 +847,107 @@ msgstr "" "स्थानीक फॉर्वडींग कार्यान्वीत केल्यास, तुम्हाला पोर्ट निर्देशीत करावे लागेल. स्त्रोत पोर्ट " "करीता हे पोर्ट वेगळे असायला हवे." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "स्थानीक फॉरवर्डीग" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "पुढच्या पोर्ट करीता पाठवा" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "ठलक नोंदणी आवश्यक आहे, इतर सर्व वैकल्पिक आहे." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "नाव:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "आवृत्ती:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "छोटे:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "वर्णन:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "फॅमिली:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "बेस ICMP प्रकार सेटिंग्ज" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "कृपया बेस ICMP प्रकार सेटिंग्ज संरचीत करा:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP प्रकार" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "कृपया ICMP प्रकार पसंत करा" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "नोंदणी समावेश करा" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "फाइल (_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "पर्याय (_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Firewalld पुन्हा लोड करा" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -946,116 +956,101 @@ msgstr "" "फायरवॉल रूल्स पुन्हा लोड करतो. सध्याची कायम संरचना नविन रनटाइम संचरना बनेल. म्हणजेच " "कायम संरचनामध्ये न आढळल्यास रिलोड पर्यंतचे फक्त रनटाइम बदल गमवले जातात." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "नेटवर्क जोडणी कोणत्या झोनच्या मालकीचे आहे, ते बदला." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "पूर्वनिर्धारित क्षेत्र बदला" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "जोडण्या किंवा संवादकरिता पूर्वनिर्धारित झोन बदला." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "पॅनिक मोड म्हणजे सर्व येणारे आणि बाहेर जाणारे पॅकेट्स वगळले जातात." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "पॅनिक मोड" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"लॉकडाऊन फायरवॉल संरचना कुलूपबंद करते जेणेकरूण फक्त लॉकडाऊनकरिता ॲप्लिकेशन्स त्यास बदलू शकेल." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "कुलूपबंद करा" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "रनटाइम संरचना कायमचे करा" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "रनटाइम कायमचे करा" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "अवलोकन (_V)" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP प्रकार" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "डाइरेक्ट संरचना" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "लॉकडाऊन वाइटलिस्ट" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "मदत (_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "संरचना:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1064,7 +1059,7 @@ msgstr "" "सध्या दृश्यास्पद संरचना. रनटाइम संरचना वास्तविक सक्रीय संरचना आहे. सर्व्हिस किंवा " "प्रणालीला पुन्हा लोड किंवा पुन्हा सुरू केल्यानंतर कायम संरचना सक्रीय केली जाईल." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1077,23 +1072,23 @@ msgstr "" "फॉरवर्डिंग, icmp फिल्टर्स व रिच रूल्स एकत्रीत करतो. क्षेत्र इंटरफेसेस व सोअर्स पत्त्यांकरिता " "बांधणी करतो." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "क्षेत्र समावेश करा" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "क्षेत्र संपादित करा" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "क्षेत्र काढून टाका" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "क्षेत्र पूर्वनिर्धारित लोड करा" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1103,11 +1098,11 @@ msgstr "" "यजमानांपासून व ह्या झोनकरिता बांधीत असलेल्या जोडणी, संवाद व सोअर्सेसपासून मशीनपर्यंत " "पोहचण्याजोगी नेटवर्कसकरिता प्रवेशजोगी आहेत." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "सर्व्हिसेस" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1115,53 +1110,53 @@ msgstr "" "अगाऊ पोर्टस् किंवा पोर्ट व्याप्ति समाविष्ट करा, जे सर्व यजमान किंवा मशनसह जोडणीजोगी " "नेटवर्ककरिता प्रवेशजोगी असायला हवे." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "प्रति पोर्ट" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "पोर्ट संपादित करा" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "पोर्ट काढून टाका" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "पोर्टस्" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1171,21 +1166,21 @@ msgstr "" "परवानगी देतो. तुमचे स्थानीक संजाळ दिसणार नाही व इंटरनेटवर यजमान एक पत्ता म्हणूनच दिसून " "येईल. मास्क्युरेडींग फक्त IPv4 करीता आहे." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "मास्क्युरेड क्षेत्र" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "मास्क्युरेडिंग सुरू करताना, IP फॉर्वरर्डिंग IPv4 नेटवर्क्सकरिता सुरू केले जाईल." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "मास्क्युरेडींग" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1196,19 +1191,19 @@ msgstr "" "इतर पोर्ट पर्यंत पोर्ट फॉर्वड करण्यासाठी नोंदणी जोडा. अन्य प्रणाली करीता फॉर्वडींग " "तेव्हाच उपयोगी ठरेल जेव्हा संवाद लपविला जाईल. पोर्ट फॉर्वडींग फक्त IPv4 करीता आहे." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "फॉरवर्ड पोर्ट समाविष्ट करा" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "फॉरवर्ड पोर्ट संपादित करा" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "फॉरवर्ड पोर्ट काढून टाका" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1218,7 +1213,7 @@ msgstr "" "पाठविण्याकीरता केला जातो, पण अगाऊरित्या माहिती संदेश करीता देखील वापरला जातो जसे की " "पींग विनंती किंवा प्रतिसाद." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1226,41 +1221,41 @@ msgstr "" "यादीतील ICMP प्रकार, जे स्वीकारले नाही पाहिजे. इतर सर्व ICMP प्रकार फायरवॉल ला भेदून " "जाऊ शकतात. पूर्वनिर्धारीतवर मर्यादा नाही." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP फिल्टर" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "क्षेत्रकरिता तुम्ही येथे रिच लँगवेज रूल्स सेट करू शकता." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "रिच रूल समाविष्ट करा" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "रिच रूल संपादित करा" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "रिच रूल काढून टाका" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "रिच रूल्स" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1268,96 +1263,96 @@ msgstr "" "संवादांना झोनकरिता बांधणी करण्यासाठी नोंदणी समाविष्ट करा. जोडणीतर्फे संवादचा वापर " "करायचे असल्यास, जोडणीमध्ये निर्देशीत झोनकरिता झोन सेट केले जाईल." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "संवाद समाविष्ट करा" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "संवाद संपादित करा" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "संवाद काढून टाका" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "सोअर्स समाविष्ट करा" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "सोअर्स संपादित करा" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "सोअर्स काढून टाका" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "झोन्स" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "firewalld सर्व्हिस पोर्टस्, प्रोटोकॉल्स, घटक व लक्ष्य पत्त्यांचे एकत्रीकरण आहे." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "सर्व्हिस समाविष्ट करा" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "सर्व्हिस संपादित करा" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "सर्व्हिस काढून टाका" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "सर्व्हिस पूर्वनिर्धारित लोड करा" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "नोंदणी संपादीत करा" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "नोंदणी हटवा" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "घटक" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1366,15 +1361,15 @@ msgstr "" "लक्ष्य पत्ता निर्देशीत केल्यास, सर्व्हिस नोंदणी लक्ष्य पत्ता व प्रकारकरिता मर्यादीत राहेल. " "दोंही नोंदणी रिकामे असल्यास, कुठलिही मर्यादा राहत नाही." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1382,33 +1377,33 @@ msgstr "" "सर्व्हिसेसला फक्त नेहमीच्या संरचना दृष्यमध्ये बदलणे शक्य आहे. सर्व्हिसेसची रनटाइम संरचना ठरवले " "आहे." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1416,26 +1411,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1443,28 +1438,28 @@ msgstr "" "firewalldसाठी इंटरनेट कंट्रोल मेसेज प्रोटोकॉल (ICMP) प्रकारकरिता firewalld icmptype " "माहिती पुरवते." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP प्रकार समाविष्ट करा" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP प्रकार संपादित करा" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ICMP प्रकार काढून टाका" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP प्रकार पूर्वनिर्धारित लोड करा" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" "IPv4 आणि किंवा IPv6 करिता हे ICMP प्रकार उपलब्ध आहे किंवा नाही ते निर्देशीत करा." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1472,7 +1467,7 @@ msgstr "" "ICMP प्रकारला कायमस्वरूपी संरचना दृष्यमध्ये बदलणे शक्य आहे. ICMP प्रकारची रनटाइम संरचना " "ठरवली आहे." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1480,11 +1475,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1496,7 +1491,7 @@ msgstr "" "प्रत्यक्ष संरचनेचा वापर शेवटचा पर्याय म्हणून करावा जेव्हा इतर फायरवॉल्ड गुणविशेषांचा वापर " "शक्य होत नाही." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1506,32 +1501,44 @@ msgstr "" "करिता, ipv6 असल्यास ip6tables करिता आणि eb असल्यास for इथरनेट ब्रिजेसकरिता " "(ebtables) असायला हवे." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "नियमसह वापरण्याजोगी अगाऊ चैन्स." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "चैन समाविष्ट करा" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "चैन संपादित करा" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "चैन काढून टाका" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "चैन्स" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "प्राधान्यतासह तक्तामध्ये चैनकरिता आर्ग्युमेंट्स args सह नियम समाविष्ट करा." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "नियम समाविष्ट करा" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "नियम संपादित करा" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "नियम काढून टाका" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1547,23 +1554,11 @@ msgstr "" "पहिल्या नियमकरिता किमान प्राधान्यताचा वापर करा आणि खालीलकरिता जास्त प्राधान्यताचा " "वापर करा." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "नियम समाविष्ट करा" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "नियम संपादित करा" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "नियम काढून टाका" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "नियम" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1572,308 +1567,206 @@ msgstr "" "फायरवॉलकरिता पासथ्रु नियम प्रत्यक्षरित्या पुरवले जातात आणि त्यास विशेष चैनमध्ये स्थित केले " "जात नाही. सर्व iptables, ip6tables आणि ebtables पर्यायांचा वापर शक्य आहे." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "कृपया फायरवॉल नष्ट होणार नाही याची पासथ्रु नियमतर्फे काळजी घ्या." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "पासथ्रु समाविष्ट करा" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "पासथ्रु संपादित करा" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "पासथ्रु काढून टाका" -#: ../src/firewall-config.glade.h:193 +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." +msgstr "कृपया फायरवॉल नष्ट होणार नाही याची पासथ्रु नियमतर्फे काळजी घ्या." + +#: ../src/firewall-config.glade.h:186 msgid "Passthrough" msgstr "पासथ्रु" -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"firewalld करिता लॉकडाऊन वापरकर्ता व ॲप्लिकेशन करारचे लाइटवेट गुणधर्म आहे. ते " -"फायरवॉलकरिता बदल मर्यादीत ठेवते. लॉकडाउन वाइटलिस्टमध्ये आदेश, संदर्भ, वापरकर्ते व युजर " -"आयडीज समाविष्टीत असू शकते." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "संदर्भ समाविष्ट करा" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "संदर्भ संपादित करा" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "संदर्भ काढून टाका" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "संदर्भ" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"वाइटलिस्ट वरील आदेश नोंदणी ॲस्टेरिस्क '*' सह समाप्त होत असल्यास, आदेश पासून सुरू होणारे " -"सर्व आदेश ओळ जुळतील. '*' हे ॲबसोल्युट आदेश अंतर्गत न आढळल्यास परस्पर बाबी जुळायला पाहिजे." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "आदेश ओळ समाविष्ट करा" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "आदेश ओळ संपादित करा" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "आदेश ओळ काढून टाका" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "आदेश ओळ" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "वापरकर्ता नावे." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "वापरकर्ता नाव समाविष्ट करा" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "वापरकर्ता नाव संपादित करा" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "वापरकर्ता नाव काढून टाका" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "वापरकर्ता नावे" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "युजर आयडीज." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "वापरकर्ता Id समाविष्ट करा" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "वापरकर्ता Id संपादित करा" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "वापरकर्ता Id काढून टाका" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "युजर आयडीज" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "प्रणालीचे सध्याचे पूर्वनिर्धारित क्षेत्र." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "पॅनिक मोड:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "लॉकडाउन:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "पूर्वनिर्धारित क्षेत्र:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "पोर्ट व शिष्टाचार" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "कृपया पोर्ट व प्रोटोकॉल भरा." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "डाइरेक्ट नियम" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "कृपया ipv आणि तक्ता, चैन प्राधान्यता आणि बाबी निवडा." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "प्राधान्यता:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "कृपया प्रोटोकॉल द्या." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "इतर प्रोटोकॉल:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "रिच रूल" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "कृपया रिच रूल भरा." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "यजमान किंवा नेटवर्ककरिता घटकांना निष्क्रीय करण्यासाठी वाइट किंवा ब्लॅकलिस्ट करा." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "सोअर्स:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "1लक्ष्य:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "लॉग:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "ऑडिट:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 आणि ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "इनवर्टेड" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1881,78 +1774,172 @@ msgstr "" "सुरू करण्यासाठी ह्या कृतीला 'reject' करा आणि फॅमिलि एकतर 'ipv4' किंवा 'ipv6' (दोन्ही " "नाही) पाहिजे." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "प्रकार सह:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "मर्यादा सह:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "प्रिफिक्स:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "स्तर:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "घटक:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "कृती:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "बेस सर्व्हिस सेटिंग्ज" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "कृपया बेस सर्व्हिस सेटिंग्ज संरचीत करा:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "कृपया सर्व्हिस निवडा." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "युजर ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "कृपया युजर id द्या." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "कृपया वापरकर्ता नाव द्या." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "बेस क्षेत्र सेटिंग्ज" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "कृपया बेस क्षेत्र सेटिंग्ज संरचीत करा:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "पूर्वनिर्धारित लक्ष्य" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "लक्ष्य:" + +#~ msgid "User name" +#~ msgstr "वापरकर्ता नाव" + +#~ msgid "Please enter the command line." +#~ msgstr "कृपया आदेश ओळ द्या." + +#~ msgid "Please enter the context." +#~ msgstr "कृपया संदर्भ द्या." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "लॉकडाऊन फायरवॉल संरचना कुलूपबंद करते जेणेकरूण फक्त लॉकडाऊनकरिता ॲप्लिकेशन्स त्यास बदलू " +#~ "शकेल." + +#~ msgid "Lockdown" +#~ msgstr "कुलूपबंद करा" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "लॉकडाऊन वाइटलिस्ट" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "firewalld करिता लॉकडाऊन वापरकर्ता व ॲप्लिकेशन करारचे लाइटवेट गुणधर्म आहे. ते " +#~ "फायरवॉलकरिता बदल मर्यादीत ठेवते. लॉकडाउन वाइटलिस्टमध्ये आदेश, संदर्भ, वापरकर्ते व " +#~ "युजर आयडीज समाविष्टीत असू शकते." + +#~ msgid "Add Context" +#~ msgstr "संदर्भ समाविष्ट करा" + +#~ msgid "Edit Context" +#~ msgstr "संदर्भ संपादित करा" + +#~ msgid "Remove Context" +#~ msgstr "संदर्भ काढून टाका" + +#~ msgid "Contexts" +#~ msgstr "संदर्भ" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "वाइटलिस्ट वरील आदेश नोंदणी ॲस्टेरिस्क '*' सह समाप्त होत असल्यास, आदेश पासून सुरू " +#~ "होणारे सर्व आदेश ओळ जुळतील. '*' हे ॲबसोल्युट आदेश अंतर्गत न आढळल्यास परस्पर बाबी " +#~ "जुळायला पाहिजे." + +#~ msgid "Add Command Line" +#~ msgstr "आदेश ओळ समाविष्ट करा" + +#~ msgid "Edit Command Line" +#~ msgstr "आदेश ओळ संपादित करा" + +#~ msgid "Remove Command Line" +#~ msgstr "आदेश ओळ काढून टाका" + +#~ msgid "Command lines" +#~ msgstr "आदेश ओळ" + +#~ msgid "User names." +#~ msgstr "वापरकर्ता नावे." + +#~ msgid "Add User Name" +#~ msgstr "वापरकर्ता नाव समाविष्ट करा" + +#~ msgid "Edit User Name" +#~ msgstr "वापरकर्ता नाव संपादित करा" + +#~ msgid "Remove User Name" +#~ msgstr "वापरकर्ता नाव काढून टाका" + +#~ msgid "User names" +#~ msgstr "वापरकर्ता नावे" + +#~ msgid "User ids." +#~ msgstr "युजर आयडीज." + +#~ msgid "Add User Id" +#~ msgstr "वापरकर्ता Id समाविष्ट करा" + +#~ msgid "Edit User Id" +#~ msgstr "वापरकर्ता Id संपादित करा" + +#~ msgid "Remove User Id" +#~ msgstr "वापरकर्ता Id काढून टाका" + +#~ msgid "User Ids" +#~ msgstr "युजर आयडीज" + +#~ msgid "Lockdown:" +#~ msgstr "लॉकडाउन:" + +#~ msgid "User ID" +#~ msgstr "युजर ID" + +#~ msgid "Please enter the user id." +#~ msgstr "कृपया युजर id द्या." + +#~ msgid "Please enter the user name." +#~ msgstr "कृपया वापरकर्ता नाव द्या." diff --git a/po/nl.po b/po/nl.po index c02c0e7..22e4ca2 100644 --- a/po/nl.po +++ b/po/nl.po @@ -17,7 +17,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-07-23 15:28+0000\n" "Last-Translator: Geert Warrink \n" "Language-Team: Dutch ps -e --" -"context." -msgstr "" -"De context is de beveiligings (SELinux) context van een draaiende toepassing " -"of service. Om de context van een draaiende toepassing te krijgen gebruik je " -"ps -e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Voeg context toe" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Bewerk context" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Verwijder context" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Context" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Als een commando ingang in de whitelist eindigt met een asterisk '*', dan " -"zullen alle commandoregels die beginnen met het commando matchen. Als de '*' " -"niet aanwezig is, dan moet het gehele commando matchen inclusief argumenten." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Voeg commandoregel toe" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Bewerk commandoregel" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Verwijder commandoregel" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Commandoregels" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Gebruikersnamen." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Voeg gebruikersnaam toe" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Bewerk gebruikersnaam" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Verwijder gebruikersnaam" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Gebruikersnamen" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Gebruiker-id's." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Voeg gebruiker-ID toe" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Bewerk gebruiker-ID" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Verwijder gebruiker-ID" +"Wees voorzichtig met regels voor doorgeven zodat je de firewall niet " +"beschadigt." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Gebruiker-id's" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Doorgeven" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Huidige standaard zone van het systeem." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Log-geweigerd:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Paniek modus:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Automatische helpers:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Vergrendeling:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Standaard zone:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Voer een interfacenaam in:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Basis IPSet-instellingen" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Configureer de basis ipset-instellingen:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Type:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Timeout:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Hashgrootte:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maxelem:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Timeout waarde in seconden" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Initiële hash grootte, standaard 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Maximum aantal elementen, standaard 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Selecteer een ipset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Voer een ipset-ingang in:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Log-geweigerd" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Selecteer de log-geweigerd waarde:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Markeer" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Vul een markeerteken in met een optioneel masker." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" "De markeer en masker velden zijn beide 32 bits brede gehele getallen zonder " "teken." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Markering:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Masker:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Selecteer een netfilter conntrack helper:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Selecteer -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Andere module:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Poort en protocol" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Vul een poort en protocol in." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Directe regel" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Selecteer ipv en tabel, ketenprioriteit en vul de argumenten in." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Prioriteit:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Voer een protocol in." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Ander protocol:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Rich regel" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Voer een rich regel in." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "Deactiveer het element voor de host of het netwerk." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Bron:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Bestemming:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Log:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audit:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 en ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "geïnverteerd" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1958,78 +1847,192 @@ msgstr "" "Om dit aan te zetten moet Actie 'afwijzen' zijn en Familie 'ipv4' of " "'ipv6' (niet beide)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "met type:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Met limiet:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Prefix:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Niveau:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Element:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Actie:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Basis service instellingen" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Configureer basis instellingen:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Selecteer een service." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Voer een bron in." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Gebruiker-ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Vul een gebruiker-id in." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Vul een gebruikersnaam in." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "label" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Basis zone instellingen" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Configureer de basis zone instellingen:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Standaard doel" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Doel:" + +#~ msgid "Context" +#~ msgstr "Context" + +#~ msgid "Command line" +#~ msgstr "Commandoregel" + +#~ msgid "User name" +#~ msgstr "Gebruikersnaam" + +#~ msgid "User id" +#~ msgstr "Gebruikers-id" + +#~ msgid "Please enter the command line." +#~ msgstr "Voer de commandoregel in." + +#~ msgid "Please enter the context." +#~ msgstr "Voer de context in." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Vergrendelen vergrendelt de firewall configuratie zodat alleen " +#~ "toepassingen op de vergrendel witte lijst deze kunnen veranderen." + +#~ msgid "Lockdown" +#~ msgstr "Vergrendelen" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Vergrendel whitelist" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "De vergrendel eigenschap is een verlichte versie van gebruikers en " +#~ "toepassingstactieken voor firewalld. Het beperkt de veranderingen in de " +#~ "firewall. De vergrendel whitelist kan commando's, context, gebruikers en " +#~ "gebruiker id's bevatten." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "De context is de beveiligings (SELinux) context van een draaiende " +#~ "toepassing of service. Om de context van een draaiende toepassing te " +#~ "krijgen gebruik je ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "Voeg context toe" + +#~ msgid "Edit Context" +#~ msgstr "Bewerk context" + +#~ msgid "Remove Context" +#~ msgstr "Verwijder context" + +#~ msgid "Contexts" +#~ msgstr "Context" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Als een commando ingang in de whitelist eindigt met een asterisk '*', dan " +#~ "zullen alle commandoregels die beginnen met het commando matchen. Als de " +#~ "'*' niet aanwezig is, dan moet het gehele commando matchen inclusief " +#~ "argumenten." + +#~ msgid "Add Command Line" +#~ msgstr "Voeg commandoregel toe" + +#~ msgid "Edit Command Line" +#~ msgstr "Bewerk commandoregel" + +#~ msgid "Remove Command Line" +#~ msgstr "Verwijder commandoregel" + +#~ msgid "Command lines" +#~ msgstr "Commandoregels" + +#~ msgid "User names." +#~ msgstr "Gebruikersnamen." + +#~ msgid "Add User Name" +#~ msgstr "Voeg gebruikersnaam toe" + +#~ msgid "Edit User Name" +#~ msgstr "Bewerk gebruikersnaam" + +#~ msgid "Remove User Name" +#~ msgstr "Verwijder gebruikersnaam" + +#~ msgid "User names" +#~ msgstr "Gebruikersnamen" + +#~ msgid "User ids." +#~ msgstr "Gebruiker-id's." + +#~ msgid "Add User Id" +#~ msgstr "Voeg gebruiker-ID toe" + +#~ msgid "Edit User Id" +#~ msgstr "Bewerk gebruiker-ID" + +#~ msgid "Remove User Id" +#~ msgstr "Verwijder gebruiker-ID" + +#~ msgid "User Ids" +#~ msgstr "Gebruiker-id's" + +#~ msgid "Lockdown:" +#~ msgstr "Vergrendeling:" + +#~ msgid "User ID" +#~ msgstr "Gebruiker-ID" + +#~ msgid "Please enter the user id." +#~ msgstr "Vul een gebruiker-id in." + +#~ msgid "Please enter the user name." +#~ msgstr "Vul een gebruikersnaam in." diff --git a/po/or.po b/po/or.po index 70d3881..3254048 100644 --- a/po/or.po +++ b/po/or.po @@ -12,7 +12,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2016-01-04 12:33+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Oriya (http://www.transifex.com/projects/p/firewalld/language/" @@ -28,11 +28,45 @@ msgstr "" msgid "Firewall Applet" msgstr "ଅଗ୍ନିକବଚ ଆପଲେଟ" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "ଅଗ୍ନିକବଚର ବିନ୍ଯାସ" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "ଅଗ୍ନିକବଚ" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "ଅଗ୍ନିକବଚର ବିନ୍ଯାସ" @@ -41,24 +75,24 @@ msgstr "ଅଗ୍ନିକବଚର ବିନ୍ଯାସ" msgid "firewall;network;security;iptables;netfilter;" msgstr "firewall;network;security;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "ଅନ୍ତରାପୃଷ୍ଠ '%s' ପାଇଁ ଅଞ୍ଚଳ ବାଛନ୍ତୁ" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "ପୂର୍ବନିର୍ଦ୍ଧାରିତ ଅଞ୍ଚଳ" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "ସଂଯୋଗ '%s' ପାଇଁ ଅଞ୍ଚଳ ବାଛନ୍ତୁ" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -108,153 +142,153 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "ସିଲ ଉପରକୁ" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "ବିଜ୍ଞପ୍ତିଗୁଡ଼ିକୁ ସକ୍ରିୟ କରନ୍ତୁ" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "ଫାୟାରୱାଲ ସେଟିଙ୍ଗଗୁଡିକୁ ସଂପାଦନକରନ୍ତୁ ..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "ସଂଯୋଗଗୁଡ଼ିକର ଅଞ୍ଚଳକୁ ପରିବର୍ତ୍ତନ କରନ୍ତୁ ..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "ସିଲ୍ଡ ଉପର/ତଳ ଅଞ୍ଚଳଗୁଡ଼ିକୁ ବିନ୍ୟାସ କରନ୍ତୁ ..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "ସମସ୍ତ ନେଟୱର୍କ ପ୍ରବାହକୁ ଅଟକାନ୍ତୁ" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "ସଂଯୋଗଗୁଡିକ" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "ଅନ୍ତରାପୃଷ୍ଠ" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "ଉତ୍ସ" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "ବୈଧିକରଣ ବିଫଳ ହୋଇଛି।" -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "ଅବୈଧ ନାମ" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "ନାମ ପୂର୍ବରୁ ଅବସ୍ଥିତ ଅଛି" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "ଅଗ୍ନିକବଚ ଡେମନକୁ କୌଣସି ସଂଯୋଗ ନାହିଁ" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "ସମସ୍ତ ନେଟୱର୍କ ଯାତାୟାତକୁ ବନ୍ଦ କରାଯାଇଛି।" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "ପୂର୍ବନିର୍ଦ୍ଧାରିତ ଅଞ୍ଚଳ: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "ଅଞ୍ଚଳ '{zone}' ସଂଯୋଗ '{connection}' ପାଇଁ ଅନ୍ତରାପୃଷ୍ଠ'{interface}' ଉପରେ ସକ୍ରିୟ ଅଛି" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "ଅଞ୍ଚଳ '{zone}' ଅନ୍ତରାପୃଷ୍ଠ '{interface}' ପାଇଁ ସକ୍ରିୟ ଅଛି" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "ଅଞ୍ଚଳ '{zone}' ଉତ୍ସ {source} ପାଇଁ ସକ୍ରିୟ ଅଛି" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "କୌଣସି ସକ୍ରିୟ ଅଞ୍ଚଳ ନାହିଁ।" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallD ସହିତ ସଂଯୋଗ ସ୍ଥାପନ ହୋଇସାରିଛି।" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallD ସହିତ ସଂଯୋଗ ନଷ୍ଟ ହୋଇଛି।" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD କୁ ପୁନର୍ଦ୍ଧାରଣ କରାଯାଇଛି।" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "ପୂର୍ବନିର୍ଦ୍ଧାରିତ ଅଞ୍ଚଳ '%s' କୁ ପରିବର୍ତ୍ତନ ହୋଇଛି।" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "ନେଟୱର୍କ ଯାତାୟାତ ବର୍ତ୍ତମାନ ବନ୍ଦ ହୋଇନାହିଁ।" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "ସକ୍ରିୟ କରାଯାଇଛି" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "ନିଷ୍କ୍ରିୟ କରାଯାଇଛି" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -262,20 +296,20 @@ msgstr "" "ଅଞ୍ଚଳ '{zone}' {activated_deactivated} କୁ ସଂଯୋଗ '{connection}' ପାଇଁଅନ୍ତରାପୃଷ୍ଠ " "'{interface}' ରେ" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "ଅଞ୍ଚଳ '{zone}' {activated_deactivated} ଅନ୍ତରାପୃଷ୍ଠ '{interface}' ପାଇଁ" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "ଅଞ୍ଚଳ '%s' ଟି ଅନ୍ତରାପୃଷ୍ଠ '%s' ପାଇଁ ସକ୍ରିୟ ହୋଇଛି" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "ଅଞ୍ଚଳ '{zone}' {activated_deactivated} ଉତ୍ସ '{source}' ପାଇଁ" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "ଅଞ୍ଚଳ '%s' କୁ ଉତ୍ସ '%s' ପାଇଁ ସକ୍ରିୟ କରାଯାଇଛି" @@ -320,328 +354,312 @@ msgstr "ନିଷ୍କ୍ରିୟ ହୋଇଛି" msgid "Failed to load icons." msgstr "ଚିତ୍ର ସଂକେତ ଧାରଣ କରିବାରେ ଅସଫଳ।" -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "ବ୍ୟବହାରକାରୀ ନାମ" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "ଚାଲୁଥିବା ସମୟ" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "ସ୍ଥାୟୀ" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "ସେବା" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "ସଂଯୋଗିକୀ" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "ପ୍ରୋଟୋକଲ" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "ସଂଯୋଗିକୀ କୁ" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "ଠିକଣା କୁ" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp ପ୍ରକାର" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "ପରିବାର" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "କାର୍ଯ୍ଯ" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "ଉପାଦାନ" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Src" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "ଲକ୍ଷ୍ଯସ୍ଥଳ" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "ଲଗ" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "ସମ୍ପାଦନ" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "ଉତ୍ସ" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "ଚେତାବନୀ" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "ତ୍ରୁଟି" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "ଗ୍ରହଣ କରନ୍ତୁ" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "ଅସ୍ବୀକାର କରନ୍ତୁ" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "ପକାଅ" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "ସୀମା" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "ସର୍ଭିସ" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "ପୋର୍ଟ" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "ପ୍ରୋଟୋକଲ" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "ଛଦ୍ମ ବେଶ" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-ବ୍ଲକ" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "ଅଗ୍ରସରଣ-ପୋର୍ଟ" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "ସ୍ତର" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "ହଁ" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "କ୍ଷେତ୍ର" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "ଅଞ୍ଚଳ '%s': ସର୍ଭିସ '%s' ଉପଲବ୍ଧ ନାହିଁ।" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "ହଟାଅ" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "ଆଗ୍ରହ୍ଯ କରିଦିଅନ୍ତୁ" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "ଅଞ୍ଚଳ '%s': ICMP ପ୍ରକାର '%s' ଉପଲବ୍ଧ ନାହିଁ।" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "ପୂର୍ବନିର୍ମିତ ଅଞ୍ଚଳ, ପୁନଃ ନାମକରଣ ସମର୍ଥିତ ନୁହଁ।" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "ସେକଣ୍ଡ" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "ମିନିଟ" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "ଘଣ୍ଟା" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "ଦିନ" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "ଜରୁରୀକାଳୀନ" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "ଚେତାବନୀ" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "ଗୁରୁତର" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "ତୃଟି" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "ଚେତାବନୀ" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "ଅଧିସୂଚନା" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "ସୂଚନା" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "ତୃଟିମୁକ୍ତ କରନ୍ତୁ" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -650,81 +668,81 @@ msgstr "" "ଅନ୍ୟ ଏକ ତନ୍ତ୍ରକୁ ପଠାଇବା ଉପଯୋଗୀ ହୋଇଥାଏ ଯଦି ଅନ୍ତରାପୃଷ୍ଠ ଛଦ୍ମବେଶ ଧାରଣ କରିଥାଏ।\n" "ଆପଣ ଏହି ଅଞ୍ଚଳକୁ ଛଦ୍ମବେଶ ଧାରଣ କରାଇବାକୁ ଚାହୁଁଛନ୍ତି କି?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "ପୂର୍ବନିର୍ମିତ ସର୍ଭିସ, ପୁନଃ ନାମକରଣ ସମର୍ଥିତ ନୁହଁ।" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "ପୂର୍ବନିର୍ମିତ icmp, ପୁନଃ ନାମକରଣ ସମର୍ଥିତ ନୁହଁ।" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "ଉତ୍ସ '%s'ପାଇଁ ଅଞ୍ଚଳ ବାଛନ୍ତୁ" @@ -743,91 +761,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "ଦୟାକରି ନିର୍ଦ୍ଦେଶନାମାକୁ ଭରଣ କରନ୍ତୁ।" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "ଦୟାକରି ପ୍ରସଙ୍ଗକୁ ଭରଣ କରନ୍ତୁ।" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "ନିମ୍ନଲିଖିତ ତାଲିକାରୁ ଦୟାକରି ପୂର୍ବନିର୍ଦ୍ଧାରିତ ଅଞ୍ଚଳକୁ ବାଛନ୍ତୁ।" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "ସିଧାସଳଖ ସୃଙ୍ଖଳ" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "ଦୟାକରି ipv ଏବଂ ସାରଣୀକୁ ବାଛନ୍ତୁ ଏବଂ ଶୃଙ୍ଖଳ ନାମକୁ ଭରଣ କରନ୍ତୁ।" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "ସୃଙ୍ଖଳ:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "raw" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "ସୁରକ୍ଷା" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "ସାରଣୀ:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "ସିଧାସଳଖ ଅଗ୍ରଗତି ନିୟମ" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "ଦୟାକରି ipv କୁ ବାଛନ୍ତୁ ଏବଂ args ଭରଣ କରନ୍ତୁ।" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Args:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "ସଂଯୋଗିକୀ ଅଗ୍ରସରଣ" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "ଆପଣଙ୍କର ଆବଶ୍ୟକତା ଅନୁସାରେ ଦୟାକରି ମୂଳ ସ୍ଥାନ ଏବଂ ଲକ୍ଷ୍ଯ ସ୍ଥଳ ବିକଳ୍ପଗୁଡ଼ିକୁ ଚୟନକରନ୍ତୁ." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "ସଂଯୋଗିକୀ / ସଂଯୋଗିକୀ ପରିସର:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "ଆଇ.ପି. ଠିକଣା:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "ପ୍ରୋଟୋକଲ:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "ଲକ୍ଷ୍ଯସ୍ଥଳ" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -835,107 +845,107 @@ msgstr "" "ଯଦି ଆପଣ ସ୍ଥାନୀୟ ଅଗ୍ରସରଣକୁ ସକ୍ରିୟ କରନ୍ତି, ତେବେ ଆପଣଙ୍କୁ ଗୋଟିଏ ସଂଯୋଗିକୀ ଉଲ୍ଲେଖ କରିବାକୁ ପଡ଼ିବ. ଏହି " "ସଂଯୋଗିକୀ ଉତ୍ସ ସଂଯୋଗିକୀ ଠାରୁ ଅଲଗା ହୋଇଥିବା ଉଚିତ." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "ସ୍ଥାନୀୟ ଅଗ୍ରସରଣ" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "ଅନ୍ୟ ଏକ ସଂଯୋଗିକୀକୁ ଅଗ୍ରସର ହୁଅନ୍ତୁ" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "ଗାଢ଼ ନିବେଶଗୁଡ଼ିକ ବାଧ୍ଯତାମୂଳକ ଅଟେ, ଅନ୍ୟ ସମସ୍ତଗୁଡ଼ିକ ବୈକଳ୍ପିକ ଅଟେ।" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "ନାମ:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "ସଂସ୍କରଣ:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "ସଂକ୍ଷିପ୍ତ ପଥ:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "ବର୍ଣ୍ଣନା:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "ପରିବାର:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "ଆଧାର ICMP ପ୍ରକାର ସେଟିଙ୍ଗଗୁଡିକ" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "ଦୟାକରି ଆଧାର ICMP ପ୍ରକାର ସେଟିଙ୍ଗଗୁଡିକୁ ବିନ୍ୟାସ କରନ୍ତୁ:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP ପ୍ରକାର" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "ଦୟାକରି ICMP ପ୍ରକାରକୁ ବାଛନ୍ତୁ" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "ଭରଣ ତଥ୍ୟକୁ ଯୋଗକରନ୍ତୁ" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "ଫାଇଲ (_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "ବିକଲ୍ପ (_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Firewalld କୁ ପୁନର୍ଧାରଣ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -945,117 +955,101 @@ msgstr "" "ପରିବର୍ତ୍ତନ ହୋଇଥାଏ ଯେପରିକି କେବଳ ପୁନର୍ଦ୍ଧାରଣ ପର୍ଯ୍ୟନ୍ତ ପରିବର୍ତ୍ତିତ ହୋଇଥିବା ସମସ୍ତ ଚଳନ୍ତି ସଂରଚନା " "ନଷ୍ଟ ହୋଇଥାଏ ଯଦି ସେଗୁଡ଼ିକ ସ୍ଥାୟୀ ସଂରଚନାରେ ନଥାଏ।" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "ନେଟୱର୍କ ସଂଯୋଗ କେଉଁ ଅଞ୍ଚଳ ଅନ୍ତର୍ଗତରେ ଆସିଥାଏ ତାହାକୁ ପରିବର୍ତ୍ତନ କରନ୍ତୁ।" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "ପୂର୍ବ ନିର୍ଦ୍ଧାରିତ ଅଞ୍ଚଳକୁ ପରିବର୍ତ୍ତନ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "ସଂଯୋଗ ଅଥବା ଅନ୍ତରାପୃଷ୍ଠଗୁଡ଼ିକ ପାଇଁ ପୂର୍ବନିର୍ଦ୍ଧାରିତ ଅଞ୍ଚଳକୁ ପରିବର୍ତ୍ତନ କରନ୍ତୁ।" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "ଆକସ୍ମିକ ଧାରା ଅର୍ଥ ହେଉଛି ସମସ୍ତ ଆସୁଥିବା ଏବଂ ଯାଉଥିବା ପ୍ୟାକେଟଗୁଡ଼ିକୁ ତ୍ୟାଗ କରାଯାଇଛି।" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "ଆକସ୍ମିକ ଭୟ ପରିସ୍ଥିତି" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"ଲକଡାଉନ ଫାୟାରୱାଲ ସଂରଚନାକୁ ଅପରିବର୍ତ୍ତନୀୟ କରିଥାଏ ଯାହାଫଳରେ କେବଳ ଲକଡାଉନ ହ୍ୱାଇଟଲିଷ୍ଟରେ ଥିବା " -"ପ୍ରୟୋଗଗୁଡ଼ିକ ଏହାକୁ ପରିବର୍ତ୍ତନ କରିବାରେ ସକ୍ଷମ ହୋଇଥାନ୍ତି।" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "ଲକଡାଉନ" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "ଅସ୍ଥାୟୀ ସଂରଚନାକୁ ସ୍ଥାୟୀ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "ଚଳନ୍ତି ସମୟକୁ ସ୍ଥାୟୀ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "ଦୃଶ୍ଯ (_V)" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP ପ୍ରକାର" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "ସିଧାସଳଖ ସଂରଚନା" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "ଲକଡାଉନ ହ୍ୱାଇଟଲିଷ୍ଟ" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "ସହାୟତା (_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "ସଂରଚନା:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1064,7 +1058,7 @@ msgstr "" "ବର୍ତ୍ତମାନ ଦୃଶ୍ୟମାନ ସଂରଚନା। ଚାଲୁଥିବା ସମୟର ସଂରଚନା ହେଉଛି ପ୍ରକୃତ ସକ୍ରିୟ ସଂରଚନା। ସ୍ଥାୟୀ " "ସଂରଚନା ସର୍ଭିସ ପରେ କିମ୍ବା ତନ୍ତ୍ର ପୁନର୍ଦ୍ଧାରଣ କିମ୍ବା ପୁନଃଚାଳନ ପରେ ସକ୍ରିୟ ହେବ।" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1077,23 +1071,23 @@ msgstr "" "ପୋର୍ଟ/ପ୍ୟାକେଟ ଅଗ୍ରସରଣ, icmp ଫିଲଟର ଏବଂ ଶକ୍ତ ନିୟମାବଳୀକୁ ମିଶ୍ରଣ କରିଥାଏ। ଏହି ଅଞ୍ଚଳ " "ଅନ୍ତରାପୃଷ୍ଠଗୁଡ଼ିକୁ ଏବଂ ଠିକଣାଗୁଡ଼ିକୁ ବାନ୍ଧିଥାଏ।" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "ଅଞ୍ଚଳକୁ ଯୋଗ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "ଅଞ୍ଚଳକୁ ସମ୍ପାଦନ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "ଅଞ୍ଚଳକୁ ହଟାନ୍ତୁ" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "ଅଞ୍ଚଳ ପୂର୍ବନିର୍ଦ୍ଧାରିତକୁ ଧାରଣ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1102,11 +1096,11 @@ msgstr "" "କେଉଁ ସେବା ଗୁଡିକ ବିଶ୍ଯସ୍ତ ଆପଣ ତାହା ଏଠାରେ ବ୍ଯାଖ୍ଯା କରିପାରିବେ। ଏହାର ଅର୍ଥ ହେଉଛି ଯେ ଏହି ସେବା " "ଗୁଡିକୁ ସମସ୍ତ ଆଧାର କିମ୍ବା ନେଟୱାର୍କରୁ ଅଭିଗମ କରିହେବ।" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "ସର୍ଭିସଗୁଡ଼ିକ" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1114,53 +1108,53 @@ msgstr "" "ଅତିରିକ୍ତ ସଂଯୋଗିକୀ କିମ୍ବା ସଂଯୋଗିକୀ ପରିସର ମାନଙ୍କୁ ଯୋଗ କରନ୍ତୁ, ଯାହାକି ସମସ୍ତ ଆଧାର କିମ୍ବା ନେଟୱାର୍କ " "ଦ୍ବାରା ଅଭିଗମ୍ଯ ହେବା ଉଚିତ।" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "ପୋର୍ଟକୁ ଯୋଗ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "ପୋର୍ଟକୁ ସଂପାଦନା କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "ପୋର୍ଟକୁ କାଢ଼ି ଦିଅନ୍ତୁ" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "ପୋର୍ଟଗୁଡ଼ିକ" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1170,11 +1164,11 @@ msgstr "" "ବିନ୍ୟାସ କରିବାକୁ ଅନୁମତି ଦେଇଥାଏ. ଆପଣଙ୍କର ସ୍ଥାନୀୟ ନେଟୱର୍କ ଦେଖାଯିବ ନାହିଁ ଏବଂ ସେହି ଆଧାରଟି " "ଇଣ୍ଟରନେଟରେ ଗୋଟିଏ ଠିକଣା ପରି ଦେଖାଯିବ. କେବଳ IPv4 ମିଥ୍ୟାଭିନୟ କରୁଅଛି." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "ଛଦ୍ମ ବେଶୀ ଅଞ୍ଚଳ" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1182,11 +1176,11 @@ msgstr "" "ଯଦି ଆପଣ ଛଦ୍ମ ବେଶ କରିବାରେ ସକ୍ରିୟ ହୁଅନ୍ତି, ତେବେ IP ଅଗ୍ରସରଣକୁ ଆପଣଙ୍କ IPv4 ନେଟୱର୍କଗୁଡ଼ିକ " "ପାଇଁସକ୍ରିୟ କରାଯିବ।" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "ଛଦ୍ମ ବେଶ" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1197,19 +1191,19 @@ msgstr "" "ଅଗ୍ରସରଣ ସଂଯୋଗିକୀରେ ଭରଣଗୁଡ଼ିକୁ ଯୋଗକରନ୍ତୁ. ଅନ୍ୟ ଏକ ତନ୍ତ୍ରକୁ ପଠାଇବା ହିଁ କେବଳ ଫଳପ୍ରଦ ହୋଇଥାଏ ଯଦି " "ଅନ୍ତରାପୃଷ୍ଠ ମିଥ୍ୟାଭିନୟ କରୁଥାଏ. ସଂଯୋଗିକୀ ଆଗେଇବାଟି କେବଳ IPv4." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "ପୋର୍ଟ ଅଗ୍ରସରଣକୁ ଯୋଗ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "ପୋର୍ଟ ଅଗ୍ରସରଣକୁ ସମ୍ପାଦନ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "ପୋର୍ଟ ଅଗ୍ରସରଣକୁ ବାହାର କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1219,7 +1213,7 @@ msgstr "" "ପଠାଇବାରେ ବ୍ୟବହାର ହୋଇଥାଏ, କିନ୍ତୁ ଅତିରିକ୍ତ ଭାବରେ ସୂଚନାତ୍ମକ ସନ୍ଦେଶଗୁଡ଼ିକୁ ଯେପରି କି ping ଅନୁରୋଧ " "ଏବଂ ଉତ୍ତରଗୁଡ଼ିକ ପାଇଁ." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1227,41 +1221,41 @@ msgstr "" "ICMP ପ୍ରକାରଗୁଡ଼ିକୁ ତାଲିକାରେ ଚିହ୍ନଟକରନ୍ତୁ, ଯାହାକୁ କି ଅସ୍ୱୀକାର କରିବା ଉଚିତ. ଅନ୍ୟ ସମସ୍ତ ICMP " "ପ୍ରକାରଗୁଡ଼ିକ ଅଗ୍ନିକବଚ ପାରକରିବା ପାଇଁ ଅନୁମତିପ୍ରାପ୍ତ. ପୂର୍ବନିର୍ଦ୍ଧାରିତରେ କୌଣସି ସୀମା ବନ୍ଧନ ନାହିଁ." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP ଫିଲଟର" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "ଏଠାରେ ଆପଣ ଅଞ୍ଚଳ ପାଇଁ ଶକ୍ତିଶାଳୀ ଭାଷା ନିୟମାବଳୀକୁ ସେଟ କରିପାରିବେ।" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "ଶକ୍ତ ନିୟମ ଯୋଗ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "ଶକ୍ତ ନିୟମକୁ ସମ୍ପାଦନ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "ଶକ୍ତ ନିୟମକୁ ବାହାର କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "ଶକ୍ତିଶାଳୀ ନିୟମାବଳୀ" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1269,96 +1263,96 @@ msgstr "" "ଏହି ଅଞ୍ଚଳରେ ଅନ୍ତରାପୃଷ୍ଠଗୁଡ଼ିକୁ ବାନ୍ଧିବା ପାଇଁ ଯୋଗ କରନ୍ତୁ। ଯଦି ଏହି ଅନ୍ତରାପୃଷ୍ଠଗୁଡ଼ିକ କୌଣସି ସଂଯୋଗ " "ଦ୍ୱାରା ବ୍ୟବହାର ହୋଇଥାଏ, ତେବେ ସେହି ଅଞ୍ଚଳଟି ସଂଯୋଗରେ ଉଲ୍ଲେଖିତ ଅଞ୍ଚଳରେ ସେଟ ହେବ।" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "ଅନ୍ତରାପୃଷ୍ଠ ଯୋଗ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "ଅନ୍ତରାପୃଷ୍ଠକୁ ସମ୍ପାଦନ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "ଅନ୍ତରାପୃଷ୍ଠକୁ ବାହାର କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "ଉତ୍ସ ଯୋଗ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "ଉତ୍ସକୁ ସମ୍ପାଦନ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "ଉତ୍ସକୁ ବାହାର କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "ଅଞ୍ଚଳ" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "firewalld ସର୍ଭିସ ହେଉଛି ପୋର୍ଟ, ପ୍ରୋଟୋକଲ, ମଡ୍ୟୁଲ ଏବଂ ଲକ୍ଷ୍ଯସ୍ଥଳ ଠିକଣାଗୁଡ଼ିକର ଏକ ମିଶ୍ରଣ।" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "ସର୍ଭିସ ଯୋଗ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "ସର୍ଭିସକୁ ସମ୍ପାଦନ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "ସର୍ଭିସକୁ ବାହାର କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "ସର୍ଭିସ ପୂର୍ବନିର୍ଦ୍ଧାରିତକୁ ଧାରଣ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "ପ୍ରବେଶ ସଂପାଦନା କର" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "ଭରଣକୁ କାଢ଼ି ଦିଅନ୍ତୁ" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "ମୋଡ୍ୟୁଲଗୁଡ଼ିକ" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1367,15 +1361,15 @@ msgstr "" "ଯଦି ଆପଣ ଲକ୍ଷ୍ଯସ୍ଥଳ ଠିକଣାକୁ ଉଲ୍ଲେଖ କରନ୍ତି, ତେବେ ସର୍ଭିସ ନିବେଶ ଲକ୍ଷ୍ଯସ୍ଥଳ ଠିକଣା ଏବଂ ପ୍ରକାରରେ " "ସିମୀତ ହେବ। ଯଦି ଉଭୟ ନିବେଶଗୁଡ଼ିକ ଖାଲିଥାଏ, ତେବେ ସେଠାରେ କୌଣସି ସୀମା ନଥାଏ।" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1383,33 +1377,33 @@ msgstr "" "ସର୍ଭିସଗୁଡ଼ିକ କେବଳ ସ୍ଥାୟୀ ବିନ୍ୟାସ ଦୃଶ୍ୟରେ ପରିବର୍ତ୍ତନ ହୋଇପାରିବ। ସର୍ଭିସଗୁଡ଼ିକର ପ୍ରଚଳିତ ବିନ୍ୟାସ ସ୍ଥାୟୀ " "ଅଟେ।" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1417,26 +1411,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1444,28 +1438,28 @@ msgstr "" "ଏକ firewalld icmptype ଇଣ୍ଟରନେଟ ନିୟନ୍ତ୍ରଣ ସନ୍ଦେଶ ପ୍ରୋଟୋକଲ (ICMP) ପ୍ରକାର ପାଇଁ " "firewalld କୁ ସୂଚନା ପ୍ରଦାନ କରିଥାଏ।" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP ପ୍ରକାରକୁ ଯୋଗ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP ପ୍ରକାରକୁ ସମ୍ପାଦନ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ICMP ପ୍ରକାରକୁ ବାହାର କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP ପ୍ରକାର ପୂର୍ବନିର୍ଦ୍ଧାରିତକୁ ଧାରଣ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" "ଏହି ICMP ପ୍ରକାରଟି IPv4 ଏବଂ/ଅଥବା IPv6 ରେ ଉପଲବ୍ଧ ହୋଇଥାଏ କି ନାହିଁ ତାହା ଉଲ୍ଲେଖ କରନ୍ତୁ।" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1473,7 +1467,7 @@ msgstr "" "ICMP ପ୍ରକାରଗୁଡ଼ିକ ସ୍ଥାୟୀ ବିନ୍ୟାସ ଦୃଶ୍ୟରେ ହିଁ କେବଳ ପରିବର୍ତ୍ତିତ ହୋଇଥାଏ। ICMP ପ୍ରକାରଗୁଡ଼ିକ ପ୍ରଚଳିତ " "ବିନ୍ୟାସ ସ୍ଥାୟୀ ଅଛି।" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1481,11 +1475,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1497,7 +1491,7 @@ msgstr "" "ପ୍ରାଚଳ ଏବଂ ଲକ୍ଷ୍ଯସ୍ଥଳ। ସିଧାସଳଖ ସଂରଚନାକୁ କେବଳ ଶେଷ ଆଶ୍ରୟ ଭାବରେ ବ୍ୟବହାର କରିବା ଉଚିତ " "ଯେତେବେଳେ ଅନ୍ୟ କୌଣସି firewalld ବିଶେଷତା ବ୍ୟବହାର କରିବା ସମ୍ଭବ ହୋଇନଥାଏ।" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1507,32 +1501,44 @@ msgstr "" "iptables ପାଇଁ ହୋଇଥାଏ, ipv6 ସହିତ ip6tables ପାଇଁ ଏବଂ eb ସହିତ ଇଥରନେଟ ବ୍ରିଜଗୁଡ଼ିକ ପାଇଁ " "ହୋଇଥାଏ (ebtables)." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "ନିୟମାବଳୀ ସହିତ ବ୍ୟବହାର ହେବାକୁ ଥିବା ଅତିରିକ୍ତ ଶୃଙ୍ଖଳ।" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "ସୃଙ୍ଖଳ ଯୋଗ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "ସୃଙ୍ଖଳକୁ ସମ୍ପାଦନ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "ସୃଙ୍ଖଳକୁ ବାହାର କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "ସୃଙ୍ଖଳଗୁଡ଼ିକ" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "ସ୍ୱତନ୍ତ୍ରଚର args ସହିତ ଏକ ଶୃଙ୍ଖଳରେ ପ୍ରାଥମିକତା ଦେଇ ଗୋଟିଏ ନିୟମ ଯୋଗ କରନ୍ତୁ।" -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "ନିୟମ ୟୋଗକରନ୍ତୁ" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "ନିୟମ ସମ୍ପାଦନ କରନ୍ତୁ" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "ନିୟମକୁ ବାହାର କରନ୍ତୁ" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1547,23 +1553,11 @@ msgstr "" "ପରିବର୍ତ୍ତନ ହୋଇପାରେ। ଯଦି ଆପଣ ନିଶ୍ଚିତ କରିବାକୁ ଚାହୁଁଛନ୍ତି ଯେ ଅନ୍ୟ ଗୋଟିଏ ଉପରେ ନିୟମାବଳୀ ଯୋଗ ହେବ " "ତେବେ, ପ୍ରଥମେ କମ ପ୍ରାଥମିକତାକୁ ବ୍ୟବହାର କରନ୍ତୁ ଏବଂ ତାପରେ ଉଚ୍ଚ ପ୍ରାଥମିକତାକୁ ରଖନ୍ତୁ।" -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "ନିୟମ ୟୋଗକରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "ନିୟମ ସମ୍ପାଦନ କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "ନିୟମକୁ ବାହାର କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "ନିୟମାବଳୀ" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1572,309 +1566,206 @@ msgstr "" "ଅଗ୍ରଗତି ନିୟମାବଳୀ ସିଧାସଳଖ ଭାବରେ ଫାୟାରୱାଲ ମଧ୍ଯ ଦେଇ ଯାଇଥାଏ ଏବଂ ତାହା ବିଶେଷ ଶୃଙ୍ଖଳରେ " "ରଖାଯାଇନଥାଏ। ସମସ୍ତ iptables, ip6tables ଏବଂ etables ବିକଳ୍ପକୁ ବ୍ୟବହାର କରାଯାଇପାରିବ।" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "ଅଗ୍ରଗତି ନିୟମାବଳୀ ସହିତ ଦୟାକରି ସତର୍କ ରୁହନ୍ତୁ ଯେପରି ତାହା ଫାୟାରୱାଲକୁ କ୍ଷତି ନକରେ।" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "ଅଗ୍ରଗତିକୁ ଯୋଗ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "ଅଗ୍ରଗତିକୁ ସମ୍ପାଦନ କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "ଅଗ୍ରଗତିକୁ ବାହାର କରନ୍ତୁ" -#: ../src/firewall-config.glade.h:193 +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." +msgstr "ଅଗ୍ରଗତି ନିୟମାବଳୀ ସହିତ ଦୟାକରି ସତର୍କ ରୁହନ୍ତୁ ଯେପରି ତାହା ଫାୟାରୱାଲକୁ କ୍ଷତି ନକରେ।" + +#: ../src/firewall-config.glade.h:186 msgid "Passthrough" msgstr "ଅଗ୍ରଗତି" -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"ଲକଡାଉନ ବିଶେଷତାଟି ହେଉଛି firewalld ପାଇଁ ବ୍ୟବହାରକାରୀ ଏବଂ ପ୍ରୟୋଗ ନିତୀଗୁଡ଼ିକର ହାଲୁକା ସଂସ୍କରଣ। " -"ଏହା ଫାୟାରୱାଲର ପରିବର୍ତ୍ତନକୁ ସିମୀତ କରିଥାଏ। ଲକଡାଉନ ହ୍ୱାଇଟଲିଷ୍ଟ ନିର୍ଦ୍ଦେଶ, ପ୍ରସଙ୍ଗ, ବ୍ୟବହାରକାରୀ " -"ଏବଂ ବ୍ୟବହାରକାରୀ id ଗୁଡ଼ିକୁ ଧାରଣ କରିଥାଏ।" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "ପ୍ରସଙ୍ଗକୁ ଯୋଗକରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "ପ୍ରସଙ୍ଗକୁ ସମ୍ପାଦନ କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "ପ୍ରସଙ୍ଗକୁ ବାହାର କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "ପ୍ରସଙ୍ଗ" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"ଯଦି ହ୍ୱାଇଟଲିଷ୍ଟରେ ଗୋଟିଏ ନିର୍ଦ୍ଦେଶ ନିବେଶ ଆସଟେରିସ୍କ '*' ରେ ସମାପ୍ତ ହୋଇଥାଏ, ତେବେ ସେହି ନିର୍ଦ୍ଦେଶ " -"ସହିତ ଆରମ୍ଭ ହେଉଥିବା ସମସ୍ତ ନିର୍ଦ୍ଦେଶ ଧାରା ମେଳ ଖାଇବ। ଯଦି ସେହି '*' ସେଠାରେ ନଥାଏ ତେବେ ସେହି " -"ସ୍ୱଚନ୍ତ୍ରଚର ସହିତ ମେଳଖାଉଥିବା ନିର୍ଦ୍ଦିଷ୍ଟ ନିର୍ଦ୍ଦେଶ ନିଶ୍ଚିତ ଭାବରେ ମେଳଖାଇବ।" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "ପାଠ୍ଯ ନିର୍ଦ୍ଦେଶକୁ ଯୋଗ କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "ପାଠ୍ଯ ନିର୍ଦ୍ଦେଶକୁ ସମ୍ପାଦନ କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "ପାଠ୍ଯ ନିର୍ଦ୍ଦେଶକୁ ବାହାର କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "ନିର୍ଦ୍ଦେଶ ଧାରା" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "ବ୍ୟବହାରକାରୀ ନାମଗୁଡ଼ିକ।" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "ବ୍ୟବହାରକାରୀ ନାମ ଯୋଗ କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "ବ୍ୟବହାରକାରୀ ନାମକୁ ସମ୍ପାଦନ କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "ବ୍ୟବହାରକାରୀ ନାମକୁ ବାହାର କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "ବ୍ୟବହାରକାରୀ ନାମଗୁଡ଼ିକ" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "ବ୍ୟବହାରକାରୀ id ଗୁଡ଼ିକ।" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "ବ୍ୟବହାରକାରୀ Id ଯୋଗକରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "ବ୍ୟବହାରକାରୀ Id ସମ୍ପାଦନ କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "ବ୍ୟବହାରକାରୀ Id ବାହାର କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "ବ୍ୟବହାରକାରୀ Id ଗୁଡ଼ିକ" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "ତନ୍ତ୍ରର ପ୍ରଚଳିତ ପୂର୍ବନିର୍ଦ୍ଧାରିତ ଅଞ୍ଚଳ।" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "ଆକସ୍ମିକ ଭୟ ପରିସ୍ଥିତି:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "ଲକଡାଉନ:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "ପୂର୍ବ ନିର୍ଦ୍ଧାରିତ ଅଞ୍ଚଳ:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "ସଂଯୋଗିକୀ ଏବଂ ପ୍ରୋଟୋକଲ" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "ଦୟାକରି ଗୋଟିଏ ପୋର୍ଟ ଏବଂ ପ୍ରୋଟୋକଲ ଭରଣ କରନ୍ତୁ।" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "ସିଧାସଳଖ ନିୟମ" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "ଦୟାକରି ipv ଏବଂ table, ଶୃଙ୍ଖଳ ଅଗ୍ରାଧୀକାରକୁ ବାଛନ୍ତୁ ଏବଂ args କୁ ଭରଣ କରନ୍ତୁ।" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "ଅଗ୍ରାଧିକାର:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "ଦୟାକରି ଗୋଟିଏ ପ୍ରୋଟୋକଲ ଭରଣ କରନ୍ତୁ।" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "ଅନ୍ୟାନ୍ୟ ପ୍ରୋଟୋକଲ:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "ଶକ୍ତ ନିୟମ" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "ଦୟାକରି ଗୋଟିଏ ଶକ୍ତ ନିୟମକୁ ଭରଣ କରନ୍ତୁ।" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "ହୋଷ୍ଟ କିମ୍ବା ନେଟୱର୍କ ହ୍ୱାଇଟ କିମ୍ବା ବ୍ଲାକଲିଷ୍ଟ ପାଇଁ ଉପାଦାନକୁ ନିଷ୍କ୍ରିୟ କରିଥାଏ।" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "ଉତ୍ସ:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "ଲକ୍ଷ୍ଯସ୍ଥଳ:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "ଲଗ:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "ସମ୍ପାଦନ:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 ଏବଂ ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "ଓଲଟି ଯାଇଛି" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1882,78 +1773,172 @@ msgstr "" "ଏହାକୁ ସକ୍ରିୟ କରିବା ପାଇଁ କାର୍ଯ୍ୟକୁ 'ପ୍ରତ୍ୟାଖ୍ୟାନ' କରିବା ଉଚିତ ଏବଂ 'ipv4' କିମ୍ବା 'ipv6' ପରିବାରର " "ହୋଇଥିବା ଉଚିତ (ଉଭୟ ନୁହଁ)।" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "ପ୍ରକାର ସହିତ:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "ସୀମା ସହିତ:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "ଉପସର୍ଗ:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "ସ୍ତର:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "ଉପାଦାନ:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "କାର୍ଯ୍ୟ:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "ମୂଳ ସର୍ଭିସ ସେଟିଙ୍ଗଗୁଡ଼ିକ" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "ମୂଳ ସର୍ଭିସ ସେଟିଙ୍ଗଗୁଡ଼ିକୁ ଦୟାକରି ବିନ୍ୟାସ କରନ୍ତୁ:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "ଦୟାକରି ଗୋଟିଏ ସର୍ଭିସ ବାଛନ୍ତୁ।" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ବ୍ୟବହାରକାରୀ ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "ଦୟାକରି ବ୍ୟବହାରକାରୀ id ଭରଣ କରନ୍ତୁ।" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "ଦୟାକରି ବ୍ୟବହାରକାରୀ ନାମ ଭରଣ କରନ୍ତୁ" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "ମୂଳ ଅଞ୍ଚଳ ସଂରଚନା" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "ମୂଳ ଅଞ୍ଚଳ ସଂରଚନାକୁ ବିନ୍ୟାସ କରନ୍ତୁ:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "ପୂର୍ବ ନିର୍ଦ୍ଧାରିତ ଲକ୍ଷ୍ଯ ସ୍ଥଳ" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "ଲକ୍ଷ୍ଯ ସ୍ଥଳ:" + +#~ msgid "User name" +#~ msgstr "ବ୍ୟବହାରକାରୀ ନାମ" + +#~ msgid "Please enter the command line." +#~ msgstr "ଦୟାକରି ନିର୍ଦ୍ଦେଶନାମାକୁ ଭରଣ କରନ୍ତୁ।" + +#~ msgid "Please enter the context." +#~ msgstr "ଦୟାକରି ପ୍ରସଙ୍ଗକୁ ଭରଣ କରନ୍ତୁ।" + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "ଲକଡାଉନ ଫାୟାରୱାଲ ସଂରଚନାକୁ ଅପରିବର୍ତ୍ତନୀୟ କରିଥାଏ ଯାହାଫଳରେ କେବଳ ଲକଡାଉନ ହ୍ୱାଇଟଲିଷ୍ଟରେ " +#~ "ଥିବା ପ୍ରୟୋଗଗୁଡ଼ିକ ଏହାକୁ ପରିବର୍ତ୍ତନ କରିବାରେ ସକ୍ଷମ ହୋଇଥାନ୍ତି।" + +#~ msgid "Lockdown" +#~ msgstr "ଲକଡାଉନ" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "ଲକଡାଉନ ହ୍ୱାଇଟଲିଷ୍ଟ" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "ଲକଡାଉନ ବିଶେଷତାଟି ହେଉଛି firewalld ପାଇଁ ବ୍ୟବହାରକାରୀ ଏବଂ ପ୍ରୟୋଗ ନିତୀଗୁଡ଼ିକର ହାଲୁକା " +#~ "ସଂସ୍କରଣ। ଏହା ଫାୟାରୱାଲର ପରିବର୍ତ୍ତନକୁ ସିମୀତ କରିଥାଏ। ଲକଡାଉନ ହ୍ୱାଇଟଲିଷ୍ଟ ନିର୍ଦ୍ଦେଶ, ପ୍ରସଙ୍ଗ, " +#~ "ବ୍ୟବହାରକାରୀ ଏବଂ ବ୍ୟବହାରକାରୀ id ଗୁଡ଼ିକୁ ଧାରଣ କରିଥାଏ।" + +#~ msgid "Add Context" +#~ msgstr "ପ୍ରସଙ୍ଗକୁ ଯୋଗକରନ୍ତୁ" + +#~ msgid "Edit Context" +#~ msgstr "ପ୍ରସଙ୍ଗକୁ ସମ୍ପାଦନ କରନ୍ତୁ" + +#~ msgid "Remove Context" +#~ msgstr "ପ୍ରସଙ୍ଗକୁ ବାହାର କରନ୍ତୁ" + +#~ msgid "Contexts" +#~ msgstr "ପ୍ରସଙ୍ଗ" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "ଯଦି ହ୍ୱାଇଟଲିଷ୍ଟରେ ଗୋଟିଏ ନିର୍ଦ୍ଦେଶ ନିବେଶ ଆସଟେରିସ୍କ '*' ରେ ସମାପ୍ତ ହୋଇଥାଏ, ତେବେ ସେହି " +#~ "ନିର୍ଦ୍ଦେଶ ସହିତ ଆରମ୍ଭ ହେଉଥିବା ସମସ୍ତ ନିର୍ଦ୍ଦେଶ ଧାରା ମେଳ ଖାଇବ। ଯଦି ସେହି '*' ସେଠାରେ ନଥାଏ " +#~ "ତେବେ ସେହି ସ୍ୱଚନ୍ତ୍ରଚର ସହିତ ମେଳଖାଉଥିବା ନିର୍ଦ୍ଦିଷ୍ଟ ନିର୍ଦ୍ଦେଶ ନିଶ୍ଚିତ ଭାବରେ ମେଳଖାଇବ।" + +#~ msgid "Add Command Line" +#~ msgstr "ପାଠ୍ଯ ନିର୍ଦ୍ଦେଶକୁ ଯୋଗ କରନ୍ତୁ" + +#~ msgid "Edit Command Line" +#~ msgstr "ପାଠ୍ଯ ନିର୍ଦ୍ଦେଶକୁ ସମ୍ପାଦନ କରନ୍ତୁ" + +#~ msgid "Remove Command Line" +#~ msgstr "ପାଠ୍ଯ ନିର୍ଦ୍ଦେଶକୁ ବାହାର କରନ୍ତୁ" + +#~ msgid "Command lines" +#~ msgstr "ନିର୍ଦ୍ଦେଶ ଧାରା" + +#~ msgid "User names." +#~ msgstr "ବ୍ୟବହାରକାରୀ ନାମଗୁଡ଼ିକ।" + +#~ msgid "Add User Name" +#~ msgstr "ବ୍ୟବହାରକାରୀ ନାମ ଯୋଗ କରନ୍ତୁ" + +#~ msgid "Edit User Name" +#~ msgstr "ବ୍ୟବହାରକାରୀ ନାମକୁ ସମ୍ପାଦନ କରନ୍ତୁ" + +#~ msgid "Remove User Name" +#~ msgstr "ବ୍ୟବହାରକାରୀ ନାମକୁ ବାହାର କରନ୍ତୁ" + +#~ msgid "User names" +#~ msgstr "ବ୍ୟବହାରକାରୀ ନାମଗୁଡ଼ିକ" + +#~ msgid "User ids." +#~ msgstr "ବ୍ୟବହାରକାରୀ id ଗୁଡ଼ିକ।" + +#~ msgid "Add User Id" +#~ msgstr "ବ୍ୟବହାରକାରୀ Id ଯୋଗକରନ୍ତୁ" + +#~ msgid "Edit User Id" +#~ msgstr "ବ୍ୟବହାରକାରୀ Id ସମ୍ପାଦନ କରନ୍ତୁ" + +#~ msgid "Remove User Id" +#~ msgstr "ବ୍ୟବହାରକାରୀ Id ବାହାର କରନ୍ତୁ" + +#~ msgid "User Ids" +#~ msgstr "ବ୍ୟବହାରକାରୀ Id ଗୁଡ଼ିକ" + +#~ msgid "Lockdown:" +#~ msgstr "ଲକଡାଉନ:" + +#~ msgid "User ID" +#~ msgstr "ବ୍ୟବହାରକାରୀ ID" + +#~ msgid "Please enter the user id." +#~ msgstr "ଦୟାକରି ବ୍ୟବହାରକାରୀ id ଭରଣ କରନ୍ତୁ।" + +#~ msgid "Please enter the user name." +#~ msgstr "ଦୟାକରି ବ୍ୟବହାରକାରୀ ନାମ ଭରଣ କରନ୍ତୁ" diff --git a/po/pa.po b/po/pa.po index fe9155f..c3a259e 100644 --- a/po/pa.po +++ b/po/pa.po @@ -22,7 +22,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2017-11-26 02:37+0000\n" "Last-Translator: A S Alam \n" "Language-Team: Panjabi (Punjabi) (http://www.transifex.com/projects/p/" @@ -38,11 +38,45 @@ msgstr "" msgid "Firewall Applet" msgstr "ਫਾਇਰਵਾਲ ਐਪਲੈੱਟ" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "ਫਾਇਰਵਾਲ ਸੰਰਚਨਾ" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "ਫਾਇਰਵਾਲ" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "ਫਾਇਰਵਾਲ ਸੰਰਚਨਾ" @@ -51,24 +85,24 @@ msgstr "ਫਾਇਰਵਾਲ ਸੰਰਚਨਾ" msgid "firewall;network;security;iptables;netfilter;" msgstr "ਫਾਇਰਵਾਲ;ਨੈੱਟਵਰਕ;ਨੈਟਵਰਕ;ਸੁਰੱਖਿਆ;ਆਈਪੀਟੇਬਲ;ਨੈਟਫਿਲਟਰ;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "ਇੰਟਰਫੇਸ '%s' ਲਈ ਜ਼ੋਨ ਚੁਣੋ" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "ਮੂਲ ਜ਼ੋਨ" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "ਸੰਪਰਕ '%s' ਲਈ ਜ਼ੋਨ ਚੁਣੋ" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -118,152 +152,152 @@ msgstr "ਲੇਖਕ" msgid "License" msgstr "ਲਸੰਸ" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "ਸ਼ੀਲਡ ਅੱਪ ਕਰਦਾ ਹੈ" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "ਸੂਚਨਾਵਾਂ ਚਾਲੂ ਕਰੋ" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "...ਫਾਇਰਵਾਲ ਸੈਟਿੰਗਾਂ ਸੋਧੋ" -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "ਸੰਪਰਕਾਂ ਦੇ ਜ਼ੋਨ ਬਦਲੋ..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "...ਸ਼ੀਲਡ ਅੱਪ/ਡਾਊਨ ਜ਼ੋਨ ਸੰਰਚਨਾ" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "ਸਭ ਨੈੱਟਵਰਕ ਆਵਾਜਾਈ ਉੱਤੇ ਪਾਬੰਦੀ" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "ਇਸ ਬਾਰੇ" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "ਕੋਈ ਕੁਨੈਕਸ਼ਨ ਨਹੀਂ" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "ਇੰਟਰਫੇਸ" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "ਸਰੋਤ" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "ਪਰਮਾਣਿਕਤਾ ਅਸਫਲ ਹੋਈ।" -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "ਅਢੁਕਵਾਂ ਨਾਂ" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "ਨਾਂ ਪਹਿਲਾਂ ਹੀ ਮੌਜੂਦ ਹੈ" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (ਜ਼ੋਨ: {zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "{entry} (ਮੂਲ ਜ਼ੋਨ: {default_zone})" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "ਨੈੱਟਵਰਕ-ਮੈਨੇਜਰ ਤੋਂ ਕਨੈਕਸ਼ਨ ਲੈਣ ਲਈ ਅਸਫ਼ਲ" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "ਫਾਇਰਵਾਲ ਡੈਮਨ ਨਾਲ ਕੋਈ ਕੁਨੈਕਸ਼ਨ ਨਹੀਂ ਹੈ" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "ਸਭ ਨੈੱਟਵਰਕ ਟਰੈਫਿਕ ਉੱਤੇ ਪਾਬੰਦੀ ਲਗਾਈ ਗਈ।" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "ਮੂਲ ਜ਼ੋਨ: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "'{zone}' ਜ਼ੋਨ ਸਰਗਰਮ '{connection}' ਸੰਪਰਕ ਲਈ '{interface}' ਇੰਟਰਫੇਸ ਉੱਤੇ" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "'{zone}' ਜ਼ੋਨ ਸਰਗਰਮ '{interface}' ਇੰਟਰਫੇਸ ਲਈ" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "'{zone}' ਜ਼ੋਨ ਸਰੋਤ {source} ਲਈ ਸਰਗਰਮ" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "ਕੋਈ ਵੀ ਸਰਗਰਮ ਜ਼ੋਨ ਨਹੀਂ।" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "ਫਾਇਰਵਾਲ-ਡੀ ਨਾਲ ਸੰਪਰਕ ਬਣਾਇਆ।" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "ਫਾਇਰਵਾਲ-ਡੀ ਨਾਲ ਕੁਨੈਕਸ਼ਨ ਖਤਮ ਹੋਇਆ।" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "ਫਾਇਰਵਾਲ-ਡੀ ਨੂੰ ਮੁੜ-ਲੋਡ ਕੀਤਾ ਜਾ ਚੁੱਕਾ ਹੈ।" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "ਮੂਲ ਜ਼ੋਨ '%s' ਨਾਲ ਬਦਲਿਆ ਗਿਆ।" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "ਨੈੱਟਵਰਕ ਟਰੈਫਿਕ ਉੱਤੇ ਹੁਣ ਕੋਈ ਪਾਬੰਦੀ ਨਹੀਂ ਹੈ।" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "ਕਿਰਿਆਸ਼ੀਲ ਕੀਤਾ" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "ਗੈਰ-ਕਿਰਿਆਸ਼ੀਲ ਕੀਤਾ" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -271,20 +305,20 @@ msgstr "" "'{zone}' ਜ਼ੋਨ {activated_deactivated} ਸੰਪਰਕ '{connection}' ਲਈ ਇੰਟਰਫੇਸ " "'{interface}' ਉੱਤੇ" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "'{zone}' ਜ਼ੋਨ {activated_deactivated} ਇੰਟਰਫੇਸ '{interface}' ਉੱਤੇ" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr " '%s' ਜ਼ੋਨ ਇੰਟਰਫੇਸ '%s' ਲਈ ਕਿਰਿਆਸ਼ੀਲ ਕੀਤਾ ਗਿਆ" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "'{zone}' ਜ਼ੋਨ {activated_deactivated} ਸਰੋਤ '{source}' ਲਈ" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "'%s' ਜ਼ੋਨ ਸਰੋਤ '%s' ਲਈ ਕਿਰਿਆਸ਼ੀਲ ਕੀਤਾ ਗਿਆ" @@ -329,328 +363,312 @@ msgstr "ਅਯੋਗ ਕੀਤਾ" msgid "Failed to load icons." msgstr "ਆਈਕਨ ਲੋਡ ਕਰਨ ਵਿੱਚ ਅਸਫਲ ਹੋਇਆ।" -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "ਕਮਾਂਡ ਲਾਈਨ" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "ਯੂਜ਼ਰ ਨਾਂ" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "ਵਰਤੋਂਕਾਰ id" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "ਸਾਰਣੀ" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "ਚੇਨ" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "ਤਰਜੀਹ" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "ਚੱਲਣ ਸਮਾਂ" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "ਪੱਕਾ" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "ਸੇਵਾ" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "ਪੋਰਟ" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "ਜਾਬਤਾ" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "ਪੋਰਟ ਵੱਲ" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "ਪਤੇ ਵੱਲ" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "ਐੰਟਰੀ" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp ਕਿਸਮ" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "ਟੱਬਰ" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "ਕਾਰਵਾਈ" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "ਤੱਤ" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "ਸਰੋਤ" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "ਟਿਕਾਣਾ" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "ਲੌਗ" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "ਆਡਿਟ" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "ਇੰਟਰਫੇਸ" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "ਟਿੱਪਣੀ" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "ਸਰੋਤ" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "ਚੇਤਾਵਨੀ" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "ਗਲਤੀ" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "ਸਵੀਕਾਰ ਕਰੋ" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "ਅਸਵੀਕਾਰ ਕਰੋ" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "ਸੁੱਟੋ" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "ਮਾਰਕ" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "ਹੱਦ" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "ਸੇਵਾ" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "ਪੋਰਟ" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "ਜਾਬਤਾ" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "ਮੁਖੌਟਾ" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "icmp-type" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "forward-port" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "ਸਰੋਤ-ਪੋਰਟ" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "ਪੱਧਰ" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "ਹਾਂ" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "ਜ਼ੋਨ" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "ਮੂਲ ਜ਼ੋਨ: %s" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "ਜ਼ੋਨ: %s" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "ਜ਼ੋਨ '%s': ਸੇਵਾ '%s' ਉਪਲੱਬਧ ਨਹੀਂ ਹੈ।" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "ਜ਼ੋਨ ਹਟਾਉ" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "ਅਣਗੌਲਿਆ ਕਰੋ" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "ਜ਼ੋਨ '%s': ICMP ਕਿਸਮ '%s' ਉਪਲੱਬਧ ਨਹੀਂ।" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "ਬਿਲਟ-ਇਨ ਜ਼ੋਨ, ਨਾਂ-ਬਦਲਣ ਲਈ ਸਹਾਇਕ ਨਹੀਂ।" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "ਦੂਜਾ" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "ਮਿੰਨਟ" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "ਘੰਟਾ" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "ਦਿਨ" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "ਹੰਗਾਮੀ" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "ਖ਼ਬਰਦਾਰ" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "ਨਾਜੁਕ" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "ਗਲਤੀ" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "ਚੇਤਾਵਨੀ" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "ਸੂਚਨਾ" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "ਜਾਣਕਾਰੀ" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "ਡੀਬੱਗ" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -659,81 +677,81 @@ msgstr "" "ਕਿਸੇ ਹੋਰ ਸਿਸਟਮ ਤੇ ਫਾਰਵਰਡਿੰਗ ਸਿਰਫ ਉਸ ਵੇਲੇ ਹੀ ਵਰਤੋਂਯੋਗ ਹੈ ਜੇ ਇੰਟਰਫੇਸ ਦਾ ਮੁਖੌਟਾਪਨ ਕੀਤਾ ਹੈ।\n" "ਕੀ ਤੁਸੀਂ ਇਸ ਜ਼ੋਨ ਦਾ ਮੁਖੌਟਾਪਨ ਕਰਨਾ ਚਾਹੁੰਦੇ ਹੋ?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "ਬਿਲਟ-ਇਨ ਸੰਰਚਨਾ, ਨਾਂ-ਬਦਲਣ ਲਈ ਸਹਾਇਕ ਨਹੀਂ ਹੈ।" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "ਮਾਸਕ ਨੰਬਰ ਹੈ।" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "ਫਾਇਲ ਚੁਣੋ" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "ਲਿਖਤ ਫਾਇਲਾਂ" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "ਸਾਰੀਆਂ ਫਾਇਲਾੰ" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "ਸਭ" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "ਬਿਲਟ-ਇਨ icmp, ਨਾਂ-ਬਦਲਣ ਲਈ ਸਹਾਇਕ ਨਹੀਂ ਹੈ।" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "ਸਰੋਤ %s ਲਈ ਜ਼ੋਨ ਚੁਣੋ" @@ -752,91 +770,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਕਮਾਂਡ ਲਾਈਨ ਭਰੋ।" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਪ੍ਰਸੰਗ ਭਰੋ।" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਹੇਠਾਂ ਦਿੱਤੀ ਸੂਚੀ ਵਿੱਚੋਂ ਮੂਲ ਜ਼ੋਨ ਚੁਣੌ।" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "ਸਿੱਧੀ ਲੜੀ" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ipv ਅਤੇ ਸਾਰਣੀ ਚੁਣੋ ਅਤੇ ਲੜੀ ਨਾਂ ਭਰੋ।" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "ਲੜੀ:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "ਕੱਚਾ" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "ਸੁਰੱਖਿਆ" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "ਸਾਰਣੀ:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "ਸਿੱਧਾ ਪਾਸਥਰੂਅ ਨਿਯਮ" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ipv ਚੁਣੋ ਅਤੇ ਆਰਗੂਮੈਂਟ ਭਰੋ।" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "ਆਰਗੂਮੈਂਟ:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "ਪੋਰਟ ਫਾਰਵਰਡਿੰਗ" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "ਕਿਰਪਾ ਕਰਕੇ ਆਪਣੀ ਲੋੜ ਅਨੁਸਾਰ ਸਰੋਤ ਤੇ ਨੀਯਤ ਚੋਣਾਂ ਚੁਣੋ।" -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "ਪੋਰਟ / ਪੋਰਟ ਰੇਂਜ:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP ਪਤਾ:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "ਜਾਬਤਾ:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "ਟਿਕਾਣਾ" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -844,107 +854,107 @@ msgstr "" "ਜੇ ਤੁਸੀਂ ਸਥਾਨਕ ਫਾਰਵਰਡਿੰਗ ਯੋਗ ਕਰਦੇ ਹੋ, ਤੁਹਾਨੂੰ ਇੱਕ ਪੋਰਟ ਦੇਣੀ ਚਾਹੀਦੀ ਹੈ। ਇਹ ਪੋਰਟ ਸਰੋਤ ਪੋਰਟ ਲਈ " "ਵੱਖਰੀ ਹੋਣੀ ਜਰੂਰੀ ਹੈ।" -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "ਸਥਾਨਕ ਫਾਰਵਰਡਿੰਗ" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "ਹੋਰ ਪੋਰਟ ਤੇ ਅੱਗੇ ਭੇਜਿਆ" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "ਗੂੜ੍ਹੇ ਕੀਤੇ ਇੰਦਰਾਜ ਜਰੂਰੀ ਹਨ, ਬਾਕੀ ਸਭ ਚੋਣਵੀਆਂ ਹਨ।" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "ਨਾਂ:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "ਸੰਸਕਰਣ:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "ਸੰਖੇਪ:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "ਵੇਰਵਾ:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "ਟੱਬਰ:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "ਮੋਡੀਊਲ:" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "ਹੈਲਪਰ" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "ਹੈਲਪਰ ਨੂੰ ਚੁਣੋ:" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "ਮੁੱਢਲੀ ICMP ਕਿਸਮ ਸੈਟਿੰਗ" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਆਧਾਰ ICMP ਕਿਸਮ ਸੈਟਿੰਗਾਂ ਸੰਰਚਿਤ ਕਰੋ:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP ਕਿਸਮ" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ICMP ਕਿਸਮ ਚੁਣੋ" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "ਐਂਟਰੀ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "ਚੁਣੀ ਐਂਟਰੀ ਨੂੰ ਹਟਾਓ" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "ਫਾਈਲ (_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "ਚੋਣਾਂ (_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "ਫਾਇਰਵਾਲ-ਡੀ ਮੁੜ-ਲੋਡ ਕਰੋ" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -953,117 +963,101 @@ msgstr "" "ਫਾਇਰਵਾਲ ਨਿਯਮ ਮੁੜ ਲੋਡ ਕਰੋ। ਮੌਜੂਦਾ ਪੱਕੀ ਸੰਰਚਨਾ ਨਵੀਂ ਚੱਲ ਰਹੀ ਸੰਰਚਨਾ ਬਣ ਜਾਵੇਗੀ। ਮਤਲਬ ਕਿ ਮੁੜ-" "ਲੋਡ ਕਰਨ ਤੱਕ ਚਾਲੂ ਹਾਲਾਤ ਵਿੱਚ ਕੀਤੇ ਸਾਰੇ ਬਦਲਾਅ ਗੁੰਮ ਜਾਂਦੇ ਹਨ ਜੇ ਉਹ ਵੀ ਪੱਕੀ ਸੰਰਚਨਾ ਵਿੱਚ ਨਹੀਂ ਹਨ।" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "ਇੱਕ ਨੈੱਟਵਰਕ ਸੰਪਰਕ ਕਿਸ ਜ਼ੋਨ ਨਾਲ ਸੰਬੰਧ ਰੱਖਦਾ ਹੈ ਨੂੰ ਬਦਲੋ।" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "ਮੂਲ ਜ਼ੋਨ ਬਦਲੋ" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "ਸੰਪਰਕਾਂ ਜਾਂ ਇੰਟਰਫੇਸਾਂ ਲਈ ਮੂਲ ਜ਼ੋਨ ਬਦਲੋ।" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "ਖਲਬਲੀ ਮੋਡ ਦਾ ਮਤਲਬ ਕਿ ਸਾਰੇ ਜਾ ਰਹੇ ਅਤੇ ਆ ਰਹੇ ਪੈਕੇਟ ਸੁੱਟ ਦਿੱਤੇ ਜਾਂਦੇ ਹਨ।" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "ਖ਼ਲਬਲੀ ਮੋਡ" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"ਤਾਲਾਬੰਦ ਫਾਇਰਵਾਲ ਸੰਰਚਨਾ ਤੇ ਤਾਲਾ ਲਗਾ ਦਿੰਦਾ ਹੈ ਤਾਂ ਕਿ ਸਿਰਫ਼ ਤਾਲਾਬੰਦੀ ਦੀ ਵਾਈ੍ਹਟਲਿਸਟ " -"ਉੱਪਰਲੀਆਂ ਐਪਲੀਕੇਸ਼ਨਾਂ ਹੀ ਇਸ ਨੂੰ ਬਦਲਣ ਦੇ ਯੋਗ ਹੋਣ।" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "ਤਾਲਾਬੰਦ" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "ਝਾਤ (_V)" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP ਕਿਸਮਾਂ" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "ਹੈਲਪਰ" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "ਸਿੱਧੀ ਸੰਰਚਨਾ" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "Whitelist ਤਾਲਾਬੰਦ ਕਰੋ" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "ਮਦਦ (_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "ਜ਼ੋਨ ਨੂੰ ਬਦਲੋ" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "ਸੰਰਚਨਾ:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1072,7 +1066,7 @@ msgstr "" "ਮੌਜੂਦਾ ਪਰਗਟ ਸੰਰਚਨਾ। ਚਾਲੂ ਸੰਰਚਨਾ ਹੀ ਅਸਲ ਸਰਗਰਮ ਸੰਰਚਨਾ ਹੈ। ਸਥਾਈ ਸੰਰਚਨਾ ਸੇਵਾ ਜਾਂ ਸਿਸਟਮ ਦੇ " "ਮੁੜ-ਲੋਡ ਜਾਂ ਮੁੜ-ਸ਼ੁਰੂ ਹੋਣ ਤੋਂ ਬਾਅਦ ਸਰਗਰਮ ਹੋਵੇਗੀ" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1084,23 +1078,23 @@ msgstr "" "ਦਰਸਾਉਂਦਾ ਹੈ। ਜ਼ੋਨ ਸੇਵਾਵਾਂ, ਪੋਰਟਾਂ, ਜਾਬਤਿਆਂ, ਮੁਖੌਟਾਪਨ, ਪੋਰਟ/ਪੈਕੇਟ ਫਾਰਵਰਡ ਕਰਨਾ, icmp ਫਿਲਟਰਾਂ " "ਅਤੇ ਉੱਚ-ਪੱਧਰ ਨਿਯਮਾਂ ਨੂੰ ਇਕੱਠਿਆਂ ਕਰਦਾ ਹੈ। ਜ਼ੋਨ ਨੂੰ ਇੰਟਰਫੇਸਾਂ ਅਤੇ ਸਰੋਤ ਪਤਿਆਂ ਨਾਲ ਬੰਨ੍ਹਿਆ ਜਾ ਸਕਦਾ ਹੈ।" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "ਜ਼ੋਨ ਸ਼ਾਮਿਲ ਕਰੋ" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "ਜ਼ੋਨ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "ਜ਼ੋਨ ਹਟਾਉ" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "ਜ਼ੋਨ ਮੂਲ ਲੋਡ ਕਰੋ" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1110,11 +1104,11 @@ msgstr "" "ਤੋਂ ਵਰਤੀਆਂ ਜਾ ਸਕਦੀਆਂ ਹਨ ਜਿਹੜੇ ਇਸ ਜ਼ੋਨ ਨਾਲ ਬੱਝੇ ਸੰਪਰਕਾਂ, ਇੰਟਰਫੇਸਾਂ ਅਤੇ ਸਰੋਤਾਂ ਤੋਂ ਮਸ਼ੀਨ ਤੱਕ ਪਹੁੰਚ " "ਸਕਦੇ ਹਨ।" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "ਸੇਵਾਵਾਂ" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1122,53 +1116,53 @@ msgstr "" "ਵਾਧੂ ਪੋਰਟਾਂ ਜਾਂ ਪੋਰਟ ਰੇਂਜਾਂ ਸ਼ਾਮਿਲ ਕਰੋ, ਜੋ ਉਹਨਾਂ ਸਭ ਮੇਜ਼ਬਾਨਾਂ ਜਾਂ ਨੈੱਟਵਰਕਾਂ ਲਈ ਦਖਲ ਦੇਣ ਯੋਗ ਹੋਣ " "ਜਿਹੜੇ ਮਸ਼ੀਨ ਨਾਲ ਜੁੜ ਸਕਦੇ ਹਨ।" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "ਪੋਰਟ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "ਜ਼ੋਨ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "ਜ਼ੋਨ ਹਟਾਉ" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "ਪੋਰਟ" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "ਪਰੋਟੋਕਾਲ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "ਪਰੋਟੋਕਾਲ ਨੂੰ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "ਪਰੋਟੋਕਾਲ ਨੂੰ ਹਟਾਓ" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "ਪਰੋਟੋਕਾਲ" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "ਸਰੋਤ ਪੋਰਟ" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1178,21 +1172,21 @@ msgstr "" "ਇੰਟਰਨੈੱਟ ਨਾਲ ਜੋੜਦਾ ਹੈ। ਤੁਹਾਡਾ ਸਥਾਨਕ ਨੈੱਟਵਰਕ ਦਿੱਖ ਹੋਵੇਗਾ ਅਤੇ ਇੰਟਰਨੈੱਟ ਲਈ ਮੇਜ਼ਬਾਨ ਇੱਕ ਵੱਖਰੇ ਪਤੇ ਵਾਂਗ " "ਦਿਸਦਾ ਹੈ। ਮਖੌਟਾ ਸਿਰਫ IPv4 ਹੈ।" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "ਮੁਖੌਟਾ ਜ਼ੋਨ" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "ਜੇ ਤੁਸੀਂ ਮੁਖੌਟਾ ਯੋਗ ਕੀਤਾ, IP ਫਾਰਵਰਡਿੰਗ ਵੀ ਤੁਹਾਡੇ IPv4 ਨੈੱਟਵਰਕਾਂ ਲਈ ਯੋਗ ਹੋ ਜਾਏਗੀ।" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "ਮੁਖੌਟਾ" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1203,19 +1197,19 @@ msgstr "" "ਸਿਸਟਮ ਵੱਲ ਫਾਰਵਰਡ ਕਰਨ ਲਈ ਇੰਦਰਾਜ ਸ਼ਾਮਿਲ ਕਰੋ। ਹੋਰ ਸਿਸਟਮ ਤੇ ਫਾਰਵਰਡ ਕਰਨ ਨਾਲ ਸਿਰਫ ਤਾਂ ਹੀ " "ਲਾਹੇਵੰਦ ਹੈ ਜੇ ਇੰਟਰਫੇਸ ਮਖੌਟਾ ਹੈ। ਪੋਰਟ ਫਾਰਵਰਡਿੰਗ ਸਿਰਫ IPv4 ਹੈ।" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "ਫਾਰਵਰਡ ਪੋਰਟ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "ਫਾਰਵਰਡ ਪੋਰਟ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "ਪਾਰਵਰਡ ਪੋਰਟ ਹਟਾਉ" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1224,7 +1218,7 @@ msgstr "" "ਇੰਟਰਨੈੱਟ ਕੰਟਰੋਲ ਮੈਸੇਜ ਪਰੋਟੋਕਾਲ (ICMP) ਮੁੱਖ ਤੌਰ ਤੇ ਨੈੱਟਵਰਕ ਕੰਪਿਊਟਰਾਂ ਵਿੱਚ ਗਲਤੀ ਸੁਨੇਹੇ ਭੇਜਣ ਲਈ ਵਰਤਿਆ " "ਜਾਂਦਾ ਹੈ, ਪਰ ਨਾਲ ਹੀ ਵੀ ਭੇਜਦਾ ਹੈ ਜਿਵੇਂ ਪਿੰਗ ਬੇਨਤੀ ਅਤੇ ਜਵਾਬ।" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1232,41 +1226,41 @@ msgstr "" "ਸੂਚੀ ਵਿੱਚ ICMP ਕਿਸਮਾਂ ਮਾਰਕ ਕਰੋ, ਜੋ ਰੱਧ ਕੀਤੀਆਂ ਜਾ ਸਕਦੀਆਂ ਹਨ। ਹੋਰ ਸਭ ICMP ਕਿਸਮਾਂ ਫਾਇਰਵਾਲ " "ਵਿੱਚ ਲੰਘ ਸਕਦੀਆਂ ਹਨ। ਮੂਲ ਰੂਪ ਵਿੱਚ ਕੋਈ ਪਾਬੰਦੀ ਨਹੀਂ ਹੈ।" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP ਫਿਲਟਰ" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "ਇੱਥੇ ਤੁਸੀਂ ਜ਼ੋਨ ਲਈ ਉੱਚ-ਪੱਧਰੀ ਭਾਸ਼ਾ ਨਿਯਮ ਸੈੱਟ ਕਰ ਸਕਦੇ ਹੋ।" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "ਉੱਚ-ਪੱਧਰੀ ਨਿਯਮ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "ਉੱਚ-ਪੱਧਰੀ ਨਿਯਮ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "ਉੱਚ-ਪੱਧਰੀ ਨਿਯਮ ਹਟਾਉ" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "ਉੱਚ-ਪੱਧਰੀ ਨਿਯਮ" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1274,96 +1268,96 @@ msgstr "" "ਜ਼ੋਨ ਨਾਲ ਇੰਟਰਫੇਸ ਬੰਨ੍ਹਣ ਲਈ ਐਂਟਰੀਆਂ ਸਾਮਿਲ ਕਰੋ। ਜੇ ਇੰਟਰਫੇਸ ਸੰਪਰਕ ਦੁਆਰਾ ਵਰਤਿਆ ਜਾਵੇਗਾ, ਜ਼ੋਨ ਉਸ ਜ਼ੋਨ " "ਵਜੋਂ ਸੈੱਟ ਹੋਵੇਗਾ ਜੋ ਸੰਪਰਕ ਵਿੱਚ ਦਰਸਾਇਆ ਗਿਆ ਹੈ।" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "ਇੰਟਰਫੇਸ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "ਇੰਟਰਫੇਸ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "ਇੰਟਰਫੇਸ ਹਟਾਉ" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "ਸਰੋਤ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "ਸਰੋਤ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "ਸਰੋਤ ਹਟਾਉ" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "ਜ਼ੋਨ" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "ਇੱਕ ਫਾਇਰਵਾਲ-ਡੀ ਸੇਵਾ ਪੋਰਟਾਂ, ਜਾਬਤਿਆਂ, ਮੌਡਿਊਲਾਂ ਅਤੇ ਟਿਕਾਣਾ ਪਤਿਆਂ ਦਾ ਮਿਸ਼ਰਣ ਹੈ।" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "ਸੇਵਾ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "ਸੇਵਾ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "ਸੇਵਾ ਹਟਾਉ" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "ਸੇਵਾ ਮੂਲ ਲੋਡ ਕਰੋ" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "ਐਂਟਰੀ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "ਐਂਟਰੀ ਹਟਾਉ" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "ਸਰੋਤ ਪੋਰਟ" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "ਮੌਡਿਊਲ" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1372,48 +1366,48 @@ msgstr "" "ਜੇ ਤੁਸੀਂ ਟਿਕਾਣਾ ਪਤੇ ਦਰਸਾਉਂਦੇ ਹੋ, ਸੇਵਾ ਇੰਦਰਾਜ ਟਿਕਾਣੇ ਦੇ ਪਤੇ ਅਤੇ ਕਿਸਮ ਤੱਕ ਸੀਮਿਤ ਰਹੇਗੀ। ਜੇ ਦੋਵੇਂ " "ਇੰਦਰਾਜ ਖਾਲੀ ਹਨ, ਫਿਰ ਕੋਈ ਬੰਦਿਸ਼ ਨਹੀਂ।" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" "ਸੇਵਾਵਾਂ ਸਿਰਫ਼ ਸਥਾਈ ਸੰਰਚਨਾ ਝਾਤ ਵਿੱਚ ਹੀ ਬਦਲੀਆਂ ਜਾ ਸਕਦੀਆਂ ਹਨ। ਸੇਵਾਵਾਂ ਦੀ ਚਾਲੂ ਸੰਰਚਨਾ ਪੱਕੀ ਹੈ।" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1421,26 +1415,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "ਜੋੜੋ" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "ਐਂਟਰੀਆਂ" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1448,27 +1442,27 @@ msgstr "" "ਫਾਇਰਵਾਲ-ਡੀ icmptype ਫਾਇਰਵਾਲ-ਡੀ ਦੀ ਇੰਟਰਨੈੱਟ ਕੰਟਰੋਲ ਮੈਸੇਜ ਪਰੋਟੋਕੌਲ (ICMP) ਕਿਸਮ ਦੀ " "ਜਾਣਕਾਰੀ ਮੁਹੱਈਆ ਕਰਵਾਉਂਦਾ ਹੈ।" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP ਕਿਸਮ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP ਕਿਸਮ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ICMP ਕਿਸਮ ਹਟਾਉ" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP ਕਿਸਮ ਮੂਲ ਲੋਡ ਕਰੋ" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "ਦਰਸਾਉ ਕਿ ਜੇ ਇਹ ICMP ਕਿਸਮ IPv4 ਅਤੇ/ਜਾਂ IPv6 ਲਈ ਉਪਲੱਬਧ ਹਨ।" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1476,7 +1470,7 @@ msgstr "" "ICMP ਕਿਸਮਾਂ ਸਿਰਫ਼ ਸਥਾਈ ਸੰਰਚਨਾ ਝਾਤ ਵਿੱਚ ਹੀ ਬਦਲੀਆਂ ਜਾ ਸਕਦੀਆਂ ਹਨ। ICMP ਕਿਸਮ ਦੀ ਚਾਲੂ " "ਸੰਰਚਨਾ ਪੱਕੀ ਹੈ।" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1484,11 +1478,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1500,7 +1494,7 @@ msgstr "" "ਸਿੱਧੀ ਸੰਰਚਨਾ ਆਖਿਰੀ ਹੱਲ ਵਜੋਂ ਵਰਤਣੀ ਚਾਹੀਦੀ ਹੈ ਜਦੋਂ ਹੋਰ ਫਾਇਰਵਾਲ-ਡੀ ਫੀਚਰਾਂ ਨੂੰ ਵਰਤਣਾ ਸੰਭਵ ਨਾ " "ਹੋਵੇ।" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1509,32 +1503,44 @@ msgstr "" "ਹਰੇਕ ਚੋਣ ਦੇ ipv ਆਰਗੂਮੈਂਟ ਦਾ ipv4 ਜਾਂ ipv6 ਜਾਂ eb ਹੋਣਾ ਹੈ। ipv4 ਨਾਲ ਇਹ iptables ਲਈ " "ਹੋਵੇਗਾ, ipv6 ਨਾਲ ਇਹ ip6tables ਲਈ ਅਤੇ eb ਨਾਲ ਇਹ ਈਥਰਨੈੱਟ ਬਰਿੱਜਾਂ (ebtables) ਲਈ।" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "ਨਿਯਮਾਂ ਨਾਲ ਵਰਤਣ ਲਈ ਵਾਧੂ ਲੜੀਆਂ।" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "ਲੜੀ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "ਲੜੀ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "ਲੜੀ ਹਟਾਉ" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "ਲੜੀਆਂ" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "ਤਰਜੀਹ ਵਾਲੀ ਇੱਕ ਸਾਰਣੀ ਵਿੱਚ ਲੜੀ ਨਾਲ ਆਰਗੂਮੈਂਟਾਂ args ਨਾਲ ਇੱਕ ਨਿਯਮ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "ਨਿਯਮ ਜੋੜੋ" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "ਨਿਯਮ ਸੋਧੋ" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "ਨਿਯਮ ਹਟਾਉ" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1548,23 +1554,11 @@ msgstr "" "ਨਿਯਮਾਂ ਦੀ ਤਰਤੀਬ ਪੱਕੀ ਨਹੀਂ ਹੈ ਤੇ ਬਦਲ ਸਕਦੀ ਹੈ। ਜੇ ਤੁਸੀਂ ਇਹ ਪੱਕਾ ਕਰਨਾ ਚਾਹੁੰਦੇ ਹੋ ਕਿ ਨਿਯਮ ਇੱਕ " "ਦੂਜੇ ਤੋਂ ਬਾਅਦ ਜੋੜੇ ਜਾਣਗੇ, ਪਹਿਲੇ ਲਈ ਘੱਟ ਅਤੇ ਬਾਅਦ ਵਾਲੇ ਲਈ ਵੱਡੀ ਤਰਜੀਹ ਵਰਤੋ।" -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "ਨਿਯਮ ਜੋੜੋ" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "ਨਿਯਮ ਸੋਧੋ" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "ਨਿਯਮ ਹਟਾਉ" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "ਨਿਯਮ" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1573,387 +1567,384 @@ msgstr "" "ਪਾਸਥਰੂਅ ਨਿਯਮ ਸਿੱਧੇ ਫਾਇਰਵਾਲ ਤੱਕ ਲੰਘਾ ਦਿੱਤੇ ਜਾਂਦੇ ਹਨ ਅਤੇ ਖਾਸ ਲੜੀਆਂ ਵਿੱਚ ਨਹੀਂ ਰੱਖੇ ਜਾਂਦੇ। ਸਾਰੀਆਂ " "iptables, ip6tables ਅਤੇ ebtables ਚੋਣਾਂ ਵਰਤੀਆਂ ਜਾ ਸਕਦੀਆਂ।" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਪਾਸਥਰੂਅ ਨਿਯਮਾਂ ਨਾਲ ਸੁਚੇਤ ਰਹੋ ਕਿਤੇ ਫਾਇਰਵਾਲ ਨੂੰ ਨੁਕਸਾਨ ਨਾ ਪਹੁੰਚੇ।" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "ਪਾਸਥਰੂਅ ਜੋੜੋ" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "ਪਾਸਥਰੂਅ ਸੋਧੋ" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "ਪਾਸਥਰੂਅ ਹਟਾਉ" -#: ../src/firewall-config.glade.h:193 +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." +msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਪਾਸਥਰੂਅ ਨਿਯਮਾਂ ਨਾਲ ਸੁਚੇਤ ਰਹੋ ਕਿਤੇ ਫਾਇਰਵਾਲ ਨੂੰ ਨੁਕਸਾਨ ਨਾ ਪਹੁੰਚੇ।" + +#: ../src/firewall-config.glade.h:186 msgid "Passthrough" msgstr "ਪਾਸਥਰੂਅ" -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"ਤਾਲਾਬੰਦ ਗੁਣ ਫਾਇਰਵਾਲ-ਡੀ ਲਈ ਯੂਜ਼ਰ ਅਤੇ ਐਪਲੀਕੇਸ਼ਨ ਨੀਤੀਆਂ ਦਾ ਹਲਕਾ ਸੰਸਕਰਣ ਹੈ। ਇਹ ਫਾਇਰਵਾਲ-ਡੀ " -"ਵਿੱਚ ਬਦਲਾਆਂ ਨੂੰ ਸੀਮਿਤ ਕਰਦਾ ਹੈ। ਤਾਲਾਬੰਦ ਵਾਈ੍ਹਟਲਿਸਟ ਵਿੱਚ ਕਮਾਂਡਾਂ, ਪ੍ਰਸੰਗ, ਯੂਜ਼ਰ ਅਤੇ ਯੂਜ਼ਰ idਆਂ ਹੋ " -"ਸਕਦੀਆਂ ਹਨ।" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "ਪ੍ਰਸੰਗ ਜੋੜੋ" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "ਪ੍ਰਸੰਗ ਸੋਧੋ" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "ਪ੍ਰਸੰਗ ਹਟਾਉ" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "ਪ੍ਰਸੰਗ" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"ਜੇ ਵਾਈ੍ਹਟਲਿਸਟ ਤੇ ਕੋਈ ਕਮਾਂਡ ਇੰਦਰਾਜ '*' ਨਾਲ ਖਤਮ ਹੁੰਦਾ ਹੈ, ਤਾਂ ਕਮਾਂਡ ਨਾਲ ਸ਼ੁਰੂ ਹੁੰਦੀਆਂ ਸਾਰੀਆਂ " -"ਕਮਾਂਡ ਲਾਈਨਾਂ ਵੀ ਮੇਲ ਖਾਣਗੀਆਂ। ਜੇ '*' ਨਹੀਂ ਲੱਗਾ ਤਾਂ ਕਮਾਂਡ ਆਰਗੂਮੈਂਟਾਂ ਸਮੇਤ ਪੂਰੀ ਤਰ੍ਹਾਂ ਮੇਲ ਖਾਂਦੀ " -"ਹੋਣੀ ਜਰੂਰੀ ਹੈ।" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "ਕਮਾਂਡ ਲਾਈਨ ਜੋੜੋ" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "ਕਮਾਂਡ ਲਾਈਨ ਸੋਧੋ" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "ਕਮਾਂਡ ਲਾਈਨ ਹਟਾਉ" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "ਕਮਾਂਡ ਲਾਈਨਾਂ" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "ਯੂਜ਼ਰ ਨਾਂ।" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "ਯੂਜ਼ਰ ਨਾਂ ਜੋੜੋ" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "ਯੂਜ਼ਰ ਨਾਂ ਸੋਧੋ" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "ਯੂਜ਼ਰ ਨਾਂ ਹਟਾਉ" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "ਯੂਜ਼ਰ ਨਾਂ" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "ਯੂਜ਼ਰ id-ਆਂ।" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "ਯੂਜ਼ਰ Id ਜੋੜੋ" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "ਯੂਜ਼ਰ Id ਸੋਧੋ" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "ਯੂਜ਼ਰ Id ਹਟਾਉ" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "ਯੂਜ਼ਰ id-ਆਂ" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "ਸਿਸਟਮ ਦਾ ਮੌਜੂਦਾ ਮੂਲ ਜ਼ੋਨ।" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "ਪਾਬੰਦੀ ਦਾ ਲਾਗ:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "ਖ਼ਲਬਲੀ ਮੋਡ:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "ਤਾਲਾਬੰਦ:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "ਮੂਲ ਜ਼ੋਨ:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "ਕਿਸਮ:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "ਪਾਬੰਦੀ ਦਾ ਲਾਗ" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "ਪੋਰਟ ਅਤੇ ਜਾਬਤਾ" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "ਪੋਰਟ ਅਤੇ ਜਾਬਤਾ ਦਿਉ ਜੀ।" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "ਸਿੱਧਾ ਨਿਯਮ" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ipv ਅਤੇ ਸਾਰਣੀ, ਲੜੀ ਤਰਜੀਹ ਚੁਣੋ ਅਤੇ ਆਰਗੂਮੈਂਟ ਭਰੋ।" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "ਤਰਜੀਹ:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਇੱਕ ਜਾਬਤਾ ਭਰੋ।" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "ਹੋਰ ਜਾਬਤਾ:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "ਉੱਚ-ਪੱਧਰੀ ਨਿਯਮ" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਇੱਕ ਉੱਚ-ਪੱਧਰੀ ਨਿਯਮ ਭਰੋ।" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "ਮੇਜਬਾਨ ਜਾਂ ਨੈੱਟਵਰਕ ਲਈ ਵਾਈ੍ਹਟ ਜਾਂ ਬਲੈਕ-ਲਿਸਟਿੰਗ ਤੱਤ ਨੂੰ ਗੈਰ-ਕਿਰਿਆਸ਼ੀਲ ਕਰਦਾ ਹੈ।" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "ਸਰੋਤ:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "ਟਿਕਾਣਾ:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "ਲੌਗ:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "ਆਡਿਟ:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 ਅਤੇ ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "ਪਲਟਾਇਆ" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" "ਇਸ ਨੂੰ ਯੋਗ ਕਰਨ ਲਈ ਕਾਰਵਾਈ 'reject' ਅਤੇ ਟੱਬਰ ਜਾਂ ਤਾਂ 'ipv4' ਜਾਂ 'ipv6' (ਦੋਵੇਂ ਨਹੀਂ) ਹੋਵੇ।" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "ਕਿਸਮ ਨਾਲ:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "ਹੱਦ ਨਾਲ:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "ਅਗੇਤਰ:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "ਪੱਧਰ:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "ਤੱਤ:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "ਕਾਰਵਾਈ:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "ਮੁੱਢਲੀਆਂ ਸੇਵਾ ਸੈਟਿੰਗਾਂ" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "ਮੁੱਢਲੀਆਂ ਸੇਵਾ ਸੈਟਿੰਗਾਂ ਸੰਰਚਿਤ ਕਰੋ:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਇੱਕ ਸੇਵਾ ਚੁਣੋ।" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "ਸਰੋਤ ਦਿਓ:" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ਯੂਜ਼ਰ ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਯੂਜ਼ਰ id ਭਰੋ।" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਯੂਜ਼ਰ ਨਾਂ ਭਰੋ।" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "ਲੇਬਲ" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "ਮੂਲ ਜ਼ੋਨ ਸੈਟਿੰਗਾਂ" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "ਮੂਲ ਜ਼ੋਨ ਸੈਟਿੰਗਾਂ ਦਿਉ ਜੀ:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "ਮੂਲ ਨਿਸ਼ਾਨਾ" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "ਨਿਸ਼ਾਨਾ:" + +#~ msgid "Command line" +#~ msgstr "ਕਮਾਂਡ ਲਾਈਨ" + +#~ msgid "User name" +#~ msgstr "ਯੂਜ਼ਰ ਨਾਂ" + +#~ msgid "User id" +#~ msgstr "ਵਰਤੋਂਕਾਰ id" + +#~ msgid "Please enter the command line." +#~ msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਕਮਾਂਡ ਲਾਈਨ ਭਰੋ।" + +#~ msgid "Please enter the context." +#~ msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਪ੍ਰਸੰਗ ਭਰੋ।" + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "ਤਾਲਾਬੰਦ ਫਾਇਰਵਾਲ ਸੰਰਚਨਾ ਤੇ ਤਾਲਾ ਲਗਾ ਦਿੰਦਾ ਹੈ ਤਾਂ ਕਿ ਸਿਰਫ਼ ਤਾਲਾਬੰਦੀ ਦੀ ਵਾਈ੍ਹਟਲਿਸਟ " +#~ "ਉੱਪਰਲੀਆਂ ਐਪਲੀਕੇਸ਼ਨਾਂ ਹੀ ਇਸ ਨੂੰ ਬਦਲਣ ਦੇ ਯੋਗ ਹੋਣ।" + +#~ msgid "Lockdown" +#~ msgstr "ਤਾਲਾਬੰਦ" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Whitelist ਤਾਲਾਬੰਦ ਕਰੋ" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "ਤਾਲਾਬੰਦ ਗੁਣ ਫਾਇਰਵਾਲ-ਡੀ ਲਈ ਯੂਜ਼ਰ ਅਤੇ ਐਪਲੀਕੇਸ਼ਨ ਨੀਤੀਆਂ ਦਾ ਹਲਕਾ ਸੰਸਕਰਣ ਹੈ। ਇਹ ਫਾਇਰਵਾਲ-" +#~ "ਡੀ ਵਿੱਚ ਬਦਲਾਆਂ ਨੂੰ ਸੀਮਿਤ ਕਰਦਾ ਹੈ। ਤਾਲਾਬੰਦ ਵਾਈ੍ਹਟਲਿਸਟ ਵਿੱਚ ਕਮਾਂਡਾਂ, ਪ੍ਰਸੰਗ, ਯੂਜ਼ਰ ਅਤੇ ਯੂਜ਼ਰ " +#~ "idਆਂ ਹੋ ਸਕਦੀਆਂ ਹਨ।" + +#~ msgid "Add Context" +#~ msgstr "ਪ੍ਰਸੰਗ ਜੋੜੋ" + +#~ msgid "Edit Context" +#~ msgstr "ਪ੍ਰਸੰਗ ਸੋਧੋ" + +#~ msgid "Remove Context" +#~ msgstr "ਪ੍ਰਸੰਗ ਹਟਾਉ" + +#~ msgid "Contexts" +#~ msgstr "ਪ੍ਰਸੰਗ" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "ਜੇ ਵਾਈ੍ਹਟਲਿਸਟ ਤੇ ਕੋਈ ਕਮਾਂਡ ਇੰਦਰਾਜ '*' ਨਾਲ ਖਤਮ ਹੁੰਦਾ ਹੈ, ਤਾਂ ਕਮਾਂਡ ਨਾਲ ਸ਼ੁਰੂ ਹੁੰਦੀਆਂ ਸਾਰੀਆਂ " +#~ "ਕਮਾਂਡ ਲਾਈਨਾਂ ਵੀ ਮੇਲ ਖਾਣਗੀਆਂ। ਜੇ '*' ਨਹੀਂ ਲੱਗਾ ਤਾਂ ਕਮਾਂਡ ਆਰਗੂਮੈਂਟਾਂ ਸਮੇਤ ਪੂਰੀ ਤਰ੍ਹਾਂ ਮੇਲ " +#~ "ਖਾਂਦੀ ਹੋਣੀ ਜਰੂਰੀ ਹੈ।" + +#~ msgid "Add Command Line" +#~ msgstr "ਕਮਾਂਡ ਲਾਈਨ ਜੋੜੋ" + +#~ msgid "Edit Command Line" +#~ msgstr "ਕਮਾਂਡ ਲਾਈਨ ਸੋਧੋ" + +#~ msgid "Remove Command Line" +#~ msgstr "ਕਮਾਂਡ ਲਾਈਨ ਹਟਾਉ" + +#~ msgid "Command lines" +#~ msgstr "ਕਮਾਂਡ ਲਾਈਨਾਂ" + +#~ msgid "User names." +#~ msgstr "ਯੂਜ਼ਰ ਨਾਂ।" + +#~ msgid "Add User Name" +#~ msgstr "ਯੂਜ਼ਰ ਨਾਂ ਜੋੜੋ" + +#~ msgid "Edit User Name" +#~ msgstr "ਯੂਜ਼ਰ ਨਾਂ ਸੋਧੋ" + +#~ msgid "Remove User Name" +#~ msgstr "ਯੂਜ਼ਰ ਨਾਂ ਹਟਾਉ" + +#~ msgid "User names" +#~ msgstr "ਯੂਜ਼ਰ ਨਾਂ" + +#~ msgid "User ids." +#~ msgstr "ਯੂਜ਼ਰ id-ਆਂ।" + +#~ msgid "Add User Id" +#~ msgstr "ਯੂਜ਼ਰ Id ਜੋੜੋ" + +#~ msgid "Edit User Id" +#~ msgstr "ਯੂਜ਼ਰ Id ਸੋਧੋ" + +#~ msgid "Remove User Id" +#~ msgstr "ਯੂਜ਼ਰ Id ਹਟਾਉ" + +#~ msgid "User Ids" +#~ msgstr "ਯੂਜ਼ਰ id-ਆਂ" + +#~ msgid "Lockdown:" +#~ msgstr "ਤਾਲਾਬੰਦ:" + +#~ msgid "User ID" +#~ msgstr "ਯੂਜ਼ਰ ID" + +#~ msgid "Please enter the user id." +#~ msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਯੂਜ਼ਰ id ਭਰੋ।" + +#~ msgid "Please enter the user name." +#~ msgstr "ਕਿਰਪਾ ਕਰ ਕੇ ਯੂਜ਼ਰ ਨਾਂ ਭਰੋ।" diff --git a/po/pl.po b/po/pl.po index 61670cb..2cf821a 100644 --- a/po/pl.po +++ b/po/pl.po @@ -16,7 +16,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-06-30 17:57+0000\n" "Last-Translator: Piotr Drąg \n" "Language-Team: Polish ps -e --" -"context." -msgstr "" -"Kontekst to kontekst zabezpieczeń (SELinux) uruchomionego programu lub " -"usługi. Należy użyć polecenia ps -e --context, aby uzyskać kontekst " -"uruchomionego programu." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Dodaj kontekst" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Modyfikuj kontekst" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Usuń kontekst" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Konteksty" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Jeśli wpis polecenia na białej liście kończy się gwiazdką „*”, to wszystkie " -"wiersze poleceń zaczynające się od danego polecenia będą pasowały. Jeśli „*” " -"nie zostanie użyte, to polecenia bezwzględne muszą się zgadzać." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Dodaj wiersz poleceń" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Modyfikuj wiersz poleceń" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Usuń wiersz poleceń" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Wiersze poleceń" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Nazwy użytkowników." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Dodaj nazwę użytkownika" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Modyfikuj nazwę użytkownika" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Usuń nazwę użytkownika" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Nazwy użytkowników" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Identyfikatory użytkowników." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Dodaj identyfikator użytkownika" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Modyfikuj identyfikator użytkownika" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Usuń identyfikator użytkownika" +"Proszę zachować ostrożność przy regułach przejścia, aby nie uszkodzić zapory " +"sieciowej." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Identyfikatory użytkowników" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Przejście" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Bieżąca domyślna strefa systemu." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Dziennik odmów:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Tryb paniki:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Automatyczne moduły pomocnicze:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Blokada:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Domyślna strefa:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Proszę wprowadzić nazwę interfejsu:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Podstawowe ustawienia zestawu adresów IP" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Proszę skonfigurować podstawowe ustawienia zestawu adresów IP:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Typ:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Czas oczekiwania:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Rozmiar sumy kontrolnej:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maksymalna liczba elementów:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Czas oczekiwania w sekundach" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Początkowy rozmiar sumy kontrolnej, domyślnie 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Maksymalna liczba elementów, domyślnie 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Proszę wybrać zestaw adresów IP:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Proszę wprowadzić wpis zestawu adresów IP:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Dziennik odmów" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Proszę wybrać wartości dziennika odmów:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Ślad" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Proszę podać ślad z opcjonalną maską." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "Pola śladu i maski są 32-bitowymi szerokimi liczbami bez znaku." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Ślad:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Maska:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Proszę wybrać moduł pomocniczy „conntrack” filtra sieci:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Wybierz -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Inny moduł:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port i protokół" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Proszę podać port i protokół." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Reguła bezpośrednia" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Proszę wybrać ipv i tabelę, priorytet łańcucha i podać parametry." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Priorytet:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Proszę podać protokół." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Inny protokół:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Złożona reguła" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Proszę podać złożoną regułę." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Aby dodać komputer lub sieć do listy dozwolonych lub zabronionych, należy " "dezaktywować element." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Źródło:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Cel:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Dziennik:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audyt:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "IPv4 i IPv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "odwrócone" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1955,78 +1845,192 @@ msgstr "" "Aby to włączyć, działanie musi wynosić „reject”, a rodzina „ipv4” lub " "„ipv6” (nie oba)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "z typem:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Z ograniczeniem:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Przedrostek:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Poziom:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Element:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Działanie:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Podstawowe ustawienia usług" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Proszę skonfigurować podstawowe ustawienia usług:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Proszę wybrać usługę." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Proszę wprowadzić źródło." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Identyfikator użytkownika" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Proszę podać identyfikator użytkownika." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Proszę podać nazwę użytkownika." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "etykieta" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Podstawowe ustawienia strefy" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Proszę skonfigurować podstawowe ustawienia strefy:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Domyślny cel" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Cel:" + +#~ msgid "Context" +#~ msgstr "Kontekst" + +#~ msgid "Command line" +#~ msgstr "Wiersz poleceń" + +#~ msgid "User name" +#~ msgstr "Nazwa użytkownika" + +#~ msgid "User id" +#~ msgstr "Identyfikator użytkownika" + +#~ msgid "Please enter the command line." +#~ msgstr "Proszę podać wiersz poleceń." + +#~ msgid "Please enter the context." +#~ msgstr "Proszę podać kontekst." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Blokada blokuje konfigurację zapory sieciowej, więc tylko programy na " +#~ "białej liście blokady mogą ją zmieniać." + +#~ msgid "Lockdown" +#~ msgstr "Blokada" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Biała lista blokady" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Funkcja blokady jest lekką wersją polityk użytkownika i programów dla " +#~ "usługi firewalld. Ogranicza ona zmiany do zapory sieciowej. Biała lista " +#~ "blokady może zawierać polecenia, konteksty, użytkowników i ich " +#~ "identyfikatory." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Kontekst to kontekst zabezpieczeń (SELinux) uruchomionego programu lub " +#~ "usługi. Należy użyć polecenia ps -e --context, aby uzyskać " +#~ "kontekst uruchomionego programu." + +#~ msgid "Add Context" +#~ msgstr "Dodaj kontekst" + +#~ msgid "Edit Context" +#~ msgstr "Modyfikuj kontekst" + +#~ msgid "Remove Context" +#~ msgstr "Usuń kontekst" + +#~ msgid "Contexts" +#~ msgstr "Konteksty" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Jeśli wpis polecenia na białej liście kończy się gwiazdką „*”, to " +#~ "wszystkie wiersze poleceń zaczynające się od danego polecenia będą " +#~ "pasowały. Jeśli „*” nie zostanie użyte, to polecenia bezwzględne muszą " +#~ "się zgadzać." + +#~ msgid "Add Command Line" +#~ msgstr "Dodaj wiersz poleceń" + +#~ msgid "Edit Command Line" +#~ msgstr "Modyfikuj wiersz poleceń" + +#~ msgid "Remove Command Line" +#~ msgstr "Usuń wiersz poleceń" + +#~ msgid "Command lines" +#~ msgstr "Wiersze poleceń" + +#~ msgid "User names." +#~ msgstr "Nazwy użytkowników." + +#~ msgid "Add User Name" +#~ msgstr "Dodaj nazwę użytkownika" + +#~ msgid "Edit User Name" +#~ msgstr "Modyfikuj nazwę użytkownika" + +#~ msgid "Remove User Name" +#~ msgstr "Usuń nazwę użytkownika" + +#~ msgid "User names" +#~ msgstr "Nazwy użytkowników" + +#~ msgid "User ids." +#~ msgstr "Identyfikatory użytkowników." + +#~ msgid "Add User Id" +#~ msgstr "Dodaj identyfikator użytkownika" + +#~ msgid "Edit User Id" +#~ msgstr "Modyfikuj identyfikator użytkownika" + +#~ msgid "Remove User Id" +#~ msgstr "Usuń identyfikator użytkownika" + +#~ msgid "User Ids" +#~ msgstr "Identyfikatory użytkowników" + +#~ msgid "Lockdown:" +#~ msgstr "Blokada:" + +#~ msgid "User ID" +#~ msgstr "Identyfikator użytkownika" + +#~ msgid "Please enter the user id." +#~ msgstr "Proszę podać identyfikator użytkownika." + +#~ msgid "Please enter the user name." +#~ msgstr "Proszę podać nazwę użytkownika." diff --git a/po/pt.po b/po/pt.po index a41166b..c60e5b3 100644 --- a/po/pt.po +++ b/po/pt.po @@ -12,7 +12,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2019-09-07 12:26+0000\n" "Last-Translator: Manuela Silva \n" "Language-Team: Portuguese (http://www.transifex.com/projects/p/firewalld/" @@ -28,11 +28,46 @@ msgstr "" msgid "Firewall Applet" msgstr "Míni aplicação de Firewall" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Configuração da Firewall" + +#: ../config/firewall-config.appdata.xml.in.h:4 +#, fuzzy +msgid "Predefined zones (levels of trust for network connections)" +msgstr "Zona predefinida utilizada pela ligação de rede '%s'" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Firewall" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Configuração da Firewall" @@ -41,24 +76,24 @@ msgstr "Configuração da Firewall" msgid "firewall;network;security;iptables;netfilter;" msgstr "firewall;rede;segurança;tabelas de ip;filtro de rede;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Selecione zona para interface '%s'" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "Zona por defeito" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "Selecione zona para a ligação '%s'" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -106,153 +141,153 @@ msgstr "Autores" msgid "License" msgstr "Licença" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Ativar Notificações" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Editar Opções da Firewall..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Modificar Zonas de Ligações..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Bloquear todo o tráfego da rede" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "Sobre" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Ligações" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "Interfaces" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Fontes" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Autorização falhou." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Nome inválido" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "O nome já existe" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (Zona: {zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "{entry} (Zone predefinida: {default_zone})" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "Falha ao obter as ligações do Gestor de Redes" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Sem ligação ao daemon da firewall" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Todo o tráfego da rede está bloqueado." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "Zona predefinida: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "Zona '{zone}' ativa para a ligação '{connection}' na interface '{interface}'" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "Zona '{zone}' ativa para a interface '{interface}'" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "Zona '{zone}' ativa para a fonte {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Sem zonas ativas." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "Estabelecida ligação para FirewallD." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "Ligação perdida para FirewallD." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD foi recarregada." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "Zona predefinida alterada para '%s'." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "O tráfico de rede já não está bloqueado." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "ativado" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "desativado" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -260,20 +295,20 @@ msgstr "" "Zona '{zone}' {activated_deactivated} para conexão '{connection}' na " "interface '{interface}'" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "Zona '{zone}' {activated_deactivated} para interface '{interface}'" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "Zona '%s' ativada para interface '%s'" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "Zona '{zone}' {activated_deactivated} para fonte '{source}'" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "Zona '%s' ativada para fonte '%s'" @@ -320,328 +355,312 @@ msgstr "desativado" msgid "Failed to load icons." msgstr "O carregamento de ícones falhou." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "Contexto" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "Linha de comandos" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "Nome de utilizador" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "Id. do Utilizador" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "Tabela" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "Cadeia" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "Prioridade" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "Argumentos" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "Tempo de execução" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "Permanente" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Serviço" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Porta" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Protocolo" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Para Porta" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Para Endereço:" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Tipo Icmp" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "Família" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "Ação" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "Elemento" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Src" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Dest" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "log" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "Audit" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Fonte" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Aviso" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Erro" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "aceite" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "rejeitar" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "cair" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "limite" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "serviço" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "porta" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "protocolo" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "mascarada" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "forward-port" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "nível" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "sim" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Zona" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Zona '%s': Serviço '%s' indisponível." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Remove" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Ignora" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Zona '%s': ICMP tipo '%s' indisponível." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Zona construida internamente, renomear não suportado." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "segundo" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "minuto" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "hora" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "dia" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "emergência" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "alerta" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "crítico" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "erro" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "aviso" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "nota" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "info" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "debug" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -650,81 +669,81 @@ msgstr "" "Forwarding para outro sistema só é útil se a interface estiver mascarada.\n" "Quer mascarar esta zona?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Serviço pré-definido, não é possível renomear." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "icmp pré-definido, não é possível renomear." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "Selecione zona para fonte %s" @@ -743,93 +762,85 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "Por favor insira a linha de comando" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "Por favor insira o contexto" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "Por favor selecione a zona por defeito da lista abaixo." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "Corrente Direta" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "Por favor selecione tabela e ipv e insira nome da corrente." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "Corrente:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "raw" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "segurança" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "Tabela:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "Regra de passagem direta" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "Por favor selecione ipv e insira args." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Args:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Reencaminhamento de Porta" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" "Por favor, seleccione as opções de origem e destino de acordo com as suas " "necessidades." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Porta / Intervalo de portas:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "Endereço IP:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Protocolo:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Destino" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -837,107 +848,107 @@ msgstr "" "Se ativar reencaminhamento local, tem de especificar uma porta. Esta porta " "tem de ser diferente da porta de origem." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Reencaminhamento local" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Reencaminhar para outra porta" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "Entradas a negrito são obrigatórias, todas as outras são opcionais." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Nome:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Versão:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Curta:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Descrição:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "Família:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "Definições Base de Tipo ICMP" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "Por favor configure definições base de tipo ICMP:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "Tipo ICMP" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "Por favor selecione um tipo ICMP" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Adicionar Entrada" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Ficheiro" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Opções" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Recarregar FireweallD" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -948,119 +959,103 @@ msgstr "" "runtime são perdidas com o recarregar se não estiverem também na " "configuração permanent." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "Modifica a zona a qual uma conexão de rede pertence." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Modifica Zona por Defeito" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "Modifica zona por defeito para conexões e interfaces." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" "O modo de pânico significa que todos os pacotes de entrada e saída são " "caídos." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "Modo de Pânico" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"Lockdown fecha a configuração da firewall para que apenas as aplicações na " -"lockdown whitelist possam modificá-la." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "Lockdown" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "Fazer a configuração runtime permanent" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "Runtime para Permanent" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "_Ver" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "Tipos ICMP" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "Configuração Direta" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "Lockdown Whitelist" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Ajuda" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "Configuração:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1070,7 +1065,7 @@ msgstr "" "ativa. Configuração permanent ficará ativa após reinicio de serviço ou " "sistema." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1083,23 +1078,23 @@ msgstr "" "postas, protocolos, mascaras, rencaminhamento de porta/pacote, filtros icmp " "e regras ricas. A zona pode ser limitada a interfaces e endereços de fontes." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Adicionar Zona" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Editar Zona" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Remover Zona" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "Carrega Zona por Defeito" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1109,11 +1104,11 @@ msgstr "" "confiáveis são acessíveis de todos os hospedeiros e redes que podem alcançar " "a maquina a partir das ligações, interfaces e fontes no limite desta zona." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Serviços" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1121,45 +1116,45 @@ msgstr "" "Adicione portas ou intervalo de portas, que devem estar disponíveis para " "todos os hospedeiros ou redes que podem ligar-se à maquina." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Adiciona Porta" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Edita Porta" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Remove Porta" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Portas" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" "Adicione protocolos que devem estar acessíveis para todos os hospedeiros ou " "redes." -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." @@ -1167,11 +1162,11 @@ msgstr "" "Adicione portas fonte adicionais ou intervalos de porta que devem estar " "acessíveis para todos os hospedeiros ou redes que podem ligar à máquina." -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 #, fuzzy msgid "" "Masquerading allows you to set up a host or router that connects your local " @@ -1182,22 +1177,22 @@ msgstr "" "local à Internet. A sua rede local não será visível e as máquinas aparecem " "na Internet com um único endereço. Masquerading é válido apenas em IPv4." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Zona Mascarada" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" "Se ativar as omascarar, o reencaminhamento de IP será ativado para o seu IPv4" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Mascarar" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1209,19 +1204,19 @@ msgstr "" "para outro sistema só é útil se o interface estiver configurado como " "mascarado. O reencaminhamento de portas só é suportado em IPv4." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "Adiciona Porta de Reencaminhamento" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "Edita Porta de Reencaminhamento" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "Remove Porta de Reencaminhamento" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1231,7 +1226,7 @@ msgstr "" "principalmente para enviar mensagens de erro entre computadores em rede, mas " "adicionalmente para mensagens informativas como pedidos e respostas de ping." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1239,41 +1234,41 @@ msgstr "" "Marque os tipos ICMP, na lista, que devem ser rejeitados. Todos os outros " "tipos ICMP serão permitidos na firewall. Por omissão não existem limitações." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "Filtro ICMP" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "Aqui pode definir regras de língua ricas para a zona." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "Adiciona Regra Rica" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "Edita Regra Rica" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "Remove Regra Rica" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "Regras Ricas" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1282,42 +1277,42 @@ msgstr "" "utilizado por uma conexão, a zona vai ser definida como a zona especificada " "na conexão." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "Adiciona Interface" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "Edita Interface" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "Remove Interface" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "Adiciona Fonte" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "Edita Fonte" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "Remove Fonte" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "Zonas" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1325,55 +1320,55 @@ msgstr "" "Um serviço firewall é uma combinação de portas, protocolos, módulos e " "endereços de destino." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Adicionar Serviço" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Editar Serviço" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Remover Serviço" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Carrega Padrão de Serviço" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Editar Entrada" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Remover entrada" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Módulos" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1383,15 +1378,15 @@ msgstr "" "ao endereço e tipo de destino. Se ambas as entradas estiverem vazias, não " "existe limite." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1399,33 +1394,33 @@ msgstr "" "Serviços apenas podem ser modificados ca vista de configuração permant. A " "configuração runtime de serviços é fixa." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1433,26 +1428,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1460,27 +1455,27 @@ msgstr "" "Um icmtype firewalld dá a informação para um tipo Internet Control Message " "Protocol (ICMP) para firewalld." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Adiciona Tipo ICMP" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Edita Tipo ICMP" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Remove Tipo ICMP" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "Carrega Tipo ICMP por Defeito" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "Especifique se este Tipo ICMP está disponível para IPv4 e/ou IPv6." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1488,7 +1483,7 @@ msgstr "" "Tipos ICMP apenas podem ser modificados na visão de configuração permanent. " "A configuração runtime de Tipos ICMP é fixa." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1496,11 +1491,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1513,7 +1508,7 @@ msgstr "" "apenas ser utilizada como último recurso quando não é possivel utilizar " "outras funcionalidades da firewalld." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1522,34 +1517,46 @@ msgstr "" "O argumento ipv de cada opção tem de ser ipv4 ou ipv6 ou eb. Com ipv4 será " "para iptables, com ipv6 e com eb para pontes ethernet (ebtables)." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "Correntes adicionais para utilizar com regras." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "Adiciona Corrente" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "Edita Corrente" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "Remove Corrente" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "Correntes" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" "Adiciona uma regra com argumentos args a uma corrente numa tabela com uma " "prioridade." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "Adiciona Regra" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "Edita Regra" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "Remove Regra" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1565,23 +1572,11 @@ msgstr "" "ter a certeza que uma regra é inserida após outra regra, utilize uma " "prioridade mais baixa para a primeira e uma mais alta para a seguinte." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "Adiciona Regra" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "Edita Regra" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "Remove Regra" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "Regras" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1591,314 +1586,210 @@ msgstr "" "adicionadas em correntes especiais. Podem ser utilizadas todas as opções das " "iptables, ip6tables e ebtables." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" -"Por favor tenha cuidado com regras passthrough para uqe não danifiquem a " -"firewall." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "Adiciona Passthrough" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "Edita Passthrough" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "Remove Passthrough" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "Passthrough" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"A funcionalidade lockdown é uma versão leve de políticas de utilizador e " -"aplicações da firewalld. Limita modificações à firewall. A lockdown " -"whitelist pode conter correntes, comandos, contextos, utilizadores e ids de " -"utilizador." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Adiciona Contexto" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Edita Contexto" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Remove Contexto" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Contextos" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Se uma entrada de comando numa whitelist acaba com um asterisco '*', então " -"todas as linhas de comando iniciadas com o comando combinam. Se o '*' não " -"estiver aí o comando absoluto inclusive argumentos devem ser iguais." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Adiciona Comando de Linha" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Edita Comando de Linha" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Remove Comando de Linha" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Comandos de Linha" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Nomes de Utilizador" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Adiciona Nome de Utilizador" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Edita Nome de Utilizador" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Remove Nome de Utilizador" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Nomes de Utilizador" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "IDs de utilizador" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Adiciona ID de Utilizador" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Edita ID de Utilizador" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Remove ID de Utilizador" +"Por favor tenha cuidado com regras passthrough para uqe não danifiquem a " +"firewall." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "IDs de Utilizador" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Passthrough" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Atual zona por defeito do sistema." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Modo de Pânico:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Fechar tudo:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Zona por Defeito:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Máscara:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Selecionar -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Outros módulos:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Porta e Protocolo" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Por favor, insira a porta e o protocolo." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Regra Direta" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "Por favor, selecione o ipv e a tabela, prioridade de cadeia e insira os " "argumentos." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Prioridade:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Por favor, insira um protocolo." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Outro protocolo:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Regra Rica" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Por favor, insira uma regra rica." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "Para host ou rede white ou blacklist desativa o elemento." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Origem:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destino:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Log:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audita:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 e ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "invertido" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1906,78 +1797,183 @@ msgstr "" "Para ativar esta Ação tem de ser 'reject' e da Familia 'ipv4' ou 'ipv6' (não " "ambos)" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "com Tipo:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Com limite:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Prefixo:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Nível:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Elemento:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Ação:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Definições do Serviço Base" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Por favor, configure as definições do serviço base:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Por favor, selecione um serviço." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Por favor, insira uma fonte" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Id. do Utilizador" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Por favor, insira a id. do utilizador." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Por favor, insira um nome de utilizador." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "etiqueta" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Definições da Zona Base" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Por favor, configure as definições da zona base:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Destino Predefinido" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Destino:" + +#~ msgid "Context" +#~ msgstr "Contexto" + +#~ msgid "Command line" +#~ msgstr "Linha de comandos" + +#~ msgid "User name" +#~ msgstr "Nome de utilizador" + +#~ msgid "User id" +#~ msgstr "Id. do Utilizador" + +#~ msgid "Please enter the command line." +#~ msgstr "Por favor insira a linha de comando" + +#~ msgid "Please enter the context." +#~ msgstr "Por favor insira o contexto" + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Lockdown fecha a configuração da firewall para que apenas as aplicações " +#~ "na lockdown whitelist possam modificá-la." + +#~ msgid "Lockdown" +#~ msgstr "Lockdown" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Lockdown Whitelist" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "A funcionalidade lockdown é uma versão leve de políticas de utilizador e " +#~ "aplicações da firewalld. Limita modificações à firewall. A lockdown " +#~ "whitelist pode conter correntes, comandos, contextos, utilizadores e ids " +#~ "de utilizador." + +#~ msgid "Add Context" +#~ msgstr "Adiciona Contexto" + +#~ msgid "Edit Context" +#~ msgstr "Edita Contexto" + +#~ msgid "Remove Context" +#~ msgstr "Remove Contexto" + +#~ msgid "Contexts" +#~ msgstr "Contextos" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Se uma entrada de comando numa whitelist acaba com um asterisco '*', " +#~ "então todas as linhas de comando iniciadas com o comando combinam. Se o " +#~ "'*' não estiver aí o comando absoluto inclusive argumentos devem ser " +#~ "iguais." + +#~ msgid "Add Command Line" +#~ msgstr "Adiciona Comando de Linha" + +#~ msgid "Edit Command Line" +#~ msgstr "Edita Comando de Linha" + +#~ msgid "Remove Command Line" +#~ msgstr "Remove Comando de Linha" + +#~ msgid "Command lines" +#~ msgstr "Comandos de Linha" + +#~ msgid "User names." +#~ msgstr "Nomes de Utilizador" + +#~ msgid "Add User Name" +#~ msgstr "Adiciona Nome de Utilizador" + +#~ msgid "Edit User Name" +#~ msgstr "Edita Nome de Utilizador" + +#~ msgid "Remove User Name" +#~ msgstr "Remove Nome de Utilizador" + +#~ msgid "User names" +#~ msgstr "Nomes de Utilizador" + +#~ msgid "User ids." +#~ msgstr "IDs de utilizador" + +#~ msgid "Add User Id" +#~ msgstr "Adiciona ID de Utilizador" + +#~ msgid "Edit User Id" +#~ msgstr "Edita ID de Utilizador" + +#~ msgid "Remove User Id" +#~ msgstr "Remove ID de Utilizador" + +#~ msgid "User Ids" +#~ msgstr "IDs de Utilizador" + +#~ msgid "Lockdown:" +#~ msgstr "Fechar tudo:" + +#~ msgid "User ID" +#~ msgstr "Id. do Utilizador" + +#~ msgid "Please enter the user id." +#~ msgstr "Por favor, insira a id. do utilizador." + +#~ msgid "Please enter the user name." +#~ msgstr "Por favor, insira um nome de utilizador." diff --git a/po/pt_BR.po b/po/pt_BR.po index 69ded91..edd403d 100644 --- a/po/pt_BR.po +++ b/po/pt_BR.po @@ -36,7 +36,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-12-01 02:35+0000\n" "Last-Translator: Henrique Roberto Gattermann Mittelstaedt \n" @@ -53,11 +53,47 @@ msgstr "" msgid "Firewall Applet" msgstr "Miniaplicativo do Firewall" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +#, fuzzy +msgid "Allows to inspect and set:" +msgstr "Por favor, selecione um ipset:" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Configuração do Firewall" + +#: ../config/firewall-config.appdata.xml.in.h:4 +#, fuzzy +msgid "Predefined zones (levels of trust for network connections)" +msgstr "Zona padrão utilizada pela conexão de rede '%s'" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Firewall" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Configuração do Firewall" @@ -66,24 +102,24 @@ msgstr "Configuração do Firewall" msgid "firewall;network;security;iptables;netfilter;" msgstr "firewall;network;rede;security;segurança;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Selecionar zona para interface '%s'" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "Zona Padrão" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "Selecione zona para conexão '%s'" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "Falha ao definir o fuso {zone} para conexão{connection_name}" @@ -135,94 +171,94 @@ msgstr "Autores" msgid "License" msgstr "Licença" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "Levantar Escudos" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Habilitar Notificações" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Editar Configurações de Firewall..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Alterar as Zonas das Conexões..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "Configurar Zonas para Levantar/Baixar Escudos..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Bloquear todo o tráfego de rede" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "Sobre" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Conexões" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "Interfaces" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Fontes" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Falha de autorização." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Nome inválido" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Nome já existe" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (Zona: {zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "{entry} (Zona Padrão: {default_zone})" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "Falha ao obter conexões de NetworkManager" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "Sem importações do NetworkManager disponíveis" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Sem conexão com o daemon do firewall" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Todo o tráfego de rede está bloqueado." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "Zona Padrão: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" @@ -230,54 +266,54 @@ msgstr "" "Zona padrão '{default_zone}' ativo para conexão '{connection}' na interface " "'{interface}'" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "Zona '{zone}' ativada para conexão '{connection}' na interface '{interface}'" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "Zona '{zone}' ativada para interface '{interface}'" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "Zona '{zone}' ativa para a fonte {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Não há zonas ativas." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "Conexão com FirewallD estabelecida." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "Conexão com FirewallD perdida." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "O FirewallD foi recarregado." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "Zona padrão alterada para '%s'." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "O tráfego de rede não está mais sendo bloqueado." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "ativado" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "desativado" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" @@ -285,7 +321,7 @@ msgstr "" "Zona padrão '{default_zone}' {activated_deactivated} para a conexão " "'{connection}' na interface '{interface}'" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -293,21 +329,21 @@ msgstr "" "Zona '{zone}' {activated_deactivated} para conexão '{connection}' na " "interface '{interface}'" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" "Zona '{zone}' {activated_deactivated} ativada para interface '{interface}'" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "Zona '%s' ativada para interface '%s'" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "Zona '{zone}' {activated_deactivated} para fonte '{source}'" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "Zona '%s' ativada para a fonte '%s'" @@ -354,328 +390,312 @@ msgstr "desabilitado" msgid "Failed to load icons." msgstr "Falha ao carregar ícones." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "Contexto" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "Linha de comando" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "Nome de usuário" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "ID do usuário" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "Tabela" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "Cadeia" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "Prioridade" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "Argum." -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "Tempo de Execução" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "Permanente" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Serviço" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Porta" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Protocolo" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Para a porta" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Para o endereço" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "Vinculações" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "Entrada" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Tipo icmp" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "Família" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "Ação" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "Elemento" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Src" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Dest" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "log" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "Auditoria" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "Interface" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "Comentário" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Origem" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Aviso" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Erro" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "aceitar" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "rejeitar" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "descer" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "marcar" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "limite" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "serviço" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "porta" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "protocolo" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "mascaramento" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "icmp-type" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "forward-port" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "porta-origem" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "nível" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "sim" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Zona" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "Zona Padrão: %s" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "Zona: %s" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Zona '%s': Serviço '%s' não está disponível." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Remover" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Ignorar" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Zona '%s': tipo de ICMP '%s' não está disponível." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Zona embutida, renomeação não é suportada." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "segundo" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "minuto" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "hora" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "dia" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "emergência" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "alerta" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "crítico" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "erro" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "aviso" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "aviso" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "info" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "depurar" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -685,34 +705,34 @@ msgstr "" "mascarada. ⏎\n" "Você deseja marcarar esta zona?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Serviço embutido, renomeação não é suportada." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "Por favor, insira um endereço ipv4 na forma de endereço[/mask]." -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "A máscara pode ser uma máscara de rede ou um número." -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" "Por favor, insira um endereço ipv6 com o formulário de endereço [/mask]." -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "A máscara é um número." -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" "Por favor, insira um endereço ipv4 ou ipv6 com o formulário de endereços [/" "mask]." -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." @@ -720,51 +740,51 @@ msgstr "" "A máscara pode ser uma máscara de rede ou um número para ipv4.\n" "A máscara é um número para ipv6." -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "IPset embutido, renomeação não é suportada." -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "Por favor selecione um arquivo" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "Arquivos texto" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "Todos os arquivos" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "Tudo" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "Auxiliar embutido, renomeação não é suportada." -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "icmp embutido, renomeação não é suportada." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "Falha ao ler o arquivo '%s': %s" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "Selecione zona de fonte '%s" @@ -783,93 +803,85 @@ msgid "Please select the automatic helpers value:" msgstr "Por favor, selecione o valor dos assistentes automáticos:" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "Por favor insira a linha de comando." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "Por favor insira o contexto." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "Por favor seleccione zona padrão na lista abaixo." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "Corrente Direta" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "Por favor selecione ipv e tabela e digite o nome da corrente." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "Corrente:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "raw" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "segurança" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "Tabela:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "Regra Direta de Repasse" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "Por favor selecione ipv e entre com os argumentos." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Argumentos:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Encaminhamento de portas" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" "Por favor, selecione as opções de origem e destino de acordo com as suas " "necessidades." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Porta / Intervalo de portas:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "Endereço IP:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Protocolo:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Destino" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -877,107 +889,107 @@ msgstr "" "Se você habilitar o encaminhamento local, terá que especificar uma porta. " "Essa porta tem que ser diferente da porta de origem." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Encaminhamento local" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Encaminhar para outra porta" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "Configurações do Assistente Base" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "Por favor, faça as configurações do assistente base:" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "Entradas em negrito são obrigatórias, todas as outras são opcionais." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Nome:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Versão:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Abreviação:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Descrição:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "Família:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "Módulo:" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "Assistente" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "Por favor, selecione um assistente:" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "Configuração dos tipos de ICMP base" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "Por favor configure os tipos de ICMP base:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "Tipo de ICMP" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "Por favor, selecione um tipo de ICMP" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Adicionar entrada" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "Adicionar Entradas do Arquivo" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "Remover Entrada Selecionada" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "Remover Todas as Entradas" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "Remover Entradas do Arquivo" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Arquivo" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Opções" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Recarregar Firewalld" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -988,123 +1000,107 @@ msgstr "" "somente à configuração de tempo de execução feitas até a recarga são " "perdidas, caso não estejam na configuração permanente também." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "Altera a zona que uma conexão de rede pertence." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Mudar Zona Padrão" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "Altera a zona padrão para conexão ou interface." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "Modificação do log negada" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "Modificação do valor do log negada." -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "Configurar Atribuição Automática de Ajuda" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "Configurar a definição de Atribuição Automática de Ajuda." -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" "O Modo Pânico significa que todos os pacotes de entrada e saída são " "ignorados." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "Modo de Pânico" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"A configuração de bloqueio permite que a configuração do firewall seja " -"alterada apenas pelos aplicativos na lista de permissões de bloqueio." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "Bloqueio" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "Torna permanente a configuracao de tempo de execução" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "Tempo de Execução Para Permanente" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "_Visão" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "IPSets" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "Tipos de ICMP" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "Assistentes" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "Configuração Direta" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "Bloquear Lista de Permissões" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "Vinculações Ativas" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Ajuda" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "Mudar Zona" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "Mudar zona de vinculação" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" "Ocultar vinculações ativas de conexões em tempo de execução, interfaces e " "origens para zonas" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" "Exibir vinculações ativas de conexões em tempo de execução, interfaces e " "origens para zonas" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "Configuração:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1114,7 +1110,7 @@ msgstr "" "atual configuração ativa. A configuração permanente será ativada após o " "serviço ou o sistema ser recarregado ou reiniciado." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1128,23 +1124,23 @@ msgstr "" "ICMP e regras valiosas. A zona pode estar associada a interfaces e endereços " "de origem." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Adicionar Zona" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Editar Zona" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Remover Zona" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "Carregar padrões da zona" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1155,11 +1151,11 @@ msgstr "" "redes que podem chegar até a máquina a partir de conexões, interfaces e " "origens associadas a esta zona." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Serviços" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1167,45 +1163,45 @@ msgstr "" "Incluir portas adicionais ou intervalos de portas que precisam estar " "acessíveis a todos os hosts ou redes que podem conectar-se à máquina." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Adicionar Porta" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Editar Zona" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Remover Zona" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Portas" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" "Adicionar protocolos que precisam estar acessíveis para todos os hosts ou " "redes." -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "Adicionar Protocolo" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "Editar Protocolo" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "Remover Protocolo" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "Protocolos" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." @@ -1213,11 +1209,11 @@ msgstr "" "Incluir portas de origem adicionais ou intervalos de portas que precisam " "estar acessíveis a todos os hosts ou redes que podem conectar-se à máquina." -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "Portas de Origem" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1228,11 +1224,11 @@ msgstr "" "os hosts aparecerão como um único endereço na internet. O uso de " "mascaramento é somente para IPv4." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Zona de mascaramento" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1240,11 +1236,11 @@ msgstr "" "Se você habilitar o uso de mascaramento, o encaminhamento IP também será " "habilitado para as suas redes IPv4." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Mascaramento" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1256,19 +1252,19 @@ msgstr "" "encaminhamento para outro sistema só é útil se a interface estiver " "mascarada. O encaminhamento de portas é somente para IPv4." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "Adicionar Redirecionamento de Porta" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "Editar Redirecionamento de Porta" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "Remover Redirecionamento de Porta" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1278,7 +1274,7 @@ msgstr "" "mensagens de erro entre computadores em rede, assim como para enviar " "mensagens informacionais, como solicitações e respostas de ping." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1286,7 +1282,7 @@ msgstr "" "Marque na lista os tipos de ICMP que devem ser rejeitados. Todos os outros " "tipos serão permitidos passar pelo firewall. O padrão é não haver limitações." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." @@ -1294,35 +1290,35 @@ msgstr "" "Se o Filtro Inverter está habilitado, entradas marcadas ICPM são aceitas e " "as outras são rejeitadas. Em uma zona com o alvo DROP, elas serão rejeitadas." -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "Inverter Filtro" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "Filtro ICMP" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "Aqui você pode obter regras de linguagem valiosa para a zona." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "Adicionar Regra Valiosa" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "Editar Regra Valiosa" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "Remover Regra Valiosa" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "Regra Valiosa" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1330,19 +1326,19 @@ msgstr "" "Adicione entradas para associar interfaces à zona. Se a interface for usada " "por uma conexão, a zona será definida como especificado na conexão." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "Adicionar interface" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "Editar interface" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "Remover interface" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " @@ -1353,23 +1349,23 @@ msgstr "" "limitações. O encaminhamento de portas e a aplicação de mascaramento não " "funcionarão para as associações de origem MAC." -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "Adicionar Origem" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "Editar Origem" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "Remover Origem" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "Zonas" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1377,23 +1373,23 @@ msgstr "" "Um serviço firewalld é uma combinação de portas, protocolos, módulos e " "endereços de destino." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Adicionar Serviço" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Editar Serviço" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Remover Serviço" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Carregar Padrões do Serviço" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." @@ -1401,15 +1397,15 @@ msgstr "" "Incluir portas adicionais ou intervalos de portas que precisam estar " "acessíveis a todos os hosts ou redes." -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Editar entrada" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Remover entrada" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." @@ -1417,19 +1413,19 @@ msgstr "" "Incluir portas de origem adicionais ou intervalos de portas que precisam " "estar acessíveis a todos os hosts ou redes." -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "Porta de Origem" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "Módulos assistentes do Netfilter são necessários para alguns serviços." -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Módulos" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1439,15 +1435,15 @@ msgstr "" "ao tipo e ao endereço de destino. Se ambas as entradas estiverem vazias, não " "existe limitação." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1455,7 +1451,7 @@ msgstr "" "Os serviços só podem ser alterados na visualização da configuração " "permanente. A configuração de tempo de execução dos serviços é fixa." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " @@ -1463,27 +1459,27 @@ msgstr "" "Um IPSet pode ser usado para criar listas brancas ou negras e pode " "armazenar, por exemplo, endereços de IP, números de portas ou endereços MAC. " -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "IPSet" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "Adicionar IPSet" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "Editar IPSet" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "Remover IPSet" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "Carregar IPSets padrões" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1495,7 +1491,7 @@ msgstr "" "adicionadas pelo firewalld. Entradas que foram diretamente adicionadas com o " "comando ipset não estarão listadas aqui." -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." @@ -1503,22 +1499,22 @@ msgstr "" "Este IPSet utiliza a opção de limite de tempo, portanto nenhuma entrada é " "visível aqui. As entradas devem ser atendidas diretamente pelo comando ipset." -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "Adicionar" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "Entradas" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" "IPSets podem somente ser criados ou removidos na visualização de " "configurações permanentes." -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1526,27 +1522,27 @@ msgstr "" "Um firewalld tipo icmp fornece as informações para um tipo de Internet " "Control Message Protocol (ICMP) para o firewalld." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Adicionar tipo ICMP" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Editar tipo ICMP" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Remover Tipo ICMP" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "Carregando os tipos de ICMP padrão" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "Especificar se este tipo ICMP está disponível para IPv4 e/ou IPv6." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1554,7 +1550,7 @@ msgstr "" "Tipos de ICMP só pode ser alterado na visão de configuração permanente. A " "configuração do tempo de execução de tipos de ICMP é fixo." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1567,12 +1563,12 @@ msgstr "" "portas que não estão relacionadas à conexão de sinalização e, portanto, são " "bloqueadas pelo firewall sem o assistente." -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" "Definir portas ou intervalo de portas; que são monitoradas pelo assistente." -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1585,7 +1581,7 @@ msgstr "" "deve ser usado apenas como último recurso, quando não é possível usar outros " "recursos firewalld." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1595,34 +1591,46 @@ msgstr "" "para iptables, com ipv6 para ip6tables e com eb para bridges ethernet " "(ebtables)." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "Cadeias adicionais para uso com regras." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "Adicione Corrente" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "Edite Corrente" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "Remova Corrente" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "Correntes" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" "Adicionar uma regra com o argumento args para uma cadeia em uma tabela com " "uma prioridade." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "Adicionar Regra" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "Editar Regra" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "Remover Regra" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1638,23 +1646,11 @@ msgstr "" "que a regra será adicionada após outro, use uma prioridade baixa para o " "primeiro e maior para o seguinte." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "Adicionar Regra" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "Editar Regra" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "Remover Regra" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "Regras" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1664,317 +1660,211 @@ msgstr "" "colocados em correntes especiais. Todos iptables, ip6tables e opções " "ebtables podem ser usados." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" -"Por favor tenha cuidado com as regras de repasse para não danificar o " -"firewall." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "Adicionar Repasse" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "Editar Repasse" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "Remover Repasse" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "Repasse" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"O recurso de bloqueio é uma versão light de políticas de usuário e " -"aplicativo para firewalld. Limita alterações no firewall. O bloqueio de " -"whitelist pode conter comandos, contextos, usuários e IDs de usuário." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" -"O contexto é o contexto (SELinux) de segurança da execução de um aplicativo " -"ou serviço. Para obter o contexto da execução de um aplicativo use ps -e " -"--context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Adicionar Contexto" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Editar Contexto" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Remover Contexto" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Contextos" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Se uma entrada de comando na whitelist termina com um asterisco '*', então " -"todas as linhas de comando começando com o comando irá corresponder. Se o " -"'*' não há argumentos, inclusive o comando absoluto devem corresponder." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Adicionar Linha de Comando" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Editar Linha de Comando" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Remover Linha de Comando" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Linhas de comando" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Nomes de usuários." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Adicionar Nome de Usuário" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Editar Nome de Usuário" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Remover Nome de Usuário" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Nome de usuários" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Ids dos usuários." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Adicionar ID Usuário" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Editar ID Usuário" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Remover ID Usuário" +"Por favor tenha cuidado com as regras de repasse para não danificar o " +"firewall." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Ids dos usuários" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Repasse" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Zona padrão atual do sistema." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Log negado:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Modo de Pânico:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Assistentes Automáticos:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Bloqueio:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Zona Padrão:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Inserir nome da interface:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Configurações base de IPSet" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Por favor, configure ipset base:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Tipo:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Tempo limite:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Tamanho de Hash:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maxelem:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Valor de limite de tempo em segundos" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Tamanho inicial de hash, padrão 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Número máximo de elementos, padrão 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Por favor, selecione um ipset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Inserir entrada ipset:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Log negado" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Por favor, escolha o valor de log negado:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Marcação" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Por favor, insira uma marcação com uma máscara opcional." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" "A marcação e os campos de máscara são ambos números de 32 bits de largura " "sem sinais." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Marcação:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Máscara:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Por favor, selecione um assistente netfilter conntrack:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Selecione -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Outro Módulo:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Porta e protocolo" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Por favor entre com uma porta e protocolo." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Regra Direta" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "Por favor selecione ipv e tabela, prioridade da cadeia e insira os " "argumentos." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Prioridade:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Por favor insira um protocolo." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Outro Protocolo:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Regra Valiosa" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Por favor insira uma regra valiosa." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "Para permitir ou negar um host ou rede, desative o elemento." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Origem:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destino:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Log:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Auditoria:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "IPv4 e IPv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "inverso" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1982,78 +1872,191 @@ msgstr "" "Para habilitar isto, o Action precisa estar definido como 'reject' e Family " "como 'ipv4' ou 'ipv6' (não como ambos)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "com Tipo:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Com limite:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Prefixo:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Nível:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Elemento:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Ação:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Configurações do serviço base" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Por favor configure o serviço base:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Por favor selecione um serviço." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Insira uma origem." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ID Usuário" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Por favor insira o id do usuário." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Por favor insira o nome do usuário." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "rótulo" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Configurações da Zona Base" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Por favor configure a zona base:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Alvo Padrão" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Alvo:" + +#~ msgid "Context" +#~ msgstr "Contexto" + +#~ msgid "Command line" +#~ msgstr "Linha de comando" + +#~ msgid "User name" +#~ msgstr "Nome de usuário" + +#~ msgid "User id" +#~ msgstr "ID do usuário" + +#~ msgid "Please enter the command line." +#~ msgstr "Por favor insira a linha de comando." + +#~ msgid "Please enter the context." +#~ msgstr "Por favor insira o contexto." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "A configuração de bloqueio permite que a configuração do firewall seja " +#~ "alterada apenas pelos aplicativos na lista de permissões de bloqueio." + +#~ msgid "Lockdown" +#~ msgstr "Bloqueio" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Bloquear Lista de Permissões" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "O recurso de bloqueio é uma versão light de políticas de usuário e " +#~ "aplicativo para firewalld. Limita alterações no firewall. O bloqueio de " +#~ "whitelist pode conter comandos, contextos, usuários e IDs de usuário." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "O contexto é o contexto (SELinux) de segurança da execução de um " +#~ "aplicativo ou serviço. Para obter o contexto da execução de um aplicativo " +#~ "use ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "Adicionar Contexto" + +#~ msgid "Edit Context" +#~ msgstr "Editar Contexto" + +#~ msgid "Remove Context" +#~ msgstr "Remover Contexto" + +#~ msgid "Contexts" +#~ msgstr "Contextos" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Se uma entrada de comando na whitelist termina com um asterisco '*', " +#~ "então todas as linhas de comando começando com o comando irá " +#~ "corresponder. Se o '*' não há argumentos, inclusive o comando absoluto " +#~ "devem corresponder." + +#~ msgid "Add Command Line" +#~ msgstr "Adicionar Linha de Comando" + +#~ msgid "Edit Command Line" +#~ msgstr "Editar Linha de Comando" + +#~ msgid "Remove Command Line" +#~ msgstr "Remover Linha de Comando" + +#~ msgid "Command lines" +#~ msgstr "Linhas de comando" + +#~ msgid "User names." +#~ msgstr "Nomes de usuários." + +#~ msgid "Add User Name" +#~ msgstr "Adicionar Nome de Usuário" + +#~ msgid "Edit User Name" +#~ msgstr "Editar Nome de Usuário" + +#~ msgid "Remove User Name" +#~ msgstr "Remover Nome de Usuário" + +#~ msgid "User names" +#~ msgstr "Nome de usuários" + +#~ msgid "User ids." +#~ msgstr "Ids dos usuários." + +#~ msgid "Add User Id" +#~ msgstr "Adicionar ID Usuário" + +#~ msgid "Edit User Id" +#~ msgstr "Editar ID Usuário" + +#~ msgid "Remove User Id" +#~ msgstr "Remover ID Usuário" + +#~ msgid "User Ids" +#~ msgstr "Ids dos usuários" + +#~ msgid "Lockdown:" +#~ msgstr "Bloqueio:" + +#~ msgid "User ID" +#~ msgstr "ID Usuário" + +#~ msgid "Please enter the user id." +#~ msgstr "Por favor insira o id do usuário." + +#~ msgid "Please enter the user name." +#~ msgstr "Por favor insira o nome do usuário." diff --git a/po/ro.po b/po/ro.po index 9bc0322..dddc9b0 100644 --- a/po/ro.po +++ b/po/ro.po @@ -6,7 +6,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2023-12-25 09:37+0000\n" "Last-Translator: Remus-Gabriel Chelu \n" "Language-Team: Romanian ps -e --" -"context." -msgstr "" -"Contextul este contextul de securitate (SELinux) al unei aplicații sau al " -"unui serviciu care rulează. Pentru a obține contextul unei aplicații care " -"rulează, utilizați ps -e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Adaugă context" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Editează contextul" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Elimină contextul" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Contexte" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Dacă o intrare de comandă din lista albă se termină cu un asterisc „*”, " -"atunci toate liniile de comandă care încep cu comanda respectivă se vor " -"potrivi. Dacă nu există „*”, trebuie să se potrivească comanda absolută, " -"inclusiv argumentele." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Adaugă linia de comandă" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Editează linia de comandă" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Elimină linia de comandă" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Linii de comandă" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Nume de utilizator." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Adaugă nume de utilizator" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Editează numele de utilizator" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Elimină numele de utilizator" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Nume de utilizator" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Id-uri utilizator." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Adaugă id de utilizator" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Editează id-ul utilizatorului" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Elimină id-ul utilizatorului" +"Vă rugăm să aveți grijă cu regulile transmise direct pentru a nu deteriora " +"paravanul de protecție." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Id-uri utilizator" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Regulă transmisă direct" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Zona implicită curentă a sistemului." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Jurnal respinse:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Modul panică:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Asistenți automați:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Modul carantină:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Zona implicită:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Introduceți un nume de interfață:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Parametrii de bază ai Setului-IP" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Configurați parametrii de bază ai Setului-IP:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Tip:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Timpul de așteptare:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Dimensiune hash:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Nr. max. de elem.:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Valoarea timpului de așteptare în secunde" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Dimensiunea inițială a hash-ului, implicit 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Numărul maxim de elemente, implicit 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Selectați un Set-IP:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Introduceți o intrare de Set-IP:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Jurnal respinse" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Selectați valoarea jurnalului de pachete respinsei:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Marcaj" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Introduceți un marcaj cu o mască opțională." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" "Câmpurile marcaj și mască sunt amândouă numere fără semn pe 32 de biți." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Marcaj:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Mască:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" "Selectați un asistent de urmărire a conexiunii „conntrack” pentru netfilter:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Selectați -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Alt modul:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port și Protocol" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Introduceți un port și un protocol." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Regulă directă" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "Selectați ipv și tabelul, prioritatea lanțului și introduceți argumentele." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Prioritate:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Introduceți un protocol." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Alt protocol:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Regulă complexă" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Introduceți o regulă complexă." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Pentru gazdă sau rețea, adăugarea acesteia la lista de permitere sau de " "respingere, exclude elementul din regulă." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Sursa:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destinația:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Jurnal:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audit:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 și ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "inversat" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1966,78 +1854,192 @@ msgstr "" "Pentru a activa acest lucru, «Acțiunea» trebuie să fie „reject” și «Familia» " "trebuie să fie, fie „ipv4”, fie „ipv6” (nu ambele)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "cu Tipul:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Cu limita:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Prefix:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Nivel:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Element:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Acțiune:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Parametrii de bază serviciului" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Configurați parametrii de bază ai serviciului:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Selectați un serviciu." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Introduceți o sursă." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Id utilizator" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Introduceți id-ul utilizatorului." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Introduceți numele utilizatorului." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "etichetă" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Parametrii de bază ai zonei" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Configurați parametrii de bază ai zonei:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Ținta implicită" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Ținta:" + +#~ msgid "Context" +#~ msgstr "Context" + +#~ msgid "Command line" +#~ msgstr "Linia de comandă" + +#~ msgid "User name" +#~ msgstr "Numele utilizatorului" + +#~ msgid "User id" +#~ msgstr "ID utilizator" + +#~ msgid "Please enter the command line." +#~ msgstr "Introduceți linia de comandă." + +#~ msgid "Please enter the context." +#~ msgstr "Introduceți contextul." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Carantina blochează configurația paravanului de protecție, astfel încât " +#~ "numai aplicațiile de pe lista albă a acesteia să o poată modifica." + +#~ msgid "Lockdown" +#~ msgstr "Modul carantină" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Lista albă de carantină" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Funcția de carantină este o versiune ușoară a politicilor de utilizator " +#~ "și de aplicație pentru «firewalld». Aceasta limitează modificările aduse " +#~ "paravanului de protecție. Lista albă de carantină poate conține comenzi, " +#~ "contexte, utilizatori și ID-uri de utilizator." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Contextul este contextul de securitate (SELinux) al unei aplicații sau al " +#~ "unui serviciu care rulează. Pentru a obține contextul unei aplicații care " +#~ "rulează, utilizați ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "Adaugă context" + +#~ msgid "Edit Context" +#~ msgstr "Editează contextul" + +#~ msgid "Remove Context" +#~ msgstr "Elimină contextul" + +#~ msgid "Contexts" +#~ msgstr "Contexte" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Dacă o intrare de comandă din lista albă se termină cu un asterisc „*”, " +#~ "atunci toate liniile de comandă care încep cu comanda respectivă se vor " +#~ "potrivi. Dacă nu există „*”, trebuie să se potrivească comanda absolută, " +#~ "inclusiv argumentele." + +#~ msgid "Add Command Line" +#~ msgstr "Adaugă linia de comandă" + +#~ msgid "Edit Command Line" +#~ msgstr "Editează linia de comandă" + +#~ msgid "Remove Command Line" +#~ msgstr "Elimină linia de comandă" + +#~ msgid "Command lines" +#~ msgstr "Linii de comandă" + +#~ msgid "User names." +#~ msgstr "Nume de utilizator." + +#~ msgid "Add User Name" +#~ msgstr "Adaugă nume de utilizator" + +#~ msgid "Edit User Name" +#~ msgstr "Editează numele de utilizator" + +#~ msgid "Remove User Name" +#~ msgstr "Elimină numele de utilizator" + +#~ msgid "User names" +#~ msgstr "Nume de utilizator" + +#~ msgid "User ids." +#~ msgstr "Id-uri utilizator." + +#~ msgid "Add User Id" +#~ msgstr "Adaugă id de utilizator" + +#~ msgid "Edit User Id" +#~ msgstr "Editează id-ul utilizatorului" + +#~ msgid "Remove User Id" +#~ msgstr "Elimină id-ul utilizatorului" + +#~ msgid "User Ids" +#~ msgstr "Id-uri utilizator" + +#~ msgid "Lockdown:" +#~ msgstr "Modul carantină:" + +#~ msgid "User ID" +#~ msgstr "Id utilizator" + +#~ msgid "Please enter the user id." +#~ msgstr "Introduceți id-ul utilizatorului." + +#~ msgid "Please enter the user name." +#~ msgstr "Introduceți numele utilizatorului." diff --git a/po/ru.po b/po/ru.po index c1ea5c8..be042cf 100644 --- a/po/ru.po +++ b/po/ru.po @@ -24,7 +24,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2023-09-12 15:35+0000\n" "Last-Translator: \"Sergey A.\" \n" "Language-Team: Russian =2 && " -"n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" +"Plural-Forms: nplurals=3; plural=n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" +"%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" "X-Generator: Weblate 5.0.1\n" #: ../config/firewall-applet.desktop.in.h:1 ../src/firewall-applet.in:450 msgid "Firewall Applet" msgstr "Апплет межсетевого экрана" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +#, fuzzy +msgid "Allows to inspect and set:" +msgstr "Выберите ipset:" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Настройка межсетевого экрана" + +#: ../config/firewall-config.appdata.xml.in.h:4 +#, fuzzy +msgid "Predefined zones (levels of trust for network connections)" +msgstr "Зона по умолчанию, используемая сетевым подключением «%s»" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Межсетевой экран" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Настройка межсетевого экрана" @@ -54,24 +90,24 @@ msgstr "Настройка межсетевого экрана" msgid "firewall;network;security;iptables;netfilter;" msgstr "межсетевой экран;сеть;безопасность;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Выберите зону для интерфейса «%s»" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "Зона по умолчанию" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "Выберите зону для соединения «%s»" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "Не удалось установить зону {zone} для соединения {connection_name}" @@ -123,94 +159,94 @@ msgstr "Авторы" msgid "License" msgstr "Лицензия" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "Включить защиту" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Включить уведомления" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Изменить настройки межсетевого экрана…" -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Изменить зоны соединений..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "Настроить зоны включения/отключения защиты…" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Блокировать весь сетевой трафик" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "Инфо" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Соединения" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "Интерфейсы" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Источники" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Авторизация не удалась." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Недопустимое имя" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Указанное имя уже существует" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (зона {zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "{entry} (Зона по умолчанию: {default_zone})" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "Не удалось получить список настроенных подключений от NetworkManager" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "Импорт из NetworkManager недоступен" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Нет соединения со службой межсетевого экрана" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Блокируется весь сетевой трафик." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "Зона по умолчанию: «%s»" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" @@ -218,55 +254,55 @@ msgstr "" "Зона по умолчанию '{default_zone}' активна для подключения '{connection}' на " "интерфейсе '{interface}'" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "Зона '{zone}' активна для соединения '{connection}' на интерфейсе " "'{interface}'" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "Зона '{zone}' активна на интерфейсе '{interface}'" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "Зона '{zone}' включена для источника {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Нет активных зон." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "Соединение с FirewallD установлено." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "Соединение с FirewallD потеряно." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD перезапущен." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "Зона по умолчанию изменена на «%s»." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "Сетевой трафик больше не блокируется." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "активирована" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "деактивирована" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" @@ -274,7 +310,7 @@ msgstr "" "Зона по умолчанию '{default_zone}' {activated_deactivated} для подключения " "'{connection}' на интерфейсе '{interface}'" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -282,20 +318,20 @@ msgstr "" "Зона '{zone}' {activated_deactivated} для соединения '{connection}' на " "интерфейсе '{interface}'" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "Зона '{zone}' {activated_deactivated} на интерфейсе '{interface}'" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "Зона «%s» активирована на интерфейсе «%s»" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "Зона '{zone}' {activated_deactivated} для источника '{source}'" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "Зона «%s» включена для источника «%s»" @@ -342,328 +378,312 @@ msgstr "отключено" msgid "Failed to load icons." msgstr "Не удалось загрузить значки." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "Контекст" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "Командная строка" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "Пользователь" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "ИД пользователя" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "Таблица" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "Цепочка" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "Приоритет" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "Аргументы" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "Рабочие" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "Постоянная" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Служба" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Порт" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Протокол" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "На порт" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "На адрес" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "Привязки" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "Запись" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Тип ICMP" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "Семейство протоколов" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "Действие" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "Элемент" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Источник" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Получатель" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "журнал" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "Аудит" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "Интерфейс" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "Комментарий" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Источник" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Предупреждение" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Ошибка" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "принять" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "отказать" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "отбросить" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "отметить" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "ограничить" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "служба" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "порт" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "протокол" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "маскировка" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "блокирование icmp" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "Тип ICMP" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "порт переадресации" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "source-port" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "уровень" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "да" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Зона" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "Зона по умолчанию: %s" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "Зона: %s" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Зона «%s»: служба «%s» недоступна." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Удалить зону" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Пропустить" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Зона «%s»: ICMP- тип «%s» недоступен." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Встроенная зона, переименование не поддерживается." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "сек." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "мин." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "час" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "д." -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "срочно" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "внимание" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "критично" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "ошибка" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "предупреждение" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "уведомление" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "инфо" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "отладка" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -672,31 +692,31 @@ msgstr "" "Переадресация в другую систему поможет только при маскировании интерфейса.\n" "Замаскировать эту зону?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Встроенная служба, переименование не поддерживается." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "Введите адрес IPv4 в формате «адрес[/маска]»." -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "Маска может содержать маску сети или числовое представление." -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "Введите адрес IPv6 в формате «адрес[/маска]»." -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "Маска представлена числовым значением." -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "Введите адрес IPv4 или IPv6 в формате «адрес[/маска]»." -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." @@ -704,51 +724,51 @@ msgstr "" "В IPv4 маска может содержать маску подсети или числовое представление.\n" "В IPv6 маска содержит числовое представление." -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "Имя встроенного ipset не может быть изменено." -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "Выберите файл" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "Текстовые файлы" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "Все файлы" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "Все" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "Встроенный модуль поддержки, изменение имени не поддерживается." -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "Встроенный ICMP, переименование не поддерживается." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "Не удалось прочитать файл %s: %s" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "Выберите зону для источника %s" @@ -767,91 +787,83 @@ msgid "Please select the automatic helpers value:" msgstr "Выберите значение автоматических модулей поддержки:" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "Введите команду." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "Введите контекст." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "Выберите стандартную зону." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "Прямая цепочка" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "Выберите IPV и таблицу, и введите имя цепочки." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "Цепочка:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "raw" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "безопасность" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "Таблица:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "Правило прямой трансляции" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "Выберите IPV и введите аргументы." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Аргументы:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Перенаправление портов" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "Выберите параметры источника и цели." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Порт/ диапазон портов:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "Адрес IP:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Протокол:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Назначение" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -859,107 +871,107 @@ msgstr "" "Если вы включите локальное перенаправление, то необходимо указать порт. Этот " "порт должен отличаться от порта источника." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Локальное перенаправление" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Направить другому порту" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "Основные настройки модулей поддержки" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "Настройте основные параметры модулей поддержки:" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "Поля, выделенные жирным, обязательны. Остальные — опциональны." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Название:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Версия:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Кратко:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Описание:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "Семейство протоколов:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "Модуль:" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "Модуль поддержки" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "Выберите модуль поддержки:" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "Базовые настройки типа ICMP" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "Укажите базовые настройки типов ICMP:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "Тип ICMP" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "Выберите тип ICMP" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Добавить запись" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "Добавить записи из файла" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "Удалить выбранную запись" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "Удалить все записи" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "Удалить записи из файла" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Файл" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Параметры" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Перезагрузить Firewalld" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -970,123 +982,107 @@ msgstr "" "изменения будут потеряны при перезагрузке, если они не вошли в постоянную " "конфигурацию." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "Выберите зону, которой принадлежит сетевое соединение." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Изменить зону по умолчанию" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "Изменить стандартную зону для соединений и интерфейсов." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "Изменить значение LogDenied" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "Изменить правила ведения журнала (LogDenied)." -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "Настройка назначения автоматического модуля поддержки" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "Настройка назначения автоматического модуля поддержки." -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" "В режиме усиленной защиты все входящие и исходящие пакеты будут " "отбрасываться." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "Режим усиленной защиты" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"При блокировке конфигурации межсетевого экрана только программы из белого " -"списка смогут вносить изменения." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "Блокировка" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "Сделать рабочую конфигурацию постоянной" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "Сохранить рабочие в постоянных" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "_Вид" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "IPSet" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "Типы ICMP" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "Модули поддержки" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "Прямая конфигурация" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "Белый список блокировки" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "Активные привязки" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Справка" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "Изменить зону" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "Изменить зону привязки" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" "Скрыть активные рабочие привязки подключений, интерфейсов и источников к " "зонам в среде выполнения" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" "Показать активные рабочие привязки подключений, интерфейсов и источников к " "зонам в среде выполнения" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "Конфигурация:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1096,7 +1092,7 @@ msgstr "" "момент. Постоянная конфигурация будет активирована после перезапуска системы " "или службы." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1109,23 +1105,23 @@ msgstr "" "маскирование, переадресацию портов и пакетов, фильтры icmp и расширенные " "правила. Зоны могут быть привязаны к интерфейсам и адресам." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Добавить зону" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Редактировать зону" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Удалить зону" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "Загрузить для зоны значения по умолчанию" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1134,11 +1130,11 @@ msgstr "" "Здесь можно определить доверенные службы для зоны. Доверенные службы " "доступны со всех узлов и сетей, у которых есть доступ к компьютеру." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Службы" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1146,44 +1142,44 @@ msgstr "" "Добавить дополнительные порты или диапазоны, которые должны быть доступны " "узлам и сетям, подключающимся к этому компьютеру." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Добавить порт" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Изменить порт" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Удалить порт" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Порты" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" "Добавьте протоколы, которые должны быть доступны с других узлов и сетей." -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "Добавить протокол" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "Изменить протокол" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "Удалить протокол" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "Протоколы" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." @@ -1191,11 +1187,11 @@ msgstr "" "Добавьте дополнительные порты-источники или диапазоны портов, которые должны " "быть доступны для всех хостов и сетей, подключающихся к машине." -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "Порты-источники" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1205,11 +1201,11 @@ msgstr "" "маршрутизатор, подключающий локальную сеть к Интернету. Локальная сеть при " "этом не будет видна извне, будет лишь доступен один адрес." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Маскирование зоны" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1217,11 +1213,11 @@ msgstr "" "При включении маскирования для сетей IPv4 будет включено перенаправление IP-" "пакетов." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Маскирование" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1233,19 +1229,19 @@ msgstr "" "системе имеет смысл при маскараде интерфейса. Перенаправление портов " "используется только для IPv4." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "Добавить перенаправляемый порт" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "Изменить перенаправляемый порт" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "Удалить перенаправляемый порт" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1256,7 +1252,7 @@ msgstr "" "также можно отправлять информационные сообщения, такие как запросы и ответы " "ping." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1264,7 +1260,7 @@ msgstr "" "Отметьте в списке типы ICMP, которым следует отказать в прохождении через " "межсетевой экран. По умолчанию ограничений нет." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." @@ -1273,35 +1269,35 @@ msgstr "" "остальные отклоняются. В зоне с отбрасыванием назначений они будут " "отбрасываться." -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "Фильтр «Инверсия»" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "Фильтр ICMP" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "Здесь определяются расширенные правила для зоны." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "Добавить расширенное правило" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "Изменить расширенное правило" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "Удалить расширенное правило" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "Расширенные правила" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1309,19 +1305,19 @@ msgstr "" "Добавьте записи для привязки интерфейсов к зоне. Если соединение использует " "интерфейс, будет выбрана соответствующая ему зона." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "Добавить интерфейс" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "Изменить интерфейс" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "Удалить интерфейс" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " @@ -1331,23 +1327,23 @@ msgstr "" "Можно также привязать MAC-адрес, но с некоторыми ограничениями: в этом " "случае перенаправление портов и маскирование будут недоступны." -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "Добавить источник" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "Изменить источник" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "Удалить источник" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "Зоны" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1355,23 +1351,23 @@ msgstr "" "Firewalld объединяет записи для портов, протоколов, модулей и адресов " "назначения." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Добавить службу" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Правка службы" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Удалить службу" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Загрузить для службы значения по умолчанию" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." @@ -1379,15 +1375,15 @@ msgstr "" "Добавьте дополнительные порты или диапазоны портов, которые должны быть " "доступны из других сетей или узлов." -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Изменить запись" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Удалить запись" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." @@ -1395,19 +1391,19 @@ msgstr "" "Добавьте дополнительные порты источника или диапазоны портов, которые должны " "быть доступны для всех хостов и сетей." -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "Порт источника" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "Для некоторых служб требуются модули поддержки Netfilter." -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Модули" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1416,15 +1412,15 @@ msgstr "" "При указании адреса назначения, запись службы будет ограничена адресом " "назначения и типом. Если обе записи пусты, ограничений нет." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1432,7 +1428,7 @@ msgstr "" "Службы можно изменить только в окне постоянной конфигурации. Конфигурация " "служб во время исполнения не изменяется." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " @@ -1440,27 +1436,27 @@ msgstr "" "IPSet позволяет настроить «белые» и «черные» списки, а также сохранить IP, " "MAC-адреса, а также номера портов. " -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "IPSet" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "Добавить IPSet" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "Изменить IPSet" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "Удалить IPSet" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "Загрузить стандартные значения IPSet" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1471,7 +1467,7 @@ msgstr "" "задано время действия, а также записи, которые добавил firewalld. Записи, " "которые были добавлены непосредственно командой ipset, не показаны." -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." @@ -1480,20 +1476,20 @@ msgstr "" "Управление его записями должно осуществляться напрямую при помощи команды " "ipset." -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "Добавить" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "Записи" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "Управление списками IPSet выполняется в окне постоянной конфигурации." -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1501,27 +1497,27 @@ msgstr "" "icmptype определяет тип ICMP (Internet Control Message Protocol) для " "firewalld." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Добавить тип ICMP" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Править тип ICMP" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Удалить тип ICMP" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "Загрузить типы ICMP по умолчанию" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "Укажите, доступен ли этот тип ICMP для IPv4 и/или IPv6." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1529,7 +1525,7 @@ msgstr "" "Типы ICMP можно изменить только в окне постоянной конфигурации. Конфигурация " "типов ICMP во время исполнения не изменяется." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1541,11 +1537,11 @@ msgstr "" "данных. Передачи данных используют порты, не связанные с сигнальным " "соединением и поэтому блокируемые сетевым экраном без модуля." -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "Добавьте порты или диапазоны портов, контролируемые модулем поддержки." -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1557,7 +1553,7 @@ msgstr "" "цели). Прямая конфигурация должна использоваться только в случаях крайней " "необходимости." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1566,34 +1562,46 @@ msgstr "" "Аргумент ipv для каждого из параметров должен содержать ipv4 (для iptables), " "ipv6 (для ip6tables) или eb (для ebtables)." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "Дополнительные цепочки для правил." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "Добавить цепочку" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "Изменить цепочку" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "Удалить цепочку" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "Цепочки" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" "Добавьте правило к цепочке в таблице, определив список аргументов и " "приоритет." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "Добавить правило" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "Изменить правило" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "Удалить правило" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1606,23 +1614,11 @@ msgstr "" "добавляются в начало цепочки. Порядок правил с одинаковым приоритетом может " "меняться. Чтобы точно определить порядок, присвойте им разный приоритет." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "Добавить правило" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "Изменить правило" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "Удалить правило" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "Правила" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1632,313 +1628,208 @@ msgstr "" "составе цепочки. Правила могут содержать параметры iptables, ip6tables и " "ebtables." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" -"Убедитесь, что правила трансляции не нарушают работу межсетевого экрана." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "Добавить трансляцию" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "Изменить трансляцию" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "Удалить трансляцию" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "Трансляция" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"Функция блокировки представляет собой облегченную версию правил firewalld " -"для пользователей и приложений. Белый список может содержать команды, " -"контексты, идентификаторы и имена пользователей." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" -"Под контекстом подразумевается контекст безопасности SELinux программы или " -"службы. Чтобы узнать контекст работающей программы, выполните команду ps " -"-e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Добавить контекст" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Изменить контекст" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Удалить контекст" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Контекст" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Команды в белом списке могут содержать символ подстановки «*». Если он не " -"указан, будут обработаны лишь точные соответствия." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Добавить строку команды" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Изменить строку команды" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Удалить строку команды" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Команды" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Имена пользователей." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Добавить имя пользователя" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Изменить имя пользователя" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Удалить имя пользователя" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Пользователи" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Идентификаторы пользователей." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Добавить идентификатор пользователя" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Изменить идентификатор пользователя" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Удалить идентификатор пользователя" +"Убедитесь, что правила трансляции не нарушают работу межсетевого экрана." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Идентификаторы пользователей" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Трансляция" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Текущая системная зона по умолчанию." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Запрет журналирования:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Режим усиленной защиты:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Автоматические модули поддержки:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Блокировка:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Зона по умолчанию:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Укажите название интерфейса:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Основные параметры IPSet" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Настройте основные параметры IPSet:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Тип:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Время действия:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Размер хэша:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Макс. число элементов:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Время действия записей в секундах" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Исходный размер хэша (по умолчанию — 1024)" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Максимальное число элементов в списке (по умолчанию — 65536)" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Выберите ipset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Укажите запись IPSet:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Запрет журналирования" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Выберите режим ограничения журналирования:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Отметка" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Введите отметку и дополнительно маску." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "Поля отметки и маски должны содержать 32-разрядные числа без знака." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Отметка:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Маска:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Выберите модуль поддержки отслеживания соединений netfilter:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Выберите -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Другой модуль:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Порт и протокол" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Введите порт и протокол." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Прямое правило" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Выберите IPV, таблицу, приоритет цепочки и введите аргументы." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Приоритет:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Введите протокол." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Другой протокол:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Правило" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Введите правило." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Отключите элемент, чтобы получить возможность управления черными и белыми " "списками узлов и сети." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Источник:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Получатель:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Журнал:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Аудит:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 и ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "инверсия" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1946,78 +1837,189 @@ msgstr "" "Чтобы разрешить, поле «Действие» должно иметь значение «отказать», а " "«Семейство протоколов» — «ipv4» или «ipv6»." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "с типом:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "С ограничением:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Префикс:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Уровень:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Элемент:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Действие:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Основные настройки службы" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Укажите основные настройки службы:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Выберите службу." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Укажите источник." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Идентификатор пользователя" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Введите идентификатор пользователя." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Введите имя пользователя." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "метка" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Настройки основной зоны" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Укажите настройки основной зоны:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Цель по умолчанию" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Цель:" + +#~ msgid "Context" +#~ msgstr "Контекст" + +#~ msgid "Command line" +#~ msgstr "Командная строка" + +#~ msgid "User name" +#~ msgstr "Пользователь" + +#~ msgid "User id" +#~ msgstr "ИД пользователя" + +#~ msgid "Please enter the command line." +#~ msgstr "Введите команду." + +#~ msgid "Please enter the context." +#~ msgstr "Введите контекст." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "При блокировке конфигурации межсетевого экрана только программы из белого " +#~ "списка смогут вносить изменения." + +#~ msgid "Lockdown" +#~ msgstr "Блокировка" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Белый список блокировки" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Функция блокировки представляет собой облегченную версию правил firewalld " +#~ "для пользователей и приложений. Белый список может содержать команды, " +#~ "контексты, идентификаторы и имена пользователей." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Под контекстом подразумевается контекст безопасности SELinux программы " +#~ "или службы. Чтобы узнать контекст работающей программы, выполните команду " +#~ "ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "Добавить контекст" + +#~ msgid "Edit Context" +#~ msgstr "Изменить контекст" + +#~ msgid "Remove Context" +#~ msgstr "Удалить контекст" + +#~ msgid "Contexts" +#~ msgstr "Контекст" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Команды в белом списке могут содержать символ подстановки «*». Если он не " +#~ "указан, будут обработаны лишь точные соответствия." + +#~ msgid "Add Command Line" +#~ msgstr "Добавить строку команды" + +#~ msgid "Edit Command Line" +#~ msgstr "Изменить строку команды" + +#~ msgid "Remove Command Line" +#~ msgstr "Удалить строку команды" + +#~ msgid "Command lines" +#~ msgstr "Команды" + +#~ msgid "User names." +#~ msgstr "Имена пользователей." + +#~ msgid "Add User Name" +#~ msgstr "Добавить имя пользователя" + +#~ msgid "Edit User Name" +#~ msgstr "Изменить имя пользователя" + +#~ msgid "Remove User Name" +#~ msgstr "Удалить имя пользователя" + +#~ msgid "User names" +#~ msgstr "Пользователи" + +#~ msgid "User ids." +#~ msgstr "Идентификаторы пользователей." + +#~ msgid "Add User Id" +#~ msgstr "Добавить идентификатор пользователя" + +#~ msgid "Edit User Id" +#~ msgstr "Изменить идентификатор пользователя" + +#~ msgid "Remove User Id" +#~ msgstr "Удалить идентификатор пользователя" + +#~ msgid "User Ids" +#~ msgstr "Идентификаторы пользователей" + +#~ msgid "Lockdown:" +#~ msgstr "Блокировка:" + +#~ msgid "User ID" +#~ msgstr "Идентификатор пользователя" + +#~ msgid "Please enter the user id." +#~ msgstr "Введите идентификатор пользователя." + +#~ msgid "Please enter the user name." +#~ msgstr "Введите имя пользователя." diff --git a/po/si.po b/po/si.po index 65bff59..1ec4b98 100644 --- a/po/si.po +++ b/po/si.po @@ -6,7 +6,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2021-08-19 06:05+0000\n" "Last-Translator: Hela Basa \n" "Language-Team: Sinhala ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "" diff --git a/po/sk.po b/po/sk.po index 4f9f5c8..20eeba4 100644 --- a/po/sk.po +++ b/po/sk.po @@ -16,7 +16,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-09-01 09:29+0000\n" "Last-Translator: Ondrej Sulek \n" "Language-Team: Slovak ps -e --" -"context." -msgstr "" -"Kontext je kontext zabezpečenia (SELinux) bežiacej aplikácie alebo služby. " -"Ak chcete zistiť kontext bežiacej aplikácie použite ps -e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Pridať kontext" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Upraviť kontext" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Odstrániť kontext" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Kontexty" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Ak položka príkazu z whitelistu končí hviezdičkou '*', potom sa všetky " -"príkazové riadky začínajúce príkazom budú zhodovať. Ak tam '*' nie je, potom " -"sa musí zhodovať absolútny príkaz vrátane argumentov." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Pridať príkazový riadok" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Upraviť príkazový riadok" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Odstrániť príkazový riadok" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Príkazové riadky" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Používateľské mená." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Pridať používateľské meno" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Upraviť používateľské meno" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Odstrániť používateľské meno" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Používateľské mená" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "ID používateľov." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Pridať ID používateľa" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Upraviť ID používateľa" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Odstrániť ID používateľa" +"S pravidlami priameho priechodu buďte opatrný, aby nedošlo k poškodeniu " +"firewallu." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "ID používateľov" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Priamy priechod" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Aktuálna predvolená zóna systému." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Záznam zamietnutí:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Núdzový režim:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Automatický pomocníci:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Uzamknutie:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Predvolená zóna:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Prosím zadajte názov rozhrania:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Základné nastavenia IPSet" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Prosím, nakonfigurujte základné nastavenia ipset:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Typ:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Časový limit:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Veľkosť hash:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maxelem:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Hodnota časového limitu v sekundách" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Počiatočná veľkosť hash, štandardná 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Maximálny počet elementov, štandardný 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Prosím vyberte ipset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Prosím zadajte položku ipset:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Záznam zamietnurí" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Prosím vyberte hodnotu pre záznam zamietnutí:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Značka" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Prosím, zadajte značku s voliteľnou maskou." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "Polia značka a maska sú obe 32-bitové čísla bez znamienka." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Značka:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Maska:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Prosím vyberte pomocníka netfilter conntrack:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Vyberte -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Ďalšie moduly:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port a Protokol" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Prosím, zadajte port a protokol." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Priame pravidlo" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Prosím vyberte ipv a tabuľku, reťaz a zadajte parametre." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Priorita:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Prosím zadajte protokol." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Iný protokol:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Pravidlo rich" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Prosím zadajte pravidlo rich." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Pre whitelistovanie alebo blacklistovanie hostiteľa alebo siete deaktivujte " "element." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Zdroj:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Cieľ:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Záznam:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Audit:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 a ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "invertované" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1937,78 +1828,191 @@ msgstr "" "Ak chcete toto povoliť, akcia musí byť 'reject' a rodina buď 'ipv4' alebo " "'ipv6' (nie obe)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "s typom:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "S limitom:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Prefix:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Úroveň:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Element:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Akcia:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Základné nastavenia služby" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Prosím, nakonfigurujte základné nastavenia služby:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Prosím vyberte službu." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Prosím zadajte zdroj." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ID používateľa" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Prosím zadajte ID používateľa." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Prosím zadajte používateľské meno." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "menovka" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Základné nastavenia zóny" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Prosím, nakonfigurujte základné nastavenia zóny:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Predvolený cieľ" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Cieľ:" + +#~ msgid "Context" +#~ msgstr "Kontext" + +#~ msgid "Command line" +#~ msgstr "Príkazový riadok" + +#~ msgid "User name" +#~ msgstr "Používateľské meno" + +#~ msgid "User id" +#~ msgstr "ID používateľa" + +#~ msgid "Please enter the command line." +#~ msgstr "Prosím, zadajte príkazový riadok." + +#~ msgid "Please enter the context." +#~ msgstr "Prosím, zadajte kontext." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Uzamknutie uzamkne konfiguráciu firewallu tak, že iba aplikácie z " +#~ "whitelistu pri uzamknutí ju môžu zmeniť." + +#~ msgid "Lockdown" +#~ msgstr "Uzamknutie" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Whitelist pri uzamknutí" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Funkcia uzamknutie je odľahčenou verziou používateľských a aplikačných " +#~ "politík pre firewalld. Obmedzuje zmeny vo firewalle. Whitelist pri " +#~ "uzamknutí môže obsahovať príkazy, kontexty, používateľov a ID " +#~ "používateľov." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Kontext je kontext zabezpečenia (SELinux) bežiacej aplikácie alebo " +#~ "služby. Ak chcete zistiť kontext bežiacej aplikácie použite ps -e --" +#~ "context." + +#~ msgid "Add Context" +#~ msgstr "Pridať kontext" + +#~ msgid "Edit Context" +#~ msgstr "Upraviť kontext" + +#~ msgid "Remove Context" +#~ msgstr "Odstrániť kontext" + +#~ msgid "Contexts" +#~ msgstr "Kontexty" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Ak položka príkazu z whitelistu končí hviezdičkou '*', potom sa všetky " +#~ "príkazové riadky začínajúce príkazom budú zhodovať. Ak tam '*' nie je, " +#~ "potom sa musí zhodovať absolútny príkaz vrátane argumentov." + +#~ msgid "Add Command Line" +#~ msgstr "Pridať príkazový riadok" + +#~ msgid "Edit Command Line" +#~ msgstr "Upraviť príkazový riadok" + +#~ msgid "Remove Command Line" +#~ msgstr "Odstrániť príkazový riadok" + +#~ msgid "Command lines" +#~ msgstr "Príkazové riadky" + +#~ msgid "User names." +#~ msgstr "Používateľské mená." + +#~ msgid "Add User Name" +#~ msgstr "Pridať používateľské meno" + +#~ msgid "Edit User Name" +#~ msgstr "Upraviť používateľské meno" + +#~ msgid "Remove User Name" +#~ msgstr "Odstrániť používateľské meno" + +#~ msgid "User names" +#~ msgstr "Používateľské mená" + +#~ msgid "User ids." +#~ msgstr "ID používateľov." + +#~ msgid "Add User Id" +#~ msgstr "Pridať ID používateľa" + +#~ msgid "Edit User Id" +#~ msgstr "Upraviť ID používateľa" + +#~ msgid "Remove User Id" +#~ msgstr "Odstrániť ID používateľa" + +#~ msgid "User Ids" +#~ msgstr "ID používateľov" + +#~ msgid "Lockdown:" +#~ msgstr "Uzamknutie:" + +#~ msgid "User ID" +#~ msgstr "ID používateľa" + +#~ msgid "Please enter the user id." +#~ msgstr "Prosím zadajte ID používateľa." + +#~ msgid "Please enter the user name." +#~ msgstr "Prosím zadajte používateľské meno." diff --git a/po/sl.po b/po/sl.po index 5b1bdec..42889de 100644 --- a/po/sl.po +++ b/po/sl.po @@ -6,7 +6,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2023-09-17 14:35+0000\n" "Last-Translator: Matjaž Jeran \n" "Language-Team: Slovenian ps -e --" -"context." -msgstr "" -"Kontekst je varnostni (SELinux) kontekst delujoče aplikacije ali storitve." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Dodaj kontekst" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Urejanje konteksta" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Odstrani kontekst" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Konteksti" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Če se vnos ukaza na seznamu dovoljenih konča z zvezdico '*', se bodo vse " -"ukazne vrstice, ki se začnejo z ukazom, ujemale." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Dodaj ukazno vrstico" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Urejanje ukazne vrstice" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Odstrani ukazno vrstico" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Ukazne vrstice" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Uporabniška imena." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Dodaj uporabniško ime" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Uredi uporabniško ime" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Odstrani uporabniško ime" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Uporabniška imena" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "ID-ji uporabnikov." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Dodaj ID uporabnika" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Uredi ID uporabnika" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Odstrani ID uporabnika" +"Prosimo, bodite previdni pri pravilih prehoda, da ne poškodujete vdorobrana." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "ID-ji uporabnikov" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Prehod" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Trenutno privzeto območje sistema." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Dnevnik zavrnjen:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Način panike:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Samodejni pomočniki:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Zaklepanje:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Privzeto območje:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Vnesite ime vmesnika:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Osnovne nastavitve IPSet" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Prosimo, konfigurirajte nastavitve osnovnega ipseta:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Vrsta:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Časovna omejitev:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Razgoščena velikost:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Vrednost časovne omejitve v sekundah" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Začetna velikost zgoščene vrednosti, privzeto 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Največje število elementov, privzeto 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Prosimo izberite ipset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Prosimo, vnesite vnos ipset:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Dnevnik zavrnjen" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Izberite zavrnjeno vrednost dnevnika:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Označi" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Prosimo, vnesite oznako z neobvezno masko." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "Polji oznake in maske sta 32-bitni števili brez predznaka." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Oznaka:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Maska:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Prosimo izberite pomočnika za sledenje netfilter:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Izberite -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Drugi modul:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Vrata in protokol" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Prosimo vnesite vrata in protokol." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Neposredno pravilo" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "Prosimo izberite ipv in tabelo, prioriteto verige in vnesite argumente." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Prednost:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Prosim vnesite protokol." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Drugi protokol:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Obogateno pravilo" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Prosimo, vnesite obogateno pravilo." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Za gostitelja ali omrežja dovoli ali zavrni seznam deaktiviraj element." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Vir:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destinacija:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Dnevnik:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Revizija:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 in ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "obrnjeno" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1877,78 +1771,186 @@ msgstr "" "Če želite omogočiti to dejanje, mora biti »zavrni«, družina pa »ipv4« ali " "»ipv6« (ne oboje)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "z vrsto:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Z omejitvijo:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Predpona:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Raven:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Element:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Akcija:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Nastavitve osnovne storitve" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Prosimo, konfigurirajte nastavitve osnovne storitve:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Prosimo izberite storitev." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Prosim vnesite vir." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "ID uporabnika" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Prosim vnesite ID uporabnika." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Prosimo vnesite uporabniško ime." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "nalepka" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Nastavitve osnovne cone" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Prosimo, konfigurirajte nastavitve osnovne cone:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Privzeti cilj" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Cilj:" + +#~ msgid "Context" +#~ msgstr "Kontekst" + +#~ msgid "Command line" +#~ msgstr "Ukazna vrstica" + +#~ msgid "User name" +#~ msgstr "Uporabniško ime" + +#~ msgid "User id" +#~ msgstr "ID uporabnika" + +#~ msgid "Please enter the command line." +#~ msgstr "Vnesite ukazno vrstico." + +#~ msgid "Please enter the context." +#~ msgstr "Prosimo, vnesite kontekst." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Lockdown zaklene konfiguracijo požarnega zidu, tako da jo lahko " +#~ "spremenijo samo aplikacije na seznamu dovoljenih zaklepanja." + +#~ msgid "Lockdown" +#~ msgstr "Zaklepanje" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Seznam dovoljenih za zaklepanje" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Funkcija zaklepanja je lažja različica uporabniških in aplikacijskih " +#~ "pravilnikov za požarni zid." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Kontekst je varnostni (SELinux) kontekst delujoče aplikacije ali storitve." + +#~ msgid "Add Context" +#~ msgstr "Dodaj kontekst" + +#~ msgid "Edit Context" +#~ msgstr "Urejanje konteksta" + +#~ msgid "Remove Context" +#~ msgstr "Odstrani kontekst" + +#~ msgid "Contexts" +#~ msgstr "Konteksti" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Če se vnos ukaza na seznamu dovoljenih konča z zvezdico '*', se bodo vse " +#~ "ukazne vrstice, ki se začnejo z ukazom, ujemale." + +#~ msgid "Add Command Line" +#~ msgstr "Dodaj ukazno vrstico" + +#~ msgid "Edit Command Line" +#~ msgstr "Urejanje ukazne vrstice" + +#~ msgid "Remove Command Line" +#~ msgstr "Odstrani ukazno vrstico" + +#~ msgid "Command lines" +#~ msgstr "Ukazne vrstice" + +#~ msgid "User names." +#~ msgstr "Uporabniška imena." + +#~ msgid "Add User Name" +#~ msgstr "Dodaj uporabniško ime" + +#~ msgid "Edit User Name" +#~ msgstr "Uredi uporabniško ime" + +#~ msgid "Remove User Name" +#~ msgstr "Odstrani uporabniško ime" + +#~ msgid "User names" +#~ msgstr "Uporabniška imena" + +#~ msgid "User ids." +#~ msgstr "ID-ji uporabnikov." + +#~ msgid "Add User Id" +#~ msgstr "Dodaj ID uporabnika" + +#~ msgid "Edit User Id" +#~ msgstr "Uredi ID uporabnika" + +#~ msgid "Remove User Id" +#~ msgstr "Odstrani ID uporabnika" + +#~ msgid "User Ids" +#~ msgstr "ID-ji uporabnikov" + +#~ msgid "Lockdown:" +#~ msgstr "Zaklepanje:" + +#~ msgid "User ID" +#~ msgstr "ID uporabnika" + +#~ msgid "Please enter the user id." +#~ msgstr "Prosim vnesite ID uporabnika." + +#~ msgid "Please enter the user name." +#~ msgstr "Prosimo vnesite uporabniško ime." diff --git a/po/sq.po b/po/sq.po index 86d7bd4..a7e065b 100644 --- a/po/sq.po +++ b/po/sq.po @@ -4,7 +4,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2017-04-20 11:49+0000\n" "Last-Translator: Sidorela Uku \n" "Language-Team: Albanian\n" @@ -19,11 +19,45 @@ msgstr "" msgid "Firewall Applet" msgstr "" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Konfigurimi i Firewall" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Firewall" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Konfigurimi i Firewall" @@ -32,24 +66,24 @@ msgstr "Konfigurimi i Firewall" msgid "firewall;network;security;iptables;netfilter;" msgstr "" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Zgjidh zonën për ndërfaqen '%s'" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "Zona e parazgjedhur" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "Selektoni zonën për lidhjen '%s'" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -97,171 +131,171 @@ msgstr "Autorët" msgid "License" msgstr "Licensa" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Mundëso njoftimet" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "" -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "" -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Blloko të gjithë trafikun në rrjet" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "Rreth" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Lidhjet" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "Ndërfaqet" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Burimet" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Autorizimi dështoi" -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Emër i pavlefshëm" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Emri tashmë ekziston" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "Zona '{zone}' aktive për burimin {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "aktivizuar" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "çaktivizuar" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "Zona '%s' aktivizuar për ndërfaqen '%s'" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "Zona '%s' aktivizuar për burimin '%s'" @@ -306,409 +340,393 @@ msgstr "" msgid "Failed to load icons." msgstr "" -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "Konteksti" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "I përhershëm" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Shërbim" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Portë" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Protokoll" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Në Portën" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Në Adresën" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "Lidhjet" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "Hyrje" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "Familje" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "Veprim" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "Element" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Burim" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "pranoj" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "refuzoj" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "shënoj" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "limit" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "shërbim" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "portë" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "protokoll" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "portë-burim" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "nivel" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "po" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Zonë" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "Zona: %s" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Fshij" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Injoro" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "sekonda" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "minuta" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "orë" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "ditë" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "emergjencë" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "alarm" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "kritik" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "gabim" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "njoftim" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "Ju lutem zgjidhni një skedar" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "Skedarët Tekst" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "Të gjithë Skedarët" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "Të gjithë" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "" @@ -727,319 +745,297 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "" -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Destinacion" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." msgstr "" -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "Ndihmuesi" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " "system reload or restart." msgstr "" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1048,107 +1044,107 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Shërbimet" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Shto Portë" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Edito Portë" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Fshij Portë" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Portat" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "Shto Protokoll" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "Protokollet" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "Portat burim" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " "hosts appear as a single address on the internet. Masquerading is IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1156,208 +1152,208 @@ msgid "" "IPv4 only." msgstr "" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " "messages like ping requests and replies." msgstr "" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." msgstr "" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "Shto Ndërfaqe" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "Porta Burim" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Modulet" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " "limitation." msgstr "" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1365,58 +1361,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1424,11 +1420,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1436,444 +1432,338 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Objektivi i paracaktuar" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Objektiv" + +#~ msgid "Context" +#~ msgstr "Konteksti" diff --git a/po/sr.po b/po/sr.po index 8e192f6..ebadf12 100644 --- a/po/sr.po +++ b/po/sr.po @@ -12,7 +12,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2016-01-04 12:42+0000\n" "Last-Translator: Momcilo Medic \n" "Language-Team: Serbian (http://www.transifex.com/projects/p/firewalld/" @@ -21,19 +21,53 @@ msgstr "" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" -"Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && " -"n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" +"Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" +"%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "X-Generator: Zanata 4.6.2\n" #: ../config/firewall-applet.desktop.in.h:1 ../src/firewall-applet.in:450 msgid "Firewall Applet" msgstr "Аплет заштитног зида" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Подешавање заштитног зида" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Заштитни зид" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Подешавање заштитног зида" @@ -42,24 +76,24 @@ msgstr "Подешавање заштитног зида" msgid "firewall;network;security;iptables;netfilter;" msgstr "заштитни зид;мрежа;сигурност;iptables;мрежни филтер;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Одаберите зону за интерфејс '%s'" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "Подразумевана зона" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "Одаберите зону за везу '%s'" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -110,153 +144,153 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "Подигни штитове" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Омогући обавештења" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Измени подешавања заштитног зида..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Промени зоне веза..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "Подеси зоне за подигнуте/спуштене штитове..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Заустави сав мрежни саобраћај" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "О програму" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "Везе" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "<спрега>" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Извори" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Неуспешно овлашћење." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Неисправан аргумент %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Име већ постоји" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (Зона: {zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Нема везе до сервиса заштитног зида" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Сав мрежни саобраћај је блокиран." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "Подразумевана зона: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "Зона '{zone}' је активна за везу '{connection}' на интерфејсу '{interface}'" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "Зона '{zone}' је активна за интерфејс '{interface}'" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "Зона '{zone}' је активна за извор {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Нема активних зона." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "Упостављена веза са FirewallD-ом." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "Изгубљена веза са FirewallD-ом." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD је поново учитан." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "Подразумевана зона промењена на '%s'." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "Мрежни саобраћај више није блокиран." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "активирана" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "деактивирана" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -264,20 +298,20 @@ msgstr "" "Зона '{zone}' је {activated_deactivated} за везу '{connection}' на " "интерфејсу '{interface}'" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "Зона '{zone}' је {activated_deactivated} за интерфејс '{interface}'" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "Зона '%s' је активирана за интерфејс '%s'" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "Зона '{zone}' је {activated_deactivated} за извор '{source}'" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "Зона '%s' је активирана за извор '%s'" @@ -322,328 +356,312 @@ msgstr "онемогућено" msgid "Failed to load icons." msgstr "Неуспешно учитавање иконица." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "Корисничко име" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "У току извршавања" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "Трајно" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Сервис" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Порт" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Протокол" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "На порт" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "На адресу" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp врста" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "Породица" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "Акција" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "Елемент" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Извор" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Одредиште" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "запис" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "Провера" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Извор" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Упозорење" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Грешка" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "прихвати" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "одби" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "испусти" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "ограничи" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "сервис" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "порт" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "протокол" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "маскарада" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "прослеђивање-порта" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "ниво" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "да" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Зона" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Зона '%s': Сервис '%s' није доступан." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Уклони" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Занемари" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Зона '%s': ICMP врста '%s' није доступна." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Уграђена зона, промена имена није подржана." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "секунд" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "минут" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "сат" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "дан" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "хитно" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "упозорење" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "критично" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "грешка" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "упозорење" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "обавештење" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "информација" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "отклањање грешака" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -652,81 +670,81 @@ msgstr "" "Преусмеравање на други систем је корисно само ако је интерфејс маскиран.\n" "Да ли желите маскирати ову зону?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Уграђени сервис, промена имена није подржана." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "Уграђени icmp, промена имена није подржана." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "Одаберите зону за извор %s" @@ -745,91 +763,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "Молим унесите командну линију." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "Молим унесите контекст." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "Молим одаберите подразумевану зону са доњег списка." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "Директан ланац" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "Молим изаберите ipv и табелу и унесите име ланца." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "Ланац:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "raw" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "сигурност" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "Табела:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "Директно правило пропуштања" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "Молим изаберите ipv и унесите параметре." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Параметри:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Прослеђивање портова" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "Изаберите опције за извор и одредиште у зависности од потреба." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Порт / опсег портова:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP адреса:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Протокол:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Одредиште" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -837,107 +847,107 @@ msgstr "" "Ако укључите локално прослеђивање, морате навести порт. Тај порт се мора " "разликовати од изворног порта." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Локално прослеђивање" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Проследи на неки други порт" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "Подебљана поља су обавезна, све остало је опционо." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Име:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Верзија:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Кратко:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Опис:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "Породица:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "Основна ICMP подешавања" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "Молим подесите основна ICMP подешавања:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP врста" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "Молим изаберите ICMP врсту" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Додај ставку" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "Да_тотека" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "Опциј_е" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Поново учитај Firewalld" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -948,117 +958,101 @@ msgstr "" "време извршавања ће бити изгубљене при поновном учитавању ако нису такође " "биле у трајним подешавањима." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "Промени којој зони припада мрежна веза." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Промени подразумевану зону" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "Промени подразумевану зону за везе или интерфејсе." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "Мод панике значи да ће сав долазни и одлазни пакети бити испуштени." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "Мод панике" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"Закључавање закључава подешавање заштитног зида тако да само програми на " -"белој листи закључавања смеју да је мењају." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "Закључавање" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "Претвори подешавања током извршавања у трајна" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "Радна у трајна" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "_Преглед" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP врсте" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "Директна подешавања" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "Бела листа закључавања" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Помоћ" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "Подешавање:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1068,7 +1062,7 @@ msgstr "" "активна подешавања. Трајна подешавања ће бити активна након поновног " "учитавања или покретања сервиса или система." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1081,23 +1075,23 @@ msgstr "" "протоколе, маскараде, порт/пакет прослеђивање, icmp филтере и обогаћена " "правила. Зона може бити повезана са интерфејсима и изворним адресама." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Додај зону" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Измени зону" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Уклони зону" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "Учитај подразумеване вредности за зону" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1107,11 +1101,11 @@ msgstr "" "доступни са свих хостова и мрежа који могу досегнути до машине кроз везе, " "интерфејсе и изворе повезане са овом зоном." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Сервиси" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1119,53 +1113,53 @@ msgstr "" "Додај додатни порт или опсег портова, који треба да буду доступни свим " "хостовима или мрежама који могу да се повежу на машину." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "На порт" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Измени порт" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Уклони порт" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Портови" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1175,11 +1169,11 @@ msgstr "" "локалну мрежу на интернет. Локална мрежа неће бити видљива и домаћини ће се " "појавити као једна адреса на интернету. Маскирање је само за IPv4." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Маскирај зону" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1187,11 +1181,11 @@ msgstr "" "Ако омогућите маскараду, IP прослеђивање ће бити омогућено за ваше IPv4 " "мреже." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Маскирање" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1203,19 +1197,19 @@ msgstr "" "други систем је корисно само ако је спрега маскирана. Прослеђивање портова " "је само за IPv4." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "Додај порт за прослеђивање" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "Измени порт за прослеђивање" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "Уклони порт за прослеђивање" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1225,7 +1219,7 @@ msgstr "" "Protocol) се углавном користи за слање порука о грешкама између умрежених " "рачунара, али и додатно за информативне поруке попут пинг захтева и одговора." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1234,41 +1228,41 @@ msgstr "" "је дозвољено да прођу кроз заштитни зид. Подразумевана опција је без " "ограничења." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "Филтер за ICMP" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "Овде можете подешавати правила у обогаћеном језику за зону." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "Додај обогаћено правило" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "Измени обогаћено правило" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "Уклони обогаћено правило" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "Обогаћена правила" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1276,42 +1270,42 @@ msgstr "" "Додајте уносе да се повежу интерфејси са зоном. Ако ће веза користити " "интерфејс, зона ће бити постављена на зону подешену у вези." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "Додај интерфејс" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "Измени интерфејс" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "Уклони интерфејс" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "Додај извор" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "Измени извор" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "Уклони извор" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "Зоне" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1319,55 +1313,55 @@ msgstr "" "Firewalld сервис је обједињење портова, протокола, модула и одредишних " "адреса." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Додај сервис" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Измени сервис" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Уклони сервис" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Учитај подразумеване вредности сервиса" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Уреди ставку" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Уклони ставку" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Модули" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1376,15 +1370,15 @@ msgstr "" "Ако назначите одредишне адресе, унос сервиса ће бити ограничен само на " "одредишну адресу и врсту. Ако су оба уноса празна, нема ограничења." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1392,33 +1386,33 @@ msgstr "" "Сервиси се могу мењати само у прегледу трајних подешавања. Подешавање " "сервиса у време извршавања је статично." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1426,26 +1420,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1453,27 +1447,27 @@ msgstr "" "Firewalld icmptype пружа информације о врсти протокола интернет контролних " "порука (ICMP - Internet Control Message Protocol) за firewalld." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Додај ICMP врсту" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Измени ICMP врсту" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Уклони ICMP врсту" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "Учитај подразумеване вредности ICMP врста" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "Одредите да ли ће ICMP врста бити доступна за IPv4 и/или IPv6." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1481,7 +1475,7 @@ msgstr "" "ICMP врсте се могу мењати само у прегледу трајних подешавања. Подешавање " "ICMP врста у време извршавања је статично." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1489,11 +1483,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1505,7 +1499,7 @@ msgstr "" "команде, параметре и циљеве. Директно подешавање би требало користити само " "као последњу опцију када није могуће користити остале firewalld могућности." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1514,32 +1508,44 @@ msgstr "" " ipv параметар сваке опције мора бити IPv4 или IPv6 или eb. Са IPv4 биће за " "iptables, са IPv6 за ip6tables и са eb за мрежне мостове (ebtables)." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "Додатни ланци у употреби са правилима." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "Додај ланац" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "Измени ланац" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "Уклони ланац" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "Ланци" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "Додај правило ланцу са аргументима args у табели са приоритетом." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "Додај правило" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "Измени правило" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "Уклони правило" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1554,23 +1560,11 @@ msgstr "" "може бити промењено. Ако желите да се осигурате да ће правило бити додато " "након другог, користите низак приоритет за прво и висок за следеће." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "Додај правило" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "Измени правило" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "Уклони правило" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "Правила" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1580,310 +1574,207 @@ msgstr "" "посебне ланце. Све iptables, ip6tables и ebtables опције могу бити " "употребљене." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" -"Молимо да будете пажљиви са пропусним правилима да не оштетите заштитни зид." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "Додај пропусно правило" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "Измени пропусно правило" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "Уклони пропусно правило" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "Пропусна правила" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"Могућност закључавања је лагана верзија полиса корисника и програма за " -"firewalld. Оно ограничава промене на заштитном зиду. Бела листа за " -"закључавање може садржати команде, контексте, кориснике и корисничке ID-ове." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Додај контекст" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Измени контекст" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Уклони контекст" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Контексти" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Ако унос команде у белу листу завршава са астериском '*', онда ће се све " -"командне линије које почињу са командом подударати. Ако '*' није ту " -"апсолутна команда са аргументима мора да се подудара." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Додај командну линију" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Измени командну линију" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Уклони командну линију" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Командне линије" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Корисничка имена." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Додај корисничко име" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Измени корисничко име" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Уклони корисничко име" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Корисничка имена" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Кориснички ID-ови." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Додај кориснички ID" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Измени кориснички ID" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Уклони кориснички ID" +"Молимо да будете пажљиви са пропусним правилима да не оштетите заштитни зид." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Кориснички ID-ови" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Пропусна правила" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Тренутна подразумевана зона за систем." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Мод панике:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Закључавање:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Подразумевана зона:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Порт и протокол" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Молим унесите порт и протокол." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Директно правило" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Молим одаберите ipv и табелу, приоритет ланца и унесите аргументе." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Приоритет:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Молим унесите протокол." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Други протокол:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Обогаћено правило" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Молим унесите обогаћено правило." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "За белу или црну листу домаћина или мреже деактивирајте елемент." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Извор:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Одредиште:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Запис:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Провера:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 и ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "обрнуто" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1891,78 +1782,173 @@ msgstr "" "Да омогућите ово Акција мора бити 'одбиј' и Породица или 'ipv4' или " "'ipv6' (не оба)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "са Врстом:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Са ограничењем:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Префикс:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Ниво:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Елемент:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Акција:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Основна подешавања сервиса" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Молим поставите основна подешавања сервиса:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Молим одаберите сервис." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Кориснички ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Молим унесите кориснички ID." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Молим унесите корисничко име." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Основна подешавања зоне" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Молим поставите основна подешавања зоне:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Подразумевани циљ" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Циљ:" + +#~ msgid "User name" +#~ msgstr "Корисничко име" + +#~ msgid "Please enter the command line." +#~ msgstr "Молим унесите командну линију." + +#~ msgid "Please enter the context." +#~ msgstr "Молим унесите контекст." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Закључавање закључава подешавање заштитног зида тако да само програми на " +#~ "белој листи закључавања смеју да је мењају." + +#~ msgid "Lockdown" +#~ msgstr "Закључавање" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Бела листа закључавања" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Могућност закључавања је лагана верзија полиса корисника и програма за " +#~ "firewalld. Оно ограничава промене на заштитном зиду. Бела листа за " +#~ "закључавање може садржати команде, контексте, кориснике и корисничке ID-" +#~ "ове." + +#~ msgid "Add Context" +#~ msgstr "Додај контекст" + +#~ msgid "Edit Context" +#~ msgstr "Измени контекст" + +#~ msgid "Remove Context" +#~ msgstr "Уклони контекст" + +#~ msgid "Contexts" +#~ msgstr "Контексти" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Ако унос команде у белу листу завршава са астериском '*', онда ће се све " +#~ "командне линије које почињу са командом подударати. Ако '*' није ту " +#~ "апсолутна команда са аргументима мора да се подудара." + +#~ msgid "Add Command Line" +#~ msgstr "Додај командну линију" + +#~ msgid "Edit Command Line" +#~ msgstr "Измени командну линију" + +#~ msgid "Remove Command Line" +#~ msgstr "Уклони командну линију" + +#~ msgid "Command lines" +#~ msgstr "Командне линије" + +#~ msgid "User names." +#~ msgstr "Корисничка имена." + +#~ msgid "Add User Name" +#~ msgstr "Додај корисничко име" + +#~ msgid "Edit User Name" +#~ msgstr "Измени корисничко име" + +#~ msgid "Remove User Name" +#~ msgstr "Уклони корисничко име" + +#~ msgid "User names" +#~ msgstr "Корисничка имена" + +#~ msgid "User ids." +#~ msgstr "Кориснички ID-ови." + +#~ msgid "Add User Id" +#~ msgstr "Додај кориснички ID" + +#~ msgid "Edit User Id" +#~ msgstr "Измени кориснички ID" + +#~ msgid "Remove User Id" +#~ msgstr "Уклони кориснички ID" + +#~ msgid "User Ids" +#~ msgstr "Кориснички ID-ови" + +#~ msgid "Lockdown:" +#~ msgstr "Закључавање:" + +#~ msgid "User ID" +#~ msgstr "Кориснички ID" + +#~ msgid "Please enter the user id." +#~ msgstr "Молим унесите кориснички ID." + +#~ msgid "Please enter the user name." +#~ msgstr "Молим унесите корисничко име." diff --git a/po/sr@latin.po b/po/sr@latin.po index f2c5577..2a1bb98 100644 --- a/po/sr@latin.po +++ b/po/sr@latin.po @@ -10,7 +10,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 10:03+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Serbian (Latin) (http://www.transifex.com/projects/p/" @@ -19,19 +19,53 @@ msgstr "" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" -"Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && " -"n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" +"Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" +"%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "X-Generator: Zanata 4.6.2\n" #: ../config/firewall-applet.desktop.in.h:1 ../src/firewall-applet.in:450 msgid "Firewall Applet" msgstr "" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Podešavanje zaštitnog zida" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Zaštitni zid" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Podešavanje zaštitnog zida" @@ -40,24 +74,24 @@ msgstr "Podešavanje zaštitnog zida" msgid "firewall;network;security;iptables;netfilter;" msgstr "" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -105,171 +139,171 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "" -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "" -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "" -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Neispravan argument %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "" @@ -314,409 +348,393 @@ msgstr "" msgid "Failed to load icons." msgstr "" -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Servis" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Port" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Protokol" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Na port" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Na adresu" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Upozorenje" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Greška" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" "Do you want to masquerade this zone ?" msgstr "" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "" @@ -735,91 +753,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Prosleđivanje portova" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "Izaberite opcije za izvor i odredište u zavisnosti od potreba." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Port / opseg portova:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP adresa:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Protokol:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -827,229 +837,215 @@ msgstr "" "Ako uključite lokalno prosleđivanje, morate navesti port. Taj port se mora " "razlikovati od izvornog porta." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Lokalno prosleđivanje" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Prosledi na neki drugi port" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP vrsta" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Dodaj stavku" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "Da_toteka" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "Opcij_e" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " "lost with reload if they have not been also in permanent configuration." msgstr "" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Pomoć" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " "system reload or restart." msgstr "" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1058,86 +1054,86 @@ msgid "" "addresses." msgstr "" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " "connections, interfaces and sources bound to this zone." msgstr "" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Na port" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1147,21 +1143,21 @@ msgstr "" "lokalnu mrežu na internet. Lokalna mreža neće biti vidljiva i domaćini će se " "pojaviti kao jedna adresa na internetu. Maskiranje je samo za IPv4." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Maskiranje" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1173,19 +1169,19 @@ msgstr "" "drugi sistem je korisno samo ako je sprega maskirana. Prosleđivanje portova " "je samo za IPv4." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1195,7 +1191,7 @@ msgstr "" "Protocol) se uglavnom koristi za slanje poruka o greškama između umreženih " "računara, ali i dodatno za informativne poruke poput ping zahteva i odgovora." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1204,183 +1200,183 @@ msgstr "" "je dozvoljeno da prođu kroz zaštitni zid. Podrazumevana opcija je bez " "ograničenja." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "Filter za ICMP" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." msgstr "" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Uredi stavku" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Ukloni stavku" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " "limitation." msgstr "" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1388,58 +1384,58 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." msgstr "" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1447,11 +1443,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1459,444 +1455,335 @@ msgid "" "as a last resort when it is not possible to use other firewalld features." msgstr "" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " "bridges (ebtables)." msgstr "" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" -#: ../src/firewall-config.glade.h:183 -msgid "" -"The priority is used to order rules. Priority 0 means add rule on top of the " -"chain, with a higher priority the rule will be added further down. Rules " -"with the same priority are on the same level and the order of these rules is " -"not fixed and may change. If you want to make sure that a rule will be added " -"after another one, use a low priority for the first and a higher for the " -"following." -msgstr "" - -#: ../src/firewall-config.glade.h:184 +#: ../src/firewall-config.glade.h:176 msgid "Add Rule" msgstr "" -#: ../src/firewall-config.glade.h:185 +#: ../src/firewall-config.glade.h:177 msgid "Edit Rule" msgstr "" -#: ../src/firewall-config.glade.h:186 +#: ../src/firewall-config.glade.h:178 msgid "Remove Rule" msgstr "" -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:179 +msgid "" +"The priority is used to order rules. Priority 0 means add rule on top of the " +"chain, with a higher priority the rule will be added further down. Rules " +"with the same priority are on the same level and the order of these rules is " +"not fixed and may change. If you want to make sure that a rule will be added " +"after another one, use a low priority for the first and a higher for the " +"following." +msgstr "" + +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " "can be used." msgstr "" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" msgstr "" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port i protokol" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "" diff --git a/po/sv.po b/po/sv.po index f1a439a..ee4a256 100644 --- a/po/sv.po +++ b/po/sv.po @@ -16,7 +16,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2021-03-31 18:01+0000\n" "Last-Translator: Luna Jernberg \n" "Language-Team: Swedish ps -e --" -"context." -msgstr "" -"Kontexten är säkerhetskontexten (SELinux) av ett körande program eller " -"tjänst. För att få kontexten för ett körande program använd ps -e --" -"context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Lägg till kontext" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Redigera kontext" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Ta bort kontext" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Kontexter" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"Om en kommandopost på vitlistan slutar med en asterisk ”*” kommer alla " -"kommandorader som startar med kommandot att matcha. Om en ”*” inte finns där " -"måste det precisa kommandot inklusive argument matcha." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Lägg till kommandorad" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Redigera kommandorad" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Ta bort kommandorad" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Kommandorader" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Användarnamn." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Lägg till användarnamn" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Redigera användarnamn" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Radera användarnamn" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Användarnamn" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Användar-id:n." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Lägg till användar-id" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Redigera användar-id" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Radera användar-id" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Användar-id:n" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Systemets nuvarande standardzon." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Nekningslogg:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Panikläge:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Automatiska hjälpare:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Isolering:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Standardzon:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Ange ett namn för gränssnittet:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Bas-IPMängd-inställningar" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Konfigurera bas-ipmängd-inställningar:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Typ:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Tidsgräns:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Hash-storlek:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maxelement:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Tidsgränsvärde i sekunder" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Initial hash-storlek, standard 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Maximalt antal element, standar 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Välj en ipmängd:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Ange en ipset-post:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Nekningslogg" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Välj värdet på nekningsloggen:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Märk" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Ange ett märke och eventuellt en mask." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "Märkes- och maskfälten är båda 32 bitar breda teckenlösa tal." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Märke:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Mask:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Välj en netfilter conntrack-hjälpare:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Välj -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Annan modul:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Port och protokoll" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Ange en port och ett protokoll." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Direkt regel" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Välj ipv och tabell, kedjeprioritet och ange argumenten." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Prioritet:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Ange ett protokoll." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Andra protokoll:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Rik regel" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Ange en rik regel." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "För tillåt- eller nekalistning av värdar eller nätverk deaktivera elementet." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Källa:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Destination:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Logg:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Granskning:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "IPv4 och IPv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "inverterad" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1945,78 +1835,191 @@ msgstr "" "För att aktivera detta måste Åtgärd vara ”avvisa” och Familj antingen ”ipv4” " "eller ”ipv6” (inte båda)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "med typ:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Med gräns:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Prefix:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Nivå:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Element:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Åtgärd:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Grundinställningar för tjänster" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Konfigurera grundinställningar för tjänster:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Välj en tjänst." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Ange en källa." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Användar-id" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Ange användar-id." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Ange användarnamnet." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "etikett" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Inställningar för baszon" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Konfigurera inställningar för baszon:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Standardmål" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Mål:" + +#~ msgid "Context" +#~ msgstr "Kontext" + +#~ msgid "Command line" +#~ msgstr "Kommandorad" + +#~ msgid "User name" +#~ msgstr "Användarnamn" + +#~ msgid "User id" +#~ msgstr "Användar-ID" + +#~ msgid "Please enter the command line." +#~ msgstr "Ange kommandoraden." + +#~ msgid "Please enter the context." +#~ msgstr "Ange kontexten." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Isolering låser brandväggskonfigurationen så att endast program på " +#~ "isoleringens vitlista kan ändra den." + +#~ msgid "Lockdown" +#~ msgstr "Isolering" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Isoleringens vitlista" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Funktionen isolering är en lättversion av policyer för användare och " +#~ "program för firewalld. Det begränsar ändringar av brandväggen. " +#~ "Isoleringens vitlista kan innehålla kommandon, kontexter, användare och " +#~ "användar-id:n." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Kontexten är säkerhetskontexten (SELinux) av ett körande program eller " +#~ "tjänst. För att få kontexten för ett körande program använd ps -e --" +#~ "context." + +#~ msgid "Add Context" +#~ msgstr "Lägg till kontext" + +#~ msgid "Edit Context" +#~ msgstr "Redigera kontext" + +#~ msgid "Remove Context" +#~ msgstr "Ta bort kontext" + +#~ msgid "Contexts" +#~ msgstr "Kontexter" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Om en kommandopost på vitlistan slutar med en asterisk ”*” kommer alla " +#~ "kommandorader som startar med kommandot att matcha. Om en ”*” inte finns " +#~ "där måste det precisa kommandot inklusive argument matcha." + +#~ msgid "Add Command Line" +#~ msgstr "Lägg till kommandorad" + +#~ msgid "Edit Command Line" +#~ msgstr "Redigera kommandorad" + +#~ msgid "Remove Command Line" +#~ msgstr "Ta bort kommandorad" + +#~ msgid "Command lines" +#~ msgstr "Kommandorader" + +#~ msgid "User names." +#~ msgstr "Användarnamn." + +#~ msgid "Add User Name" +#~ msgstr "Lägg till användarnamn" + +#~ msgid "Edit User Name" +#~ msgstr "Redigera användarnamn" + +#~ msgid "Remove User Name" +#~ msgstr "Radera användarnamn" + +#~ msgid "User names" +#~ msgstr "Användarnamn" + +#~ msgid "User ids." +#~ msgstr "Användar-id:n." + +#~ msgid "Add User Id" +#~ msgstr "Lägg till användar-id" + +#~ msgid "Edit User Id" +#~ msgstr "Redigera användar-id" + +#~ msgid "Remove User Id" +#~ msgstr "Radera användar-id" + +#~ msgid "User Ids" +#~ msgstr "Användar-id:n" + +#~ msgid "Lockdown:" +#~ msgstr "Isolering:" + +#~ msgid "User ID" +#~ msgstr "Användar-id" + +#~ msgid "Please enter the user id." +#~ msgstr "Ange användar-id." + +#~ msgid "Please enter the user name." +#~ msgstr "Ange användarnamnet." diff --git a/po/ta.po b/po/ta.po index 5f8bc20..6459f5b 100644 --- a/po/ta.po +++ b/po/ta.po @@ -16,7 +16,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2015-02-26 10:04+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Tamil (http://www.transifex.com/projects/p/firewalld/language/" @@ -32,11 +32,45 @@ msgstr "" msgid "Firewall Applet" msgstr "ஃபயர்வால் அப்பலெட்" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "ஃபயர்வால் கட்டமைப்பு" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "ஃபயர்வால்" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "ஃபயர்வால் கட்டமைப்பு" @@ -45,24 +79,24 @@ msgstr "ஃபயர்வால் கட்டமைப்பு" msgid "firewall;network;security;iptables;netfilter;" msgstr "firewall;network;security;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "இடைமுகம் '%s' க்கு மண்டலத்தைத் தேர்ந்தெடுக்கவும்" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "முன்னிருப்பு மண்டலம்" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "இணைப்பு %s க்கு மண்டலத்தைத் தேர்ந்தெடுக்கவும்" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -114,153 +148,153 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "ஷீல்டுகள் மேலே" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "அறிவிப்புகளை செயல்படுத்து" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "ஃபயர்வால் அமைவுகளைத் திருத்து..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "இணைப்புகளின் மண்டலங்களை மாற்று..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "ஷீல்டுகள் மேலே/கீழே மண்டலங்களை அமைவாக்கம் செய்..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "அனைத்து பிணைய போக்குவரத்தையும் தடு" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "இணைப்புகள்" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" -msgstr "" +msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "மூலங்கள்" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "அங்கீகாரம் தோல்வியுற்றது." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "தவறான அளவுரு %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "பெயர் ஏற்கனவே உள்ளது" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "ஃபயர்வால் டீமனுடன் இணைப்பு எதுவும் இல்லை" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "அனைத்து பிணைய போக்குவரத்தும் தடுக்கப்பட்டுள்ளது." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "முன்னிருப்பு மண்டலம்: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "இடைமுகம் '{interface}' இல் உள்ள இணைப்பு '{connection}' க்கு மண்டலம் '{zone}' செயலில் " -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "இடைமுகம் '{interface}' க்கு மண்டலம் '{zone}' செயலில் உள்ளது" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "மூலம் {source} க்கு மண்டலம் '{zone}' செயலில் உள்ளது" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "செயலில் உள்ள மண்டலங்கள் எதுவும் இல்லை." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallD க்கான இணைப்பு நிறுவப்பட்டது." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallD க்கான இணைப்பு இழக்கபப்ட்டது." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD மீளேற்றப்பட்டது." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "முன்னிருப்பு மண்டலம் '%s' என மா." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "பிணைய போக்குவரத்து இப்போது தடுக்கப்பட்டில்லை." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "செயல்படுத்தப்பட்டது" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "முடக்கப்பட்டது" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -268,20 +302,20 @@ msgstr "" "இடைமுகம் '{interface}' இல் உள்ள இணைப்பு '{connection}' க்கான மண்டலம் " "'{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "இடைமுகம் '{interface}' க்கான மண்டலம் '{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "இடைமுகம் '%s' க்கான மண்டலம் '%s' செயல்படுத்தப்பட்டது" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "மூலம் '{source}' க்கு மண்டலம் '{zone}' {activated_deactivated}" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "மூலம் '%s' க்கு மண்டலம் '%s' செயல்படுத்தப்பட்டுள்ளது" @@ -326,328 +360,312 @@ msgstr "முடக்கப்பட்டது" msgid "Failed to load icons." msgstr "சின்னங்களை ஏற்றத்தில் தோல்வியுற்றது." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "பயனர் பெயர்" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "நிகழ்நேரம்" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "நிரந்தரமான" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "சேவை" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "துறை" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "நெறிமுறை" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "துறைக்கு" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "முகவரிக்கு" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp வகை" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "குடும்பம்" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "செயல்" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "கூ" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Src" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "இலக்கு" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "பதிவு" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "தணிக்கை" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "மூலம்" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "எச்சரிக்கை" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "பிழை" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "ஏ" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "நிரா" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "விடுக" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "வரம்பு" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "சேவை" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "துறை" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "நெறிமுறை" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "போ" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "முன்னனுப்பல் துறை" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "நிலை" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "ஆம்" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "மண்டலம்" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "மண்டலம் '%s': சேவை '%s' கிடைக்கவில்லை." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "நீக்கு" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "புறக்கணி" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "மண்டலம் '%s': ICMP வகை '%s' கிடைக்கவில்லை." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "உள்ளமைந்த மண்டலம். மறுபெயரிட ஆதரவில்லை." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "வினா" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "நிமிடம்" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "மணி" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "நாள்" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "அவசரம்" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "எச்சரிக்கை" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "மிக " -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "பிழை" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "எச்சரிக்கை" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "அறிக்கை" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "தகவல்" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "வழு நீக்கு" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -657,81 +675,81 @@ msgstr "" "பயனுள்ளதாக இருக்கும்.\n" "இந்த மண்டலத்தை போலித்தோற்றமாக்க வேண்டுமா ?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "உள்ளமைந்த சேவை. மறுபெயரிட ஆதரவில்லை." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "உள்ளமைந்த icmp, மறுபெயரிட ஆதரவில்லை." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "மூலம் %s க்கு மண்டலத்தைத் தேர்ந்தெடுக்கவும்" @@ -750,91 +768,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "கட்டளை வரியை உள்ளிடவும்." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "சூழலை உள்ளிடவும்." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "கீழே உள்ள பட்டியலில் இருந்து முன்னிருப்பு மண்டலத்தைத் தேர்ந்தெடுக்கவும்." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "நேரடி சங்கிலி" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "ipv மற்றும் அட்டவனையைத் தேர்ந்தெடுத்து சங்கிலி பெயரை உள்ளிடவும்." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "சங்கிலி:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "அசல்" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "பாதுகாப்பு" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "அட்டவணை:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "நேரடி பாஸ்த்ரூ விதி" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "ipv ஐத் தேர்ந்தெடுத்து மதிப்புருக்களை உள்ளிடவும்." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "மதிப்புருக்கள்:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "துறை முன்னனுப்புதல்" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "உங்கள் தேவைக்கேற்ப மூல மற்றும் இலக்கு விருப்பங்களை தேர்ந்தெடுக்கவும்." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "துறை / துறை வரம்பு:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP முகவரி:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "நெறிமுறை:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "இலக்கு" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -842,107 +852,107 @@ msgstr "" "நீங்கள் உள்ளமை முன்னனுப்புதலை செயல்படுத்தினால், நீங்கள் ஒரு துறையை குறிப்பிட வேண்டும். இந்த " "துறை மூல துறைக்கு வேறாக இருக்கும்." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "உள்ளமை முன்னனுப்புதல்" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "வேறு துறைக்கு திருப்பப்படுகிறது" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "தடிமனாக உள்ள உள்ளீடுகள் கட்டாயம் தேவை, மற்ற அனைத்தும் கட்டாயமல்ல." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "பெயர்:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "பதிப்பு:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "சிறிய:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "விளக்கம்:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "குடும்பம்:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "அடிப்படை ICMP வகை அமைவுகள்" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "அடிப்படை ICMP வகை அமைவுகளை அமைவாக்கம் செய்யவும்:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP வகை" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "ஒரு ICMP வகையைத் தேர்ந்தெடுக்கவும்" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "உள்ளீட்டைச் சேர்" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "கோப்பு (_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "விருப்பங்கள் (_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Firewalld ஐ மீளேற்று" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -952,119 +962,103 @@ msgstr "" "மாறும். அதாவது, மீளேற்றம் வரை செய்த நிகழ் நேரத்திற்கு மட்டுமான மாற்றங்கள் அனைத்தும், அவை " "நிரந்தர அமைவாக்கத்திலும் இல்லாமல் இருந்தால், மீளேற்றும் போது இழக்கப்படும்." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "ஒரு பிணைய இணைப்பு சார்ந்துள்ள மண்டலத்தை மாற்றவும்." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "முன்னிருப்பு மண்டலத்தை மாற்று" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "இணைப்புகள் அல்லது இடைமுகங்களுக்கான முன்னிருப்பு மண்டலத்தை மாற்றவும்." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" "பேனிக் பயன்முறை என்பது, உள்வரும் மற்றும் வெளிச்செல்லும் சிப்பங்கள் அனைத்தும் கைவிடப்பட்டன " "என்பதைக் குறிக்கிறது." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "பேனிக் பயன்முறை" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"லாக்டவுன் என்பது ஃபயர்வால் அமைவாக்கத்தைப் பூட்டும், இதனால் லாக்டவுன் வெண்பட்டியலில் உள்ள " -"பயன்பாடுகள் மட்டுமே இதை மாற்ற முடியும்." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "லாக்டவுன்" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "இயக்கநேர அமைவாக்கத்தை நிரந்தரமானதா" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "இயக்க நேரத்திலிருந்து நிரந்தர அமைவுக்கு" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "பார்வை (_V)" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP வகை" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "நேரடி அமைவாக்கம்" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "லாக்டவுன் வெண்பட்டியல்" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "உதவி (_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "அமைவாக்கம்:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1074,7 +1068,7 @@ msgstr "" "அமைவாக்கமாகும். சேவை அல்லது கணினி மீளேற்றியதும் அல்லது மறுதொடக்கப்பட்டதும் நிரந்த " "அமைவாக்கம் செயலாகும்." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1088,23 +1082,23 @@ msgstr "" "விதிகள் ஆகியவற்றை உள்ளடக்கியது. மண்டலமானது இடைமுகங்கள் மற்றும் மூல முகவரிகளுக்கு " "கட்டுப்பட்டவையாக இருக்கலாம்." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "மண்டலத்தைச் சேர்" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "மண்டலத்தைத் திருத்து" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "மண்டலத்தை நீ" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "மண்டலத்தின் முன்னிருப்பு மதிப்புகளை ஏ" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1114,11 +1108,11 @@ msgstr "" "மண்டலத்துக்குரிய இணைப்புகள், இடைமுகங்கள் மற்றும் மூலங்களிலிருந்து கணினியை அணுகக்கூடிய " "அனைத்து புரவலன்கள் மற்றும் பிணையங்களிலிருந்து அணுகப்பட முடியும்." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "சேவைகள்" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1126,53 +1120,53 @@ msgstr "" "கணினியுடன் இணைக்க முடிகின்ற அனைத்து வழங்கிகள் அல்லது பிணையங்களுக்கும் அணுகக்கூடியதாக " "இருக்க வேண்டிய கூடுதல் முனையங்கள் அல்லது முனைய வரம்புகளைச் சேர்க்கவும்." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "துறைக்கு" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "துறையை திருத்தவும்" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "துறையை நீக்கு" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "துறைகள்" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1182,11 +1176,11 @@ msgstr "" "உள்ளமை பிணையத்தில் இணைக்கிறது. உங்கள் உள்ளமை பிணையம் தெரியாது மற்றும் புரவலன்கள் ஒரு " "ஒற்றை முகவரியில் இணையத்தில் தோன்றும் Masquerading IPv4 மட்டுமே." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "போலி மண்டலம்" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1194,11 +1188,11 @@ msgstr "" "நீங்கள் masquerading ஐ செயல்படுத்தினால், உங்கள் IPv4 பிணையங்களுக்கு IP முன்னனுப்புதலும் " "செயல்படுத்தப்படும்." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Masquerading" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1209,19 +1203,19 @@ msgstr "" "கணினியிலிருந்த சேர்க்கவும். வேறு கணினியை முன்னனுப்புவது முகப்பு சரியாக இருந்தால் " "மட்டுமே பயனாக இருக்கும். துறை முன்னனுப்புதல் IPv4 இல் மட்டும்." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "முன்னனுப்பல் துறையைச் சேர்" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "முன்னனுப்பல் துறையைத் திருத்து" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "முன்னனுப்பல் துறையை நீக்கு" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1231,7 +1225,7 @@ msgstr "" "பிணையப்பட்ட கணினிகளுக்கிடையே அனுப்பப்படும் பிழை செய்திகள் ஆனால் கூடுதலாக தகவல் " "செய்திகளே வருகிறது." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1239,41 +1233,41 @@ msgstr "" "பட்டியலில் ICMP வகைகளை குறிக்கவும், அது நிராகரிக்கப்பட வேண்டும். மற்ற அனைத்து ICMP " "வகைகளும் ஃபயர்வாலின் வழியாக செல்லும். முன்னிருப்புக்கு வரம்பு இல்லை." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP வடிப்பி" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "மண்டலத்திற்கான உயர் மொழி விதிகளை இங்கு நீங்கள் அமைக்க முடியும்." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "உயர் விதியைச் சேர்" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "உயர் விதியைத் திருத்தவும்" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "உயர் விதியை நீக்கவும்" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "உயர் விதிகள்" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1281,42 +1275,42 @@ msgstr "" "மண்டலத்திற்கு இடைமுகங்களைப் பிணைக்க உள்ளீடுகளைச் சேர்க்கவும். இடைமுகம் ஒரு இணைப்பால் " "பயன்படுத்தப்படும் எனில், மண்டலமானது இணைப்பில் குறிப்பிடப்பட்ட மண்டலமாக அமைக்கப்படும்." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "இடைமுகத்தைச் சேர்" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "இடைமுகத்தைத் திருத்து" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "இடைமுகத்தை நீக்கு" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "மூலத்தைச் சேர்" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "மூலத்தைத் திருத்து" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "மூலத்தை நீக்கு" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "மண்டலங்கள்" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1324,55 +1318,55 @@ msgstr "" "ஒரு firewalld சேவையானது முனையங்கள், நெறிமுறைகள், தொகுதிக்கூறுகள் மற்றும் இலக்கு " "முகவரிகள் ஆகியவற்றின் சேர்க்கையாகும்." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "சேவையைச் சேர்" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "சேவையைத் திருத்து" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "சேவையை நீக்கு" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "சேவை முன்னிருப்பு மதிப்புகளை ஏற்று" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "உள்ளீட்டைத் திருத்து" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "உள்ளீட்டை நீக்கு" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "தொகுதிக்கூ" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1382,15 +1376,15 @@ msgstr "" "வகைக்கு மட்டும் என வரம்புடையதாக இருக்கும். இரண்டு உள்ளீடுகளும் காலியாக இருந்தால் வரம்பு " "ஏதும் இல்லை." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1398,33 +1392,33 @@ msgstr "" "சேவைகளை நிரந்தர அமைவாக்கக் காட்சியில் மட்டுமே மாற்ற முடியும். சேவைகளின் நிகழ்நேர " "அமைவாக்கம் நிலையானது. " -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1432,26 +1426,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1459,27 +1453,27 @@ msgstr "" "firewalld icmptype ஆனது firewalld இன் இணைய கட்டுப்பாட்டு செய்தி நெறிமுறைக்கான " "(ICMP) தகவலை வழங்குகிறது." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP வகையை சேர்க்கவும்" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP வகையைத் திருத்து" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "தொலைநிலை ICMP வகை" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP வகை முன்னிருப்பு மதிப்புகளை ஏ" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "இந்த ICMP வகை IPv4 மற்றும்/அல்லது IPv6 க்குக் கிடைக்குமா என்பதைக் குறிப்பிடவும்." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1487,7 +1481,7 @@ msgstr "" "ICMP வகைகளை நிரந்தர அமைவாக்கக் காட்சியில் மட்டுமே மாற்றச் முடியும். ICMP வகைகளின் " "நிகழ்நேர அமைவாக்கம் நிலையானது." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1495,11 +1489,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1512,7 +1506,7 @@ msgstr "" "தெரிந்திருக்க வேண்டும். மற்ற ஃபயர்வால் அம்சங்களை பயன்படுத்த முடியாது போகும் போது கடைசி " "விருப்பமாகவே நேரடி அமைவாக்கமானது பயன்படுத்தப்பட வேண்டும்." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1522,34 +1516,46 @@ msgstr "" "ipv4 உடன் அது iptables க்காக இருக்கும், ipv6 உடன் ip6tables க்காக இருக்கும், eb உடன் " "ஈத்தர்நெட் பாலங்களுக்காக (ebtables) இருக்கும்." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "விதிகளுடன் பயன்படுத்துவதற்கான கூடுதல் சங்கிலிகள்." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "சங்கிலியைச் சேர்" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "சங்கிலியைத் திருத்து" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "சங்கிலியை நீக்கு" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "சங்கிலிகள்" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" "ஒரு அட்டவணையில் உள்ள ஒரு சங்கிலிக்கு மதிப்புருக்களுடன் முன்னுரிமையையுடன் ஒரு விதியைச் " "சேர்க்கவும்." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "விதியைச் சேர்" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "விதியைத் திருத்து" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "விதியை நீக்கு" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1565,23 +1571,11 @@ msgstr "" "மற்றொன்றுகுப் பிறகு சேர்க்கப்படுவதை நீங்கள் உறுதிப்படுத்த விரும்பினால், முதல் விதிக்கு " "குறைந்த முன்னுரிமையையும் அடுத்ததற்கு அதிக முன்னுரிமையையும் பயன்படுத்தவும்." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "விதியைச் சேர்" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "விதியைத் திருத்து" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "விதியை நீக்கு" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "விதிகள்" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1591,310 +1585,207 @@ msgstr "" "வைக்கப்படுவதில்லை. iptables, ip6tables மற்றும் ebtables விருப்பங்கள் அனைத்தும் " "பயன்படுத்தப்படலாம்." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "ஃபயர்வாலை சேதப்படுத்தாதபடிக்கு பாஸ்த்ரூ விதிகளில் கவனமாக செயல்படவும்." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "பாஸ்த்ரூவைச் சேர்" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "பாஸ்த்ரூவைத் திருத்து" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "பாஸ்த்ரூவை நீக்கு" -#: ../src/firewall-config.glade.h:193 +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." +msgstr "ஃபயர்வாலை சேதப்படுத்தாதபடிக்கு பாஸ்த்ரூ விதிகளில் கவனமாக செயல்படவும்." + +#: ../src/firewall-config.glade.h:186 msgid "Passthrough" msgstr "பாஸ்த்ரூ" -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"லாக்டவுன் வசதியானது firewalld க்கான பயனர் மற்றும் பயன்பாட்டுக் கொள்கைகளின் லேசான " -"பதிப்பாகும். இது ஃபயர்வாலுக்கான மாற்றங்களை வரம்புக்குட்படுத்துகிறது. லாக்டவுன் " -"வெண்பட்டியலில் கட்டளைகள், சூழல்கள், பயனர்கள் மற்றும் பயனர் idகள் ஆகியவை இருக்கலாம்." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "சூழலைச் சேர்" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "சூழலைத் திருத்து" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "சூழலை நீக்கு" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "சூழல்கள்" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"வெண்பட்டியலில் உள்ள ஒரு கட்டளை உள்ளீடு நட்சத்திரக்குறியுடன் '*' முடிந்தால், கட்டளையுடன் " -"தொடங்கும் அனைத்து கட்டளை வரிகளும் பொருந்தும். '*' இல்லாவிட்டால், மதிப்புருக்கள் உட்பட " -"கட்டளை மட்டும் துல்லியமாகப் பொருந்த வேண்டும்." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "கட்டளை-வரியைச் சேர்" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "கட்டளை-வரியைத் திருத்து" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "கட்டளை-வரியை நீக்கு" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "கட்டளை வரிகள்" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "பயனர் பெயர்கள்." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "பயனர் பெயரைச் சேர்" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "பயனர் பெயரைத் திருத்து" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "பயனர் பெயரை நீக்கு" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "பயனர் பெயர்கள்" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "பயனர் idகள்" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "பயனர் id ஐச் சேர்" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "பயனர் id ஐத் திருத்து" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "பயனர் id ஐ நீக்கு" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "பயனர் Idகள்" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "கணினியின் தற்போதைய முன்னிருப்பு மண்டலம்." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "பானிக் பயன்முறை:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "லாக்டவுன்:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "முன்னிருப்பு மண்டலம்:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "துறை மற்றும் நெறிமுறை" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "ஒரு துறை மற்றும் நெறிமுறையை உள்ளிடவும்." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "நேரடி விதி" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "ipv மற்றும் அட்டவணை, சங்கிலி முன்னுரிமையைத் தேர்ந்தெடுத்து மதிப்புருக்களை உள்ளிடவும்." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "முன்னுரிமை:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "ஒரு நெறிமுறையை உள்ளிடவும்." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "பிற நெறிமுறை:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "உயர் விதி" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "ஒரு உயர் விதியை உள்ளிடவும்." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "புரவலன் அல்லது பிணைய வெண் அல்லது கருப்புப் பட்டியலிடுதலுக்கு கூறை முடக்கவும்." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "மூலம்:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "இலக்கு:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "பதிவு:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "தணிக்கை:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 மற்றும் ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "தலைகீழ்" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1902,78 +1793,172 @@ msgstr "" "இதைச் செயல்படுத்த செயல் 'நிராகரி' என்றும் குடும்பம் 'ipv4' அல்லது 'ipv6' " "என்று(இரண்டுமல்ல) இருக்க வேண்டும்." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "இந்த வகையுடன்:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "இந்த வரம்புடன்:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "முன்னொட்டு:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "நிலை:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "கூறு:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "செயல்:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "அடிப்படை சேவை அமைவுகள்" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "அடிப்படை சேவை அமைவுகளை அமைவாக்கம் செய்யவும்:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "ஒரு சேவையைத் தேர்ந்தெடுக்கவும்." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "பயனர் ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "ஒரு பயனர் id ஐ உள்ளிடவும்." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "பயனர் பெயரை உள்ளிடவும்." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "அடிப்படை மண்டல அமைவுகள்" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "அடிப்படை மண்டல அமைவுகளை அமைவாக்கம் செய்யவும்:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "முன்னிருப்பு இலக்கு" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "இலக்கு:" + +#~ msgid "User name" +#~ msgstr "பயனர் பெயர்" + +#~ msgid "Please enter the command line." +#~ msgstr "கட்டளை வரியை உள்ளிடவும்." + +#~ msgid "Please enter the context." +#~ msgstr "சூழலை உள்ளிடவும்." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "லாக்டவுன் என்பது ஃபயர்வால் அமைவாக்கத்தைப் பூட்டும், இதனால் லாக்டவுன் வெண்பட்டியலில் உள்ள " +#~ "பயன்பாடுகள் மட்டுமே இதை மாற்ற முடியும்." + +#~ msgid "Lockdown" +#~ msgstr "லாக்டவுன்" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "லாக்டவுன் வெண்பட்டியல்" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "லாக்டவுன் வசதியானது firewalld க்கான பயனர் மற்றும் பயன்பாட்டுக் கொள்கைகளின் லேசான " +#~ "பதிப்பாகும். இது ஃபயர்வாலுக்கான மாற்றங்களை வரம்புக்குட்படுத்துகிறது. லாக்டவுன் " +#~ "வெண்பட்டியலில் கட்டளைகள், சூழல்கள், பயனர்கள் மற்றும் பயனர் idகள் ஆகியவை இருக்கலாம்." + +#~ msgid "Add Context" +#~ msgstr "சூழலைச் சேர்" + +#~ msgid "Edit Context" +#~ msgstr "சூழலைத் திருத்து" + +#~ msgid "Remove Context" +#~ msgstr "சூழலை நீக்கு" + +#~ msgid "Contexts" +#~ msgstr "சூழல்கள்" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "வெண்பட்டியலில் உள்ள ஒரு கட்டளை உள்ளீடு நட்சத்திரக்குறியுடன் '*' முடிந்தால், கட்டளையுடன் " +#~ "தொடங்கும் அனைத்து கட்டளை வரிகளும் பொருந்தும். '*' இல்லாவிட்டால், மதிப்புருக்கள் உட்பட " +#~ "கட்டளை மட்டும் துல்லியமாகப் பொருந்த வேண்டும்." + +#~ msgid "Add Command Line" +#~ msgstr "கட்டளை-வரியைச் சேர்" + +#~ msgid "Edit Command Line" +#~ msgstr "கட்டளை-வரியைத் திருத்து" + +#~ msgid "Remove Command Line" +#~ msgstr "கட்டளை-வரியை நீக்கு" + +#~ msgid "Command lines" +#~ msgstr "கட்டளை வரிகள்" + +#~ msgid "User names." +#~ msgstr "பயனர் பெயர்கள்." + +#~ msgid "Add User Name" +#~ msgstr "பயனர் பெயரைச் சேர்" + +#~ msgid "Edit User Name" +#~ msgstr "பயனர் பெயரைத் திருத்து" + +#~ msgid "Remove User Name" +#~ msgstr "பயனர் பெயரை நீக்கு" + +#~ msgid "User names" +#~ msgstr "பயனர் பெயர்கள்" + +#~ msgid "User ids." +#~ msgstr "பயனர் idகள்" + +#~ msgid "Add User Id" +#~ msgstr "பயனர் id ஐச் சேர்" + +#~ msgid "Edit User Id" +#~ msgstr "பயனர் id ஐத் திருத்து" + +#~ msgid "Remove User Id" +#~ msgstr "பயனர் id ஐ நீக்கு" + +#~ msgid "User Ids" +#~ msgstr "பயனர் Idகள்" + +#~ msgid "Lockdown:" +#~ msgstr "லாக்டவுன்:" + +#~ msgid "User ID" +#~ msgstr "பயனர் ID" + +#~ msgid "Please enter the user id." +#~ msgstr "ஒரு பயனர் id ஐ உள்ளிடவும்." + +#~ msgid "Please enter the user name." +#~ msgstr "பயனர் பெயரை உள்ளிடவும்." diff --git a/po/te.po b/po/te.po index ece11b2..cf815c2 100644 --- a/po/te.po +++ b/po/te.po @@ -15,7 +15,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2016-01-04 12:44+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Telugu (http://www.transifex.com/projects/p/firewalld/" @@ -31,11 +31,45 @@ msgstr "" msgid "Firewall Applet" msgstr "ఫైర్వాల్ ఆప్లెట్" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +msgid "Allows to inspect and set:" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Firewall ఆకృతీకరణ" + +#: ../config/firewall-config.appdata.xml.in.h:4 +msgid "Predefined zones (levels of trust for network connections)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "ఫైర్‌వాల్" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Firewall ఆకృతీకరణ" @@ -44,24 +78,24 @@ msgstr "Firewall ఆకృతీకరణ" msgid "firewall;network;security;iptables;netfilter;" msgstr "firewall;network;security;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "ఇంటర్ఫేస్ '%s' కొరకు జోన్ ఎంపికచేయి" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "అప్రమేయ క్షేత్రం" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "అనుసంధానం '%s' కొరకు క్షేత్రం ఎంపికచేయి" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "" @@ -111,154 +145,154 @@ msgstr "" msgid "License" msgstr "" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "షీల్డ్ చేయి" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "నోటిఫికేషన్లను ప్రారంభించు" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "ఫైర్వాల్ సెట్టింగ్లను సవరించండి..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "అనుసంధానాల జోన్ మార్చు..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "అప్ / జోన్స్ డౌన్ షీల్డ్స్ కన్ఫిగర్ చెయ్యి..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "అన్నీ నెట్వర్క్ ట్రాఫిక్ నిరోధించు" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "అనుసంధానాలు" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" -msgstr "" +msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "మూలాలు" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "ధృవీకరణ విఫలమైంది." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "చెల్లని ఆర్గుమెంట్ %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "పేరు యిప్పటికే వుంది" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "ఫైర్వాల్ డెమోన్ కోసం కనెక్షన్ లేదు" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "నెట్వర్కు ట్రాఫిక్ అంచా నిరోధించబడెను." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "అప్రమేయ జోన్: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "ఇంటర్ఫేస్ '{interface}' పైన అనుసంధానం '{connection}' కొరకు జోన్ '{zone}' " "క్రియాశీలపరచబడెను" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "ఇంటర్ఫేస్ '{interface}' కొరకు జోన్ '{zone}' క్రియాశీలపరచబడెను" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "జోన్ '{zone}' మూలం {source} కొరకు క్రియాశీలపరచబడెను" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "క్రియాశీల జోన్స్ లేవు." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallD కనెక్షన్ స్థాపించబడింది." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallD కనెక్షన్ కోల్పోయింది." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD తిరిగిలోడైంది." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "అప్రమేయ జోన్ '%s' కు మార్చబడెను." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "నెట్వర్కు ట్రాఫిక్ నిరోధించబడుటలేదు." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "క్రియాశీలం" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "క్రియాహీనం" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" msgstr "" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -266,20 +300,20 @@ msgstr "" "జోన్ '{zone}' {activated_deactivated} అనుసంధానం '{connection}' కొరకు ఇంటర్ఫేస్ " "'{interface}' పైన" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "జోన్ '{zone}' {activated_deactivated} ఇంటర్ఫేస్ '{interface}' కొరకు" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "జోన్ '%s' ఇంటర్ఫేస్ '%s' కొరకు క్రియాశీలమైంది" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "జోన్ '{zone}' {activated_deactivated} వనరు '{source}' కొరకు" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "జోన్ '%s' మూలం '%s' కొరకు క్రియాశీలమైంది" @@ -324,328 +358,312 @@ msgstr "అచేతనమైన" msgid "Failed to load icons." msgstr "ప్రతిమలు లోడుచేయుటకు విఫలమైంది." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "వాడుకరి పేరు" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "రన్‌టైమ్" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "శాశ్వత" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "సేవ" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "పోర్టును" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "చట్టం" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "ఈ పోర్ట్‍‌కు" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "పంపవలిసిన చిరునామా" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp రకం" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "ఫ్యామిలీ" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "చర్య" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "మూలకం" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "మూలం" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "గమ్యం" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "లాగ్" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "ఆడిట్" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "మూలం" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "హెచ్చిరక" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "దోషము" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "ఆమోదించు" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "తిరస్కరించు" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "విడువు" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "పరిమితి" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "సేవ" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "పోర్ట్" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "ప్రొటోకాల్" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "మాస్క్వరేడ్" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-బ్లాక్" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "ఫార్వార్డ్-పోర్ట్" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "స్థాయి" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "అవును" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "జోన్" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "జోన్ '%s': సేవ '%s' అందుబాటులో లేదు." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "తీసివేయి" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "విస్మరించు" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "జోన్ '%s': ICMP రకం '%s' అందుబాటులో లేదు." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "బిల్ట్-ఇన్ జోన్, తిరిగిపేరు పెట్టుటకు తోడ్పాటులేదు." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "క్షణం" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "నిమిషం" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "గంట" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "రోజు" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "అత్యవసర" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "జాగరూకత" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "సంక్లిష్ట" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "దోషం" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "హెచ్చరిక" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "సూచన" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "సమాచారం" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "డీబగ్" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -654,81 +672,81 @@ msgstr "" "ఇంటర్ఫేస్ మారువేషంలో వుంటేనే వేరొక వ్యవస్థకు పంపుట వుపయోగకరంగా వుంటుంది.\n" "ఈ క్షేత్రాన్ని మారువేషంలో వుంచాలనుకొంటున్నారా?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "బిల్ట్-ఇన్ సేవ, తిరిగిపేరు పెట్టుటకు తోడ్పాటులేదు." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." msgstr "" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "బిల్ట్-ఇన్ icmp, తిరిగిపేరు పెట్టుటకు తోడ్పాటులేదు." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "మూలం %s కొరకు జోన్ ఎంపికచేయి" @@ -747,91 +765,83 @@ msgid "Please select the automatic helpers value:" msgstr "" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "ఆదేశ వరుస ప్రవేశపెట్టండి." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "సందర్భం ప్రవేశ పెట్టండి." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "కింది జాబితా నుండి అప్రమేయ క్షేత్రం ఎంపికచేయండి." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "డైరెక్ట్ చైన్" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "దయచేసి ipv మరియు పట్టిక ఎంపికచేసి చైన్ పేరు ప్రవేశపెట్టుము." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "చైన్:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "raw" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "రక్షణ" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "పట్టిక:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "సూటి పాస్‌త్రూ నియమం" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "ipv ఎంపికచేసి ఆర్గుమెంట్స్ ప్రవేశపెట్టు." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "ఆర్గుమెంట్లు:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "పోర్టు ఫార్వార్డింగ్" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "మీ అవసరములకు తగినట్లు ములం మరియు గమ్యం ఐచ్చికాలను దయచేసి ఎంపికచేసికొనుము." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "పోర్టు/పోర్టు పరిమితి:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP చిరునామా:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "చట్టం:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "గమ్యం" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -839,107 +849,107 @@ msgstr "" "మీరు స్థానిక ఫార్వార్డింగ్‌ను చేతనం చేస్తే, మీరు పోర్ట్‍‌ను తెలుపవలసి వుంటుంది. మూలం పోర్ట్‍‌కు ఈ పోర్ట్‍ " "భిన్నంగా వుండాలి." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "స్థానిక ఫార్వార్డింగ్" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "వేరొక పోర్ట్‍‌కు పంపుము" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "బోల్డ్ గా వున్న ప్రవేశాలు తప్పనిసరి, మిగతావి అన్నీ ఐచ్చికాలు." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "పేరు:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "వర్షన్:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "షార్ట్:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "వివరణ:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "ఫ్యామిలి:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "ఆధార ICMP రకం అమరికలు" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "దయచేసి ఆధార ICMP రకం అమరికలు ఆకృతీకరించు:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP రకము" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "దయచేసి ICMP రకం యెంపికచేయి" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "ప్రవేశమును జతపరచుము" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "దస్త్రం (_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "ఐచ్చికాలు (_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Firewalld తిరిగిలోడుచేయి" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -948,117 +958,101 @@ msgstr "" "ఫైర్‌వాల్ నియమాలు తిరిగిలోడుచేయి. ప్రస్తుత శాశ్వత ఆకృతీకరణ కొత్త రన్‌టైమ్ ఆకృతీకరణగా ఆగును. అనగా తిరిగిలోడు " "చేసే వరకు చేసిన అన్ని రన్‌టైమ్ మార్పులూ శాశ్వత ఆకృతీకరణనందు లేకపోతే తిరిగిలోడు చేయగానే పోతాయి." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "నెట్వర్కు అనుసంధానం ఏ క్షేత్రమునకు చెందునో మార్చుము." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "అప్రమేయ జోన్ మార్చు" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "అనుసంధానాలు లేదా ఇంటర్ఫేసుల కొరకు అప్రమేయ క్షేత్రం మార్చుము." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "పానిక్ రీతి అనగా లోనికివచ్చు మరియు బయటకిపోవు అన్ని పాకెట్లు వదిలివేయబడును." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "పానిక్ రీతి" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"లాక్‌డౌన్ అనునది ఫైర్‌వాల్ ఆకృతీకరణను లాక్ చేయును అలా లాక్‌డౌన్ వైట్‌లిస్ట్ పైని అనువర్తనాలు మాత్రమే దానిని " -"మార్చగలవు." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "లాక్‌డౌన్" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "రన్‌టైమ్ ఆకృతీకరణను శాశ్వతం చేయుము" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "రన్‌టైమ్ నుండి శాశ్వతం" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "దర్శించు (_V)" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP రకాలు" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "సూటి ఆకృతీకరణ" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "లాక్‌డౌన్ వైట్‌లిస్ట్" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "సహాయం (_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "ఆకృతీకరణ:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1067,7 +1061,7 @@ msgstr "" "ప్రస్తుతం దర్శనీయమైన ఆకృతీకరణ. రన్‌టైమ్ ఆకృతీకరణ అనునది యథార్ధ క్రియాశీల ఆకృతీకరణ. శాశ్వత ఆకృతీకరణ " "అనునది సేవ తర్వాత లేదా వ్యవస్థ తిరిగిలోడైన తర్వాత లేదా పునఃప్రారంభం తరువాత క్రియాశీలమగును." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1080,23 +1074,23 @@ msgstr "" "పాకెట్ ఫార్వార్డింగ్‌ను, icmp ఫిల్టర్లను మరియు రిచ్ నియమాలను కలుపును. జోన్ అనునది ఇంటర్ఫేసులకు మరియు " "మూలపు చిరునామాలకు బందనం కాగలదు." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "జోన్ జతచేయి" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "జోన్ సరికూర్చు" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "జోన్ తీసివేయి" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "జోన్ అప్రమేయాలు లోడుచేయి" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1106,11 +1100,11 @@ msgstr "" "ఇంటర్ఫేసులు మరియు మూలాల నుండి మిషన్‌ను చేరగల అన్ని అతిధేయలు మరియు నెట్వర్కుల నుండి నమ్మదగిన సేవలు " "ఏక్సెస్ చేయవచ్చు." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "సేవలు" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1118,53 +1112,53 @@ msgstr "" "మిషన్‌కు అనుసంధానం కాగల అన్ని అతిధేయలు లేదా నెట్వర్కుల నుండి ఏక్సెస్ కావలసిన, పోర్టులు లేదా పోర్టుల " "విస్తృతిని జతచేయి." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "ఈ పోర్ట్‍‌కు" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "పోర్ట్ సరికూర్చు" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "పోర్టు తీసివేయి" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "పోర్టులు" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1174,21 +1168,21 @@ msgstr "" "మారువేషదారణ ఉపయోగకరంగా ఉంటుంది.మీ స్థానిక నెట్వర్కు కనిపించదు మరియు ఇంటర్‌నెట్ కు ఒక అతిధేయ లాగా " "కనబడుతుంది. మారువేషదారణ IPv4 మాత్రమే." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "మాస్క్వరేడ్ జోన్" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "మీరు మాస్క్వరేడింగ్ చేతనంచేస్తే, ఐపి ఫార్వార్డింగ్ అనునది మీ IPv4 నెట్వర్కుల కొరకు చేతనమగును." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Masquerading" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1199,19 +1193,19 @@ msgstr "" "పంపుటకు ప్రవేశాలను పోర్ట్స్‍‌కు జతచేయుము. వేరొక సిస్టమ్‌కు పంపుట ఇంటర్‌ఫేస్ మారువేషంలోవుంటేనే " "ఉపయోగకరంగా వుంటుంది. పోర్ట్‍ పంపుట IPv4 మాత్రమే." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "ఫార్వార్డ్ పోర్ట్ జతచేయి" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "ఫార్వార్డ్ పోర్ట్ సరికూర్చు" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "ఫార్వార్డ్ పోర్ట్ తీసివేయి" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1221,7 +1215,7 @@ msgstr "" "పంపుటకు ఉపయోగించబడుతుంది, అయితే అదనంగా పింగ్ అభ్యర్దనలు మరియు ప్రత్యుత్తరాలు వంటి సమాచార " "సందేశాలు కు." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1229,41 +1223,41 @@ msgstr "" "జాబితానందు ICMP రకాలను గుర్తుంచుము, ఏవైతే తిరస్కరించాలో. అన్ని ఇతర ICMP రకములు ఫైర్‌వాల్ దాటుటకు " "అనుమతించబడినవి. అప్రమేయంగా ఏ పరిమితి లేదు." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." msgstr "" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP వడపోత" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "జోన్ కొరకు ఇక్కడ మీరు రిచ్ భాషా నియమాలను అమర్చవచ్చు." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "రిచ్ నియమం జతచేయి" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "రిచ్ నియమం సరికూర్చు" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "రిచ్ నియమం తీసివేయి" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "రిచ్ నియమాలు" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1271,96 +1265,96 @@ msgstr "" "ఇంటర్ఫేసులను జోన్‌కు బందనం చేయుటకు ప్రవేశాలను జతచేయి. ఒకవేళ ఇంటర్ఫేస్ అనునది అనుసంధానం చేత " "వుపయోగించబడితే, జోన్ అనునది అనుసంధానం నందు తెలిపిన జోన్‌కు అమర్చబడును." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "ఇంటర్ఫేస్ జతచేయి" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "ఇంటర్ఫేస్ సరికూర్చు" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "ఇంటర్ఫేస్ తీసివేయి" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " "masquerading will not work for MAC source bindings." msgstr "" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "మూలం జతచేయి" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "మూలం సరికూర్చు" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "మూలం తీసివేయి" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "జోన్స్" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "firewalld సేవ అనునది పోర్టులు, ప్రొటోకాల్స్, మాడ్యూళ్ళు మరియు గమ్యపు చిరునామాల సమ్మేళనం." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "సేవ జతచేయి" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "సేవ సరికూర్చు" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "సేవ తీసివేయి" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "సేవా అప్రమేయాలు లోడుచేయి" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "ప్రవేశమును సరిచేయుము" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "ప్రవేశమును తీసివేయి" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "మాడ్యూళ్ళు" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1369,15 +1363,15 @@ msgstr "" "ఒకవేళ మీరు గమ్యపు చిరునామాలను తెలిపితే, సేవా ప్రవేశం అనునది గమ్యపు చిరునామా మరియు రకమునకు పరిమితం " "అగును. ఒకవేళ రెండు ప్రవేశాలు ఖాళీ అయితే, అప్పుడు ఏ పరిమితి వుండదు." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1385,33 +1379,33 @@ msgstr "" "సేవలు అనునవి శాశ్వత ఆకృతీకరణ దర్శని నందు మాత్రమే మారగలవు. సేవల యొక్క రన్‌టైమ్ ఆకృతీకరణ అనునది " "నిర్ధిష్టం." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " msgstr "" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1419,26 +1413,26 @@ msgid "" "command wil not be listed here." msgstr "" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." msgstr "" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1446,27 +1440,27 @@ msgstr "" "firewalld icmptype అనునది firewalld కొరకు ఇంటర్నెట్ కంట్రోల్ మెసేజ్ ప్రొటోకాల్ (ICMP) కు " "చెందిన సమాచారం ఇచ్చును." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP రకం జతచేయి" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP రకం సరికూర్చు" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ICMP రకం తీసివేయి" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP రకం అప్రమేయాలు లోడుచేయి" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "IPv4 మరియు/లేదా IPv6 కొరకు ఈ ICMP రకం అందుబాటులో వుందో లేదో తెలుపుము." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1474,7 +1468,7 @@ msgstr "" "ICMP రకాలు అనునవి శాశ్వత ఆకృతీకరణ దర్శని నందు మాత్రమే మారగలవు. ICMP రకాల యొక్క రన్‌టైమ్ " "ఆకృతీకరణ అనునది నిర్ధిష్టం." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1482,11 +1476,11 @@ msgid "" "therefore blocked by the firewall without the helper." msgstr "" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1497,7 +1491,7 @@ msgstr "" "ప్రాథమిక ఐపిపట్టికల విషయాలు తెలవాలి, అనగా పట్టికలు, చైన్స్, ఆదేశాలు, పారామితులు మరియు లక్ష్యాలు. ఇతర " "firewalld విశేషణాలు ఏవీ వుపయోగించుటకు సాధ్యకానప్పుడు మాత్రమే సూటి ఆకృతీకరణను వుపయోగించాలి." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1506,32 +1500,44 @@ msgstr "" "ప్రతి ఐచ్చికం యొక్క ipv ఆర్గుమెంట్ ipv4 లేదా ipv6 లేదా eb కావాలి. ipv4 తో అది ఐపిపట్టికల కొరకు, " "ipv6 కొరకు ఐపి6పట్టికల కొరకు మరియు eb తో ఈథర్నెట్ బ్రిడ్జులు (ఈబిపట్టికలు) కొరకు." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "నియమాలతో వుపయోగించుటకు అదనపు చైన్స్." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "చైన్ జతచేయి" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "చైన్ సరికూర్చు" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "చైన్ తీసివేయి" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "చైన్స్" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "పట్టిక నందలి చైన్‌కు ప్రాముఖ్యతతో ఆర్గుమెంట్స్ args వుపయోగించి నియమం జతచేయి." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "నియమం జతచేయి" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "నియమం సరికూర్చు" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "నియమం తీసివేయి" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1545,23 +1551,11 @@ msgstr "" "మరియు ఈ నియమాల క్రమం నిర్దిష్టంకాదు మారవచ్చు. ఒకదాని తరువాత మళ్ళీ ఒక నియమం జతచేయబడును అనేది " "నిర్థారించుకొనుటకు, ఒకదానికి తక్కువ ప్రాముఖ్యత ఇచ్చి తరువాతదానికి ఎక్కువ ప్రాముఖ్యత ఇవ్వండి." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "నియమం జతచేయి" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "నియమం సరికూర్చు" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "నియమం తీసివేయి" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "నియమాలు" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1570,308 +1564,206 @@ msgstr "" "పాస్‌త్రూ నియమాలు అనునవి నేరుగా ఫైర్‌వాల్‌కు పంపుబడును మరియు ప్రత్యేక చైన్స్ నందు వుంచబడవు. అన్ని " "ఐపిపట్టికలు, ఐపి6పట్టికలు మరియు ఈబిపట్టికల ఐచ్చికాలు వుపయోగించవచ్చు." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "ఫైర్‌వాల్‌కు నష్టంవాటిల్లకుండా వుండుటకు పాస్‌త్రూ నియమాలతో జాగ్రత్తగా వుండండి." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "పాస్‌త్రూ జతచేయి" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "పాస్‌త్రూ సరికూర్చు" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "పాస్‌త్రూ తీసివేయి" -#: ../src/firewall-config.glade.h:193 +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." +msgstr "ఫైర్‌వాల్‌కు నష్టంవాటిల్లకుండా వుండుటకు పాస్‌త్రూ నియమాలతో జాగ్రత్తగా వుండండి." + +#: ../src/firewall-config.glade.h:186 msgid "Passthrough" msgstr "పాస్‌త్రూ" -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"లాక్‌డౌన్ విశేషణం అనునది firewalld కొరకు వాడుకరి మరియు అనువర్తనం విధానాల లైట్ వర్షన్. ఇది మార్పులను " -"ఫైర్‌వాల్‌కు పరిమితం చేయును. లాక్‌డౌన్ వైట్‌లిస్ట్ అనునది ఆదేశాలను, సందర్భాలను, వాడుకరులను మరియు వాడుకరి " -"ఐడిలను కలిగివుండవచ్చు." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "సందర్భం జతచేయి" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "సందర్భం సరికూర్చు" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "సందర్భం తీసివేయి" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "సందర్భాలు" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"వైట్‌లిస్ట్ పైన ఆదేశం ప్రవేశం ఏస్ట్రిక్ '*' తో ముగిస్తే, అప్పుడు ఆ ఆదేశంతో ప్రారంభమయ్యే అన్ని ఆదేశ " -"వరుసలు సరిపోలును. ఒకవేళ '*' లేకపోతే అప్పుడు ఆదేశం అనునది ఆర్గుమెంట్లతో సహా ఖచ్చితంగా సరిపోలాలి." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "ఆదేశ వరుస జతచేయి" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "ఆదేశ వరుస సరికూర్చు" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "ఆదేశ వరుస తీసివేయి" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "ఆదేశ వరుసలు" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "వాడుకరి పేరులు." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "వాడుకరి పేరు జతచేయి" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "వాడుకరి పేరు జతచేయి" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "వాడుకరి పేరు తీసివేయి" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "వాడుకరి పేరులు" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "వాడుకరి ఐడిలు." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "వాడుకరి ఐడి జతచేయి" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "వాడుకరి ఐడి సరికూర్చు" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "వాడుకరి ఐడి తీసివేయి" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "వాడుకరి ఐడిలు" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "వ్యవస్థ యొక్క ప్రస్తుత అప్రమేయ జోన్." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "పానిక్ మోడ్:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "లాక్‌డౌన్:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "అప్రమేయ జోన్:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "పోర్ట్‍ మరియు నియమం" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "దయచేసి పోర్ట్ మరియు ప్రొటోకాల్ ప్రవేశపెట్టండి." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "సూటి నియమం" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "దయచేసి ipv మరియు పట్టిక, చైన్ ప్రాముఖ్యత ఎంపికచేసి ఆర్గుమెంట్లు ప్రవేశపెట్టు." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "ప్రాముఖ్యత:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "దయచేసి ప్రొటోకాల్ ప్రవేశపెట్టండి." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "ఇతర ప్రొటోకాల్:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "రిచ్ నియమం" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "దయచేసి రిట్ నియమం ప్రవేశపెట్టండి." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "అతిధేయ లేదా నెట్వర్కునకు వైట్ లేదా బ్లాక్‌లిస్టింగ్ అనునది మూలకం క్రియాహీనం చేయును." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "మూలం:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "గమ్యం:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "లాగ్:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "ఆడిట్:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 మరియు ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "తిరగతిప్పిన" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1879,78 +1771,171 @@ msgstr "" "దీనిని చేతనం చేయుటకు చర్య అనేది 'తిరస్కరించు' అవ్వాలి మరియు ఫ్యామిలీ 'ipv4' లేదా 'ipv6' అవ్వాలి " "(రెండూ కాదు)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "రకం తో:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "పరిమితి తో:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "ప్రిఫిక్స్:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "స్థాయి:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "మూలకం:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "చర్య:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "ప్రాధమిక సేవ అమరికలు" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "దయచేసి ప్రాధమిక సేవ అమరికలు ఆకృతీకరించు:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "దయచేసి సేవను ఎంపికచేయి." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "వాడుకరి ఐడి" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "దయచేసి వాడుకరి ఐడిను ప్రవేశపెట్టుము." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "దయచేసి వాడుకరి పేరు ప్రవేశపెట్టుము." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "ఆధార జోన్ అమరికలు" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "దయచేసి ఆధార జోన్ అమరికలు ఆకృతీకరించు:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "అప్రమేయ లక్ష్యం" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "లక్ష్యం:" + +#~ msgid "User name" +#~ msgstr "వాడుకరి పేరు" + +#~ msgid "Please enter the command line." +#~ msgstr "ఆదేశ వరుస ప్రవేశపెట్టండి." + +#~ msgid "Please enter the context." +#~ msgstr "సందర్భం ప్రవేశ పెట్టండి." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "లాక్‌డౌన్ అనునది ఫైర్‌వాల్ ఆకృతీకరణను లాక్ చేయును అలా లాక్‌డౌన్ వైట్‌లిస్ట్ పైని అనువర్తనాలు మాత్రమే దానిని " +#~ "మార్చగలవు." + +#~ msgid "Lockdown" +#~ msgstr "లాక్‌డౌన్" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "లాక్‌డౌన్ వైట్‌లిస్ట్" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "లాక్‌డౌన్ విశేషణం అనునది firewalld కొరకు వాడుకరి మరియు అనువర్తనం విధానాల లైట్ వర్షన్. ఇది " +#~ "మార్పులను ఫైర్‌వాల్‌కు పరిమితం చేయును. లాక్‌డౌన్ వైట్‌లిస్ట్ అనునది ఆదేశాలను, సందర్భాలను, వాడుకరులను " +#~ "మరియు వాడుకరి ఐడిలను కలిగివుండవచ్చు." + +#~ msgid "Add Context" +#~ msgstr "సందర్భం జతచేయి" + +#~ msgid "Edit Context" +#~ msgstr "సందర్భం సరికూర్చు" + +#~ msgid "Remove Context" +#~ msgstr "సందర్భం తీసివేయి" + +#~ msgid "Contexts" +#~ msgstr "సందర్భాలు" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "వైట్‌లిస్ట్ పైన ఆదేశం ప్రవేశం ఏస్ట్రిక్ '*' తో ముగిస్తే, అప్పుడు ఆ ఆదేశంతో ప్రారంభమయ్యే అన్ని ఆదేశ " +#~ "వరుసలు సరిపోలును. ఒకవేళ '*' లేకపోతే అప్పుడు ఆదేశం అనునది ఆర్గుమెంట్లతో సహా ఖచ్చితంగా సరిపోలాలి." + +#~ msgid "Add Command Line" +#~ msgstr "ఆదేశ వరుస జతచేయి" + +#~ msgid "Edit Command Line" +#~ msgstr "ఆదేశ వరుస సరికూర్చు" + +#~ msgid "Remove Command Line" +#~ msgstr "ఆదేశ వరుస తీసివేయి" + +#~ msgid "Command lines" +#~ msgstr "ఆదేశ వరుసలు" + +#~ msgid "User names." +#~ msgstr "వాడుకరి పేరులు." + +#~ msgid "Add User Name" +#~ msgstr "వాడుకరి పేరు జతచేయి" + +#~ msgid "Edit User Name" +#~ msgstr "వాడుకరి పేరు జతచేయి" + +#~ msgid "Remove User Name" +#~ msgstr "వాడుకరి పేరు తీసివేయి" + +#~ msgid "User names" +#~ msgstr "వాడుకరి పేరులు" + +#~ msgid "User ids." +#~ msgstr "వాడుకరి ఐడిలు." + +#~ msgid "Add User Id" +#~ msgstr "వాడుకరి ఐడి జతచేయి" + +#~ msgid "Edit User Id" +#~ msgstr "వాడుకరి ఐడి సరికూర్చు" + +#~ msgid "Remove User Id" +#~ msgstr "వాడుకరి ఐడి తీసివేయి" + +#~ msgid "User Ids" +#~ msgstr "వాడుకరి ఐడిలు" + +#~ msgid "Lockdown:" +#~ msgstr "లాక్‌డౌన్:" + +#~ msgid "User ID" +#~ msgstr "వాడుకరి ఐడి" + +#~ msgid "Please enter the user id." +#~ msgstr "దయచేసి వాడుకరి ఐడిను ప్రవేశపెట్టుము." + +#~ msgid "Please enter the user name." +#~ msgstr "దయచేసి వాడుకరి పేరు ప్రవేశపెట్టుము." diff --git a/po/tr.po b/po/tr.po index 83883dd..5b5ffe2 100644 --- a/po/tr.po +++ b/po/tr.po @@ -14,7 +14,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2022-07-07 20:19+0000\n" "Last-Translator: Burak Yavuz \n" "Language-Team: Turkish " +msgstr "" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Kaynaklar" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Yetkilendirme başarısız oldu." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Geçersiz ad" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Bu ad zaten var" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (Bölge: {zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "{entry} (Öntanımlı Bölge: {default_zone})" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "NetworkManager'dan bağlantılar alınamadı" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "Kullanılabilir NetworkManager içe aktarımı yok" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Güvenlik duvarı arka plan programı ile bağlantı yok" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Tüm ağ trafiği engellendi." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "Öntanımlı Bölge: '%s'" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" @@ -209,55 +245,55 @@ msgstr "" "Öntanımlı Bölge '{default_zone}', '{interface}' arayüzünde '{connection}' " "bağlantısı için etkin" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "'{zone}' bölgesi, '{interface}' arayüzünde '{connection}' bağlantısı için " "etkin" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "'{zone}' bölgesi '{interface}' arayüzü için etkin" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "'{zone}' bölgesi, {source} kaynağı için etkin" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Etkin Bölge Yok." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "FirewallD ile bağlantı sağlandı." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "FirewallD ile bağlantı kaybedildi." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD yeniden yüklendi." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "Öntanımlı bölge '%s' olarak değiştirildi." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "Artık ağ trafiği engellenmiyor." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "etkinleştirildi" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "devreden çıkarıldı" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" @@ -265,7 +301,7 @@ msgstr "" "Öntanımlı bölge '{default_zone}', '{interface}' arayüzünde '{connection}' " "bağlantısı için {activated_deactivated}" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -273,20 +309,20 @@ msgstr "" "'{zone}' bölgesi, '{interface}' arayüzünde '{connection}' bağlantısı için " "{activated_deactivated}" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "'{zone}' bölgesi, '{interface}' arayüzü için {activated_deactivated}" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "'%s' bölgesi, '%s' arayüzü için etkinleştirildi" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "'{zone}' bölgesi, '{source}' kaynağı için {activated_deactivated}" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "'%s' bölgesi, '%s' kaynağı için etkinleştirildi" @@ -333,328 +369,312 @@ msgstr "devre dışı" msgid "Failed to load icons." msgstr "Simgeler yüklenemedi." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "İçerik" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "Komut satırı" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "Kullanıcı adı" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "Kullanıcı kimliği" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "Tablo" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "Zincir" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "Öncelik" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "Argümanlar" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "Çalışma zamanı" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "Kalıcı" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Hizmet" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Bağlantı noktası" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Protokol" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "Hedef Bağlantı Noktası" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "Hedef Adres" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "Bağlamalar" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "Giriş" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp Türü" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "Aile" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "Eylem" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "Eleman" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Kaynak" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Hedef" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "günlük" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "Denetim" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "Arayüz" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "Açıklama" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Kaynak" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Uyarı" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Erro" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "kabul et" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "reddet" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "yok say" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "işaretle" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "sınırla" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "hizmet" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "bağlantı noktası" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "protokol" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "maskeleme" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-engelleme" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "icmp-türü" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "bağlantı-noktası-yönlendirme" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "kaynak-bağlantı-noktası" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "seviye" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "evet" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Bölge" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "Öntanımlı Bölge: %s" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "Bölge: %s" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Bölge '%s': '%s' hizmeti kullanılamıyor." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Kaldır" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Yoksay" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Bölge '%s': '%s' ICMP türü kullanılamıyor." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Yerleşik bölge, yeniden adlandırma desteklenmiyor." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "saniye" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "dakika" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "saat" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "gün" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "acil durum" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "alarm" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "kritik" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "hata" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "uyarı" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "ikaz" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "bilgi" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "hata ayıkla" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -663,31 +683,31 @@ msgstr "" "Başka bir sisteme yönlendirme, sadece arayüz maskelenmiş ise faydalıdır.\n" "Bu bölgeyi maskelemek ister misiniz?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Yerleşik hizmet, yeniden adlandırma desteklenmiyor." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "Lütfen adres[/maske] biçiminde bir ipv4 adresi girin." -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "Maske, bir ağ maskesi veya bir sayı olabilir." -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "Lütfen adres[/maske] biçiminde bir ipv6 adresi girin." -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "Maske bir sayıdır." -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "Lütfen adres[/maske] biçiminde bir ipv4 veya ipv6 adresi girin." -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." @@ -695,51 +715,51 @@ msgstr "" "Maske, ipv4 için bir ağ maskesi veya bir sayı olabilir.\n" "Maske, ipv6 için bir sayıdır." -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "Yerleşik ipset, yeniden adlandırma desteklenmiyor." -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "Lütfen bir dosya seç" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "Metin Dosyası" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "Tüm Dosyalar" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "Tümü" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "Yerleşik yardımcı, yeniden adlandırma desteklenmiyor." -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "Dahili icmp, yeniden adlandırma desteklenmiyor." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "'%s' dosyası okunamadı: %s" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "%s kaynağı için bölge seç" @@ -758,91 +778,83 @@ msgid "Please select the automatic helpers value:" msgstr "Lütfen otomatik yardımcıların değerini seçin:" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "Lütfen komut satırını girin." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "Lütfen içeriği girin." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "Lütfen aşağıdaki listeden öntanımlı bölgeyi seçin." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "Doğrudan Zincir" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "Lütfen ipv ve tabloyu seçin ve zincir adını girin." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "Zincir:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "ham" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "güvenlik" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "Tablo:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "Doğrudan Geçiş Kuralı" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "Lütfen ipv'yi seçin ve argümanları girin." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Argümanlar:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Bağlantı Noktası Yönlendirme" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "Lütfen ihtiyaçlarınıza göre kaynak ve hedef seçeneklerini seçin." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Bağlantı Noktası / Bağlantı Noktası Aralığı:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP adresi:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Protokol:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Hedef" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -851,107 +863,107 @@ msgstr "" "gerekir. Bu bağlantı noktasının kaynak bağlantı noktasından farklı olması " "gerekir." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Yerel Yönlendirme" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Başka bir bağlantı noktasına yönlendir" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "Temel Yardımcı Ayarları" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "Lütfen temel yardımcı ayarlarını yapılandırın:" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "Kalın girişlerin hepsi zorunludur. Diğer tüm girişler isteğe bağlıdır." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Ad:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Sürüm:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Kısa:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Açıklama:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "Aile:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "Modül:" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "Yardımcı" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "Lütfen bir yardımcı seçin:" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "Temel ICMP Türü Ayarları" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "Lütfen temel ICMP türü ayarlarını yapılandırın:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP Türü" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "Lütfen bir ICMP türü seçin" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Giriş Ekle" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "Dosyadan Girdi Ekle" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "Seçilen Girişi Kaldır" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "Tüm Girdileri Kaldır" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "Girdileri Dosyadan Kaldır" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Dosya" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Seçenekler" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Firewalld 'yi yeniden yükle" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -963,122 +975,106 @@ msgstr "" "değişiklikler, aynı zamanda kalıcı yapılandırmada da bulunmadıkları takdirde " "kaybolacaktır." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "Bir ağ bağlantısının ait olduğu bölgeyi değiştirin." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Öntanımlı Bölgeyi Değiştir" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "Bağlantılar veya arayüzler için öntanımlı bölgeyi değiştirin." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "Reddedilen Log Kaydını Değiştir" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "LogDenied değerini değiştirin." -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "Otomatik Yardımcı Atamasını Yapılandır" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "Otomatik Yardımcı Atama ayarını yapılandırın." -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" "Panik modu, gelen ve giden tüm paketlerin yok sayıldığı anlamına gelir." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "Panik Modu" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"Kilitleme, sadece kilitleme beyaz listesindeki uygulamaların " -"değiştirebilmesi için güvenlik duvarı yapılandırmasını kilitler." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "Kilitleme" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "Çalışma zamanı yapılandırmasını kalıcı duruma getir" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "Çalışma Zamanından Kalıcı Duruma" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "_Görünüm" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "IPSet'ler" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP Türleri" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "Yardımcılar" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "Doğrudan Yapılandırma" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "Kilitleme Beyaz Listesi" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "Etkin Bağlamalar" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Yardım" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "Bölge Değiştir" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "Bağlamanın bölgesini değiştir" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" "Bağlantıların, arayüzlerin ve kaynakların bölgelere etkin çalışma zamanı " "bağlamalarını gizle" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" "Bağlantıların, arayüzlerin ve kaynakların bölgelere etkin çalışma zamanı " "bağlamalarını göster" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "Yapılandırma:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1087,7 +1083,7 @@ msgstr "" "Eğer belirli bir adres belirlediyseniz, ICMP tipi girişi bu hedefle sınırlı " "olacaktır." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1101,23 +1097,23 @@ msgstr "" "yönlendirmeyi, icmp filtrelerini ve zengin kuralları bir araya getirir. " "Bölge, arayüzlere ve kaynak adreslere bağlanabilir." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Bölge Ekle" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Bölge Düzenle" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Bölge Kaldır" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "Bölge Öntanımlılarını Yükle" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1128,11 +1124,11 @@ msgstr "" "kaynaklardan makineye erişebilen tüm ana makinelerden ve ağlardan " "erişilebilir." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Hizmetler" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1140,45 +1136,45 @@ msgstr "" "Makineye bağlanabilen tüm ana makineler veya ağlar için erişilebilir olması " "gereken ilave bağlantı noktaları veya bağlantı noktası aralıkları ekleyin." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "Bağlantı Noktası Ekle" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Bağlantı Noktası Düzenle" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Bağlantı Noktası Kaldır" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Bağlantı noktaları" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" "Tüm ana makineler veya ağlar için erişilebilir olması gereken protokoller " "ekleyin." -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "Protokol Ekle" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "Protokol Düzenle" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "Protokol Kaldır" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "Protokoller" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." @@ -1187,11 +1183,11 @@ msgstr "" "gereken ilave kaynak bağlantı noktaları veya bağlantı noktası aralıkları " "ekleyin." -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "Kaynak Bağlantı Noktaları" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1202,11 +1198,11 @@ msgstr "" "internette tek bir adres olarak görünecektir. Maskeleme yalnızca IPv4 " "içindir mevcuttur." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Bölgeyi maskele" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1214,11 +1210,11 @@ msgstr "" "Maskelemeyi etkinleştirirseniz, IP yönlendirmesi IPv4 ağınız için " "etkinleştirilecektir." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Maskeleme" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1230,19 +1226,19 @@ msgstr "" "bir sisteme yönlendirme yalnızca arayüz maskelenmişse yararlıdır. Bağlantı " "noktası yönlendirme sadece IPv4 için kullanılabilir." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "Yönlendirme Bağlantı Noktası Ekle" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "Yönlendirme Bağlantı Noktası Düzenle" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "Yönlendirme Bağlantı Noktası Kaldır" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1253,7 +1249,7 @@ msgstr "" "için kullanılır, ancak ek olarak ping istekleri ve yanıtları gibi bilgi " "mesajları için de kullanılır." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1262,7 +1258,7 @@ msgstr "" "türleri güvenlik duvarından geçebilecektir. Öntanımlı olarak herhangi bir " "sınırlama yoktur." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." @@ -1270,35 +1266,35 @@ msgstr "" "Filtreyi Ters Çevirme etkinse, işaretli ICMP girdileri kabul edilir ve " "diğerleri reddedilir. Hedefin DROP olduğu bir bölgede yok sayılırlar." -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "Filtreyi Ters Çevir" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP Filter" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "Burada bölge için zengin dil kuralları ayarlayabilirsiniz." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "Geliştirilmiş Kural Ekle" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "Geliştirilmiş Kuralı Düzenle" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "Geliştirilmiş Kuralı Kaldır" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "Geliştirilmiş Kurallar" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1307,19 +1303,19 @@ msgstr "" "tarafından kullanılacaksa, bölge bağlantıda belirtilen bölgeye " "ayarlanacaktır." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "Arayüz Ekle" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "Arayüzü Düzenle" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "Arayüzü Kaldır" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " @@ -1330,23 +1326,23 @@ msgstr "" "Bağlantı noktası yönlendirme ve maskeleme, MAC kaynak bağlamaları için " "çalışmaz." -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "Kaynak Ekle" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "Kaynağı Düzenle" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "Kaynağı Kaldır" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "Bölgeler" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1354,23 +1350,23 @@ msgstr "" "Bir firewalld hizmeti; bağlantı noktaları, protokoller, modüller ve hedef " "adreslerin bir birleşimidir." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Hizmet Ekle" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Hizmeti Düzenle" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Hizmeti Kaldır" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Hizmet Öntanımlılarını Yükle" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." @@ -1378,15 +1374,15 @@ msgstr "" "Tüm ana makineler veya ağlar için erişilebilir olması gereken ilave bağlantı " "noktaları veya bağlantı noktası aralıkları ekleyin." -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Girişi Düzenle" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "Girişi Kaldır" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." @@ -1394,19 +1390,19 @@ msgstr "" "Tüm ana makineler veya ağlar için erişilebilir olması gereken ilave kaynak " "bağlantı noktaları veya bağlantı noktası aralıkları ekleyin." -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "Kaynak Bağlantı Noktası" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "Bazı hizmetler için netfilter yardımcı modülleri gereklidir." -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Modüller" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1416,15 +1412,15 @@ msgstr "" "türü ile sınırlı olacaktır. Eğer ikisi de boş ise , herhangi bir sınırlama " "yoktur." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1432,7 +1428,7 @@ msgstr "" "Hizmetler sadece kalıcı yapılandırma görünümünde değiştirilebilir. " "Hizmetlerin çalışma zamanı yapılandırması sabittir." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " @@ -1441,27 +1437,27 @@ msgstr "" "örneğin IP adreslerini, bağlantı noktası numaralarını veya MAC adreslerini " "depolayabilir. " -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "IPSet" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "IPSet Ekle" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "IPSet Düzenle" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "IPSet Kaldır" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "IPSet Öntanımlılarını Yükle" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1473,7 +1469,7 @@ msgstr "" "görebilirsiniz. Doğrudan ipset komutuyla eklenen girdiler burada " "listelenmeyecektir." -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." @@ -1481,22 +1477,22 @@ msgstr "" "Bu IPSet zaman aşımı seçeneğini kullanmaktadır, bu nedenle burada hiçbir " "girdi görünmez. Girdilere ipset komutu ile doğrudan bakılmalıdır." -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "Ekle" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "Girdiler" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" "IPSet'ler sadece kalıcı yapılandırma görünümünde oluşturulabilir veya " "silinebilir." -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1504,29 +1500,29 @@ msgstr "" "Bir firewalld icmptype, firewalld için bir İnternet Denetim Mesajı Protokolü " "(Internet Control Message Protocol - ICMP) türü için bilgi sağlar." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "ICMP Türü Ekle" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "ICMP Türünü Düzenle" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "ICMP Türünü Kaldır" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "ICMP Türü Öntanımlılarını Yükle" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "" "Bu ICMP Türünün IPv4 ve/veya IPv6 için kullanılabilir olup olmadığını " "belirtin." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1534,7 +1530,7 @@ msgstr "" "ICMP Türleri sadece kalıcı yapılandırma görünümünde değiştirilebilir. ICMP " "Türlerinin çalışma zamanı yapılandırması sabittir." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1547,13 +1543,13 @@ msgstr "" "kullanmakta ve bu nedenle yardımcı olmadan güvenlik duvarı tarafından " "engellenmektedir." -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" "Yardımcı tarafından izlenen bağlantı noktalarını veya bağlantı noktası " "aralıklarını tanımlayın." -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1566,7 +1562,7 @@ msgstr "" "Doğrudan yapılandırma, diğer firewalld özelliklerini kullanmanın mümkün " "olmadığı durumlarda sadece son çare olarak kullanılmalıdır." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1576,33 +1572,45 @@ msgstr "" "iptables için, ipv6 ile ip6tables için ve eb ile ethernet köprüleri " "(ebtables) için olacaktır." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "Kurallarla kullanım için ilave zincirler." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "Zincir Ekle" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "Zincir Düzenle" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "Zincir Kaldır" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "Zincirler" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" "Öncelikli bir tablodaki bir zincire args argümanları ile bir kural ekleyin." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "Kural Ekle" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "Kural Düzenle" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "Kural Kaldır" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1618,23 +1626,11 @@ msgstr "" "ardına ekleneceğinden emin olmak istiyorsanız, birincisi için düşük öncelik " "ve diğeri için daha yüksek öncelik kullanın." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "Kural Ekle" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "Kural Düzenle" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "Kural Kaldır" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "Kurallar" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1644,317 +1640,210 @@ msgstr "" "yerleştirilmez. Tüm iptables, ip6tables ve ebtables seçenekleri " "kullanılabilir." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" -"Güvenlik duvarına zarar vermemek için lütfen geçiş kurallarına dikkat edin." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "Geçiş Ekle" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "Geçiş Düzenle" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "Geçiş Kaldır" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "Geçiş" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"Kilitleme özelliği, firewalld için kullanıcı ve uygulama politikalarının " -"hafif bir biçimidir. Güvenlik duvarındaki değişiklikleri sınırlar. Kilitleme " -"beyaz listesi komutlar, bağlamlar, kullanıcılar ve kullanıcı kimlikleri " -"içerebilir." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" -"Bağlam, çalışan bir uygulamanın veya hizmetin güvenlik (SELinux) bağlamıdır. " -"Çalışan bir uygulamanın bağlamını almak için ps -e --context " -"komutunu kullanın." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "İçerik Ekle" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "İçerik Düzenle" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "İçerik Kaldır" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "İçerikler" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Eğer beyaz listedeki bir komut girişi, yıldız işareti '*' ile bitiyorsa, " -"sonrasında komutla başlayan tüm komut satırları eşleşecektir. Eğer '*' yok " -"ise, bağımsız değişkenler dahil komut tamamen eşleşmek zorundadır." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Komut Satırı Ekle" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Komut Satırı Düzenle" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Komut Satırı Kaldır" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Komut satırları" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Kullanıcı adları." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Kullanıcı Adı Ekle" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Kullanıcı Adı Düzenle" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Kullanıcı Adı Kaldır" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Kullanıcı adları" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Kullanıcı kimlikleri." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Kullanıcı Kimliği Ekle" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Kullanıcı Kimliği Düzenle" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Kullanıcı Kimliği Kaldır" +"Güvenlik duvarına zarar vermemek için lütfen geçiş kurallarına dikkat edin." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Kullanıcı Kimlikleri" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Geçiş" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Sistemin geçerli öntanımlı bölgesi." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Reddedilen Log Kaydı:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Panik Modu:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Otomatik Yardımcılar:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Kilitleme:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Öntanımlı Bölge:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Lütfen bir arayüz adı girin:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Temel IPSet Ayarları" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Lütfen temel ipset ayarlarını yapılandırın:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Tür:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Zaman aşımı:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Hash boyutu:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Azami eleman:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Saniye cinsinden zaman aşımı değeri" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Başlangıç hash boyutu, öntanımlı olarak 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Azami eleman sayısı, öntanımlı olarak 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Lütfen bir ipset seçin:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Lütfen bir ip kümesi girişi girin:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Reddedilen Log Kaydı" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Lütfen reddedilen log kaydı değerini seçin:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "İşaret" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Lütfen isteğe bağlı bir maske ile bir işaret girin." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" "İşaret ve maske alanlarının her ikisi de 32 bit genişliğinde işaretsiz " "sayılardır." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "İşaret:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Maske:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "Lütfen bir netfilter conntrack yardımcısı seçin:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Seç -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Diğer Modüller:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Bağlantı Noktası ve Protokol" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Lütfen bir bağlantı noktası ve protokol girin." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Doğrudan Kural" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "Lütfen ipv ve tablo, zincir önceliği seçin ve argümanları girin." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Öncelik:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Lütfen bir protokol girin." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Diğer Protokol:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Geliştirilmiş Kural" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Lütfen bir zengin kural girin." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Ana makine veya ağ için, izin veya ret listesine almak elemanı devreden " "çıkarır." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Kaynak:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Hedef:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Günlük:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Denetim:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 ve ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "ters" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1962,78 +1851,191 @@ msgstr "" "Bunu etkinleştirmek için, Eylem 'reject' ve Aile 'ipv4' veya 'ipv6' " "olmalıdır (her ikisi birden değil)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "Tür:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "Limit:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Ön ek:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Seviye:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Eleman:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Eylem:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Temel Hizmet Ayarları" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Lütfen temel hizmet ayarlarını yapılandırın:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Lütfen bir hizmet seçin." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Lütfen bir kaynak girin." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Kullanıcı kimliği" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Lütfen kullanıcı kimliğini girin." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Lütfen kullanıcı adını gir." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "etiket" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Temel Bölge Ayarları" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Lütfen temel bölge ayarlarını yapılandırın:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Öntanımlı Hedef" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Hedef:" + +#~ msgid "Context" +#~ msgstr "İçerik" + +#~ msgid "Command line" +#~ msgstr "Komut satırı" + +#~ msgid "User name" +#~ msgstr "Kullanıcı adı" + +#~ msgid "User id" +#~ msgstr "Kullanıcı kimliği" + +#~ msgid "Please enter the command line." +#~ msgstr "Lütfen komut satırını girin." + +#~ msgid "Please enter the context." +#~ msgstr "Lütfen içeriği girin." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "Kilitleme, sadece kilitleme beyaz listesindeki uygulamaların " +#~ "değiştirebilmesi için güvenlik duvarı yapılandırmasını kilitler." + +#~ msgid "Lockdown" +#~ msgstr "Kilitleme" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "Kilitleme Beyaz Listesi" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Kilitleme özelliği, firewalld için kullanıcı ve uygulama politikalarının " +#~ "hafif bir biçimidir. Güvenlik duvarındaki değişiklikleri sınırlar. " +#~ "Kilitleme beyaz listesi komutlar, bağlamlar, kullanıcılar ve kullanıcı " +#~ "kimlikleri içerebilir." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Bağlam, çalışan bir uygulamanın veya hizmetin güvenlik (SELinux) " +#~ "bağlamıdır. Çalışan bir uygulamanın bağlamını almak için ps -e --" +#~ "context komutunu kullanın." + +#~ msgid "Add Context" +#~ msgstr "İçerik Ekle" + +#~ msgid "Edit Context" +#~ msgstr "İçerik Düzenle" + +#~ msgid "Remove Context" +#~ msgstr "İçerik Kaldır" + +#~ msgid "Contexts" +#~ msgstr "İçerikler" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Eğer beyaz listedeki bir komut girişi, yıldız işareti '*' ile bitiyorsa, " +#~ "sonrasında komutla başlayan tüm komut satırları eşleşecektir. Eğer '*' " +#~ "yok ise, bağımsız değişkenler dahil komut tamamen eşleşmek zorundadır." + +#~ msgid "Add Command Line" +#~ msgstr "Komut Satırı Ekle" + +#~ msgid "Edit Command Line" +#~ msgstr "Komut Satırı Düzenle" + +#~ msgid "Remove Command Line" +#~ msgstr "Komut Satırı Kaldır" + +#~ msgid "Command lines" +#~ msgstr "Komut satırları" + +#~ msgid "User names." +#~ msgstr "Kullanıcı adları." + +#~ msgid "Add User Name" +#~ msgstr "Kullanıcı Adı Ekle" + +#~ msgid "Edit User Name" +#~ msgstr "Kullanıcı Adı Düzenle" + +#~ msgid "Remove User Name" +#~ msgstr "Kullanıcı Adı Kaldır" + +#~ msgid "User names" +#~ msgstr "Kullanıcı adları" + +#~ msgid "User ids." +#~ msgstr "Kullanıcı kimlikleri." + +#~ msgid "Add User Id" +#~ msgstr "Kullanıcı Kimliği Ekle" + +#~ msgid "Edit User Id" +#~ msgstr "Kullanıcı Kimliği Düzenle" + +#~ msgid "Remove User Id" +#~ msgstr "Kullanıcı Kimliği Kaldır" + +#~ msgid "User Ids" +#~ msgstr "Kullanıcı Kimlikleri" + +#~ msgid "Lockdown:" +#~ msgstr "Kilitleme:" + +#~ msgid "User ID" +#~ msgstr "Kullanıcı kimliği" + +#~ msgid "Please enter the user id." +#~ msgstr "Lütfen kullanıcı kimliğini girin." + +#~ msgid "Please enter the user name." +#~ msgstr "Lütfen kullanıcı adını gir." diff --git a/po/uk.po b/po/uk.po index 9a64cb0..5072dbc 100644 --- a/po/uk.po +++ b/po/uk.po @@ -13,7 +13,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2020-07-01 19:40+0000\n" "Last-Translator: Yuri Chornoivan \n" "Language-Team: Ukrainian =2 && " -"n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" +"Plural-Forms: nplurals=3; plural=n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" +"%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" "X-Generator: Weblate 4.1.1\n" #: ../config/firewall-applet.desktop.in.h:1 ../src/firewall-applet.in:450 msgid "Firewall Applet" msgstr "Аплет брандмауера" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +#, fuzzy +msgid "Allows to inspect and set:" +msgstr "Будь ласка, виберіть ipset:" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "Налаштовування мережного екрану" + +#: ../config/firewall-config.appdata.xml.in.h:4 +#, fuzzy +msgid "Predefined zones (levels of trust for network connections)" +msgstr "Типова зона, що використовується для з’єднання «%s»" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "Мережний екран" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "Налаштовування мережного екрану" @@ -45,24 +81,24 @@ msgstr "" "firewall;network;security;iptables;netfilter;брандмауер;файрвол;екран;мережа;" "безпека;захист;айпітейблс;нетфільтр;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "Виберіть зону для інтерфейсу «%s»" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "Типова зона" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "Виберіть зону для з’єднання «%s»" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "Не вдалося встановити зону {zone} для зʼєднання {connection_name}" @@ -113,94 +149,94 @@ msgstr "Автори" msgid "License" msgstr "Умови ліцензування" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "Відкрити" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "Увімкнути сповіщення" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "Змінити параметри брандмауера…" -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "Змінити зони з’єднань…" -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "Налаштувати відкриту і закриту зони…" -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "Заблокувати весь обмін даними мережею" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "Відомості" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "З’єднання" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "<інтерфейс>" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "Джерела" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "Спроба уповноваження зазнала невдачі." -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "Неправильний аргумент %s" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "Назва вже існує" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (Зона: {zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "{entry} (Типова зона: {default_zone})" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "Не вдалося отримати список з’єднань від NetworkManager" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "Немає доступних джерел імпортування з NetworkManager" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "Немає зв’язку з фоновою службою брандмауера" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "Весь обмін даними мережею заблоковано." -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "Типова зона: «%s»" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" @@ -208,55 +244,55 @@ msgstr "" "Типова зона «{default_zone}» активна для з’єднання «{connection}» на " "інтерфейсі «{interface}»" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "" "Зона «{zone}» використовується для з’єднання «{connection}» на інтерфейсі " "«{interface}»" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "На інтерфейсі «{interface}» працює зона «{zone}»" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "Зону «{zone}» задіяно для джерела {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "Немає активних зон." -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "Встановлено зв’язок з FirewallD." -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "Зв’язок з FirewallD втрачено." -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD перезавантажено." -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "Типову зону змінено на «%s»." -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "Обмін даними мережею повністю розблоковано." -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "увімкнено" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "вимкнено" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" @@ -264,7 +300,7 @@ msgstr "" "Типову зону «{default_zone}» {activated_deactivated} для з’єднання " "«{connection}» на інтерфейсі «{interface}»" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -272,20 +308,20 @@ msgstr "" "Зону «{zone}» {activated_deactivated} для з’єднання «{connection}» на " "інтерфейсі «{interface}»" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "Зону «{zone}» {activated_deactivated} для інтерфейсу «{interface}»" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "Для інтерфейсу «%2$s» задіяно зону «%1$s»" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "Зону «{zone}» {activated_deactivated} для джерела «{source}»" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "Зону «%s» задіяно для джерела «%s»" @@ -332,328 +368,312 @@ msgstr "вимкнено" msgid "Failed to load icons." msgstr "Не вдалося завантажити піктограми." -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "Контекст" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "Командний рядок" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "Ім’я користувача" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "Ід. користувача" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "Таблиця" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "Ланцюжок" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "Пріоритетність" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "Аргументи" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "Тимчасові" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "Остаточні" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "Служба" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "Порт" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "Протокол" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "На порт" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "На адресу" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "Прив’язки" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "Запис" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Тип ICMP" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "Сімейство" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "Дія" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "Елемент" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "Дж." -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "Призн." -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "журнал" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "Аудит" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "Інтерфейс" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "Коментар" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "Джерело" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "Попередження" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "Помилка" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "приймання" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "відмова" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "відкидання" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "позначка" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "обмеження" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "служба" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "порт" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "протокол" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "підробка" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-блокування" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "icmp-тип" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "переспрямування портів" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "порт джерела" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "рівень" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "так" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "Зона" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "Типова зона: %s" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "Зона: %s" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "Зона «%s»: немає доступу до служби «%s»." -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "Вилучити зону" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "Ігнорувати" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "Зона «%s»: тип ICMP «%s» недоступний." -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "Вбудована зона, підтримки перейменування не передбачено." -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "секунда" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "хвилина" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "година" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "день" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "надзвичайний стан" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "нагадування" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "критичний" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "помилка" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "попередження" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "зауваження" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "інформація" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "діагностика" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -663,31 +683,31 @@ msgstr "" "замасковано.\n" "Хочете увімкнути маскування цієї зони?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "Вбудована служба, підтримки перейменування не передбачено." -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "Будь ласка, введіть адресу IPv4 у форматі «адреса[/маска]»." -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "Маску можна вказати у форматі маски мережі або числа." -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "Будь ласка, введіть адресу IPv6 у форматі «адреса[/маска]»." -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "Маску слід вказати у форматі числа." -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "Будь ласка, введіть адресу IPv4 або IPv6 у форматі «адреса[/маска]»." -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." @@ -695,52 +715,52 @@ msgstr "" "Для IPv4 маску можна вказати у форматі маски мережі або числа.\n" "Для IPv6 маску слід вказати у форматі числа." -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "Вбудований ipset, підтримки перейменування не передбачено." -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "Будь ласка, виберіть файл" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "текстові файли" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "усі файли" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "Усе" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "" "Вбудований допоміжний засіб, підтримки перейменовування не передбачено." -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "Вбудований ICMP, підтримки перейменування не передбачено." -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "Не вдалося прочитати файл «%s»: %s" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "Виберіть зону для джерела %s" @@ -759,92 +779,84 @@ msgid "Please select the automatic helpers value:" msgstr "Будь ласка, вибреіть значення для автоматичних допоміжних засобів:" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "Будь ласка, вкажіть рядок команди." - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "Будь ласка, вкажіть контекст." - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "Будь ласка, виберіть типову зону системи з наведеного нижче списку." -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "Безпосередній ланцюжок" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "" "Будь ласка виберіть версію протоколу IP та таблицю та введіть назву ланцюжка." -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "Ланцюжок:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "без захисту" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "з захистом" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "Таблиця:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "Безпосереднє правило трансляції" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "Будь ласка виберіть версію протоколу IP та введіть аргументи." -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "Аргументи:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "Перенаправлення портів" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "Виберіть параметри джерела та цілі." -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "Порт / діапазон портів:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "Адреса IP:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "Протокол:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "Призначення" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." @@ -852,109 +864,109 @@ msgstr "" "Якщо ви увімкнете перенаправлення, треба вказати порт. Цей порт має " "відрізнятися від порту джерела." -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "Локальне перенаправлення" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "Направити іншому порту" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "Параметри базового допоміжного засобу" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "Будь ласка, налаштуйте параметри базового допоміжного засобу:" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "" "Пункти, позначені жирним, слід визначити обов’язково. Визначення інших " "пунктів є необов’язковим." -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "Назва:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "Версія:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "Скорочення:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "Опис:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "Сімейство:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "Модуль:" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "Допоміжний засіб" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "Будь ласка, виберіть допоміжний засіб:" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "Параметри основного типу ICMP" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "Будь ласка, налаштуйте параметри основного типу ICMP:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "Тип ICMP" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "Будь ласка, виберіть тип ICMP" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "Додати запис" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "Додати записи з файла" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "Вилучити позначений запис" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "Вилучити усі записи" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "Вилучити записи з файла" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "_Файл" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "_Параметри" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "Перезавантажити Firewalld" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -965,120 +977,104 @@ msgstr "" "до перезавантаження правил, буде втрачено, якщо їх не було у збережених " "налаштуваннях." -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "Змінити зону, до якої належить з’єднання з мережею." -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "Змінити типову зону" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "Змінити типову зону для з’єднань або інтерфейсів." -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "Змінити значення заборони журналювання" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "Змінити значення LogDenied." -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "Налаштовування автоматичного призначення допоміжних засобів" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "Налаштовування параметра автоматичного призначення допоміжних засобів." -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "" "Режим супербезпеки означає, що усіх вхідні та вихідні пакети відкидатимуться." -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "Режим супербезпеки" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"У режимі блокування буде заблоковано налаштування брандмауера так, щоб лише " -"програми з «білого» списку блокування могли вносити до них зміни." - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "Блокування" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "Зробити тимчасові налаштування постійними" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "Тимчасові на постійні" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "П_ерегляд" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "IPSet" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "Типи ICMP" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "Допоміжні засоби" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "Безпосереднє налаштовування" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "«Білий» список блокування" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "Активні прив’язки" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "_Довідка" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "Змінити зону" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "Змінити зону прив’язки" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "" "Приховати активні динамічні прив’язки з’єднань, інтерфейсів або джерел до зон" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "" "Показати активні динамічні прив’язки з’єднань, інтерфейсів або джерел до зон" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "Налаштування:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1088,7 +1084,7 @@ msgstr "" "налаштування. Сталі налаштування буде використано після перезавантаження " "служби або системи." -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1102,23 +1098,23 @@ msgstr "" "пакетів, фільтрів icmp та розширених правил. Зону можна пов’язати з " "інтерфейсами або адресами джерел." -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "Додати зону" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "Змінити зону" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "Вилучити зону" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "Завантажити типові параметри зони" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1128,11 +1124,11 @@ msgstr "" "доступними з усіх вузлів чи мереж, які мають доступ до комп’ютера за " "допомогою з’єднань, інтерфейсів та прив’язок джерел до цієї зони." -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "Служби" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." @@ -1140,45 +1136,45 @@ msgstr "" "Додати додаткові порти або діапазон портів, які мають бути доступні для всіх " "вузлів чи мереж, з якими може з’єднуватися комп’ютер." -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "На порт" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "Змінити зону" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "Вилучити зону" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "Порти" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "" "Додати протоколи, доступ до яких має бути забезпечено для усіх вузлів або " "мереж." -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "Додати протокол" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "Змінити протокол" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "Вилучити протокол" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "Протоколи" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." @@ -1187,11 +1183,11 @@ msgstr "" "забезпечено для усіх вузлів або мереж, які встановлюють з’єднання з " "комп’ютером." -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "Порти походження" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1201,11 +1197,11 @@ msgstr "" "локальну мережу з Інтернет. Локальна мережа не буде видимою, у Інтернет буде " "видимий лише один вузол. Маскарад застосовується лише до IPv4." -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "Замаскувати зону" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." @@ -1213,11 +1209,11 @@ msgstr "" "Якщо ви увімкнете маскарад, буде увімкнено переспрямовування IP для ваших " "мереж IPv4." -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "Маскарад" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1229,19 +1225,19 @@ msgstr "" "іншій системі має сенс при маскараді інтерфейсу. Перенаправлення портів " "використовується лише для IPv4." -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "Додати порт переспрямовування" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "Змінити порт переспрямовування" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "Вилучити порт переспрямовування" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1251,7 +1247,7 @@ msgstr "" "для обміну повідомленнями про помилки між комп'ютерами у мережі, але також " "можна надсилати інформаційні повідомлення, такі як запити та відповіді ping." -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1259,7 +1255,7 @@ msgstr "" "Позначте у списку типи ICMP, яким слід відмовити у проходженні через " "мережний екран. Типово обмежень немає." -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." @@ -1268,35 +1264,35 @@ msgstr "" "вважатимуться прийнятними, а інші відхилятимуться. У зоні із ціллю DROP, " "такі запити просто відкидатимуться." -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "Інвертувати фільтрування" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "Фільтр ICMP" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "Тут ви можете встановити розширені правила мови для зони." -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "Додати розширене правило" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "Змінити розширене правило" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "Вилучити розширене правило" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "Розширені правила" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1305,19 +1301,19 @@ msgstr "" "використано вказаний інтерфейс, зону буде встановлено відповідно до зони, " "вказаної у записі з’єднання." -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "Додати інтерфейс" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "Змінити інтерфейс" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "Вилучити інтерфейс" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " @@ -1327,23 +1323,23 @@ msgstr "" "також виконати прив’язування до MAC-адреси джерела, але із обмеженнями. Для " "прив’язок MAC-джерел не працюватимуть переспрямування портів та маскарад." -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "Додати джерело" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "Змінити джерело" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "Вилучити джерело" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "Зони" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." @@ -1351,23 +1347,23 @@ msgstr "" "У записі служби firewalld поєднуються дані щодо портів, протоколів, модулів " "та адрес призначення." -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "Додати службу" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "Змінити службу" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "Вилучити службу" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "Завантажити типові параметри служби" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." @@ -1375,15 +1371,15 @@ msgstr "" "Додати додаткові порти або діапазон портів, які мають бути доступні для всіх " "вузлів чи мереж." -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "Змінити запис" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "ВИдалити запис" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." @@ -1391,19 +1387,19 @@ msgstr "" "Додати додаткові порти або діапазони портів джерела, доступ до яких має бути " "забезпечено для усіх вузлів або мереж." -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "Порт джерела" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "Модулі допоміжних засобів фільтрування мережі потребують певних служб." -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "Модулі" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1413,15 +1409,15 @@ msgstr "" "адреси і типу призначення. Якщо не буде вказано ні адреси, ні типу, запис " "служби діятиме для всіх адрес і типів." -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." @@ -1429,7 +1425,7 @@ msgstr "" "Записи служб можна змінювати лише у остаточних налаштуваннях. Динамічні " "налаштування служб змінювати не можна." -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " @@ -1438,27 +1434,27 @@ msgstr "" "ньому можуть зберігатися, наприклад, IP-адреси, номери портів або MAC-" "адреси. " -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "IPSet" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "Додати IPSet" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "Змінити IPSet" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "Вилучити IPSet" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "Завантажити типові параметри IPSet" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1470,7 +1466,7 @@ msgstr "" "Записи, які було додано безпосередньо командою ipset, у цьому списку " "показано не буде." -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." @@ -1479,22 +1475,22 @@ msgstr "" "показуються. Про формування списку записів має безпосередньо подбати команда " "ipset." -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "Додати" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "Записи" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "" "IPSet можна створювати або вилучати лише за допомогою панелі постійних " "налаштувань." -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1502,27 +1498,27 @@ msgstr "" "Тип ICMP firewalld містить дані щодо типу Internet Control Message Protocol " "(ICMP) для firewalld." -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "Додати тип ICMP" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "Змінити тип ICMP" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "Вилучити тип ICMP" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "Завантажити типові параметри типу ICMP" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "Вкажіть, чи цей тип ICMP доступний для IPv4 і/або IPv6." -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." @@ -1530,7 +1526,7 @@ msgstr "" "Запис типів ICMP можна змінювати лише у остаточних налаштуваннях. Динамічні " "налаштування типів ICMP змінювати не можна." -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1544,12 +1540,12 @@ msgstr "" "допоміжного засобу передавання даних такими портами блокуватиметься " "брандмауером." -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "" "Визначення портів або діапазонів портів, за якими стежитиме допоміжний засіб." -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1563,7 +1559,7 @@ msgstr "" "налаштовуванням слід користуватися лише, якщо бажаного не можна досягти за " "допомогою інших можливостей firewalld." -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1573,33 +1569,45 @@ msgstr "" "ipv6 або eb. Аргументу ipv4 відповідає iptables, аргументу ipv6 — ip6tables, " "а аргументу eb — містки ethernet (ebtables)." -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "Додаткові ланцюжки, які слід використати з правилами." -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "Додати ланцюжок" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "Змінити ланцюжок" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "Вилучити ланцюжок" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "Ланцюжки" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "" "Додати правило з аргументами до ланцюжка у таблицю з рівнем пріоритетності." -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "Додати правило" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "Змінити правило" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "Вилучити правило" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1616,23 +1624,11 @@ msgstr "" "послідовність правил, скористайтеся меншим значенням пріоритетності для " "першого з правил і більшим для другого." -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "Додати правило" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "Змінити правило" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "Вилучити правило" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "Правила" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1642,322 +1638,214 @@ msgstr "" "розташовування у спеціальних ланцюжках. Можна використовувати усі параметри " "iptables, ip6tables та ebtables." -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "" -"Будь ласка, будьте обережні з правилами трансляції, щоб не зашкодити роботі " -"брандмауера." - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "Додати трансляцію" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "Змінити трансляцію" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "Вилучити трансляцію" -#: ../src/firewall-config.glade.h:193 -msgid "Passthrough" -msgstr "Трансляція" - -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"Можливість з блокування є спрощеною версією правил firewalld для " -"користувачів і програм. Вона обмежує зміни, які можна вносити до параметрів " -"роботи брандмауера. «Білий» список блокування може містити команди, " -"контексти, імена та ідентифікатори користувачів." - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" -"Контекст — контекст безпеки (SELinux) запущеної програми або служби. Для " -"отримання даних щодо контексту запущеної програми скористайтеся командою " -"ps -e --context." - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "Додати контекст" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "Змінити контекст" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "Вилучити контекст" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "Контексти" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." msgstr "" -"Якщо запис команди у «білому» списку завершується зірочкою, «*», його буде " -"використано для обробки усіх рядків команд, що починаються відповідним " -"чином. Якщо у записі немає «*», обробка виконуватиметься лише для вказано " -"разом з аргументами команди." - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "Додати рядок команди" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "Змінити рядок команди" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "Вилучити рядок команди" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "Рядки команд" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "Імена користувачів." - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "Додати ім’я користувача" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "Змінити ім’я користувача" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "Вилучити ім’я користувача" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "Імена користувачів" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "Ід. користувачів." - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "Додати ідентифікатор користувача" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "Змінити ідентифікатор користувача" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "Вилучити ідентифікатор користувача" +"Будь ласка, будьте обережні з правилами трансляції, щоб не зашкодити роботі " +"брандмауера." -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "Ід. користувачів" +#: ../src/firewall-config.glade.h:186 +msgid "Passthrough" +msgstr "Трансляція" -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "Поточна типова зона системи." -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "Заборона журналювання:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "Режим супербезпеки:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "Автоматичні допоміжні засоби:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "Блокування:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "Типова зона:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "Будь ласка, вкажіть назву інтерфейсу:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "Параметри основного IPSet" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "Будь ласка, вкажіть параметри основного ipset:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "Тип:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "Час очікування:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Розмір хешу:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Макс. ел.:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "Час очікування у секундах" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "Початковий розмір хешу, типово 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "Максимальна кількість елементів, типово 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "Будь ласка, виберіть ipset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "Будь ласка, вкажіть запис ipset:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "Журналювання заборонено" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "Будь ласка, виберіть значення заборони журналювання:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "Позначка" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "Будь ласка, вкажіть позначку із додатковою маскою." -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "" "Значення полів позначки і маски мають бути 32-бітовими широкими цілими " "числами без знаку." -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "Позначка:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "Маска:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "" "Будь ласка, виберіть допоміжний засіб стеження за з’єднанням фільтра мережі:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- Вибір -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "Інший модуль:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "Порт та протокол" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "Будь ласка, вкажіть порт і протокол." -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "Безпосереднє правило" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "" "Будь ласка виберіть версію протоколу IP та таблицю, пріоритетність ланцюжка " "та введіть аргументи." -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "Пріоритетність:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "Будь ласка, вкажіть протокол." -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "Інший протокол:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "Розширене правило" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "Будь ласка, вкажіть розширене правило." -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "" "Для вузла або мережі додавання до списку дозволу або заборони виключає " "елемент з правила." -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "Джерело:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "Призначення:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "Журнал:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "Аудит:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 та ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "інвертування" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1965,78 +1853,192 @@ msgstr "" "Щоб можна було скористатися цим, значення «Дія» має бути «відмова», а " "«Сімейством» має бути «ipv4» або «ipv6» (не обидва)." -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "з типом:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "З обмеженням:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "Префікс:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "Рівень:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "Елемент:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "Дія:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "Параметри основної служби" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "Будь ласка, налаштуйте параметри основної служби:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "Будь ласка, виберіть службу." -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "Будь ласка, вкажіть джерело." -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "Ід. користувача" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "Будь ласка, вкажіть ідентифікатор користувача." - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "Будь ласка, вкажіть ім’я користувача." - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "мітка" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "Параметри основної зони" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "Будь ласка, налаштуйте параметри основної зони:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "Типове призначення" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "Призначення:" + +#~ msgid "Context" +#~ msgstr "Контекст" + +#~ msgid "Command line" +#~ msgstr "Командний рядок" + +#~ msgid "User name" +#~ msgstr "Ім’я користувача" + +#~ msgid "User id" +#~ msgstr "Ід. користувача" + +#~ msgid "Please enter the command line." +#~ msgstr "Будь ласка, вкажіть рядок команди." + +#~ msgid "Please enter the context." +#~ msgstr "Будь ласка, вкажіть контекст." + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "У режимі блокування буде заблоковано налаштування брандмауера так, щоб " +#~ "лише програми з «білого» списку блокування могли вносити до них зміни." + +#~ msgid "Lockdown" +#~ msgstr "Блокування" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "«Білий» список блокування" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "Можливість з блокування є спрощеною версією правил firewalld для " +#~ "користувачів і програм. Вона обмежує зміни, які можна вносити до " +#~ "параметрів роботи брандмауера. «Білий» список блокування може містити " +#~ "команди, контексти, імена та ідентифікатори користувачів." + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "Контекст — контекст безпеки (SELinux) запущеної програми або служби. Для " +#~ "отримання даних щодо контексту запущеної програми скористайтеся командою " +#~ "ps -e --context." + +#~ msgid "Add Context" +#~ msgstr "Додати контекст" + +#~ msgid "Edit Context" +#~ msgstr "Змінити контекст" + +#~ msgid "Remove Context" +#~ msgstr "Вилучити контекст" + +#~ msgid "Contexts" +#~ msgstr "Контексти" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "Якщо запис команди у «білому» списку завершується зірочкою, «*», його " +#~ "буде використано для обробки усіх рядків команд, що починаються " +#~ "відповідним чином. Якщо у записі немає «*», обробка виконуватиметься лише " +#~ "для вказано разом з аргументами команди." + +#~ msgid "Add Command Line" +#~ msgstr "Додати рядок команди" + +#~ msgid "Edit Command Line" +#~ msgstr "Змінити рядок команди" + +#~ msgid "Remove Command Line" +#~ msgstr "Вилучити рядок команди" + +#~ msgid "Command lines" +#~ msgstr "Рядки команд" + +#~ msgid "User names." +#~ msgstr "Імена користувачів." + +#~ msgid "Add User Name" +#~ msgstr "Додати ім’я користувача" + +#~ msgid "Edit User Name" +#~ msgstr "Змінити ім’я користувача" + +#~ msgid "Remove User Name" +#~ msgstr "Вилучити ім’я користувача" + +#~ msgid "User names" +#~ msgstr "Імена користувачів" + +#~ msgid "User ids." +#~ msgstr "Ід. користувачів." + +#~ msgid "Add User Id" +#~ msgstr "Додати ідентифікатор користувача" + +#~ msgid "Edit User Id" +#~ msgstr "Змінити ідентифікатор користувача" + +#~ msgid "Remove User Id" +#~ msgstr "Вилучити ідентифікатор користувача" + +#~ msgid "User Ids" +#~ msgstr "Ід. користувачів" + +#~ msgid "Lockdown:" +#~ msgstr "Блокування:" + +#~ msgid "User ID" +#~ msgstr "Ід. користувача" + +#~ msgid "Please enter the user id." +#~ msgstr "Будь ласка, вкажіть ідентифікатор користувача." + +#~ msgid "Please enter the user name." +#~ msgstr "Будь ласка, вкажіть ім’я користувача." diff --git a/po/zh_CN.po b/po/zh_CN.po index 3a9cc44..7418487 100644 --- a/po/zh_CN.po +++ b/po/zh_CN.po @@ -26,7 +26,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2021-03-27 23:01+0000\n" "Last-Translator: Tianhao Chai \n" "Language-Team: Chinese (Simplified) ps -e --" -"context." -msgstr "" -"上下文是正在运行的应用程序或服务的安全(SELinux)上下文。请使用 ps -e --" -"context 获取正在运行的应用程序的上下文。" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "添加上下文" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "编辑上下文" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "移除上下文" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "上下文" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"如果在白名单输入的命令以 '*' 星号结尾,则匹配所有以其开头的命令。如果不含 " -"'*' 则命令和其中的参数必须绝对匹配。" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "添加命令行" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "编辑命令行" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "移除命令行" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "命令行" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "用户名。" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "添加用户名" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "编辑用户名" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "移除用户名" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "用户名" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "用户 ID。" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "添加用户 ID" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "编辑用户 ID" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "移除用户 ID" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "用户 ID" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "当前系统的默认区域。" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "LogDenied:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "应急模式:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "自动帮助程序:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "锁定:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "默认区域:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "请输入网卡名称:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "基础 IPSet 设置" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "请配置基础 ipset 设置:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "类型:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "超时:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "哈希大小:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "最大元素数:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "以秒为单位的超时值" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "起始哈希大小,默认为 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "最大元素数,默认为 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "请选择 ipset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "请输入 ipset 条目:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "已拒绝的日志" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "请选择 Log Denied 值:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "掩码" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "请输入具有可选掩码的掩码。" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "掩码和掩码字段都是 32 位的无符号数字。" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "标记:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "掩码:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "请选择网络过滤 conntrack 帮助程序:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- 选择 -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "其他模块:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "端口和协议" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "请输入端口和协议。" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "直接规则" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "请选择 IPV 及表、链优先级并输入参数。" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "优先级:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "请输入协议。" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "其他协议:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "富规则" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "请输入富规则(rich rule)。" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 msgid "For host or network allow or denylisting deactivate the element." msgstr "配置适用于主机或网络的允许或阻止规则时,请禁用”元素“选项。" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "源:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "目标:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "日志:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "审计:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "IPv4 及 IPv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "反转" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." msgstr "" "若启用该项,操作需为'reject'并且家族选择'ipv4'或'ipv6'(但不能同时选择)。" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "及类型:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "包含限制:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "前缀:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "等级:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "元素:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "操作:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "基本服务设定" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "请配置基本服务设定:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "请选择一个服务。" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "请输入来源。" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "用户 ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "请输入用户 ID。" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "请输入用户名。" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "标签" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "基本区域设定" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "请配置基本区域设定:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "默认目标" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "目标:" + +#~ msgid "Context" +#~ msgstr "上下文" + +#~ msgid "Command line" +#~ msgstr "命令行" + +#~ msgid "User name" +#~ msgstr "用户名" + +#~ msgid "User id" +#~ msgstr "用户 ID" + +#~ msgid "Please enter the command line." +#~ msgstr "请输入命令行。" + +#~ msgid "Please enter the context." +#~ msgstr "请输入上下文。" + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "锁定可以对防火墙配置进行加锁,只允许锁定白名单上的应用程序进行改动。" + +#~ msgid "Lockdown" +#~ msgstr "锁定" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "锁定白名单" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "锁定功能是适用于 firewalld 的轻量级用户和应用程序规范。它保证变更仅限于防" +#~ "火墙。锁定白名单可以包含命令、上下文、用户和用户 ID。" + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "上下文是正在运行的应用程序或服务的安全(SELinux)上下文。请使用 ps -e " +#~ "--context 获取正在运行的应用程序的上下文。" + +#~ msgid "Add Context" +#~ msgstr "添加上下文" + +#~ msgid "Edit Context" +#~ msgstr "编辑上下文" + +#~ msgid "Remove Context" +#~ msgstr "移除上下文" + +#~ msgid "Contexts" +#~ msgstr "上下文" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "如果在白名单输入的命令以 '*' 星号结尾,则匹配所有以其开头的命令。如果不含 " +#~ "'*' 则命令和其中的参数必须绝对匹配。" + +#~ msgid "Add Command Line" +#~ msgstr "添加命令行" + +#~ msgid "Edit Command Line" +#~ msgstr "编辑命令行" + +#~ msgid "Remove Command Line" +#~ msgstr "移除命令行" + +#~ msgid "Command lines" +#~ msgstr "命令行" + +#~ msgid "User names." +#~ msgstr "用户名。" + +#~ msgid "Add User Name" +#~ msgstr "添加用户名" + +#~ msgid "Edit User Name" +#~ msgstr "编辑用户名" + +#~ msgid "Remove User Name" +#~ msgstr "移除用户名" + +#~ msgid "User names" +#~ msgstr "用户名" + +#~ msgid "User ids." +#~ msgstr "用户 ID。" + +#~ msgid "Add User Id" +#~ msgstr "添加用户 ID" + +#~ msgid "Edit User Id" +#~ msgstr "编辑用户 ID" + +#~ msgid "Remove User Id" +#~ msgstr "移除用户 ID" + +#~ msgid "User Ids" +#~ msgstr "用户 ID" + +#~ msgid "Lockdown:" +#~ msgstr "锁定:" + +#~ msgid "User ID" +#~ msgstr "用户 ID" + +#~ msgid "Please enter the user id." +#~ msgstr "请输入用户 ID。" + +#~ msgid "Please enter the user name." +#~ msgstr "请输入用户名。" diff --git a/po/zh_TW.po b/po/zh_TW.po index 0cb4f4f..588abbb 100644 --- a/po/zh_TW.po +++ b/po/zh_TW.po @@ -21,7 +21,7 @@ msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2024-01-05 15:54-0500\n" +"POT-Creation-Date: 2024-11-04 15:37-0500\n" "PO-Revision-Date: 2018-11-16 08:29+0000\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Chinese (Taiwan) (http://www.transifex.com/projects/p/" @@ -37,11 +37,47 @@ msgstr "" msgid "Firewall Applet" msgstr "防火牆面板程式" +#: ../config/firewall-config.appdata.xml.in.h:1 +msgid "" +"Firewall Configuration provides a graphical tool for administering firewall." +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:2 +#, fuzzy +msgid "Allows to inspect and set:" +msgstr "請選取 IPset:" + +#: ../config/firewall-config.appdata.xml.in.h:3 +#, fuzzy +msgid "Runtime and permanent firewall configuration" +msgstr "防火牆組態" + +#: ../config/firewall-config.appdata.xml.in.h:4 +#, fuzzy +msgid "Predefined zones (levels of trust for network connections)" +msgstr "網路連線 '%s' 所使用的預設界域" + +#: ../config/firewall-config.appdata.xml.in.h:5 +msgid "Predefined services (port/protocol, netfilter helper module)" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:6 +msgid "Port forwarding, masquerading, ICMP blocking" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:7 +msgid "Complex firewall rules a.k.a. Rich Language" +msgstr "" + +#: ../config/firewall-config.appdata.xml.in.h:8 +msgid "Iptables rules a.k.a. Direct Interface" +msgstr "" + #: ../config/firewall-config.desktop.in.h:1 msgid "Firewall" msgstr "防火牆" -#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:55 +#: ../config/firewall-config.desktop.in.h:2 ../src/firewall-config.glade.h:51 msgid "Firewall Configuration" msgstr "防火牆組態" @@ -50,24 +86,24 @@ msgstr "防火牆組態" msgid "firewall;network;security;iptables;netfilter;" msgstr "防火牆;網路;安全性;iptables;netfilter;" -#: ../src/firewall-applet.in:91 ../src/firewall-config.in:8306 +#: ../src/firewall-applet.in:91 ../src/firewall-config.in:7683 #, c-format msgid "Select zone for interface '%s'" msgstr "選取「%s」介面的界域" #: ../src/firewall-applet.in:132 ../src/firewall-applet.in:139 -#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2587 -#: ../src/firewall-config.in:8352 ../src/firewall-config.in:8360 -#: ../src/firewall-config.in:8394 ../src/firewall-config.glade.h:8 +#: ../src/firewall-applet.in:145 ../src/firewall-config.in:2440 +#: ../src/firewall-config.in:7729 ../src/firewall-config.in:7737 +#: ../src/firewall-config.in:7771 ../src/firewall-config.glade.h:4 msgid "Default Zone" msgstr "預設界域" -#: ../src/firewall-applet.in:168 ../src/firewall-config.in:8387 +#: ../src/firewall-applet.in:168 ../src/firewall-config.in:7764 #, c-format msgid "Select zone for connection '%s'" msgstr "選取「%s」連線的界域" -#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4176 +#: ../src/firewall-applet.in:178 ../src/firewall-config.in:4030 msgid "Failed to set zone {zone} for connection {connection_name}" msgstr "無法為連線 {connection_name} 設定區域 {zone}" @@ -117,147 +153,147 @@ msgstr "作者" msgid "License" msgstr "授權條款" -#: ../src/firewall-applet.in:512 +#: ../src/firewall-applet.in:515 msgid "Shields Up" msgstr "防禦展開" -#: ../src/firewall-applet.in:517 +#: ../src/firewall-applet.in:520 msgid "Enable Notifications" msgstr "啟用通知" -#: ../src/firewall-applet.in:522 +#: ../src/firewall-applet.in:525 msgid "Edit Firewall Settings..." msgstr "編輯防火牆設定..." -#: ../src/firewall-applet.in:526 ../src/firewall-config.glade.h:61 +#: ../src/firewall-applet.in:529 ../src/firewall-config.glade.h:57 msgid "Change Zones of Connections..." msgstr "變更連線的界域..." -#: ../src/firewall-applet.in:531 +#: ../src/firewall-applet.in:534 msgid "Configure Shields UP/Down Zones..." msgstr "設定防禦展開/卸下界域..." -#: ../src/firewall-applet.in:535 +#: ../src/firewall-applet.in:538 msgid "Block all network traffic" msgstr "封鎖所有網路交通" -#: ../src/firewall-applet.in:540 +#: ../src/firewall-applet.in:543 msgid "About" msgstr "關於" -#: ../src/firewall-applet.in:548 ../src/firewall-config.in:641 -#: ../src/firewall-config.in:2519 ../src/firewall-config.in:2859 -#: ../src/firewall-config.in:2885 +#: ../src/firewall-applet.in:551 ../src/firewall-config.in:562 +#: ../src/firewall-config.in:2372 ../src/firewall-config.in:2712 +#: ../src/firewall-config.in:2738 msgid "Connections" msgstr "連線" -#: ../src/firewall-applet.in:553 ../src/firewall-config.in:644 -#: ../src/firewall-config.in:2642 ../src/firewall-config.in:2862 -#: ../src/firewall-config.in:2889 ../src/firewall-config.glade.h:130 +#: ../src/firewall-applet.in:556 ../src/firewall-config.in:565 +#: ../src/firewall-config.in:2495 ../src/firewall-config.in:2715 +#: ../src/firewall-config.in:2742 ../src/firewall-config.glade.h:123 msgid "Interfaces" msgstr "介面" -#: ../src/firewall-applet.in:558 ../src/firewall-config.in:647 -#: ../src/firewall-config.in:2682 ../src/firewall-config.in:2865 -#: ../src/firewall-config.in:2891 ../src/firewall-config.glade.h:135 +#: ../src/firewall-applet.in:561 ../src/firewall-config.in:568 +#: ../src/firewall-config.in:2535 ../src/firewall-config.in:2718 +#: ../src/firewall-config.in:2744 ../src/firewall-config.glade.h:128 msgid "Sources" msgstr "來源" -#: ../src/firewall-applet.in:629 ../src/firewall-config.in:2421 +#: ../src/firewall-applet.in:632 ../src/firewall-config.in:2275 msgid "Authorization failed." msgstr "授權失敗。" -#: ../src/firewall-applet.in:631 ../src/firewall-config.in:2423 +#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2277 msgid "Invalid name" msgstr "無效的名稱" -#: ../src/firewall-applet.in:634 ../src/firewall-config.in:2426 +#: ../src/firewall-applet.in:637 ../src/firewall-config.in:2280 msgid "Name already exists" msgstr "名稱已經存在" -#: ../src/firewall-applet.in:723 +#: ../src/firewall-applet.in:726 msgid "{entry} (Zone: {zone})" msgstr "{entry} (界域:{zone})" -#: ../src/firewall-applet.in:730 +#: ../src/firewall-applet.in:733 msgid "{entry} (Default Zone: {default_zone})" msgstr "{entry} (預設界域:{default_zone})" -#: ../src/firewall-applet.in:816 ../src/firewall-config.in:1672 +#: ../src/firewall-applet.in:819 ../src/firewall-config.in:1536 msgid "Failed to get connections from NetworkManager" msgstr "從 NetworkManager 取得連線失敗" -#: ../src/firewall-applet.in:828 ../src/firewall-config.in:1487 +#: ../src/firewall-applet.in:831 ../src/firewall-config.in:1368 msgid "No NetworkManager imports available" msgstr "無可用的 NetworkManager 匯入" -#: ../src/firewall-applet.in:904 +#: ../src/firewall-applet.in:907 msgid "No connection to firewall daemon" msgstr "未有連接防火牆幕後程式的連線" -#: ../src/firewall-applet.in:910 ../src/firewall-applet.in:1067 +#: ../src/firewall-applet.in:913 ../src/firewall-applet.in:1070 msgid "All network traffic is blocked." msgstr "所有網路交通已封鎖。" -#: ../src/firewall-applet.in:913 +#: ../src/firewall-applet.in:916 #, c-format msgid "Default Zone: '%s'" msgstr "預設界域:「%s」" -#: ../src/firewall-applet.in:920 +#: ../src/firewall-applet.in:923 msgid "" "Default Zone '{default_zone}' active for connection '{connection}' on " "interface '{interface}'" msgstr "" "預設界域「{default_zone}」使用中:連線「{connection}」,介面「{interface}」" -#: ../src/firewall-applet.in:925 +#: ../src/firewall-applet.in:928 msgid "" "Zone '{zone}' active for connection '{connection}' on interface '{interface}'" msgstr "界域「{zone}」使用中:連線「{connection}」,介面「{interface}」" -#: ../src/firewall-applet.in:943 +#: ../src/firewall-applet.in:946 msgid "Zone '{zone}' active for interface '{interface}'" msgstr "界域「{zone}」使用中:介面「{interface}」" -#: ../src/firewall-applet.in:955 +#: ../src/firewall-applet.in:958 msgid "Zone '{zone}' active for source {source}" msgstr "界域「{zone}」使用中:來源 {source}" -#: ../src/firewall-applet.in:959 +#: ../src/firewall-applet.in:962 msgid "No Active Zones." msgstr "無使用中界域。" -#: ../src/firewall-applet.in:1025 +#: ../src/firewall-applet.in:1028 msgid "Connection to FirewallD established." msgstr "與 FirewallD 的連線已建立。" -#: ../src/firewall-applet.in:1037 +#: ../src/firewall-applet.in:1040 msgid "Connection to FirewallD lost." msgstr "與 FirewallD 的連線已中斷。" -#: ../src/firewall-applet.in:1042 +#: ../src/firewall-applet.in:1045 msgid "FirewallD has been reloaded." msgstr "FirewallD 已重新載入。" -#: ../src/firewall-applet.in:1049 +#: ../src/firewall-applet.in:1052 #, c-format msgid "Default zone changed to '%s'." msgstr "預設界域變更為「%s」。" -#: ../src/firewall-applet.in:1068 +#: ../src/firewall-applet.in:1071 msgid "Network traffic is not blocked anymore." msgstr "網路交通已不再封鎖。" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "activated" msgstr "已啟動" -#: ../src/firewall-applet.in:1095 ../src/firewall-applet.in:1161 +#: ../src/firewall-applet.in:1098 ../src/firewall-applet.in:1164 msgid "deactivated" msgstr "已停止" -#: ../src/firewall-applet.in:1101 +#: ../src/firewall-applet.in:1104 msgid "" "Default zone '{default_zone}' {activated_deactivated} for connection " "'{connection}' on interface '{interface}'" @@ -265,7 +301,7 @@ msgstr "" "預設界域「{default_zone}」{activated_deactivated}:連線「{connection}」,介面" "「{interface}」" -#: ../src/firewall-applet.in:1108 +#: ../src/firewall-applet.in:1111 msgid "" "Zone '{zone}' {activated_deactivated} for connection '{connection}' on " "interface '{interface}'" @@ -273,20 +309,20 @@ msgstr "" "界域「{zone}」{activated_deactivated}:連線「{connection}」,介面" "「{interface}」" -#: ../src/firewall-applet.in:1115 +#: ../src/firewall-applet.in:1118 msgid "Zone '{zone}' {activated_deactivated} for interface '{interface}'" msgstr "界域「{zone}」{activated_deactivated}:介面「{interface}」" -#: ../src/firewall-applet.in:1146 +#: ../src/firewall-applet.in:1149 #, c-format msgid "Zone '%s' activated for interface '%s'" msgstr "界域「%s」已啟動:介面「%s」" -#: ../src/firewall-applet.in:1162 +#: ../src/firewall-applet.in:1165 msgid "Zone '{zone}' {activated_deactivated} for source '{source}'" msgstr "界域「{zone}」{activated_deactivated}:來源「{source}」" -#: ../src/firewall-applet.in:1191 +#: ../src/firewall-applet.in:1194 #, c-format msgid "Zone '%s' activated for source '%s'" msgstr "界域「%s」已啟動:來源「%s」" @@ -331,328 +367,312 @@ msgstr "已停用" msgid "Failed to load icons." msgstr "無法載入圖示。" -#: ../src/firewall-config.in:184 ../src/firewall-config.glade.h:6 -msgid "Context" -msgstr "情境" - -#: ../src/firewall-config.in:203 ../src/firewall-config.glade.h:4 -msgid "Command line" -msgstr "指令列" - -#: ../src/firewall-config.in:222 ../src/firewall-config.glade.h:300 -msgid "User name" -msgstr "使用者名稱" - -#: ../src/firewall-config.in:239 -msgid "User id" -msgstr "使用者 ID" - -#: ../src/firewall-config.in:277 ../src/firewall-config.in:318 +#: ../src/firewall-config.in:198 ../src/firewall-config.in:239 msgid "Table" msgstr "表" -#: ../src/firewall-config.in:280 ../src/firewall-config.in:321 +#: ../src/firewall-config.in:201 ../src/firewall-config.in:242 msgid "Chain" msgstr "鏈" -#: ../src/firewall-config.in:324 ../src/firewall-config.in:863 +#: ../src/firewall-config.in:245 ../src/firewall-config.in:784 msgid "Priority" msgstr "優先程度" -#: ../src/firewall-config.in:327 ../src/firewall-config.in:368 +#: ../src/firewall-config.in:248 ../src/firewall-config.in:289 msgid "Args" msgstr "引數" -#: ../src/firewall-config.in:415 ../src/firewall-config.in:2468 +#: ../src/firewall-config.in:336 ../src/firewall-config.in:2322 msgid "Runtime" msgstr "執行時期" -#: ../src/firewall-config.in:416 +#: ../src/firewall-config.in:337 msgid "Permanent" msgstr "永久" -#: ../src/firewall-config.in:499 ../src/firewall-config.glade.h:138 +#: ../src/firewall-config.in:420 ../src/firewall-config.glade.h:131 msgid "Service" msgstr "服務" -#: ../src/firewall-config.in:507 ../src/firewall-config.in:554 -#: ../src/firewall-config.in:580 ../src/firewall-config.in:835 -#: ../src/firewall-config.in:1075 ../src/firewall-config.in:1114 +#: ../src/firewall-config.in:428 ../src/firewall-config.in:475 +#: ../src/firewall-config.in:501 ../src/firewall-config.in:756 +#: ../src/firewall-config.in:996 ../src/firewall-config.in:1035 msgid "Port" msgstr "連接埠" -#: ../src/firewall-config.in:510 ../src/firewall-config.in:528 -#: ../src/firewall-config.in:557 ../src/firewall-config.in:583 -#: ../src/firewall-config.in:838 ../src/firewall-config.in:1078 -#: ../src/firewall-config.in:1094 ../src/firewall-config.in:1117 -#: ../src/firewall-config.glade.h:250 +#: ../src/firewall-config.in:431 ../src/firewall-config.in:449 +#: ../src/firewall-config.in:478 ../src/firewall-config.in:504 +#: ../src/firewall-config.in:759 ../src/firewall-config.in:999 +#: ../src/firewall-config.in:1015 ../src/firewall-config.in:1038 +#: ../src/firewall-config.glade.h:221 msgid "Protocol" msgstr "協定" -#: ../src/firewall-config.in:586 +#: ../src/firewall-config.in:507 msgid "To Port" msgstr "至連接埠" -#: ../src/firewall-config.in:589 +#: ../src/firewall-config.in:510 msgid "To Address" msgstr "至位址" -#: ../src/firewall-config.in:638 +#: ../src/firewall-config.in:559 msgid "Bindings" msgstr "綁定" -#: ../src/firewall-config.in:675 ../src/firewall-config.glade.h:233 +#: ../src/firewall-config.in:596 ../src/firewall-config.glade.h:204 msgid "Entry" msgstr "條目" -#: ../src/firewall-config.in:806 +#: ../src/firewall-config.in:727 msgid "Icmp Type" msgstr "Icmp 類型" -#: ../src/firewall-config.in:860 +#: ../src/firewall-config.in:781 msgid "Family" msgstr "家庭" -#: ../src/firewall-config.in:866 +#: ../src/firewall-config.in:787 msgid "Action" msgstr "動作" -#: ../src/firewall-config.in:869 +#: ../src/firewall-config.in:790 msgid "Element" msgstr "元素" -#: ../src/firewall-config.in:872 +#: ../src/firewall-config.in:793 msgid "Src" msgstr "來源" -#: ../src/firewall-config.in:875 +#: ../src/firewall-config.in:796 msgid "Dest" msgstr "目標" -#: ../src/firewall-config.in:878 +#: ../src/firewall-config.in:799 msgid "log" msgstr "記錄" -#: ../src/firewall-config.in:881 +#: ../src/firewall-config.in:802 msgid "Audit" msgstr "稽核" -#: ../src/firewall-config.in:1009 ../src/firewall-config.glade.h:221 +#: ../src/firewall-config.in:930 ../src/firewall-config.glade.h:192 msgid "Interface" msgstr "介面" -#: ../src/firewall-config.in:1012 +#: ../src/firewall-config.in:933 msgid "Comment" msgstr "備註" -#: ../src/firewall-config.in:1034 ../src/firewall-config.glade.h:27 +#: ../src/firewall-config.in:955 ../src/firewall-config.glade.h:23 msgid "Source" msgstr "來源" -#: ../src/firewall-config.in:1717 ../src/firewall-config.in:3006 -#: ../src/firewall-config.in:3059 +#: ../src/firewall-config.in:1581 ../src/firewall-config.in:2859 +#: ../src/firewall-config.in:2912 msgid "Warning" msgstr "警告" -#: ../src/firewall-config.in:1728 ../src/firewall-config.in:1740 +#: ../src/firewall-config.in:1592 ../src/firewall-config.in:1604 msgid "Error" msgstr "錯誤" -#: ../src/firewall-config.in:2174 ../src/firewall-config.in:3418 -#: ../src/firewall-config.in:3923 ../src/firewall-config.glade.h:262 +#: ../src/firewall-config.in:2028 ../src/firewall-config.in:3271 +#: ../src/firewall-config.in:3779 ../src/firewall-config.glade.h:233 msgid "accept" msgstr "接受" -#: ../src/firewall-config.in:2176 ../src/firewall-config.in:3420 -#: ../src/firewall-config.in:3925 ../src/firewall-config.in:4098 -#: ../src/firewall-config.glade.h:263 +#: ../src/firewall-config.in:2030 ../src/firewall-config.in:3273 +#: ../src/firewall-config.in:3781 ../src/firewall-config.in:3954 +#: ../src/firewall-config.glade.h:234 msgid "reject" msgstr "拒絕" -#: ../src/firewall-config.in:2180 ../src/firewall-config.in:3437 -#: ../src/firewall-config.in:3932 ../src/firewall-config.glade.h:264 +#: ../src/firewall-config.in:2034 ../src/firewall-config.in:3290 +#: ../src/firewall-config.in:3788 ../src/firewall-config.glade.h:235 msgid "drop" msgstr "丟落" -#: ../src/firewall-config.in:2182 ../src/firewall-config.in:3439 -#: ../src/firewall-config.in:3934 ../src/firewall-config.in:4101 -#: ../src/firewall-config.glade.h:265 +#: ../src/firewall-config.in:2036 ../src/firewall-config.in:3292 +#: ../src/firewall-config.in:3790 ../src/firewall-config.in:3957 +#: ../src/firewall-config.glade.h:236 msgid "mark" msgstr "標記" -#: ../src/firewall-config.in:2185 ../src/firewall-config.in:2233 -#: ../src/firewall-config.in:2238 +#: ../src/firewall-config.in:2039 ../src/firewall-config.in:2087 +#: ../src/firewall-config.in:2092 msgid "limit" msgstr "限制" -#: ../src/firewall-config.in:2201 ../src/firewall-config.in:3373 -#: ../src/firewall-config.in:3556 ../src/firewall-config.in:3863 -#: ../src/firewall-config.glade.h:284 +#: ../src/firewall-config.in:2055 ../src/firewall-config.in:3226 +#: ../src/firewall-config.in:3412 ../src/firewall-config.in:3719 +#: ../src/firewall-config.glade.h:255 msgid "service" msgstr "服務" -#: ../src/firewall-config.in:2203 ../src/firewall-config.in:3377 -#: ../src/firewall-config.in:3558 ../src/firewall-config.in:3867 -#: ../src/firewall-config.glade.h:285 +#: ../src/firewall-config.in:2057 ../src/firewall-config.in:3230 +#: ../src/firewall-config.in:3414 ../src/firewall-config.in:3723 +#: ../src/firewall-config.glade.h:256 msgid "port" msgstr "接埠" -#: ../src/firewall-config.in:2205 ../src/firewall-config.in:3382 -#: ../src/firewall-config.in:3567 ../src/firewall-config.in:3877 -#: ../src/firewall-config.glade.h:286 +#: ../src/firewall-config.in:2059 ../src/firewall-config.in:3235 +#: ../src/firewall-config.in:3423 ../src/firewall-config.in:3733 +#: ../src/firewall-config.glade.h:257 msgid "protocol" msgstr "協定" -#: ../src/firewall-config.in:2207 ../src/firewall-config.in:3386 -#: ../src/firewall-config.in:3896 ../src/firewall-config.in:4118 -#: ../src/firewall-config.glade.h:291 +#: ../src/firewall-config.in:2061 ../src/firewall-config.in:3239 +#: ../src/firewall-config.in:3752 ../src/firewall-config.in:3974 +#: ../src/firewall-config.glade.h:262 msgid "masquerade" msgstr "偽裝" -#: ../src/firewall-config.in:2209 ../src/firewall-config.in:3390 -#: ../src/firewall-config.in:3569 ../src/firewall-config.in:3881 -#: ../src/firewall-config.in:4133 ../src/firewall-config.glade.h:287 +#: ../src/firewall-config.in:2063 ../src/firewall-config.in:3243 +#: ../src/firewall-config.in:3425 ../src/firewall-config.in:3737 +#: ../src/firewall-config.in:3987 ../src/firewall-config.glade.h:258 msgid "icmp-block" msgstr "icmp-block" -#: ../src/firewall-config.in:2211 ../src/firewall-config.in:3394 -#: ../src/firewall-config.in:3571 ../src/firewall-config.in:3885 -#: ../src/firewall-config.glade.h:288 +#: ../src/firewall-config.in:2065 ../src/firewall-config.in:3247 +#: ../src/firewall-config.in:3427 ../src/firewall-config.in:3741 +#: ../src/firewall-config.glade.h:259 msgid "icmp-type" msgstr "icmp-type" -#: ../src/firewall-config.in:2213 ../src/firewall-config.in:3398 -#: ../src/firewall-config.in:3573 ../src/firewall-config.in:3889 -#: ../src/firewall-config.in:4126 ../src/firewall-config.glade.h:289 +#: ../src/firewall-config.in:2067 ../src/firewall-config.in:3251 +#: ../src/firewall-config.in:3429 ../src/firewall-config.in:3745 +#: ../src/firewall-config.in:3982 ../src/firewall-config.glade.h:260 msgid "forward-port" msgstr "forward-port" -#: ../src/firewall-config.in:2220 ../src/firewall-config.in:3408 -#: ../src/firewall-config.in:3575 ../src/firewall-config.in:3898 -#: ../src/firewall-config.glade.h:290 +#: ../src/firewall-config.in:2074 ../src/firewall-config.in:3261 +#: ../src/firewall-config.in:3431 ../src/firewall-config.in:3754 +#: ../src/firewall-config.glade.h:261 msgid "source-port" msgstr "source-port" -#: ../src/firewall-config.in:2231 +#: ../src/firewall-config.in:2085 msgid "level" msgstr "等級" -#: ../src/firewall-config.in:2235 ../src/firewall-config.in:2240 +#: ../src/firewall-config.in:2089 ../src/firewall-config.in:2094 msgid "yes" msgstr "是" -#: ../src/firewall-config.in:2594 ../src/firewall-config.in:2658 -#: ../src/firewall-config.in:2697 ../src/firewall-config.glade.h:89 +#: ../src/firewall-config.in:2447 ../src/firewall-config.in:2511 +#: ../src/firewall-config.in:2550 ../src/firewall-config.glade.h:82 msgid "Zone" msgstr "界域" -#: ../src/firewall-config.in:2619 +#: ../src/firewall-config.in:2472 #, c-format msgid "Default Zone: %s" msgstr "預設界域:%s" -#: ../src/firewall-config.in:2633 ../src/firewall-config.in:2674 -#: ../src/firewall-config.in:2711 +#: ../src/firewall-config.in:2486 ../src/firewall-config.in:2527 +#: ../src/firewall-config.in:2564 #, c-format msgid "Zone: %s" msgstr "界域:%s" -#: ../src/firewall-config.in:2999 +#: ../src/firewall-config.in:2852 #, c-format msgid "Zone '%s': Service '%s' is not available." msgstr "界域「%s」:服務「%s」無法使用。" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 -#: ../src/firewall-config.glade.h:163 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 +#: ../src/firewall-config.glade.h:156 msgid "Remove" msgstr "移除" -#: ../src/firewall-config.in:3007 ../src/firewall-config.in:3060 +#: ../src/firewall-config.in:2860 ../src/firewall-config.in:2913 msgid "Ignore" msgstr "忽略" -#: ../src/firewall-config.in:3052 +#: ../src/firewall-config.in:2905 #, c-format msgid "Zone '%s': ICMP type '%s' is not available." msgstr "界域「%s」:ICMP 類型「%s」無法使用。" -#: ../src/firewall-config.in:3212 +#: ../src/firewall-config.in:3065 msgid "Built-in zone, rename not supported." msgstr "內建界域,不支援重新命名。" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:270 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:241 msgid "second" msgstr "秒" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:271 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:242 msgid "minute" msgstr "分鐘" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:272 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:243 msgid "hour" msgstr "小時" -#: ../src/firewall-config.in:3335 ../src/firewall-config.in:3834 -#: ../src/firewall-config.glade.h:273 +#: ../src/firewall-config.in:3188 ../src/firewall-config.in:3690 +#: ../src/firewall-config.glade.h:244 msgid "day" msgstr "日" -#: ../src/firewall-config.in:3337 ../src/firewall-config.in:3836 -#: ../src/firewall-config.glade.h:276 +#: ../src/firewall-config.in:3190 ../src/firewall-config.in:3692 +#: ../src/firewall-config.glade.h:247 msgid "emergency" msgstr "緊急" -#: ../src/firewall-config.in:3338 ../src/firewall-config.in:3837 -#: ../src/firewall-config.glade.h:277 +#: ../src/firewall-config.in:3191 ../src/firewall-config.in:3693 +#: ../src/firewall-config.glade.h:248 msgid "alert" msgstr "警示" -#: ../src/firewall-config.in:3339 ../src/firewall-config.in:3838 -#: ../src/firewall-config.glade.h:278 +#: ../src/firewall-config.in:3192 ../src/firewall-config.in:3694 +#: ../src/firewall-config.glade.h:249 msgid "critical" msgstr "嚴重" -#: ../src/firewall-config.in:3340 ../src/firewall-config.in:3839 -#: ../src/firewall-config.glade.h:279 +#: ../src/firewall-config.in:3193 ../src/firewall-config.in:3695 +#: ../src/firewall-config.glade.h:250 msgid "error" msgstr "錯誤" -#: ../src/firewall-config.in:3341 ../src/firewall-config.in:3840 -#: ../src/firewall-config.glade.h:280 +#: ../src/firewall-config.in:3194 ../src/firewall-config.in:3696 +#: ../src/firewall-config.glade.h:251 msgid "warning" msgstr "警告" -#: ../src/firewall-config.in:3342 ../src/firewall-config.in:3841 -#: ../src/firewall-config.glade.h:281 +#: ../src/firewall-config.in:3195 ../src/firewall-config.in:3697 +#: ../src/firewall-config.glade.h:252 msgid "notice" msgstr "注意" -#: ../src/firewall-config.in:3343 ../src/firewall-config.in:3842 -#: ../src/firewall-config.glade.h:282 +#: ../src/firewall-config.in:3196 ../src/firewall-config.in:3698 +#: ../src/firewall-config.glade.h:253 msgid "info" msgstr "資訊" -#: ../src/firewall-config.in:3344 ../src/firewall-config.in:3843 -#: ../src/firewall-config.glade.h:283 +#: ../src/firewall-config.in:3197 ../src/firewall-config.in:3699 +#: ../src/firewall-config.glade.h:254 msgid "debug" msgstr "除錯" -#: ../src/firewall-config.in:3548 ../src/firewall-config.in:3770 -#: ../src/firewall-config.in:3794 ../src/firewall-config.in:3848 -#: ../src/firewall-config.in:4004 ../src/firewall-config.in:4057 +#: ../src/firewall-config.in:3404 ../src/firewall-config.in:3626 +#: ../src/firewall-config.in:3650 ../src/firewall-config.in:3704 +#: ../src/firewall-config.in:3860 ../src/firewall-config.in:3913 msgid "ipv4" msgstr "ipv4" -#: ../src/firewall-config.in:3550 ../src/firewall-config.in:3772 -#: ../src/firewall-config.in:3796 ../src/firewall-config.in:3850 -#: ../src/firewall-config.in:4006 ../src/firewall-config.in:4059 +#: ../src/firewall-config.in:3406 ../src/firewall-config.in:3628 +#: ../src/firewall-config.in:3652 ../src/firewall-config.in:3706 +#: ../src/firewall-config.in:3862 ../src/firewall-config.in:3915 msgid "ipv6" msgstr "ipv6" -#: ../src/firewall-config.in:5300 +#: ../src/firewall-config.in:5154 msgid "" "Forwarding to another system is only useful if the interface is " "masqueraded.\n" @@ -661,31 +681,31 @@ msgstr "" "轉送至其他系統的功能僅在介面為偽裝之時才會有用。\n" "您是否想要偽裝此界域?" -#: ../src/firewall-config.in:5658 +#: ../src/firewall-config.in:5512 msgid "Built-in service, rename not supported." msgstr "內建服務,不支援重新命名。" -#: ../src/firewall-config.in:5869 +#: ../src/firewall-config.in:5723 msgid "Please enter an ipv4 address with the form address[/mask]." msgstr "請從格式位址(或遮罩)輸入 IPV4 位址" -#: ../src/firewall-config.in:5870 +#: ../src/firewall-config.in:5724 msgid "The mask can be a network mask or a number." msgstr "遮罩可以是網路遮罩或數字。" -#: ../src/firewall-config.in:5872 +#: ../src/firewall-config.in:5726 msgid "Please enter an ipv6 address with the form address[/mask]." msgstr "請從格式位址(或遮罩)輸入 IPV6 位址" -#: ../src/firewall-config.in:5873 +#: ../src/firewall-config.in:5727 msgid "The mask is a number." msgstr "遮罩為數字。" -#: ../src/firewall-config.in:5876 +#: ../src/firewall-config.in:5730 msgid "Please enter an ipv4 or ipv6 address with the form address[/mask]." msgstr "請從格式位址(或遮罩)輸入 IPV4 或 IPV6 位址。" -#: ../src/firewall-config.in:5879 +#: ../src/firewall-config.in:5733 msgid "" "The mask can be a network mask or a number for ipv4.\n" "The mask is a number for ipv6." @@ -693,51 +713,51 @@ msgstr "" "IPv4 遮罩可以是網路遮罩或數字。\n" "IPv6 遮罩是數字。" -#: ../src/firewall-config.in:6061 +#: ../src/firewall-config.in:5915 msgid "Built-in ipset, rename not supported." msgstr "內建 ipset,不支援重新命名。" -#: ../src/firewall-config.in:6161 ../src/firewall-config.in:6250 +#: ../src/firewall-config.in:6015 ../src/firewall-config.in:6104 msgid "Please select a file" msgstr "請選擇一個檔案" -#: ../src/firewall-config.in:6175 ../src/firewall-config.in:6264 +#: ../src/firewall-config.in:6029 ../src/firewall-config.in:6118 msgid "Text Files" msgstr "文字檔案" -#: ../src/firewall-config.in:6180 ../src/firewall-config.in:6269 +#: ../src/firewall-config.in:6034 ../src/firewall-config.in:6123 msgid "All Files" msgstr "所有檔案" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:40 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:36 msgid "All" msgstr "全部" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:41 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:37 msgid "IPv4" msgstr "IPv4" -#: ../src/firewall-config.in:6695 ../src/firewall-config.in:6724 -#: ../src/firewall-config.glade.h:42 +#: ../src/firewall-config.in:6549 ../src/firewall-config.in:6578 +#: ../src/firewall-config.glade.h:38 msgid "IPv6" msgstr "IPv6" -#: ../src/firewall-config.in:6701 +#: ../src/firewall-config.in:6555 msgid "Built-in helper, rename not supported." msgstr "內建輔助器,不支援重新命名。" -#: ../src/firewall-config.in:7186 +#: ../src/firewall-config.in:7040 msgid "Built-in icmp, rename not supported." msgstr "內建 icmp,不支援重新命名。" -#: ../src/firewall-config.in:8273 +#: ../src/firewall-config.in:7650 #, c-format msgid "Failed to read file '%s': %s" msgstr "讀取檔案 '%s' 失敗:%s" -#: ../src/firewall-config.in:8410 +#: ../src/firewall-config.in:7787 #, c-format msgid "Select zone for source %s" msgstr "選取 %s 來源的界域" @@ -756,198 +776,190 @@ msgid "Please select the automatic helpers value:" msgstr "請選取自動輔助器之值:" #: ../src/firewall-config.glade.h:5 -msgid "Please enter the command line." -msgstr "請輸入指令列。" - -#: ../src/firewall-config.glade.h:7 -msgid "Please enter the context." -msgstr "請輸入情境。" - -#: ../src/firewall-config.glade.h:9 msgid "Please select default zone from the list below." msgstr "請從下列清單中選取預設界域。" -#: ../src/firewall-config.glade.h:10 +#: ../src/firewall-config.glade.h:6 msgid "Direct Chain" msgstr "直接鏈條" -#: ../src/firewall-config.glade.h:11 +#: ../src/firewall-config.glade.h:7 msgid "Please select ipv and table and enter the chain name." msgstr "請選取 ipv 與表格,並輸入鏈條名稱" -#: ../src/firewall-config.glade.h:12 +#: ../src/firewall-config.glade.h:8 msgid "ipv:" msgstr "ipv:" -#: ../src/firewall-config.glade.h:13 +#: ../src/firewall-config.glade.h:9 msgid "eb" msgstr "eb" -#: ../src/firewall-config.glade.h:14 +#: ../src/firewall-config.glade.h:10 msgid "Chain:" msgstr "鏈條:" -#: ../src/firewall-config.glade.h:15 +#: ../src/firewall-config.glade.h:11 msgid "nat" msgstr "nat" -#: ../src/firewall-config.glade.h:16 +#: ../src/firewall-config.glade.h:12 msgid "raw" msgstr "原始" -#: ../src/firewall-config.glade.h:17 +#: ../src/firewall-config.glade.h:13 msgid "security" msgstr "安全性" -#: ../src/firewall-config.glade.h:18 +#: ../src/firewall-config.glade.h:14 msgid "Table:" msgstr "表格:" -#: ../src/firewall-config.glade.h:19 +#: ../src/firewall-config.glade.h:15 msgid "Direct Passthrough Rule" msgstr "直接通透規則" -#: ../src/firewall-config.glade.h:20 +#: ../src/firewall-config.glade.h:16 msgid "Please select ipv and enter the args." msgstr "請選取 ipv 並輸入引數。" -#: ../src/firewall-config.glade.h:21 +#: ../src/firewall-config.glade.h:17 msgid "Args:" msgstr "引數:" -#: ../src/firewall-config.glade.h:22 +#: ../src/firewall-config.glade.h:18 msgid "Port Forwarding" msgstr "連接埠轉送" -#: ../src/firewall-config.glade.h:23 +#: ../src/firewall-config.glade.h:19 msgid "" "Please select the source and destination options according to your needs." msgstr "請根據您的需求選擇來源以及目的地選項。" -#: ../src/firewall-config.glade.h:24 +#: ../src/firewall-config.glade.h:20 msgid "Port / Port Range:" msgstr "連接埠 / 連接埠範圍:" -#: ../src/firewall-config.glade.h:25 +#: ../src/firewall-config.glade.h:21 msgid "IP address:" msgstr "IP 位址:" -#: ../src/firewall-config.glade.h:26 +#: ../src/firewall-config.glade.h:22 msgid "Protocol:" msgstr "通訊協定:" -#: ../src/firewall-config.glade.h:28 +#: ../src/firewall-config.glade.h:24 msgid "Destination" msgstr "目的地" -#: ../src/firewall-config.glade.h:29 +#: ../src/firewall-config.glade.h:25 msgid "" "If you enable local forwarding, you have to specify a port. This port has to " "be different to the source port." msgstr "" "若您啟用本地端轉送,您就必須要指定連接埠。這個連接埠必須和來源連接埠不同。" -#: ../src/firewall-config.glade.h:30 +#: ../src/firewall-config.glade.h:26 msgid "Local forwarding" msgstr "本地端轉送" -#: ../src/firewall-config.glade.h:31 +#: ../src/firewall-config.glade.h:27 msgid "Forward to another port" msgstr "轉送至其他連接埠" -#: ../src/firewall-config.glade.h:32 +#: ../src/firewall-config.glade.h:28 msgid "Base Helper Settings" msgstr "基礎輔助器設定" -#: ../src/firewall-config.glade.h:33 +#: ../src/firewall-config.glade.h:29 msgid "Please configure base helper settings:" msgstr "請設定基礎輔助器設定值:" -#: ../src/firewall-config.glade.h:34 +#: ../src/firewall-config.glade.h:30 msgid "Bold entries are mandatory, all others are optional." msgstr "粗體的條目為強制項目,其他條目則為選用項目。" -#: ../src/firewall-config.glade.h:35 +#: ../src/firewall-config.glade.h:31 msgid "Name:" msgstr "名稱:" -#: ../src/firewall-config.glade.h:36 +#: ../src/firewall-config.glade.h:32 msgid "Version:" msgstr "版本:" -#: ../src/firewall-config.glade.h:37 +#: ../src/firewall-config.glade.h:33 msgid "Short:" msgstr "簡短:" -#: ../src/firewall-config.glade.h:38 +#: ../src/firewall-config.glade.h:34 msgid "Description:" msgstr "描述:" -#: ../src/firewall-config.glade.h:39 +#: ../src/firewall-config.glade.h:35 msgid "Family:" msgstr "家庭:" -#: ../src/firewall-config.glade.h:43 +#: ../src/firewall-config.glade.h:39 msgid "Module:" msgstr "模組:" -#: ../src/firewall-config.glade.h:44 +#: ../src/firewall-config.glade.h:40 msgid "Helper" msgstr "輔助器" -#: ../src/firewall-config.glade.h:45 +#: ../src/firewall-config.glade.h:41 msgid "Please select a helper:" msgstr "請選取輔助器:" -#: ../src/firewall-config.glade.h:46 +#: ../src/firewall-config.glade.h:42 msgid "Base ICMP Type Settings" msgstr "基礎 ICMP 類型設定" -#: ../src/firewall-config.glade.h:47 +#: ../src/firewall-config.glade.h:43 msgid "Please configure base ICMP type settings:" msgstr "請調整基礎 ICMP 類型設定:" -#: ../src/firewall-config.glade.h:48 +#: ../src/firewall-config.glade.h:44 msgid "ICMP Type" msgstr "ICMP 類型" -#: ../src/firewall-config.glade.h:49 +#: ../src/firewall-config.glade.h:45 msgid "Please select an ICMP type" msgstr "請選取 ICMP 類型" -#: ../src/firewall-config.glade.h:50 +#: ../src/firewall-config.glade.h:46 msgid "Add Entry" msgstr "加入條目" -#: ../src/firewall-config.glade.h:51 +#: ../src/firewall-config.glade.h:47 msgid "Add Entries From File" msgstr "從檔案新增項目" -#: ../src/firewall-config.glade.h:52 +#: ../src/firewall-config.glade.h:48 msgid "Remove Selected Entry" msgstr "移除選擇的項目" -#: ../src/firewall-config.glade.h:53 +#: ../src/firewall-config.glade.h:49 msgid "Remove All Entries" msgstr "移除所有項目" -#: ../src/firewall-config.glade.h:54 +#: ../src/firewall-config.glade.h:50 msgid "Remove Entries From File" msgstr "從檔案中移除項目" -#: ../src/firewall-config.glade.h:56 +#: ../src/firewall-config.glade.h:52 msgid "_File" msgstr "檔案(_F)" -#: ../src/firewall-config.glade.h:57 +#: ../src/firewall-config.glade.h:53 msgid "_Options" msgstr "選項(_O)" -#: ../src/firewall-config.glade.h:58 +#: ../src/firewall-config.glade.h:54 msgid "Reload Firewalld" msgstr "重新載入 Firewalld" -#: ../src/firewall-config.glade.h:59 +#: ../src/firewall-config.glade.h:55 msgid "" "Reloads firewall rules. Current permanent configuration will become new " "runtime configuration. i.e. all runtime only changes done until reload are " @@ -957,116 +969,101 @@ msgstr "" "期下的變動直到重新載入前都會有效:只要改變不是設在永久組態中,那麼一旦重新載" "入後所有改動都會消失。" -#: ../src/firewall-config.glade.h:60 +#: ../src/firewall-config.glade.h:56 msgid "Change which zone a network connection belongs to." msgstr "變更網路連線所屬的界域。" -#: ../src/firewall-config.glade.h:62 +#: ../src/firewall-config.glade.h:58 msgid "Change Default Zone" msgstr "變更預設界域" -#: ../src/firewall-config.glade.h:63 +#: ../src/firewall-config.glade.h:59 msgid "Change default zone for connections or interfaces." msgstr "變更連線或介面的預設界域。" -#: ../src/firewall-config.glade.h:64 +#: ../src/firewall-config.glade.h:60 msgid "Change Log Denied" msgstr "變更日誌被拒" -#: ../src/firewall-config.glade.h:65 +#: ../src/firewall-config.glade.h:61 msgid "Change LogDenied value." msgstr "變更 LogDenied 值。" -#: ../src/firewall-config.glade.h:66 +#: ../src/firewall-config.glade.h:62 msgid "Configure Automatic Helper Assigment" msgstr "設定自動輔助器指派" -#: ../src/firewall-config.glade.h:67 +#: ../src/firewall-config.glade.h:63 msgid "Configure Automatic Helper Assignment setting." msgstr "設定自動輔助器指派設定。" -#: ../src/firewall-config.glade.h:68 +#: ../src/firewall-config.glade.h:64 msgid "Panic mode means that all incoming and outgoing packets are dropped." msgstr "恐慌模式代表所有連入與傳出封包都會直接丟棄。" -#: ../src/firewall-config.glade.h:69 +#: ../src/firewall-config.glade.h:65 msgid "Panic Mode" msgstr "恐慌模式" -#: ../src/firewall-config.glade.h:70 -msgid "" -"Lockdown locks firewall configuration so that only applications on lockdown " -"whitelist are able to change it." -msgstr "" -"封鎖管制會鎖上防火牆組態,只有封鎖管制白名單中列出的應用程式可以改動組態。" - -#: ../src/firewall-config.glade.h:71 -msgid "Lockdown" -msgstr "封鎖管制" - -#: ../src/firewall-config.glade.h:72 +#: ../src/firewall-config.glade.h:66 msgid "Make runtime configuration permanent" msgstr "使 runtime 配置永久化" -#: ../src/firewall-config.glade.h:73 +#: ../src/firewall-config.glade.h:67 msgid "Runtime To Permanent" msgstr "使 Runtime 永久化" -#: ../src/firewall-config.glade.h:74 +#: ../src/firewall-config.glade.h:68 msgid "_View" msgstr "檢視(_V)" -#: ../src/firewall-config.glade.h:75 +#: ../src/firewall-config.glade.h:69 msgid "IPSets" msgstr "IPSet" -#: ../src/firewall-config.glade.h:76 +#: ../src/firewall-config.glade.h:70 msgid "ICMP Types" msgstr "ICMP 類型" -#: ../src/firewall-config.glade.h:77 +#: ../src/firewall-config.glade.h:71 msgid "Helpers" msgstr "輔助器" -#: ../src/firewall-config.glade.h:78 +#: ../src/firewall-config.glade.h:72 msgid "Direct Configuration" msgstr "直接組態" -#: ../src/firewall-config.glade.h:79 -msgid "Lockdown Whitelist" -msgstr "封鎖管制白名單" - -#: ../src/firewall-config.glade.h:80 +#: ../src/firewall-config.glade.h:73 msgid "Active Bindings" msgstr "使用中的綁定" -#: ../src/firewall-config.glade.h:81 +#: ../src/firewall-config.glade.h:74 msgid "_Help" msgstr "求助(_H)" -#: ../src/firewall-config.glade.h:82 +#: ../src/firewall-config.glade.h:75 msgid "Change Zone" msgstr "變更區域" -#: ../src/firewall-config.glade.h:83 +#: ../src/firewall-config.glade.h:76 msgid "Change zone of binding" msgstr "變更綁定的界域" -#: ../src/firewall-config.glade.h:84 +#: ../src/firewall-config.glade.h:77 msgid "" "Hide active runtime bindings of connections, interfaces and sources to zones" msgstr "在界域中隱藏連線、介面及來源的使用中執行時期綁定" -#: ../src/firewall-config.glade.h:85 +#: ../src/firewall-config.glade.h:78 msgid "" "Show active runtime bindings of connections, interfaces and sources to zones" msgstr "在界域中顯示連線、介面及來源的使用中執行時期綁定" -#: ../src/firewall-config.glade.h:86 +#: ../src/firewall-config.glade.h:79 msgid "Configuration:" msgstr "組態:" -#: ../src/firewall-config.glade.h:87 +#: ../src/firewall-config.glade.h:80 msgid "" "Currently visible configuration. Runtime configuration is the actual active " "configuration. Permanent configuration will be active after service or " @@ -1075,7 +1072,7 @@ msgstr "" "目前可見的組態。執行時期組態為實際使用中組態。永久組態將在服務或系統重新載入" "或重新啟動之後啟動。" -#: ../src/firewall-config.glade.h:88 +#: ../src/firewall-config.glade.h:81 msgid "" "A firewalld zone defines the level of trust for network connections, " "interfaces and source addresses bound to the zone. The zone combines " @@ -1087,23 +1084,23 @@ msgstr "" "能結合服務、連接埠、協定、偽裝、連接埠/封包轉送、icmp 過濾、豐富規則等。界域" "可以與介面、來源位址等綁定。" -#: ../src/firewall-config.glade.h:90 +#: ../src/firewall-config.glade.h:83 msgid "Add Zone" msgstr "加入界域" -#: ../src/firewall-config.glade.h:91 +#: ../src/firewall-config.glade.h:84 msgid "Edit Zone" msgstr "編輯界域" -#: ../src/firewall-config.glade.h:92 +#: ../src/firewall-config.glade.h:85 msgid "Remove Zone" msgstr "移除界域" -#: ../src/firewall-config.glade.h:93 +#: ../src/firewall-config.glade.h:86 msgid "Load Zone Defaults" msgstr "載入界域預設值" -#: ../src/firewall-config.glade.h:94 +#: ../src/firewall-config.glade.h:87 msgid "" "Here you can define which services are trusted in the zone. Trusted services " "are accessible from all hosts and networks that can reach the machine from " @@ -1112,63 +1109,63 @@ msgstr "" "你可以在此處定義該界域中有哪些服務值得信任。只要此界域所綁定之連線、介面、來" "源的主機與網路能觸及本機,則皆可存取這些信任的服務。" -#: ../src/firewall-config.glade.h:95 +#: ../src/firewall-config.glade.h:88 msgid "Services" msgstr "服務" -#: ../src/firewall-config.glade.h:96 +#: ../src/firewall-config.glade.h:89 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks that can connect to the machine." msgstr "請添加其他連接埠或連接埠範圍,讓所有可連接至本機的主機或網路存取。" -#: ../src/firewall-config.glade.h:97 +#: ../src/firewall-config.glade.h:90 msgid "Add Port" msgstr "加入連接埠" -#: ../src/firewall-config.glade.h:98 +#: ../src/firewall-config.glade.h:91 msgid "Edit Port" msgstr "編輯連接埠" -#: ../src/firewall-config.glade.h:99 +#: ../src/firewall-config.glade.h:92 msgid "Remove Port" msgstr "移除連接埠" -#: ../src/firewall-config.glade.h:100 +#: ../src/firewall-config.glade.h:93 msgid "Ports" msgstr "連接埠" -#: ../src/firewall-config.glade.h:101 +#: ../src/firewall-config.glade.h:94 msgid "Add protocols, which need to be accessible for all hosts or networks." msgstr "新增通訊協定,並且必須能被所有主機或網路存取。" -#: ../src/firewall-config.glade.h:102 +#: ../src/firewall-config.glade.h:95 msgid "Add Protocol" msgstr "加入協定" -#: ../src/firewall-config.glade.h:103 +#: ../src/firewall-config.glade.h:96 msgid "Edit Protocol" msgstr "編輯協定" -#: ../src/firewall-config.glade.h:104 +#: ../src/firewall-config.glade.h:97 msgid "Remove Protocol" msgstr "移除協定" -#: ../src/firewall-config.glade.h:105 +#: ../src/firewall-config.glade.h:98 msgid "Protocols" msgstr "協定" -#: ../src/firewall-config.glade.h:106 +#: ../src/firewall-config.glade.h:99 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks that can connect to the machine." msgstr "加入其他來源連接埠或連接埠範圍,讓所有可連接至本機的主機或網路存取。" -#: ../src/firewall-config.glade.h:107 +#: ../src/firewall-config.glade.h:100 msgid "Source Ports" msgstr "來源連接埠" -#: ../src/firewall-config.glade.h:108 +#: ../src/firewall-config.glade.h:101 msgid "" "Masquerading allows you to set up a host or router that connects your local " "network to the internet. Your local network will not be visible and the " @@ -1177,21 +1174,21 @@ msgstr "" "偽裝可讓您設置個能讓您本本地端網路連至網際網路的主機或路由器。您的本地端網路" "不會被看見,且眾主機在網際網路上會顯示成單一位址。偽裝功能僅適用於 IPv4。" -#: ../src/firewall-config.glade.h:109 +#: ../src/firewall-config.glade.h:102 msgid "Masquerade zone" msgstr "偽裝界域" -#: ../src/firewall-config.glade.h:110 +#: ../src/firewall-config.glade.h:103 msgid "" "If you enable masquerading, IP forwarding will be enabled for your IPv4 " "networks." msgstr "若您啟用偽裝,將為您的 IPv4 網路啟用 IP 轉送功能。" -#: ../src/firewall-config.glade.h:111 +#: ../src/firewall-config.glade.h:104 msgid "Masquerading" msgstr "偽裝" -#: ../src/firewall-config.glade.h:112 +#: ../src/firewall-config.glade.h:105 msgid "" "Add entries to forward ports either from one port to another on the local " "system or from the local system to another system. Forwarding to another " @@ -1202,19 +1199,19 @@ msgstr "" "另一部系統。僅在介面卡偽裝時才能轉送至另一部系統。連接埠轉送功能僅適用於 " "IPv4。" -#: ../src/firewall-config.glade.h:113 +#: ../src/firewall-config.glade.h:106 msgid "Add Forward Port" msgstr "加入轉送連接埠" -#: ../src/firewall-config.glade.h:114 +#: ../src/firewall-config.glade.h:107 msgid "Edit Forward Port" msgstr "編輯轉送連接埠" -#: ../src/firewall-config.glade.h:115 +#: ../src/firewall-config.glade.h:108 msgid "Remove Forward Port" msgstr "移除轉送連接埠" -#: ../src/firewall-config.glade.h:116 +#: ../src/firewall-config.glade.h:109 msgid "" "The Internet Control Message Protocol (ICMP) is mainly used to send error " "messages between networked computers, but additionally for informational " @@ -1223,7 +1220,7 @@ msgstr "" "網際網路控制訊息通訊協定 (Internet Control Message Protocol, ICMP) 主要用在連" "網電腦間錯誤訊息的傳送,不過也能被用來傳送像是 ping 請求和回應的資訊訊息。" -#: ../src/firewall-config.glade.h:117 +#: ../src/firewall-config.glade.h:110 msgid "" "Mark the ICMP types in the list, which should be rejected. All other ICMP " "types are allowed to pass the firewall. The default is no limitation." @@ -1231,7 +1228,7 @@ msgstr "" "將清單中應被拒絕的 ICMP 類型標記起來。其他所有 ICMP 則允許通過防火牆。預設值" "為無限制。" -#: ../src/firewall-config.glade.h:118 +#: ../src/firewall-config.glade.h:111 msgid "" "If Invert Filter is enabled, marked ICMP entries are accepted and the others " "are rejected. In a zone with the target DROP, they are dropped." @@ -1239,35 +1236,35 @@ msgstr "" "如果啟用了反轉篩選器,系統會接受已標示的 ICMP 項目,但拒絕其他項目。在目標為 " "DROP 的界域中,它們會被丟棄。" -#: ../src/firewall-config.glade.h:119 +#: ../src/firewall-config.glade.h:112 msgid "Invert Filter" msgstr "反轉篩選器" -#: ../src/firewall-config.glade.h:120 +#: ../src/firewall-config.glade.h:113 msgid "ICMP Filter" msgstr "ICMP 過濾器" -#: ../src/firewall-config.glade.h:121 +#: ../src/firewall-config.glade.h:114 msgid "Here you can set rich language rules for the zone." msgstr "您可以在這裡設定界域的豐富語言規則。" -#: ../src/firewall-config.glade.h:122 +#: ../src/firewall-config.glade.h:115 msgid "Add Rich Rule" msgstr "加入豐富規則" -#: ../src/firewall-config.glade.h:123 +#: ../src/firewall-config.glade.h:116 msgid "Edit Rich Rule" msgstr "編輯豐富規則" -#: ../src/firewall-config.glade.h:124 +#: ../src/firewall-config.glade.h:117 msgid "Remove Rich Rule" msgstr "移除豐富規則" -#: ../src/firewall-config.glade.h:125 +#: ../src/firewall-config.glade.h:118 msgid "Rich Rules" msgstr "豐富規則" -#: ../src/firewall-config.glade.h:126 +#: ../src/firewall-config.glade.h:119 msgid "" "Add entries to bind interfaces to the zone. If the interface will be used by " "a connection, the zone will be set to the zone specified in the connection." @@ -1275,19 +1272,19 @@ msgstr "" "請添加條目來將介面與此界域綁定。如果介面會被某連線使用,則界域將被設為連線中" "所指定的界域。" -#: ../src/firewall-config.glade.h:127 +#: ../src/firewall-config.glade.h:120 msgid "Add Interface" msgstr "加入介面" -#: ../src/firewall-config.glade.h:128 +#: ../src/firewall-config.glade.h:121 msgid "Edit Interface" msgstr "編輯介面" -#: ../src/firewall-config.glade.h:129 +#: ../src/firewall-config.glade.h:122 msgid "Remove Interface" msgstr "移除介面" -#: ../src/firewall-config.glade.h:131 +#: ../src/firewall-config.glade.h:124 msgid "" "Add entries to bind source addresses or areas to the zone. You can also bind " "to a MAC source address, but with limitations. Port forwarding and " @@ -1296,77 +1293,77 @@ msgstr "" "請添加條目來將來源位址或區域與此界域綁定。您也可以綁定至 MAC 來源位址,但有限" "制。port forwarding 與 masquerading 都無法在 MAC 來源綁定上運作。" -#: ../src/firewall-config.glade.h:132 +#: ../src/firewall-config.glade.h:125 msgid "Add Source" msgstr "加入來源" -#: ../src/firewall-config.glade.h:133 +#: ../src/firewall-config.glade.h:126 msgid "Edit Source" msgstr "編輯來源" -#: ../src/firewall-config.glade.h:134 +#: ../src/firewall-config.glade.h:127 msgid "Remove Source" msgstr "移除來源" -#: ../src/firewall-config.glade.h:136 +#: ../src/firewall-config.glade.h:129 msgid "Zones" msgstr "界域" -#: ../src/firewall-config.glade.h:137 +#: ../src/firewall-config.glade.h:130 msgid "" "A firewalld service is a combination of ports, protocols, modules and " "destination addresses." msgstr "firewalld 服務可由連接埠、協定、模組、目的地位址等組合而成。" -#: ../src/firewall-config.glade.h:139 +#: ../src/firewall-config.glade.h:132 msgid "Add Service" msgstr "加入服務" -#: ../src/firewall-config.glade.h:140 +#: ../src/firewall-config.glade.h:133 msgid "Edit Service" msgstr "編輯服務" -#: ../src/firewall-config.glade.h:141 +#: ../src/firewall-config.glade.h:134 msgid "Remove Service" msgstr "移除服務" -#: ../src/firewall-config.glade.h:142 +#: ../src/firewall-config.glade.h:135 msgid "Load Service Defaults" msgstr "載入服務預設值" -#: ../src/firewall-config.glade.h:143 +#: ../src/firewall-config.glade.h:136 msgid "" "Add additional ports or port ranges, which need to be accessible for all " "hosts or networks." msgstr "新增額外的通訊埠或通訊埠範圍,並且必須能被所有主機或網路存取。" -#: ../src/firewall-config.glade.h:144 +#: ../src/firewall-config.glade.h:137 msgid "Edit Entry" msgstr "編輯條目" -#: ../src/firewall-config.glade.h:145 +#: ../src/firewall-config.glade.h:138 msgid "Remove Entry" msgstr "移除條目" -#: ../src/firewall-config.glade.h:146 +#: ../src/firewall-config.glade.h:139 msgid "" "Add additional source ports or port ranges, which need to be accessible for " "all hosts or networks." msgstr "加入其他來源連訊埠或連接埠範圍,讓所有主機或網路均可存取。" -#: ../src/firewall-config.glade.h:147 +#: ../src/firewall-config.glade.h:140 msgid "Source Port" msgstr "來源連接埠" -#: ../src/firewall-config.glade.h:148 +#: ../src/firewall-config.glade.h:141 msgid "Netfilter helper modules are needed for some services." msgstr "有些服務必須有 Netfilter 輔助器模組。" -#: ../src/firewall-config.glade.h:149 +#: ../src/firewall-config.glade.h:142 msgid "Modules" msgstr "模組" -#: ../src/firewall-config.glade.h:150 +#: ../src/firewall-config.glade.h:143 msgid "" "If you specify destination addresses, the service entry will be limited to " "the destination address and type. If both entries are empty, there is no " @@ -1374,21 +1371,21 @@ msgid "" msgstr "" "若您指定目標位址,服務條目將限於目的地位址與類型。若兩條目皆空,則沒有限制。" -#: ../src/firewall-config.glade.h:151 +#: ../src/firewall-config.glade.h:144 msgid "IPv4:" msgstr "IPv4:" -#: ../src/firewall-config.glade.h:152 +#: ../src/firewall-config.glade.h:145 msgid "IPv6:" msgstr "IPv6:" -#: ../src/firewall-config.glade.h:153 +#: ../src/firewall-config.glade.h:146 msgid "" "Services can only be changed in the permanent configuration view. The " "runtime configuration of services is fixed." msgstr "服務僅可以在永久組態檢視下更動。服務的執行時期組態是固定不變的。" -#: ../src/firewall-config.glade.h:154 +#: ../src/firewall-config.glade.h:147 msgid "" "An IPSet can be used to create white or black lists and is able to store for " "example IP addresses, port numbers or MAC addresses. " @@ -1396,27 +1393,27 @@ msgstr "" "IPSet 可以用來建立白名單或黑名單,且可以儲存例如 IP 位址、連接埠號、或 MAC 位" "址等。" -#: ../src/firewall-config.glade.h:155 +#: ../src/firewall-config.glade.h:148 msgid "IPSet" msgstr "IPSet" -#: ../src/firewall-config.glade.h:156 +#: ../src/firewall-config.glade.h:149 msgid "Add IPSet" msgstr "加入 IPSet" -#: ../src/firewall-config.glade.h:157 +#: ../src/firewall-config.glade.h:150 msgid "Edit IPSet" msgstr "編輯 IPSet" -#: ../src/firewall-config.glade.h:158 +#: ../src/firewall-config.glade.h:151 msgid "Remove IPSet" msgstr "移除 IPSet" -#: ../src/firewall-config.glade.h:159 +#: ../src/firewall-config.glade.h:152 msgid "Load IPSet Defaults" msgstr "載入 IPSet 預設值" -#: ../src/firewall-config.glade.h:160 +#: ../src/firewall-config.glade.h:153 msgid "" "Entries of the IPSet. You will only be able to see entries of ipsets that " "are not using the timeout option, also only the entries, that have been " @@ -1426,7 +1423,7 @@ msgstr "" "IPSet 的條目。您只能看到未使用逾時選項的 IPset 條目,以及加入 firewalld 的條" "目。已經透過 ipset 指令直接加入的條目不會在此列出。" -#: ../src/firewall-config.glade.h:161 +#: ../src/firewall-config.glade.h:154 msgid "" "This IPSet uses the timeout option, therefore no entries are visible here. " "The entries should be taken care directly with the ipset command." @@ -1434,20 +1431,20 @@ msgstr "" "這 IPSet 使用逾時值,因此此處看不到任何條目。這些條目應該直接透過 ipset 指令" "來處理。" -#: ../src/firewall-config.glade.h:162 +#: ../src/firewall-config.glade.h:155 msgid "Add" msgstr "加入" -#: ../src/firewall-config.glade.h:164 +#: ../src/firewall-config.glade.h:157 msgid "Entries" msgstr "條目" -#: ../src/firewall-config.glade.h:165 +#: ../src/firewall-config.glade.h:158 msgid "" "IPSets can only be created or deleted in the permanent configuration view." msgstr "IPSet 只能在永久配置檢視下建立或刪除。" -#: ../src/firewall-config.glade.h:166 +#: ../src/firewall-config.glade.h:159 msgid "" "A firewalld icmptype provides the information for an Internet Control " "Message Protocol (ICMP) type for firewalld." @@ -1455,34 +1452,34 @@ msgstr "" "firewalld icmptype 為 firewalld 提供網際網路控制訊息協定 (ICMP,Internet " "Control Message Protocol) 類型資訊。" -#: ../src/firewall-config.glade.h:167 +#: ../src/firewall-config.glade.h:160 msgid "Add ICMP Type" msgstr "加入 ICMP 類型" -#: ../src/firewall-config.glade.h:168 +#: ../src/firewall-config.glade.h:161 msgid "Edit ICMP Type" msgstr "編輯 ICMP 類型" -#: ../src/firewall-config.glade.h:169 +#: ../src/firewall-config.glade.h:162 msgid "Remove ICMP Type" msgstr "移除 ICMP 類型" -#: ../src/firewall-config.glade.h:170 +#: ../src/firewall-config.glade.h:163 msgid "Load ICMP Type Defaults" msgstr "載入 ICMP 類型預設值" -#: ../src/firewall-config.glade.h:171 +#: ../src/firewall-config.glade.h:164 msgid "Specify whether this ICMP Type is available for IPv4 and/or IPv6." msgstr "指明此 ICMP 類型在 IPv4 與/或 IPv6 中是否可用。" -#: ../src/firewall-config.glade.h:172 +#: ../src/firewall-config.glade.h:165 msgid "" "ICMP Types can only be changed in the permanent configuration view. The " "runtime configuration of ICMP Types is fixed." msgstr "" "ICMP 類型僅可以在永久組態檢視下更動。ICMP 類型的執行時期組態是固定不變的。" -#: ../src/firewall-config.glade.h:173 +#: ../src/firewall-config.glade.h:166 msgid "" "A connection tracking helper is assisting to make protocols work that are " "using different flows for signaling and data transfers. The data transfers " @@ -1492,11 +1489,11 @@ msgstr "" "連線追蹤輔助器是要輔助使用不同訊號、資料傳輸流向的協定運作。資料傳輸若使用無" "關訊號連線的連接埠,在沒有輔助器的情況下會被防火牆封鎖。" -#: ../src/firewall-config.glade.h:174 +#: ../src/firewall-config.glade.h:167 msgid "Define ports or port ranges, which are monitored by the helper." msgstr "定義連接埠或連接埠範圍,由輔助器監控。" -#: ../src/firewall-config.glade.h:175 +#: ../src/firewall-config.glade.h:168 msgid "" "The direct configuration gives a more direct access to the firewall. These " "options require user to know basic iptables concepts, i.e. tables, chains, " @@ -1507,7 +1504,7 @@ msgstr "" "念,例如表格、鏈條、指令、參數、目標等。直接組態應該謹以「最後的避風港」的心" "態對待,只在無法使用其他 firewalld 功能時才使用。" -#: ../src/firewall-config.glade.h:176 +#: ../src/firewall-config.glade.h:169 msgid "" "The ipv argument of each option has to be ipv4 or ipv6 or eb. With ipv4 it " "will be for iptables, with ipv6 for ip6tables and with eb for ethernet " @@ -1516,32 +1513,44 @@ msgstr "" "每個選項的 ipv 引數必須是 ipv4 或 ipv6 或 eb。ipv4 用於 iptables,ipv6 用於 " "ip6tables,而 eb 用於乙太網路接橋 (ebtables)。" -#: ../src/firewall-config.glade.h:177 +#: ../src/firewall-config.glade.h:170 msgid "Additional chains for use with rules." msgstr "要使用的規則的額外鏈條。" -#: ../src/firewall-config.glade.h:178 +#: ../src/firewall-config.glade.h:171 msgid "Add Chain" msgstr "加入鏈條" -#: ../src/firewall-config.glade.h:179 +#: ../src/firewall-config.glade.h:172 msgid "Edit Chain" msgstr "編輯鏈條" -#: ../src/firewall-config.glade.h:180 +#: ../src/firewall-config.glade.h:173 msgid "Remove Chain" msgstr "移除鏈條" -#: ../src/firewall-config.glade.h:181 +#: ../src/firewall-config.glade.h:174 msgid "Chains" msgstr "鏈條" -#: ../src/firewall-config.glade.h:182 +#: ../src/firewall-config.glade.h:175 msgid "" "Add a rule with the arguments args to a chain in a table with a priority." msgstr "加入有 args 引數的規則到有優先等級的表格的鏈條中。" -#: ../src/firewall-config.glade.h:183 +#: ../src/firewall-config.glade.h:176 +msgid "Add Rule" +msgstr "加入規則" + +#: ../src/firewall-config.glade.h:177 +msgid "Edit Rule" +msgstr "編輯規則" + +#: ../src/firewall-config.glade.h:178 +msgid "Remove Rule" +msgstr "移除規則" + +#: ../src/firewall-config.glade.h:179 msgid "" "The priority is used to order rules. Priority 0 means add rule on top of the " "chain, with a higher priority the rule will be added further down. Rules " @@ -1555,23 +1564,11 @@ msgstr "" "可能變動。如果您想要確保某規則在某個規則之後才加入,前者請使用較低的優先等" "級,後者請使用較高的優先等級。" -#: ../src/firewall-config.glade.h:184 -msgid "Add Rule" -msgstr "加入規則" - -#: ../src/firewall-config.glade.h:185 -msgid "Edit Rule" -msgstr "編輯規則" - -#: ../src/firewall-config.glade.h:186 -msgid "Remove Rule" -msgstr "移除規則" - -#: ../src/firewall-config.glade.h:187 +#: ../src/firewall-config.glade.h:180 msgid "Rules" msgstr "規則" -#: ../src/firewall-config.glade.h:188 +#: ../src/firewall-config.glade.h:181 msgid "" "The passthrough rules are directly passed through to the firewall and are " "not placed in special chains. All iptables, ip6tables and ebtables options " @@ -1580,309 +1577,206 @@ msgstr "" "通透規則會直接傳遞給防火牆,而不會放入特殊鏈條中。所有的 iptabls、ip6tables " "與 ebtables 選項皆可使用。" -#: ../src/firewall-config.glade.h:189 -msgid "Please be careful with passthrough rules to not damage the firewall." -msgstr "使用通透規則時請務必小心以免損壞防火牆。" - -#: ../src/firewall-config.glade.h:190 +#: ../src/firewall-config.glade.h:182 msgid "Add Passthrough" msgstr "加入通透" -#: ../src/firewall-config.glade.h:191 +#: ../src/firewall-config.glade.h:183 msgid "Edit Passthrough" msgstr "編輯通透" -#: ../src/firewall-config.glade.h:192 +#: ../src/firewall-config.glade.h:184 msgid "Remove Passthrough" msgstr "移除通透" -#: ../src/firewall-config.glade.h:193 +#: ../src/firewall-config.glade.h:185 +msgid "Please be careful with passthrough rules to not damage the firewall." +msgstr "使用通透規則時請務必小心以免損壞防火牆。" + +#: ../src/firewall-config.glade.h:186 msgid "Passthrough" msgstr "通透" -#: ../src/firewall-config.glade.h:194 -msgid "" -"The lockdown feature is a light version of user and application policies for " -"firewalld. It limits changes to the firewall. The lockdown whitelist can " -"contain commands, contexts, users and user ids." -msgstr "" -"封鎖管制功能是 firewalld 其使用者與應用程式方針的輕量版。它會限制防火牆的更" -"動。封鎖管制白名單可以包含指令、情境、使用者與使用者 ID。" - -#: ../src/firewall-config.glade.h:195 -msgid "" -"The context is the security (SELinux) context of a running application or " -"service. To get the context of a running application use ps -e --" -"context." -msgstr "" -"情境是指執行中應用程式或服務的安全情境 (SELinux 情境)。若要取得執行中應用程式" -"的情境,請使用指令 ps -e --context。" - -#: ../src/firewall-config.glade.h:196 -msgid "Add Context" -msgstr "加入情境" - -#: ../src/firewall-config.glade.h:197 -msgid "Edit Context" -msgstr "編輯情境" - -#: ../src/firewall-config.glade.h:198 -msgid "Remove Context" -msgstr "移除情境" - -#: ../src/firewall-config.glade.h:199 -msgid "Contexts" -msgstr "情境" - -#: ../src/firewall-config.glade.h:200 -msgid "" -"If a command entry on the whitelist ends with an asterisk '*', then all " -"command lines starting with the command will match. If the '*' is not there " -"the absolute command inclusive arguments must match." -msgstr "" -"如果白名單中的指令條目是以米字號「*」結尾,則所有以該指令列開頭的任何指令皆會" -"匹配。如果「*」並非結尾,則必須精確符合該指令與相關引數。" - -#: ../src/firewall-config.glade.h:201 -msgid "Add Command Line" -msgstr "加入指令列" - -#: ../src/firewall-config.glade.h:202 -msgid "Edit Command Line" -msgstr "編輯指令列" - -#: ../src/firewall-config.glade.h:203 -msgid "Remove Command Line" -msgstr "移除指令列" - -#: ../src/firewall-config.glade.h:204 -msgid "Command lines" -msgstr "指令列" - -#: ../src/firewall-config.glade.h:205 -msgid "User names." -msgstr "使用者名稱。" - -#: ../src/firewall-config.glade.h:206 -msgid "Add User Name" -msgstr "加入使用者名稱" - -#: ../src/firewall-config.glade.h:207 -msgid "Edit User Name" -msgstr "編輯使用者名稱" - -#: ../src/firewall-config.glade.h:208 -msgid "Remove User Name" -msgstr "移除使用者名稱" - -#: ../src/firewall-config.glade.h:209 -msgid "User names" -msgstr "使用者名稱" - -#: ../src/firewall-config.glade.h:210 -msgid "User ids." -msgstr "使用者 ID。" - -#: ../src/firewall-config.glade.h:211 -msgid "Add User Id" -msgstr "加入使用者 ID" - -#: ../src/firewall-config.glade.h:212 -msgid "Edit User Id" -msgstr "編輯使用者 ID" - -#: ../src/firewall-config.glade.h:213 -msgid "Remove User Id" -msgstr "移除使用者 ID" - -#: ../src/firewall-config.glade.h:214 -msgid "User Ids" -msgstr "使用者 ID" - -#: ../src/firewall-config.glade.h:215 +#: ../src/firewall-config.glade.h:187 msgid "Current default zone of the system." msgstr "系統的目前預設界域。" -#: ../src/firewall-config.glade.h:216 +#: ../src/firewall-config.glade.h:188 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Log Denied:" msgstr "已拒絕的日誌:" -#: ../src/firewall-config.glade.h:217 +#: ../src/firewall-config.glade.h:189 msgid "Panic Mode:" msgstr "恐慌模式:" -#: ../src/firewall-config.glade.h:218 +#: ../src/firewall-config.glade.h:190 msgctxt "" "Meaning: Log of denied packets. But this is too long. LogDenied is also the " "parameter used in firewalld.conf." msgid "Automatic Helpers:" msgstr "自動輔助器:" -#: ../src/firewall-config.glade.h:219 -msgid "Lockdown:" -msgstr "封鎖管制:" - -#: ../src/firewall-config.glade.h:220 +#: ../src/firewall-config.glade.h:191 msgid "Default Zone:" msgstr "預設域:" -#: ../src/firewall-config.glade.h:222 +#: ../src/firewall-config.glade.h:193 msgid "Please enter an interface name:" msgstr "請輸入介面名稱:" -#: ../src/firewall-config.glade.h:223 +#: ../src/firewall-config.glade.h:194 msgid "Base IPSet Settings" msgstr "基礎 IPSet 設定值" -#: ../src/firewall-config.glade.h:224 +#: ../src/firewall-config.glade.h:195 msgid "Please configure base ipset settings:" msgstr "請調整基礎 IPSet 設定值組態:" -#: ../src/firewall-config.glade.h:225 +#: ../src/firewall-config.glade.h:196 msgid "Type:" msgstr "類型:" -#: ../src/firewall-config.glade.h:226 +#: ../src/firewall-config.glade.h:197 msgid "Timeout:" msgstr "時限:" -#: ../src/firewall-config.glade.h:227 +#: ../src/firewall-config.glade.h:198 msgid "Hashsize:" msgstr "Hashsize:" -#: ../src/firewall-config.glade.h:228 +#: ../src/firewall-config.glade.h:199 msgid "Maxelem:" msgstr "Maxelem:" -#: ../src/firewall-config.glade.h:229 +#: ../src/firewall-config.glade.h:200 msgid "Timeout value in seconds" msgstr "時限值,單位為秒" -#: ../src/firewall-config.glade.h:230 +#: ../src/firewall-config.glade.h:201 msgid "Initial hash size, default 1024" msgstr "初始雜湊大小,預設 1024" -#: ../src/firewall-config.glade.h:231 +#: ../src/firewall-config.glade.h:202 msgid "Max number of elements, default 65536" msgstr "元素最大數,預設 65536" -#: ../src/firewall-config.glade.h:232 +#: ../src/firewall-config.glade.h:203 msgid "Please select an ipset:" msgstr "請選取 IPset:" -#: ../src/firewall-config.glade.h:234 +#: ../src/firewall-config.glade.h:205 msgid "Please enter an ipset entry:" msgstr "請輸入 ipset 項目:" -#: ../src/firewall-config.glade.h:235 +#: ../src/firewall-config.glade.h:206 msgid "Log Denied" msgstr "已拒絕的日誌" -#: ../src/firewall-config.glade.h:236 +#: ../src/firewall-config.glade.h:207 msgid "Please select the log denied value:" msgstr "請選擇已拒絕的日誌值:" -#: ../src/firewall-config.glade.h:237 +#: ../src/firewall-config.glade.h:208 msgid "Mark" msgstr "標記" -#: ../src/firewall-config.glade.h:238 +#: ../src/firewall-config.glade.h:209 msgid "Please enter a mark with an optional mask." msgstr "請輸入標記與選用的遮罩。" -#: ../src/firewall-config.glade.h:239 +#: ../src/firewall-config.glade.h:210 msgid "The mark and the mask fields are both 32 bits wide unsigned numbers." msgstr "標記與遮罩欄位都是 32 位元寬的無正負號數字。" -#: ../src/firewall-config.glade.h:240 +#: ../src/firewall-config.glade.h:211 msgid "Mark:" msgstr "標記:" -#: ../src/firewall-config.glade.h:241 +#: ../src/firewall-config.glade.h:212 msgid "Mask:" msgstr "遮罩:" -#: ../src/firewall-config.glade.h:242 +#: ../src/firewall-config.glade.h:213 msgid "Please select a netfilter conntrack helper:" msgstr "請選取 netfilter 連接追蹤輔助器:" -#: ../src/firewall-config.glade.h:243 +#: ../src/firewall-config.glade.h:214 msgid "- Select -" msgstr "- 選取 -" -#: ../src/firewall-config.glade.h:244 +#: ../src/firewall-config.glade.h:215 msgid "Other Module:" msgstr "其他模組:" -#: ../src/firewall-config.glade.h:245 +#: ../src/firewall-config.glade.h:216 msgid "Port and Protocol" msgstr "連接埠與通訊協定" -#: ../src/firewall-config.glade.h:246 +#: ../src/firewall-config.glade.h:217 msgid "Please enter a port and protocol." msgstr "請輸入連接埠與協定。" -#: ../src/firewall-config.glade.h:247 +#: ../src/firewall-config.glade.h:218 msgid "Direct Rule" msgstr "直接規則" -#: ../src/firewall-config.glade.h:248 +#: ../src/firewall-config.glade.h:219 msgid "Please select ipv and table, chain priority and enter the args." msgstr "請選取 ipv 與表格、鏈條優先等級,並輸入引數。" -#: ../src/firewall-config.glade.h:249 +#: ../src/firewall-config.glade.h:220 msgid "Priority:" msgstr "優先等級:" -#: ../src/firewall-config.glade.h:251 +#: ../src/firewall-config.glade.h:222 msgid "Please enter a protocol." msgstr "請輸入協定。" -#: ../src/firewall-config.glade.h:252 +#: ../src/firewall-config.glade.h:223 msgid "Other Protocol:" msgstr "其他協定:" -#: ../src/firewall-config.glade.h:253 +#: ../src/firewall-config.glade.h:224 msgid "Rich Rule" msgstr "豐富規則" -#: ../src/firewall-config.glade.h:254 +#: ../src/firewall-config.glade.h:225 msgid "Please enter a rich rule." msgstr "請輸入豐富規則。" -#: ../src/firewall-config.glade.h:255 +#: ../src/firewall-config.glade.h:226 #, fuzzy msgid "For host or network allow or denylisting deactivate the element." msgstr "主機或網路白名單、黑名單來停用元素。" -#: ../src/firewall-config.glade.h:256 +#: ../src/firewall-config.glade.h:227 msgid "Source:" msgstr "來源:" -#: ../src/firewall-config.glade.h:257 +#: ../src/firewall-config.glade.h:228 msgid "Destination:" msgstr "目標:" -#: ../src/firewall-config.glade.h:258 +#: ../src/firewall-config.glade.h:229 msgid "Log:" msgstr "記錄:" -#: ../src/firewall-config.glade.h:259 +#: ../src/firewall-config.glade.h:230 msgid "Audit:" msgstr "稽核:" -#: ../src/firewall-config.glade.h:260 +#: ../src/firewall-config.glade.h:231 msgid "ipv4 and ipv6" msgstr "ipv4 與 ipv6" -#: ../src/firewall-config.glade.h:261 +#: ../src/firewall-config.glade.h:232 msgid "inverted" msgstr "反轉" -#: ../src/firewall-config.glade.h:266 +#: ../src/firewall-config.glade.h:237 msgid "" "To enable this Action has to be 'reject' and Family either 'ipv4' or " "'ipv6' (not both)." @@ -1890,78 +1784,186 @@ msgstr "" "要啟用此功能,「動作」必須是「拒絕」而「家族」必須是「ipv4」或「ipv6」(而非" "兩者)。" -#: ../src/firewall-config.glade.h:267 +#: ../src/firewall-config.glade.h:238 msgid "with Type:" msgstr "此類型:" -#: ../src/firewall-config.glade.h:268 +#: ../src/firewall-config.glade.h:239 msgid "With limit:" msgstr "有限制:" -#: ../src/firewall-config.glade.h:269 +#: ../src/firewall-config.glade.h:240 msgid "/" msgstr "/" -#: ../src/firewall-config.glade.h:274 +#: ../src/firewall-config.glade.h:245 msgid "Prefix:" msgstr "前綴:" -#: ../src/firewall-config.glade.h:275 +#: ../src/firewall-config.glade.h:246 msgid "Level:" msgstr "等級:" -#: ../src/firewall-config.glade.h:292 +#: ../src/firewall-config.glade.h:263 msgid "Element:" msgstr "元素:" -#: ../src/firewall-config.glade.h:293 +#: ../src/firewall-config.glade.h:264 msgid "Action:" msgstr "動作:" -#: ../src/firewall-config.glade.h:294 +#: ../src/firewall-config.glade.h:265 msgid "Base Service Settings" msgstr "基礎服務設定" -#: ../src/firewall-config.glade.h:295 +#: ../src/firewall-config.glade.h:266 msgid "Please configure base service settings:" msgstr "請設定基礎服務設定:" -#: ../src/firewall-config.glade.h:296 +#: ../src/firewall-config.glade.h:267 msgid "Please select a service." msgstr "請選取服務。" -#: ../src/firewall-config.glade.h:297 +#: ../src/firewall-config.glade.h:268 msgid "Please enter a source." msgstr "請輸入來源。" -#: ../src/firewall-config.glade.h:298 -msgid "User ID" -msgstr "使用者 ID" - -#: ../src/firewall-config.glade.h:299 -msgid "Please enter the user id." -msgstr "請輸入使用者 ID。" - -#: ../src/firewall-config.glade.h:301 -msgid "Please enter the user name." -msgstr "請輸入使用者名稱。" - -#: ../src/firewall-config.glade.h:302 +#: ../src/firewall-config.glade.h:269 msgid "label" msgstr "標籤" -#: ../src/firewall-config.glade.h:303 +#: ../src/firewall-config.glade.h:270 msgid "Base Zone Settings" msgstr "基礎界域設定" -#: ../src/firewall-config.glade.h:304 +#: ../src/firewall-config.glade.h:271 msgid "Please configure base zone settings:" msgstr "請設定基礎界域設定:" -#: ../src/firewall-config.glade.h:305 +#: ../src/firewall-config.glade.h:272 msgid "Default Target" msgstr "預設目標" -#: ../src/firewall-config.glade.h:306 +#: ../src/firewall-config.glade.h:273 msgid "Target:" msgstr "目標:" + +#~ msgid "Context" +#~ msgstr "情境" + +#~ msgid "Command line" +#~ msgstr "指令列" + +#~ msgid "User name" +#~ msgstr "使用者名稱" + +#~ msgid "User id" +#~ msgstr "使用者 ID" + +#~ msgid "Please enter the command line." +#~ msgstr "請輸入指令列。" + +#~ msgid "Please enter the context." +#~ msgstr "請輸入情境。" + +#~ msgid "" +#~ "Lockdown locks firewall configuration so that only applications on " +#~ "lockdown whitelist are able to change it." +#~ msgstr "" +#~ "封鎖管制會鎖上防火牆組態,只有封鎖管制白名單中列出的應用程式可以改動組態。" + +#~ msgid "Lockdown" +#~ msgstr "封鎖管制" + +#~ msgid "Lockdown Whitelist" +#~ msgstr "封鎖管制白名單" + +#~ msgid "" +#~ "The lockdown feature is a light version of user and application policies " +#~ "for firewalld. It limits changes to the firewall. The lockdown whitelist " +#~ "can contain commands, contexts, users and user ids." +#~ msgstr "" +#~ "封鎖管制功能是 firewalld 其使用者與應用程式方針的輕量版。它會限制防火牆的" +#~ "更動。封鎖管制白名單可以包含指令、情境、使用者與使用者 ID。" + +#~ msgid "" +#~ "The context is the security (SELinux) context of a running application or " +#~ "service. To get the context of a running application use ps -e --" +#~ "context." +#~ msgstr "" +#~ "情境是指執行中應用程式或服務的安全情境 (SELinux 情境)。若要取得執行中應用" +#~ "程式的情境,請使用指令 ps -e --context。" + +#~ msgid "Add Context" +#~ msgstr "加入情境" + +#~ msgid "Edit Context" +#~ msgstr "編輯情境" + +#~ msgid "Remove Context" +#~ msgstr "移除情境" + +#~ msgid "Contexts" +#~ msgstr "情境" + +#~ msgid "" +#~ "If a command entry on the whitelist ends with an asterisk '*', then all " +#~ "command lines starting with the command will match. If the '*' is not " +#~ "there the absolute command inclusive arguments must match." +#~ msgstr "" +#~ "如果白名單中的指令條目是以米字號「*」結尾,則所有以該指令列開頭的任何指令" +#~ "皆會匹配。如果「*」並非結尾,則必須精確符合該指令與相關引數。" + +#~ msgid "Add Command Line" +#~ msgstr "加入指令列" + +#~ msgid "Edit Command Line" +#~ msgstr "編輯指令列" + +#~ msgid "Remove Command Line" +#~ msgstr "移除指令列" + +#~ msgid "Command lines" +#~ msgstr "指令列" + +#~ msgid "User names." +#~ msgstr "使用者名稱。" + +#~ msgid "Add User Name" +#~ msgstr "加入使用者名稱" + +#~ msgid "Edit User Name" +#~ msgstr "編輯使用者名稱" + +#~ msgid "Remove User Name" +#~ msgstr "移除使用者名稱" + +#~ msgid "User names" +#~ msgstr "使用者名稱" + +#~ msgid "User ids." +#~ msgstr "使用者 ID。" + +#~ msgid "Add User Id" +#~ msgstr "加入使用者 ID" + +#~ msgid "Edit User Id" +#~ msgstr "編輯使用者 ID" + +#~ msgid "Remove User Id" +#~ msgstr "移除使用者 ID" + +#~ msgid "User Ids" +#~ msgstr "使用者 ID" + +#~ msgid "Lockdown:" +#~ msgstr "封鎖管制:" + +#~ msgid "User ID" +#~ msgstr "使用者 ID" + +#~ msgid "Please enter the user id." +#~ msgstr "請輸入使用者 ID。" + +#~ msgid "Please enter the user name." +#~ msgstr "請輸入使用者名稱。" diff --git a/shell-completion/Makefile.in b/shell-completion/Makefile.in index 237b017..d797828 100644 --- a/shell-completion/Makefile.in +++ b/shell-completion/Makefile.in @@ -1,7 +1,7 @@ -# Makefile.in generated by automake 1.16.1 from Makefile.am. +# Makefile.in generated by automake 1.16.5 from Makefile.am. # @configure_input@ -# Copyright (C) 1994-2018 Free Software Foundation, Inc. +# Copyright (C) 1994-2021 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -159,6 +159,8 @@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ BASHCOMPLETIONDIR = @BASHCOMPLETIONDIR@ +CSCOPE = @CSCOPE@ +CTAGS = @CTAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_LOG_TARGET = @DEFAULT_LOG_TARGET@ DEFS = @DEFS@ @@ -167,6 +169,7 @@ EBTABLES_RESTORE = @EBTABLES_RESTORE@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ +ETAGS = @ETAGS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GETTEXT_PACKAGE = @GETTEXT_PACKAGE@ GLIB_COMPILE_SCHEMAS = @GLIB_COMPILE_SCHEMAS@ @@ -204,8 +207,8 @@ MAKEINFO = @MAKEINFO@ MKDIR_P = @MKDIR_P@ MODPROBE = @MODPROBE@ MSGFMT = @MSGFMT@ -MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ +MSGMERGE_FOR_MSGFMT_OPTION = @MSGMERGE_FOR_MSGFMT_OPTION@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ @@ -378,7 +381,6 @@ ctags CTAGS: cscope cscopelist: - distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am diff --git a/shell-completion/bash/firewall-cmd b/shell-completion/bash/firewall-cmd index 6ee4421..e883901 100644 --- a/shell-completion/bash/firewall-cmd +++ b/shell-completion/bash/firewall-cmd @@ -9,18 +9,9 @@ # TODO: find a way how to get the following options from firewall-cmd -OPTIONS_LOCKDOWN="--add-lockdown-whitelist-command= --remove-lockdown-whitelist-command= \ - --query-lockdown-whitelist-command= --list-lockdown-whitelist-commands \ - --add-lockdown-whitelist-context= --remove-lockdown-whitelist-context= \ - --query-lockdown-whitelist-context= --list-lockdown-whitelist-contexts \ - --add-lockdown-whitelist-uid= --remove-lockdown-whitelist-uid= \ - --query-lockdown-whitelist-uid= --list-lockdown-whitelist-uids \ - --add-lockdown-whitelist-user= --remove-lockdown-whitelist-user= \ - --query-lockdown-whitelist-user= --list-lockdown-whitelist-users" - # can be used as standalone or with --permanent OPTIONS_CONFIG="--get-zones --get-policies --get-services --get-icmptypes --get-helpers \ - ${OPTIONS_LOCKDOWN} --list-all-zones --list-all-policies \ + --list-all-zones --list-all-policies \ --info-zone= --info-policy= --info-service= --info-icmptype= \ --info-ipset= --info-helper=" @@ -113,7 +104,6 @@ OPTIONS_GENERAL="--help --version \ --runtime-to-permanent --check-config --reset-to-defaults \ --panic-on --panic-off --query-panic \ --get-log-denied --set-log-denied= --get-ipset-types \ - --lockdown-on --lockdown-off --query-lockdown \ --get-default-zone --set-default-zone= --get-active-zones \ --get-zone-of-interface= --get-zone-of-interface= \ ${OPTIONS_CONFIG} \ diff --git a/src/Makefile.am b/src/Makefile.am index 58ada17..b97ba0d 100644 --- a/src/Makefile.am +++ b/src/Makefile.am @@ -26,7 +26,6 @@ nobase_dist_python_DATA = \ firewall/core/fw_ifcfg.py \ firewall/core/fw_ipset.py \ firewall/core/fw_nm.py \ - firewall/core/fw_policies.py \ firewall/core/fw_policy.py \ firewall/core/fw.py \ firewall/core/fw_service.py \ @@ -44,7 +43,6 @@ nobase_dist_python_DATA = \ firewall/core/io/__init__.py \ firewall/core/io/io_object.py \ firewall/core/io/ipset.py \ - firewall/core/io/lockdown_whitelist.py \ firewall/core/io/policy.py \ firewall/core/io/service.py \ firewall/core/io/zone.py \ diff --git a/src/Makefile.in b/src/Makefile.in index e0f2203..fab15f1 100644 --- a/src/Makefile.in +++ b/src/Makefile.in @@ -1,7 +1,7 @@ -# Makefile.in generated by automake 1.16.1 from Makefile.am. +# Makefile.in generated by automake 1.16.5 from Makefile.am. # @configure_input@ -# Copyright (C) 1994-2018 Free Software Foundation, Inc. +# Copyright (C) 1994-2021 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -186,8 +186,6 @@ am__define_uniq_tagged_files = \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` -ETAGS = etags -CTAGS = ctags DIST_SUBDIRS = $(SUBDIRS) am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/firewall-applet.in \ $(srcdir)/firewall-cmd.in $(srcdir)/firewall-config.in \ @@ -227,6 +225,8 @@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ BASHCOMPLETIONDIR = @BASHCOMPLETIONDIR@ +CSCOPE = @CSCOPE@ +CTAGS = @CTAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_LOG_TARGET = @DEFAULT_LOG_TARGET@ DEFS = @DEFS@ @@ -235,6 +235,7 @@ EBTABLES_RESTORE = @EBTABLES_RESTORE@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ +ETAGS = @ETAGS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GETTEXT_PACKAGE = @GETTEXT_PACKAGE@ GLIB_COMPILE_SCHEMAS = @GLIB_COMPILE_SCHEMAS@ @@ -272,8 +273,8 @@ MAKEINFO = @MAKEINFO@ MKDIR_P = @MKDIR_P@ MODPROBE = @MODPROBE@ MSGFMT = @MSGFMT@ -MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ +MSGMERGE_FOR_MSGFMT_OPTION = @MSGMERGE_FOR_MSGFMT_OPTION@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ @@ -380,7 +381,6 @@ nobase_dist_python_DATA = \ firewall/core/fw_ifcfg.py \ firewall/core/fw_ipset.py \ firewall/core/fw_nm.py \ - firewall/core/fw_policies.py \ firewall/core/fw_policy.py \ firewall/core/fw.py \ firewall/core/fw_service.py \ @@ -398,7 +398,6 @@ nobase_dist_python_DATA = \ firewall/core/io/__init__.py \ firewall/core/io/io_object.py \ firewall/core/io/ipset.py \ - firewall/core/io/lockdown_whitelist.py \ firewall/core/io/policy.py \ firewall/core/io/service.py \ firewall/core/io/zone.py \ @@ -711,7 +710,6 @@ cscopelist-am: $(am__tagged_files) distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags - distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am diff --git a/src/firewall-applet b/src/firewall-applet index 9687ee1..aa5c08f 100755 --- a/src/firewall-applet +++ b/src/firewall-applet @@ -1,4 +1,4 @@ -#!/opt/hostedtoolcache/Python/3.7.17/x64/bin/python +#!/opt/hostedtoolcache/Python/3.8.18/x64/bin/python # SPDX-License-Identifier: GPL-2.0-or-later # # Copyright (C) 2010-2023 Red Hat, Inc. @@ -450,13 +450,16 @@ class TrayApplet(QtWidgets.QSystemTrayIcon): self.name = _("Firewall Applet") self.prog = "firewall-applet" self.icon_name = "firewall-applet" + self.normal_icon = QtGui.QIcon.fromTheme(self.icon_name) self.icons = { - "normal": QtGui.QIcon.fromTheme(self.icon_name), + "normal": self.normal_icon, "error": QtGui.QIcon.fromTheme(self.icon_name + "-error"), "panic": QtGui.QIcon.fromTheme(self.icon_name + "-panic"), - "normal-shields_up": QtGui.QIcon.fromTheme(self.icon_name + "-shields_up"), + "normal-shields_up": QtGui.QIcon.fromTheme( + self.icon_name + "-shields_up", self.normal_icon + ), "normal-shields_down": QtGui.QIcon.fromTheme( - self.icon_name + "-shields_down" + self.icon_name + "-shields_down", self.normal_icon ), } self.timer = None diff --git a/src/firewall-applet.in b/src/firewall-applet.in index 0d4a306..7e223f1 100755 --- a/src/firewall-applet.in +++ b/src/firewall-applet.in @@ -450,13 +450,16 @@ class TrayApplet(QtWidgets.QSystemTrayIcon): self.name = _("Firewall Applet") self.prog = "firewall-applet" self.icon_name = "firewall-applet" + self.normal_icon = QtGui.QIcon.fromTheme(self.icon_name) self.icons = { - "normal": QtGui.QIcon.fromTheme(self.icon_name), + "normal": self.normal_icon, "error": QtGui.QIcon.fromTheme(self.icon_name + "-error"), "panic": QtGui.QIcon.fromTheme(self.icon_name + "-panic"), - "normal-shields_up": QtGui.QIcon.fromTheme(self.icon_name + "-shields_up"), + "normal-shields_up": QtGui.QIcon.fromTheme( + self.icon_name + "-shields_up", self.normal_icon + ), "normal-shields_down": QtGui.QIcon.fromTheme( - self.icon_name + "-shields_down" + self.icon_name + "-shields_down", self.normal_icon ), } self.timer = None diff --git a/src/firewall-cmd b/src/firewall-cmd index 3662d97..9669a7e 100755 --- a/src/firewall-cmd +++ b/src/firewall-cmd @@ -1,4 +1,4 @@ -#!/opt/hostedtoolcache/Python/3.7.17/x64/bin/python +#!/opt/hostedtoolcache/Python/3.8.18/x64/bin/python # SPDX-License-Identifier: GPL-2.0-or-later # # Copyright (C) 2009-2016 Red Hat, Inc. @@ -465,45 +465,6 @@ Direct Options Return whether the tracked passthrough rule has been added [P] -Lockdown Options - --lockdown-on Enable lockdown. - --lockdown-off Disable lockdown. - --query-lockdown Query whether lockdown is enabled - -Lockdown Whitelist Options - --list-lockdown-whitelist-commands - List all command lines that are on the whitelist [P] - --add-lockdown-whitelist-command= - Add the command to the whitelist [P] - --remove-lockdown-whitelist-command= - Remove the command from the whitelist [P] - --query-lockdown-whitelist-command= - Query whether the command is on the whitelist [P] - --list-lockdown-whitelist-contexts - List all contexts that are on the whitelist [P] - --add-lockdown-whitelist-context= - Add the context context to the whitelist [P] - --remove-lockdown-whitelist-context= - Remove the context from the whitelist [P] - --query-lockdown-whitelist-context= - Query whether the context is on the whitelist [P] - --list-lockdown-whitelist-uids - List all user ids that are on the whitelist [P] - --add-lockdown-whitelist-uid= - Add the user id uid to the whitelist [P] - --remove-lockdown-whitelist-uid= - Remove the user id uid from the whitelist [P] - --query-lockdown-whitelist-uid= - Query whether the user id uid is on the whitelist [P] - --list-lockdown-whitelist-users - List all user names that are on the whitelist [P] - --add-lockdown-whitelist-user= - Add the user name user to the whitelist [P] - --remove-lockdown-whitelist-user= - Remove the user name user from the whitelist [P] - --query-lockdown-whitelist-user= - Query whether the user name user is on the whitelist [P] - Panic Options --panic-on Enable panic mode --panic-off Disable panic mode @@ -2316,119 +2277,9 @@ if a.permanent: # lockdown whitelist elif options_lockdown_whitelist: - policies = fw.config().policies() - - # commands - if a.list_lockdown_whitelist_commands: - l = policies.getLockdownWhitelistCommands() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_command: - cmd.add_sequence( - a.add_lockdown_whitelist_command, - policies.addLockdownWhitelistCommand, - policies.queryLockdownWhitelistCommand, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_command: - cmd.remove_sequence( - a.remove_lockdown_whitelist_command, - policies.removeLockdownWhitelistCommand, - policies.queryLockdownWhitelistCommand, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_command: - cmd.query_sequence( - a.query_lockdown_whitelist_command, - policies.queryLockdownWhitelistCommand, - None, - "'%s'", - ) - - # contexts - elif a.list_lockdown_whitelist_contexts: - l = policies.getLockdownWhitelistContexts() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_context: - cmd.add_sequence( - a.add_lockdown_whitelist_context, - policies.addLockdownWhitelistContext, - policies.queryLockdownWhitelistContext, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_context: - cmd.remove_sequence( - a.remove_lockdown_whitelist_context, - policies.removeLockdownWhitelistContext, - policies.queryLockdownWhitelistContext, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_context: - cmd.query_sequence( - a.query_lockdown_whitelist_context, - policies.queryLockdownWhitelistContext, - None, - "'%s'", - ) - - # uids - elif a.list_lockdown_whitelist_uids: - l = policies.getLockdownWhitelistUids() - cmd.print_and_exit(" ".join(map(str, l))) - elif a.add_lockdown_whitelist_uid is not None: - cmd.add_sequence( - a.add_lockdown_whitelist_uid, - policies.addLockdownWhitelistUid, - policies.queryLockdownWhitelistUid, - None, - "%s", - ) - elif a.remove_lockdown_whitelist_uid is not None: - cmd.remove_sequence( - a.remove_lockdown_whitelist_uid, - policies.removeLockdownWhitelistUid, - policies.queryLockdownWhitelistUid, - None, - "%s", - ) - elif a.query_lockdown_whitelist_uid is not None: - cmd.query_sequence( - a.query_lockdown_whitelist_uid, - policies.queryLockdownWhitelistUid, - None, - "%s", - ) - - # users - elif a.list_lockdown_whitelist_users: - l = policies.getLockdownWhitelistUsers() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_user: - cmd.add_sequence( - a.add_lockdown_whitelist_user, - policies.addLockdownWhitelistUser, - policies.queryLockdownWhitelistUser, - None, - "%s", - ) - elif a.remove_lockdown_whitelist_user: - cmd.remove_sequence( - a.remove_lockdown_whitelist_user, - policies.removeLockdownWhitelistUser, - policies.queryLockdownWhitelistUser, - None, - "%s", - ) - elif a.query_lockdown_whitelist_user: - cmd.query_sequence( - a.query_lockdown_whitelist_user, - policies.queryLockdownWhitelistUser, - None, - "'%s'", - ) + cmd.print_error_msg( + "Lockdown feature is deprecated and removed.", exit_code=0, force=True + ) elif options_direct: direct = fw.config().direct() @@ -3571,124 +3422,10 @@ elif a.info_helper: cmd.print_helper_info(a.info_helper, fw.getHelperSettings(a.info_helper)) sys.exit(0) -# lockdown -elif a.lockdown_on: - fw.config().set_property("Lockdown", "yes") # permanent - fw.enableLockdown() # runtime -elif a.lockdown_off: - fw.config().set_property("Lockdown", "no") # permanent - fw.disableLockdown() # runtime -elif a.query_lockdown: - cmd.print_query_result(fw.queryLockdown()) # runtime - # lockdown = fw.config().get_property("Lockdown") - # cmd.print_query_result(lockdown.lower() in [ "yes", "true" ]) - -# lockdown whitelist - -# commands -elif a.list_lockdown_whitelist_commands: - l = fw.getLockdownWhitelistCommands() - cmd.print_and_exit("\n".join(l)) -elif a.add_lockdown_whitelist_command: - cmd.add_sequence( - a.add_lockdown_whitelist_command, - fw.addLockdownWhitelistCommand, - fw.queryLockdownWhitelistCommand, - None, - "'%s'", - ) -elif a.remove_lockdown_whitelist_command: - cmd.remove_sequence( - a.remove_lockdown_whitelist_command, - fw.removeLockdownWhitelistCommand, - fw.queryLockdownWhitelistCommand, - None, - "'%s'", - ) -elif a.query_lockdown_whitelist_command: - cmd.query_sequence( - a.query_lockdown_whitelist_command, - fw.queryLockdownWhitelistCommand, - None, - "'%s'", - ) - -# contexts -elif a.list_lockdown_whitelist_contexts: - l = fw.getLockdownWhitelistContexts() - cmd.print_and_exit("\n".join(l)) -elif a.add_lockdown_whitelist_context: - cmd.add_sequence( - a.add_lockdown_whitelist_context, - fw.addLockdownWhitelistContext, - fw.queryLockdownWhitelistContext, - None, - "'%s'", - ) -elif a.remove_lockdown_whitelist_context: - cmd.remove_sequence( - a.remove_lockdown_whitelist_context, - fw.removeLockdownWhitelistContext, - fw.queryLockdownWhitelistContext, - None, - "'%s'", - ) -elif a.query_lockdown_whitelist_context: - cmd.query_sequence( - a.query_lockdown_whitelist_context, - fw.queryLockdownWhitelistContext, - None, - "'%s'", - ) - -# uids -elif a.list_lockdown_whitelist_uids: - l = fw.getLockdownWhitelistUids() - cmd.print_and_exit(" ".join(map(str, l))) -elif a.add_lockdown_whitelist_uid is not None: - cmd.add_sequence( - a.add_lockdown_whitelist_uid, - fw.addLockdownWhitelistUid, - fw.queryLockdownWhitelistUid, - None, - "'%s'", - ) -elif a.remove_lockdown_whitelist_uid is not None: - cmd.remove_sequence( - a.remove_lockdown_whitelist_uid, - fw.removeLockdownWhitelistUid, - fw.queryLockdownWhitelistUid, - None, - "'%s'", - ) -elif a.query_lockdown_whitelist_uid is not None: - cmd.query_sequence( - a.query_lockdown_whitelist_uid, fw.queryLockdownWhitelistUid, None, "'%s'" - ) - -# users -elif a.list_lockdown_whitelist_users: - l = fw.getLockdownWhitelistUsers() - cmd.print_and_exit(" ".join(l)) -elif a.add_lockdown_whitelist_user: - cmd.add_sequence( - a.add_lockdown_whitelist_user, - fw.addLockdownWhitelistUser, - fw.queryLockdownWhitelistUser, - None, - "'%s'", - ) -elif a.remove_lockdown_whitelist_user: - cmd.remove_sequence( - a.remove_lockdown_whitelist_user, - fw.removeLockdownWhitelistUser, - fw.queryLockdownWhitelistUser, - None, - "'%s'", - ) -elif a.query_lockdown_whitelist_user: - cmd.query_sequence( - a.query_lockdown_whitelist_user, fw.queryLockdownWhitelistUser, None, "'%s'" +# lockdown and lockdown whitelist +elif options_lockdown_whitelist or a.lockdown_on or a.lockdown_off or a.query_lockdown: + cmd.print_error_msg( + "Lockdown feature is deprecated and removed.", exit_code=0, force=True ) # interface diff --git a/src/firewall-cmd.in b/src/firewall-cmd.in index c0aa68b..2d63b6b 100755 --- a/src/firewall-cmd.in +++ b/src/firewall-cmd.in @@ -465,45 +465,6 @@ Direct Options Return whether the tracked passthrough rule has been added [P] -Lockdown Options - --lockdown-on Enable lockdown. - --lockdown-off Disable lockdown. - --query-lockdown Query whether lockdown is enabled - -Lockdown Whitelist Options - --list-lockdown-whitelist-commands - List all command lines that are on the whitelist [P] - --add-lockdown-whitelist-command= - Add the command to the whitelist [P] - --remove-lockdown-whitelist-command= - Remove the command from the whitelist [P] - --query-lockdown-whitelist-command= - Query whether the command is on the whitelist [P] - --list-lockdown-whitelist-contexts - List all contexts that are on the whitelist [P] - --add-lockdown-whitelist-context= - Add the context context to the whitelist [P] - --remove-lockdown-whitelist-context= - Remove the context from the whitelist [P] - --query-lockdown-whitelist-context= - Query whether the context is on the whitelist [P] - --list-lockdown-whitelist-uids - List all user ids that are on the whitelist [P] - --add-lockdown-whitelist-uid= - Add the user id uid to the whitelist [P] - --remove-lockdown-whitelist-uid= - Remove the user id uid from the whitelist [P] - --query-lockdown-whitelist-uid= - Query whether the user id uid is on the whitelist [P] - --list-lockdown-whitelist-users - List all user names that are on the whitelist [P] - --add-lockdown-whitelist-user= - Add the user name user to the whitelist [P] - --remove-lockdown-whitelist-user= - Remove the user name user from the whitelist [P] - --query-lockdown-whitelist-user= - Query whether the user name user is on the whitelist [P] - Panic Options --panic-on Enable panic mode --panic-off Disable panic mode @@ -2316,119 +2277,9 @@ if a.permanent: # lockdown whitelist elif options_lockdown_whitelist: - policies = fw.config().policies() - - # commands - if a.list_lockdown_whitelist_commands: - l = policies.getLockdownWhitelistCommands() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_command: - cmd.add_sequence( - a.add_lockdown_whitelist_command, - policies.addLockdownWhitelistCommand, - policies.queryLockdownWhitelistCommand, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_command: - cmd.remove_sequence( - a.remove_lockdown_whitelist_command, - policies.removeLockdownWhitelistCommand, - policies.queryLockdownWhitelistCommand, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_command: - cmd.query_sequence( - a.query_lockdown_whitelist_command, - policies.queryLockdownWhitelistCommand, - None, - "'%s'", - ) - - # contexts - elif a.list_lockdown_whitelist_contexts: - l = policies.getLockdownWhitelistContexts() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_context: - cmd.add_sequence( - a.add_lockdown_whitelist_context, - policies.addLockdownWhitelistContext, - policies.queryLockdownWhitelistContext, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_context: - cmd.remove_sequence( - a.remove_lockdown_whitelist_context, - policies.removeLockdownWhitelistContext, - policies.queryLockdownWhitelistContext, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_context: - cmd.query_sequence( - a.query_lockdown_whitelist_context, - policies.queryLockdownWhitelistContext, - None, - "'%s'", - ) - - # uids - elif a.list_lockdown_whitelist_uids: - l = policies.getLockdownWhitelistUids() - cmd.print_and_exit(" ".join(map(str, l))) - elif a.add_lockdown_whitelist_uid is not None: - cmd.add_sequence( - a.add_lockdown_whitelist_uid, - policies.addLockdownWhitelistUid, - policies.queryLockdownWhitelistUid, - None, - "%s", - ) - elif a.remove_lockdown_whitelist_uid is not None: - cmd.remove_sequence( - a.remove_lockdown_whitelist_uid, - policies.removeLockdownWhitelistUid, - policies.queryLockdownWhitelistUid, - None, - "%s", - ) - elif a.query_lockdown_whitelist_uid is not None: - cmd.query_sequence( - a.query_lockdown_whitelist_uid, - policies.queryLockdownWhitelistUid, - None, - "%s", - ) - - # users - elif a.list_lockdown_whitelist_users: - l = policies.getLockdownWhitelistUsers() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_user: - cmd.add_sequence( - a.add_lockdown_whitelist_user, - policies.addLockdownWhitelistUser, - policies.queryLockdownWhitelistUser, - None, - "%s", - ) - elif a.remove_lockdown_whitelist_user: - cmd.remove_sequence( - a.remove_lockdown_whitelist_user, - policies.removeLockdownWhitelistUser, - policies.queryLockdownWhitelistUser, - None, - "%s", - ) - elif a.query_lockdown_whitelist_user: - cmd.query_sequence( - a.query_lockdown_whitelist_user, - policies.queryLockdownWhitelistUser, - None, - "'%s'", - ) + cmd.print_error_msg( + "Lockdown feature is deprecated and removed.", exit_code=0, force=True + ) elif options_direct: direct = fw.config().direct() @@ -3571,124 +3422,10 @@ elif a.info_helper: cmd.print_helper_info(a.info_helper, fw.getHelperSettings(a.info_helper)) sys.exit(0) -# lockdown -elif a.lockdown_on: - fw.config().set_property("Lockdown", "yes") # permanent - fw.enableLockdown() # runtime -elif a.lockdown_off: - fw.config().set_property("Lockdown", "no") # permanent - fw.disableLockdown() # runtime -elif a.query_lockdown: - cmd.print_query_result(fw.queryLockdown()) # runtime - # lockdown = fw.config().get_property("Lockdown") - # cmd.print_query_result(lockdown.lower() in [ "yes", "true" ]) - -# lockdown whitelist - -# commands -elif a.list_lockdown_whitelist_commands: - l = fw.getLockdownWhitelistCommands() - cmd.print_and_exit("\n".join(l)) -elif a.add_lockdown_whitelist_command: - cmd.add_sequence( - a.add_lockdown_whitelist_command, - fw.addLockdownWhitelistCommand, - fw.queryLockdownWhitelistCommand, - None, - "'%s'", - ) -elif a.remove_lockdown_whitelist_command: - cmd.remove_sequence( - a.remove_lockdown_whitelist_command, - fw.removeLockdownWhitelistCommand, - fw.queryLockdownWhitelistCommand, - None, - "'%s'", - ) -elif a.query_lockdown_whitelist_command: - cmd.query_sequence( - a.query_lockdown_whitelist_command, - fw.queryLockdownWhitelistCommand, - None, - "'%s'", - ) - -# contexts -elif a.list_lockdown_whitelist_contexts: - l = fw.getLockdownWhitelistContexts() - cmd.print_and_exit("\n".join(l)) -elif a.add_lockdown_whitelist_context: - cmd.add_sequence( - a.add_lockdown_whitelist_context, - fw.addLockdownWhitelistContext, - fw.queryLockdownWhitelistContext, - None, - "'%s'", - ) -elif a.remove_lockdown_whitelist_context: - cmd.remove_sequence( - a.remove_lockdown_whitelist_context, - fw.removeLockdownWhitelistContext, - fw.queryLockdownWhitelistContext, - None, - "'%s'", - ) -elif a.query_lockdown_whitelist_context: - cmd.query_sequence( - a.query_lockdown_whitelist_context, - fw.queryLockdownWhitelistContext, - None, - "'%s'", - ) - -# uids -elif a.list_lockdown_whitelist_uids: - l = fw.getLockdownWhitelistUids() - cmd.print_and_exit(" ".join(map(str, l))) -elif a.add_lockdown_whitelist_uid is not None: - cmd.add_sequence( - a.add_lockdown_whitelist_uid, - fw.addLockdownWhitelistUid, - fw.queryLockdownWhitelistUid, - None, - "'%s'", - ) -elif a.remove_lockdown_whitelist_uid is not None: - cmd.remove_sequence( - a.remove_lockdown_whitelist_uid, - fw.removeLockdownWhitelistUid, - fw.queryLockdownWhitelistUid, - None, - "'%s'", - ) -elif a.query_lockdown_whitelist_uid is not None: - cmd.query_sequence( - a.query_lockdown_whitelist_uid, fw.queryLockdownWhitelistUid, None, "'%s'" - ) - -# users -elif a.list_lockdown_whitelist_users: - l = fw.getLockdownWhitelistUsers() - cmd.print_and_exit(" ".join(l)) -elif a.add_lockdown_whitelist_user: - cmd.add_sequence( - a.add_lockdown_whitelist_user, - fw.addLockdownWhitelistUser, - fw.queryLockdownWhitelistUser, - None, - "'%s'", - ) -elif a.remove_lockdown_whitelist_user: - cmd.remove_sequence( - a.remove_lockdown_whitelist_user, - fw.removeLockdownWhitelistUser, - fw.queryLockdownWhitelistUser, - None, - "'%s'", - ) -elif a.query_lockdown_whitelist_user: - cmd.query_sequence( - a.query_lockdown_whitelist_user, fw.queryLockdownWhitelistUser, None, "'%s'" +# lockdown and lockdown whitelist +elif options_lockdown_whitelist or a.lockdown_on or a.lockdown_off or a.query_lockdown: + cmd.print_error_msg( + "Lockdown feature is deprecated and removed.", exit_code=0, force=True ) # interface diff --git a/src/firewall-config b/src/firewall-config index 3e3de0f..8d5de62 100755 --- a/src/firewall-config +++ b/src/firewall-config @@ -1,4 +1,4 @@ -#!/opt/hostedtoolcache/Python/3.7.17/x64/bin/python +#!/opt/hostedtoolcache/Python/3.8.18/x64/bin/python # SPDX-License-Identifier: GPL-2.0-or-later # # Copyright (C) 2011-2015 Red Hat, Inc. @@ -133,7 +133,6 @@ class FirewallConfig: self.statusLabel = builder.get_object("statusLabel") self.modifiedLabel = builder.get_object("modifiedLabel") - self.lockdownLabel = builder.get_object("lockdownLabel") self.panicLabel = builder.get_object("panicLabel") self.waitingWindow = builder.get_object("waitingWindow") @@ -153,8 +152,6 @@ class FirewallConfig: self.helpersMenuitem = builder.get_object("helpersMenuitem") self.directBox = builder.get_object("directBox") self.directMenuitem = builder.get_object("directMenuitem") - self.lockdownWhitelistBox = builder.get_object("lockdownWhitelistBox") - self.lockdownWhitelistMenuitem = builder.get_object("lockdownWhitelistMenuitem") self.activeBindingsMenuitem = builder.get_object("activeBindingsMenuitem") self.changeZonesConnectionMenuitem = builder.get_object( @@ -173,82 +170,6 @@ class FirewallConfig: self.panic_check_id = self.panicMenuitem.connect_after( "toggled", self.panic_check_cb ) - self.lockdownMenuitem = builder.get_object("lockdownMenuitem") - self.lockdown_check_id = self.lockdownMenuitem.connect_after( - "toggled", self.lockdown_check_cb - ) - - self.lockdownContextView = builder.get_object("lockdownContextView") - self.lockdownContextStore = Gtk.ListStore(GObject.TYPE_STRING) - self.lockdownContextView.append_column( - Gtk.TreeViewColumn(_("Context"), Gtk.CellRendererText(), text=0) - ) - self.lockdownContextView.set_model(self.lockdownContextStore) - self.lockdownContextView.get_selection().connect( - "changed", self.change_lockdown_context_selection_cb - ) - self.editLockdownContextButton = builder.get_object("editLockdownContextButton") - self.removeLockdownContextButton = builder.get_object( - "removeLockdownContextButton" - ) - - self.contextDialog = builder.get_object("contextDialog") - self.contextDialogOkButton = builder.get_object("contextDialogOkButton") - self.contextDialogCancelButton = builder.get_object("contextDialogCancelButton") - self.contextDialogContextEntry = builder.get_object("contextDialogContextEntry") - - self.lockdownCommandView = builder.get_object("lockdownCommandView") - self.lockdownCommandStore = Gtk.ListStore(GObject.TYPE_STRING) - self.lockdownCommandView.append_column( - Gtk.TreeViewColumn(_("Command line"), Gtk.CellRendererText(), text=0) - ) - self.lockdownCommandView.set_model(self.lockdownCommandStore) - self.lockdownCommandView.get_selection().connect( - "changed", self.change_lockdown_command_selection_cb - ) - self.editLockdownCommandButton = builder.get_object("editLockdownCommandButton") - self.removeLockdownCommandButton = builder.get_object( - "removeLockdownCommandButton" - ) - - self.commandDialog = builder.get_object("commandDialog") - self.commandDialogOkButton = builder.get_object("commandDialogOkButton") - self.commandDialogCancelButton = builder.get_object("commandDialogCancelButton") - self.commandDialogCommandEntry = builder.get_object("commandDialogCommandEntry") - - self.lockdownUserView = builder.get_object("lockdownUserView") - self.lockdownUserStore = Gtk.ListStore(GObject.TYPE_STRING) - self.lockdownUserView.append_column( - Gtk.TreeViewColumn(_("User name"), Gtk.CellRendererText(), text=0) - ) - self.lockdownUserView.set_model(self.lockdownUserStore) - self.lockdownUserView.get_selection().connect( - "changed", self.change_lockdown_user_selection_cb - ) - self.editLockdownUserButton = builder.get_object("editLockdownUserButton") - self.removeLockdownUserButton = builder.get_object("removeLockdownUserButton") - - self.userDialog = builder.get_object("userDialog") - self.userDialogOkButton = builder.get_object("userDialogOkButton") - self.userDialogCancelButton = builder.get_object("userDialogCancelButton") - self.userDialogUserEntry = builder.get_object("userDialogUserEntry") - - self.lockdownUidView = builder.get_object("lockdownUidView") - self.lockdownUidStore = Gtk.ListStore(GObject.TYPE_INT) - self.lockdownUidView.append_column( - Gtk.TreeViewColumn(_("User id"), Gtk.CellRendererText(), text=0) - ) - self.lockdownUidView.set_model(self.lockdownUidStore) - self.lockdownUidView.get_selection().connect( - "changed", self.change_lockdown_uid_selection_cb - ) - self.editLockdownUidButton = builder.get_object("editLockdownUidButton") - self.removeLockdownUidButton = builder.get_object("removeLockdownUidButton") - - self.uidDialog = builder.get_object("uidDialog") - self.uidDialogOkButton = builder.get_object("uidDialogOkButton") - self.uidDialogCancelButton = builder.get_object("uidDialogCancelButton") - self.uidDialogUidEntry = builder.get_object("uidDialogUidEntry") self.serviceConfServicesEditBox = builder.get_object( "serviceConfServicesEditBox" @@ -1344,8 +1265,6 @@ class FirewallConfig: self.fw.connect("default-zone-changed", self.default_zone_changed_cb) self.fw.connect("reloaded", self.reload_cb) - self.fw.connect("lockdown-enabled", self.lockdown_enabled_cb) - self.fw.connect("lockdown-disabled", self.lockdown_disabled_cb) self.fw.connect("log-denied-changed", self.log_denied_changed_cb) @@ -1377,33 +1296,6 @@ class FirewallConfig: self.fw.connect("ipset-entry-added", self.ipset_entry_added_cb) self.fw.connect("ipset-entry-removed", self.ipset_entry_removed_cb) - self.fw.connect( - "lockdown-whitelist-command-added", self.lockdown_whitelist_command_added_cb - ) - self.fw.connect( - "lockdown-whitelist-command-removed", - self.lockdown_whitelist_command_removed_cb, - ) - self.fw.connect( - "lockdown-whitelist-context-added", self.lockdown_whitelist_context_added_cb - ) - self.fw.connect( - "lockdown-whitelist-context-removed", - self.lockdown_whitelist_context_removed_cb, - ) - self.fw.connect( - "lockdown-whitelist-uid-added", self.lockdown_whitelist_uid_added_cb - ) - self.fw.connect( - "lockdown-whitelist-uid-removed", self.lockdown_whitelist_uid_removed_cb - ) - self.fw.connect( - "lockdown-whitelist-user-added", self.lockdown_whitelist_user_added_cb - ) - self.fw.connect( - "lockdown-whitelist-user-removed", self.lockdown_whitelist_user_removed_cb - ) - self.fw.connect("direct:chain-added", self.direct_chain_added_cb) self.fw.connect("direct:chain-removed", self.direct_chain_removed_cb) self.fw.connect("direct:rule-added", self.direct_rule_added_cb) @@ -1434,10 +1326,6 @@ class FirewallConfig: self.fw.connect("config:helper-updated", self.conf_helper_updated_cb) self.fw.connect("config:helper-removed", self.conf_helper_removed_cb) self.fw.connect("config:helper-renamed", self.conf_helper_renamed_cb) - self.fw.connect( - "config:policies:lockdown-whitelist-updated", - self.lockdown_whitelist_updated_cb, - ) # settings @@ -1457,13 +1345,6 @@ class FirewallConfig: ) self.settings_show_helpers_changed(self.settings, "show-helpers") - self.settings.connect( - "changed::show-lockdown-whitelist", - self.settings_show_lockdown_whitelist_changed, - ) - self.settings_show_lockdown_whitelist_changed( - self.settings, "show-lockdown-whitelist" - ) self.settings.connect( "changed::show-active-bindings", self.settings_show_active_bindings_changed ) @@ -1625,23 +1506,6 @@ class FirewallConfig: self.directRuleStore.clear() self.directPassthroughStore.clear() - def onViewLockdownWhitelist_toggled(self, button): - self.settings.set_boolean("show-lockdown-whitelist", button.get_active()) - - def settings_show_lockdown_whitelist_changed(self, settings, key): - self.show_lockdown_whitelist = settings.get_boolean(key) - self.lockdownWhitelistBox.set_visible(self.show_lockdown_whitelist) - self.lockdownWhitelistMenuitem.set_active(self.show_lockdown_whitelist) - - if self.show_lockdown_whitelist: - if self.fw.connected: - self.load_lockdown_whitelist() - else: - self.lockdownContextStore.clear() - self.lockdownCommandStore.clear() - self.lockdownUserStore.clear() - self.lockdownUidStore.clear() - def settings_show_active_bindings_changed(self, settings, key): self.show_active_bindings = settings.get_boolean(key) self.activeBindingsMenuitem.set_active(self.show_active_bindings) @@ -1759,20 +1623,12 @@ class FirewallConfig: self.logDeniedLabel.set_text(self.log_denied) self.automatic_helpers = self.fw.getAutomaticHelpers() self.set_automaticHelpersLabel(self.automatic_helpers) - lockdown = self.fw.queryLockdown() - if lockdown: - self.lockdownLabel.set_text(self.enabled) - else: - self.lockdownLabel.set_text(self.disabled) panic = self.fw.queryPanicMode() if panic: self.panicLabel.set_text(self.enabled) else: self.panicLabel.set_text(self.disabled) self.modifiedLabel.set_text("") - self.lockdownMenuitem.handler_block(self.lockdown_check_id) - self.lockdownMenuitem.set_active(lockdown) - self.lockdownMenuitem.handler_unblock(self.lockdown_check_id) self.panicMenuitem.handler_block(self.panic_check_id) self.panicMenuitem.set_active(panic) self.panicMenuitem.handler_unblock(self.panic_check_id) @@ -1794,7 +1650,6 @@ class FirewallConfig: self.connection_lost = True self.statusLabel.set_text(self.trying_to_connect_label) self.defaultZoneLabel.set_text("-") - self.lockdownLabel.set_text("-") self.panicLabel.set_text("-") self.moduleDialogModuleCombobox.remove_all() @@ -1855,7 +1710,6 @@ class FirewallConfig: self.load_icmps() self.load_helpers() self.load_direct() - self.load_lockdown_whitelist() self.update_active_zones() def _load_store_append(self, zone, is_active): @@ -2502,7 +2356,6 @@ class FirewallConfig: self.load_icmps() self.load_helpers() self.load_direct() - self.load_lockdown_whitelist() def update_active_zones(self): self.active_zones.clear() @@ -3443,11 +3296,12 @@ class FirewallConfig: if old_obj.action.limit: self.richRuleDialogActionLimitCheck.set_active(True) - (rate, duration) = old_obj.action.limit.value.split("/") - self.richRuleDialogActionLimitRateEntry.set_text(rate) + self.richRuleDialogActionLimitRateEntry.set_text( + str(old_obj.action.limit.rate) + ) combobox_select_text( self.richRuleDialogActionLimitDurationCombobox, - smhd[duration], + smhd[old_obj.action.limit.duration], insensitive=True, ) @@ -3484,11 +3338,12 @@ class FirewallConfig: ) if old_obj.log.limit: self.richRuleDialogLogLimitCheck.set_active(True) - (rate, duration) = old_obj.log.limit.value.split("/") - self.richRuleDialogLogLimitRateEntry.set_text(rate) + self.richRuleDialogLogLimitRateEntry.set_text( + str(old_obj.log.limit.rate) + ) combobox_select_text( self.richRuleDialogLogLimitDurationCombobox, - smhd[duration], + smhd[old_obj.log.limit.duration], insensitive=True, ) @@ -3497,11 +3352,12 @@ class FirewallConfig: self.richRuleDialogAuditCheck.set_active(True) if old_obj.audit.limit: self.richRuleDialogAuditLimitCheck.set_active(True) - (rate, duration) = old_obj.audit.limit.value.split("/") - self.richRuleDialogAuditLimitRateEntry.set_text(rate) + self.richRuleDialogAuditLimitRateEntry.set_text( + str(old_obj.audit.limit.rate) + ) combobox_select_text( self.richRuleDialogAuditLimitDurationCombobox, - smhd[duration], + smhd[old_obj.audit.limit.duration], insensitive=True, ) @@ -3693,7 +3549,8 @@ class FirewallConfig: selection.select_iter(iter) iter = self.serviceDialogServiceStore.iter_next(iter) - self.serviceDialogOkButton.set_sensitive(False) + if old_service: + self.serviceDialogOkButton.set_sensitive(False) self.serviceDialog.set_position(Gtk.WindowPosition.CENTER_ON_PARENT) self.serviceDialog.set_transient_for(self.mainWindow) self.serviceDialog.show_all() @@ -3843,25 +3700,22 @@ class FirewallConfig: _("debug"): "debug", } # 7, debug-level messages + rule_params = {} + # family combolabel = self.richRuleDialogFamilyCombobox.get_active_text() - if combolabel == _("ipv4"): - rule = rich.Rich_Rule("ipv4") # ipv4 rule - elif combolabel == _("ipv6"): - rule = rich.Rich_Rule("ipv6") # ipv6 rule - else: - rule = rich.Rich_Rule() # ipv4+ipv6 rule + if combolabel in [_("ipv4"), _("ipv6")]: + rule_params["family"] = combolabel # priority priority = self.richRuleDialogPriorityEntry.get_value_as_int() - if priority != 0: - rule.priority = priority + rule_params["priority"] = priority # element if self.richRuleDialogElementCheck.get_active(): combolabel = self.richRuleDialogElementCombobox.get_active_text() if combolabel == _("service"): - rule.element = rich.Rich_Service( + rule_params["element"] = rich.Rich_Service( self.richRuleDialogElementChooser.get_text() ) elif combolabel == _("port"): @@ -3873,17 +3727,16 @@ class FirewallConfig: (port, proto) = text.split("/") except: return None - rule.element = rich.Rich_Port(port, proto) elif combolabel == _("protocol"): - rule.element = rich.Rich_Protocol( + rule_params["element"] = rich.Rich_Protocol( self.richRuleDialogElementChooser.get_text() ) elif combolabel == _("icmp-block"): - rule.element = rich.Rich_IcmpBlock( + rule_params["element"] = rich.Rich_IcmpBlock( self.richRuleDialogElementChooser.get_text() ) elif combolabel == _("icmp-type"): - rule.element = rich.Rich_IcmpType( + rule_params["element"] = rich.Rich_IcmpType( self.richRuleDialogElementChooser.get_text() ) elif combolabel == _("forward-port"): @@ -3892,9 +3745,11 @@ class FirewallConfig: (port, proto, to_port, to_addr) = self.split_fwp_string(text) except: return None - rule.element = rich.Rich_ForwardPort(port, proto, to_port, to_addr) + rule_params["element"] = rich.Rich_ForwardPort( + port, proto, to_port, to_addr + ) elif combolabel == _("masquerade"): - rule.element = rich.Rich_Masquerade() + rule_params["element"] = rich.Rich_Masquerade() elif combolabel == _("source-port"): text = self.richRuleDialogElementChooser.get_text() port = "" @@ -3904,7 +3759,7 @@ class FirewallConfig: (port, proto) = text.split("/") except: return None - rule.element = rich.Rich_SourcePort(port, proto) + rule_params["element"] = rich.Rich_SourcePort(port, proto) # action if ( @@ -3921,19 +3776,19 @@ class FirewallConfig: limit = rich.Rich_Limit(value) combolabel = self.richRuleDialogActionCombobox.get_active_text() if combolabel == _("accept"): - rule.action = rich.Rich_Accept(limit) + rule_params["action"] = rich.Rich_Accept(limit) elif combolabel == _("reject"): _type = None if self.richRuleDialogActionRejectTypeCheck.get_active(): _type = ( self.richRuleDialogActionRejectTypeCombobox.get_active_text() ) - rule.action = rich.Rich_Reject(_type, limit) + rule_params["action"] = rich.Rich_Reject(_type, limit) elif combolabel == _("drop"): - rule.action = rich.Rich_Drop(limit) + rule_params["action"] = rich.Rich_Drop(limit) elif combolabel == _("mark"): _set = self.richRuleDialogActionMarkChooser.get_text() - rule.action = rich.Rich_Mark(_set, limit) + rule_params["action"] = rich.Rich_Mark(_set, limit) # source if self.richRuleDialogSourceChooser.is_sensitive() and ( @@ -3948,7 +3803,7 @@ class FirewallConfig: mac = self.richRuleDialogSourceChooser.get_text() if txt == "ipset": ipset = self.richRuleDialogSourceChooser.get_text() - rule.source = rich.Rich_Source( + rule_params["source"] = rich.Rich_Source( addr, mac, ipset, self.richRuleDialogSourceInvertCheck.get_active() ) @@ -3957,7 +3812,7 @@ class FirewallConfig: self.richRuleDialogDestinationChooser.get_text() != "" or self.richRuleDialogDestinationInvertCheck.get_active() ): - rule.destination = rich.Rich_Destination( + rule_params["destination"] = rich.Rich_Destination( self.richRuleDialogDestinationChooser.get_text(), None, invert=self.richRuleDialogDestinationInvertCheck.get_active(), @@ -3978,7 +3833,7 @@ class FirewallConfig: limit = rich.Rich_Limit(value) level = self.richRuleDialogLogLevelCombobox.get_active_text() - rule.log = rich.Rich_Log( + rule_params["log"] = rich.Rich_Log( self.richRuleDialogLogPrefixEntry.get_text(), loglevel[level], limit ) @@ -3995,9 +3850,9 @@ class FirewallConfig: self.richRuleDialogAuditLimitDurationCombobox.get_active_text() ] limit = rich.Rich_Limit(value) - rule.audit = rich.Rich_Audit(limit) + rule_params["audit"] = rich.Rich_Audit(limit) - return rule + return rich.Rich_Rule(**rule_params) def on_richRuleDialogFamilyCombobox_changed(self, *args): combolabel = self.richRuleDialogFamilyCombobox.get_active_text() @@ -4132,6 +3987,14 @@ class FirewallConfig: self.richRuleDialogActionCheck.set_sensitive(False) self.richRuleDialogActionBox.set_sensitive(False) + if ( + self.richRuleDialogElementChooser.is_sensitive() + and not self.richRuleDialogElementChooser.get_text() + ): + self.richRuleDialogOkButton.set_sensitive(False) + self.richRuleDialogOkButton.set_tooltip_text(_("invalid element")) + return + rule = self.richRuleDialog_getRule() try: rule.check() @@ -7324,15 +7187,6 @@ class FirewallConfig: self.icmpDialogIcmpStore.set_value(use_iter, 0, icmp) - def lockdown_check_cb(self, *args): - if self.fw.queryLockdown(): - self.fw.config().set_property("Lockdown", "no") # permanent - self.fw.disableLockdown() # runtime - else: - self.fw.config().set_property("Lockdown", "yes") # permanent - self.fw.enableLockdown() # runtime - self.changes_applied() - def panic_check_cb(self, *args): if self.fw.queryPanicMode(): self.fw.disablePanicMode() @@ -7368,474 +7222,6 @@ class FirewallConfig: for ipv, args in passthroughs: self.directPassthroughStore.append((ipv, functions.joinArgs(args))) - def load_lockdown_whitelist(self): - if not self.show_lockdown_whitelist: - return - if self.runtime_view: - contexts = self.fw.getLockdownWhitelistContexts() - commands = self.fw.getLockdownWhitelistCommands() - users = self.fw.getLockdownWhitelistUsers() - uids = self.fw.getLockdownWhitelistUids() - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - contexts = whitelist.getContexts() - commands = whitelist.getCommands() - users = whitelist.getUsers() - uids = whitelist.getUids() - - self.lockdownContextStore.clear() - self.lockdownCommandStore.clear() - self.lockdownUserStore.clear() - self.lockdownUidStore.clear() - - for context in contexts: - self.lockdownContextStore.append([context]) - self.lockdownContextView.get_selection().select_path(0) - for command in commands: - self.lockdownCommandStore.append([command]) - self.lockdownCommandView.get_selection().select_path(0) - for user in users: - self.lockdownUserStore.append([user]) - self.lockdownUserView.get_selection().select_path(0) - for uid in uids: - self.lockdownUidStore.append([uid]) - self.lockdownUidView.get_selection().select_path(0) - - def lockdown_enabled_cb(self): - self.lockdownLabel.set_text(self.enabled) - self.lockdownMenuitem.handler_block(self.lockdown_check_id) - self.lockdownMenuitem.set_active(True) - self.lockdownMenuitem.handler_unblock(self.lockdown_check_id) - - def lockdown_disabled_cb(self): - self.lockdownLabel.set_text(self.disabled) - self.lockdownMenuitem.handler_block(self.lockdown_check_id) - self.lockdownMenuitem.set_active(False) - self.lockdownMenuitem.handler_unblock(self.lockdown_check_id) - - def change_lockdown_context_selection_cb(self, selection): - (model, iter) = selection.get_selected() - if iter: - self.editLockdownContextButton.set_sensitive(True) - self.removeLockdownContextButton.set_sensitive(True) - else: - self.editLockdownContextButton.set_sensitive(False) - self.removeLockdownContextButton.set_sensitive(False) - - def change_lockdown_command_selection_cb(self, selection): - (model, iter) = selection.get_selected() - if iter: - self.editLockdownCommandButton.set_sensitive(True) - self.removeLockdownCommandButton.set_sensitive(True) - else: - self.editLockdownCommandButton.set_sensitive(False) - self.removeLockdownCommandButton.set_sensitive(False) - - def change_lockdown_user_selection_cb(self, selection): - (model, iter) = selection.get_selected() - if iter: - self.editLockdownUserButton.set_sensitive(True) - self.removeLockdownUserButton.set_sensitive(True) - else: - self.editLockdownUserButton.set_sensitive(False) - self.removeLockdownUserButton.set_sensitive(False) - - def change_lockdown_uid_selection_cb(self, selection): - (model, iter) = selection.get_selected() - if iter: - self.editLockdownUidButton.set_sensitive(True) - self.removeLockdownUidButton.set_sensitive(True) - else: - self.editLockdownUidButton.set_sensitive(False) - self.removeLockdownUidButton.set_sensitive(False) - - def onAddContext(self, button): - self.add_edit_context(True) - - def onEditContext(self, button): - self.add_edit_context(False) - - def onContextClicked(self, widget, event): - if event.type == Gdk.EventType.DOUBLE_BUTTON_PRESS: - self.add_edit_context(False) - - def onRemoveContext(self, button): - selection = self.lockdownContextView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - context = self.lockdownContextStore.get_value(iter, 0) - - if self.runtime_view: - self.fw.removeLockdownWhitelistContext(context) - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - whitelist.removeContext(context) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def lockdown_whitelist_context_added_cb(self, context): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownContextStore.get_iter_first() - while iter: - if self.lockdownContextStore.get_value(iter, 0) == context: - return - iter = self.lockdownContextStore.iter_next(iter) - self.lockdownContextStore.append([context]) - - def lockdown_whitelist_context_removed_cb(self, context): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownContextStore.get_iter_first() - while iter: - if self.lockdownContextStore.get_value(iter, 0) == context: - self.lockdownContextStore.remove(iter) - break - iter = self.lockdownContextStore.iter_next(iter) - - def add_edit_context(self, add): - if add: - old_context = "" - else: - selection = self.lockdownContextView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - old_context = self.lockdownContextStore.get_value(iter, 0) - - self.contextDialogContextEntry.set_text(old_context) - self.contextDialogOkButton.set_sensitive(False) - - self.contextDialog.set_position(Gtk.WindowPosition.CENTER_ON_PARENT) - self.contextDialog.set_transient_for(self.mainWindow) - self.contextDialog.show_all() - self.add_visible_dialog(self.contextDialog) - result = self.contextDialog.run() - self.contextDialog.hide() - self.remove_visible_dialog(self.contextDialog) - - if result != 1: - return - - context = self.contextDialogContextEntry.get_text() - if old_context == context: - # nothing to change - return - - if self.runtime_view: - if not self.fw.queryLockdownWhitelistContext(context): - self.fw.addLockdownWhitelistContext(context) - if not add: - self.fw.removeLockdownWhitelistContext(old_context) - self.changes_applied() - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - if not whitelist.queryContext(context): - if not add: - whitelist.removeContext(old_context) - whitelist.addContext(context) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def onContextChanged(self, *args): - text = self.contextDialogContextEntry.get_text() - if text != "" and functions.checkContext(text): - self.contextDialogOkButton.set_sensitive(True) - else: - self.contextDialogOkButton.set_sensitive(False) - - def onAddCommand(self, button): - self.add_edit_command(True) - - def onEditCommand(self, button): - self.add_edit_command(False) - - def onCommandClicked(self, widget, event): - if event.type == Gdk.EventType.DOUBLE_BUTTON_PRESS: - self.add_edit_command(False) - - def onRemoveCommand(self, button): - selection = self.lockdownCommandView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - command = self.lockdownCommandStore.get_value(iter, 0) - - if self.runtime_view: - self.fw.removeLockdownWhitelistCommand(command) - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - whitelist.removeCommand(command) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def lockdown_whitelist_command_added_cb(self, command): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownCommandStore.get_iter_first() - while iter: - if self.lockdownCommandStore.get_value(iter, 0) == command: - return - iter = self.lockdownCommandStore.iter_next(iter) - self.lockdownCommandStore.append([command]) - - def lockdown_whitelist_command_removed_cb(self, command): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownCommandStore.get_iter_first() - while iter: - if self.lockdownCommandStore.get_value(iter, 0) == command: - self.lockdownCommandStore.remove(iter) - break - iter = self.lockdownCommandStore.iter_next(iter) - - def add_edit_command(self, add): - if add: - old_command = "" - else: - selection = self.lockdownCommandView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - old_command = self.lockdownCommandStore.get_value(iter, 0) - - self.commandDialogCommandEntry.set_text(old_command) - self.commandDialogOkButton.set_sensitive(False) - - self.commandDialog.set_position(Gtk.WindowPosition.CENTER_ON_PARENT) - self.commandDialog.set_transient_for(self.mainWindow) - self.commandDialog.show_all() - self.add_visible_dialog(self.commandDialog) - result = self.commandDialog.run() - self.commandDialog.hide() - self.remove_visible_dialog(self.commandDialog) - - if result != 1: - return - - command = self.commandDialogCommandEntry.get_text() - if old_command == command: - # nothing to change - return - - if self.runtime_view: - if not self.fw.queryLockdownWhitelistCommand(command): - self.fw.addLockdownWhitelistCommand(command) - if not add: - self.fw.removeLockdownWhitelistCommand(old_command) - self.changes_applied() - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - if not whitelist.queryCommand(command): - if not add: - whitelist.removeCommand(old_command) - whitelist.addCommand(command) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def onCommandChanged(self, *args): - text = self.commandDialogCommandEntry.get_text() - if functions.checkCommand(text): - self.commandDialogOkButton.set_sensitive(True) - else: - self.commandDialogOkButton.set_sensitive(False) - - def onAddUser(self, button): - self.add_edit_user(True) - - def onEditUser(self, button): - self.add_edit_user(False) - - def onUserClicked(self, widget, event): - if event.type == Gdk.EventType.DOUBLE_BUTTON_PRESS: - self.add_edit_user(False) - - def onRemoveUser(self, button): - selection = self.lockdownUserView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - user = self.lockdownUserStore.get_value(iter, 0) - - if self.runtime_view: - self.fw.removeLockdownWhitelistUser(user) - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - whitelist.removeUser(user) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def lockdown_whitelist_user_added_cb(self, user): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownUserStore.get_iter_first() - while iter: - if self.lockdownUserStore.get_value(iter, 0) == user: - return - iter = self.lockdownUserStore.iter_next(iter) - self.lockdownUserStore.append([user]) - - def lockdown_whitelist_user_removed_cb(self, user): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownUserStore.get_iter_first() - while iter: - if self.lockdownUserStore.get_value(iter, 0) == user: - self.lockdownUserStore.remove(iter) - break - iter = self.lockdownUserStore.iter_next(iter) - - def add_edit_user(self, add): - if add: - old_user = "" - else: - selection = self.lockdownUserView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - old_user = self.lockdownUserStore.get_value(iter, 0) - - self.userDialogUserEntry.set_text(old_user) - self.userDialogOkButton.set_sensitive(False) - - self.userDialog.set_position(Gtk.WindowPosition.CENTER_ON_PARENT) - self.userDialog.set_transient_for(self.mainWindow) - self.userDialog.show_all() - self.add_visible_dialog(self.userDialog) - result = self.userDialog.run() - self.userDialog.hide() - self.remove_visible_dialog(self.userDialog) - - if result != 1: - return - - user = self.userDialogUserEntry.get_text() - if old_user == user: - # nothing to change - return - - if self.runtime_view: - if not self.fw.queryLockdownWhitelistUser(user): - self.fw.addLockdownWhitelistUser(user) - if not add: - self.fw.removeLockdownWhitelistUser(old_user) - self.changes_applied() - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - if not whitelist.queryUser(user): - if not add: - whitelist.removeUser(old_user) - whitelist.addUser(user) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def onUserChanged(self, *args): - text = self.userDialogUserEntry.get_text() - if text != "" and functions.checkUser(text): - self.userDialogOkButton.set_sensitive(True) - else: - self.userDialogOkButton.set_sensitive(False) - - def onAddUid(self, button): - self.add_edit_uid(True) - - def onEditUid(self, button): - self.add_edit_uid(False) - - def onUidClicked(self, widget, event): - if event.type == Gdk.EventType.DOUBLE_BUTTON_PRESS: - self.add_edit_uid(False) - - def onRemoveUid(self, button): - selection = self.lockdownUidView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - uid = self.lockdownUidStore.get_value(iter, 0) - - if self.runtime_view: - self.fw.removeLockdownWhitelistUid(uid) - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - whitelist.removeUid(uid) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def lockdown_whitelist_uid_added_cb(self, uid): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownUidStore.get_iter_first() - while iter: - if self.lockdownUidStore.get_value(iter, 0) == uid: - return - iter = self.lockdownUidStore.iter_next(iter) - self.lockdownUidStore.append([uid]) - - def lockdown_whitelist_uid_removed_cb(self, uid): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownUidStore.get_iter_first() - while iter: - if self.lockdownUidStore.get_value(iter, 0) == uid: - self.lockdownUidStore.remove(iter) - break - iter = self.lockdownUidStore.iter_next(iter) - - def add_edit_uid(self, add): - if add: - old_uid = "" - else: - selection = self.lockdownUidView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - old_uid = self.lockdownUidStore.get_value(iter, 0) - - self.uidDialogUidEntry.set_text("%s" % old_uid) - self.uidDialogOkButton.set_sensitive(False) - - self.uidDialog.set_position(Gtk.WindowPosition.CENTER_ON_PARENT) - self.uidDialog.set_transient_for(self.mainWindow) - self.uidDialog.show_all() - self.add_visible_dialog(self.uidDialog) - result = self.uidDialog.run() - self.uidDialog.hide() - self.remove_visible_dialog(self.uidDialog) - - if result != 1: - return - - uid = int(self.uidDialogUidEntry.get_text()) - if old_uid == uid: - # nothing to change - return - - if self.runtime_view: - if not self.fw.queryLockdownWhitelistUid(uid): - self.fw.addLockdownWhitelistUid(uid) - if not add: - self.fw.removeLockdownWhitelistUid(old_uid) - self.changes_applied() - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - if not whitelist.queryUid(uid): - if not add: - whitelist.removeUid(old_uid) - whitelist.addUid(uid) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def onUidChanged(self, *args): - text = self.uidDialogUidEntry.get_text() - if text != "" and functions.checkUid(text): - self.uidDialogOkButton.set_sensitive(True) - else: - self.uidDialogOkButton.set_sensitive(False) - - def lockdown_whitelist_updated_cb(self): - self.load_lockdown_whitelist() - def change_chain_selection_cb(self, selection): (model, iter) = selection.get_selected() if iter: diff --git a/src/firewall-config.glade b/src/firewall-config.glade index 09f93fb..e8a1422 100644 --- a/src/firewall-config.glade +++ b/src/firewall-config.glade @@ -287,244 +287,6 @@ automaticHelpersDialogOkButton - - False - 5 - Command line - True - dialog - - - False - vertical - 2 - - - False - end - - - gtk-cancel - True - True - True - True - True - - - False - True - 0 - - - - - gtk-ok - True - True - True - True - True - True - - - False - True - 1 - - - - - False - True - end - 0 - - - - - True - False - 6 - vertical - 6 - - - False - start - Please enter the command line. - True - 0 - 0 - - - False - False - 0 - - - - - True - False - 6 - vertical - - - True - True - 1024 - - True - 50 - - - - False - True - 0 - - - - - False - True - 1 - - - - - True - True - 1 - - - - - - commandDialogCancelButton - commandDialogOkButton - - - - False - 5 - Context - True - dialog - - - False - vertical - 2 - - - False - end - - - gtk-cancel - True - True - True - True - True - - - False - True - 0 - - - - - gtk-ok - True - True - True - True - True - True - - - False - True - 1 - - - - - False - True - end - 0 - - - - - True - False - 6 - vertical - 6 - - - False - start - Please enter the context. - True - 0 - 0 - - - False - False - 0 - - - - - True - False - 6 - vertical - - - True - True - 1024 - - True - 50 - - - - False - True - 0 - - - - - False - True - 1 - - - - - True - True - 1 - - - - - - contextDialogCancelButton - contextDialogOkButton - - 200 350 @@ -2397,15 +2159,6 @@ True - - - True - False - Lockdown locks firewall configuration so that only applications on lockdown whitelist are able to change it. - Lockdown - True - - True @@ -2472,15 +2225,6 @@ - - - True - False - Lockdown Whitelist - True - - - True @@ -3692,69 +3436,86 @@ False 6 - + True - False - vertical - 6 - - - True - False - Mark the ICMP types in the list, which should be rejected. All other ICMP types are allowed to pass the firewall. The default is no limitation. - True - 0 - 0 - - - False - False - 0 - - - - - True - False - If Invert Filter is enabled, marked ICMP entries are accepted and the others are rejected. In a zone with the target DROP, they are dropped. - True - True - 0 - 0 - - - False - False - 1 - - + True + in - + True False - start - False - True + 6 + 6 + 3 + 3 - - Invert Filter + True - True - False - start - 0 - True + False + vertical + 6 + + + True + False + Mark the ICMP types in the list, which should be rejected. All other ICMP types are allowed to pass the firewall. The default is no limitation. + True + 0 + 0 + + + False + False + 0 + + + + + True + False + If Invert Filter is enabled, marked ICMP entries are accepted and the others are rejected. In a zone with the target DROP, they are dropped. + True + True + 0 + 0 + + + False + False + 1 + + + + + True + False + start + False + True + + + Invert Filter + True + True + False + start + 0 + True + + + + + False + True + 2 + + + + + - - False - True - 2 - - - - @@ -6474,123 +6235,156 @@ - + True - False - start - The priority is used to order rules. Priority 0 means add rule on top of the chain, with a higher priority the rule will be added further down. Rules with the same priority are on the same level and the order of these rules is not fixed and may change. If you want to make sure that a rule will be added after another one, use a low priority for the first and a higher for the following. - True - 0 - 0 - - - False - False - 2 - - - - - True - False - 6 + True + 400 + True - + True - True - out + False + vertical + 6 - + True True - False - - - + out + + + True + True + False + + + + True + True + 0 + + + + + True + False + 6 + start + + + gtk-add + True + True + False + True + True + Add Rule + True + + + + False + True + 0 + + + + + gtk-edit + True + False + True + False + True + True + Edit Rule + True + + + + False + True + 1 + + + + + gtk-remove + True + False + True + False + True + True + Remove Rule + True + + + + False + True + 2 + + + + + False + True + 1 + - True - True - 0 - - - - - True - True - 3 - - - - - True - False - 6 - start - - - gtk-add - True - True - False - True - True - Add Rule - True - - - - False - True - 0 - - - - - gtk-edit - True - False - True - False - True - True - Edit Rule - True - - - - False - True - 1 + True + False - - gtk-remove + True - False - True - False - True - True - Remove Rule - True - + False + 5 + + + True + True + in + + + True + False + + + True + False + start + 6 + 6 + 3 + 3 + The priority is used to order rules. Priority 0 means add rule on top of the chain, with a higher priority the rule will be added further down. Rules with the same priority are on the same level and the order of these rules is not fixed and may change. If you want to make sure that a rule will be added after another one, use a low priority for the first and a higher for the following. + True + 0 + 0 + + + + + + - False - True - 2 + True + False - False + True True - 4 + 3 @@ -6633,764 +6427,171 @@ - - True - False - start - Please be careful with passthrough rules to not damage the firewall. - True - 0 - 0 - - - False - False - 2 - - - - + True - False - 6 + True + 400 + True - + True - True - out + False + vertical + 6 - + True True - False - - - + out + + + True + True + False + + + + True + True + 0 + + + + + True + False + 6 + start + + + gtk-add + True + True + False + True + True + Add Passthrough + True + + + + False + True + 0 + + + + + gtk-edit + True + False + True + False + True + True + Edit Passthrough + True + + + + False + True + 1 + + + + + gtk-remove + True + False + True + False + True + True + Remove Passthrough + True + + + + False + True + 2 + + + + + False + True + 1 + - True - True - 0 - - - - - True - True - 3 - - - - - True - False - 6 - start - - - gtk-add - True - True - False - True - True - Add Passthrough - True - - - - False - True - 0 - - - - - gtk-edit - True - False - True - False - True - True - Edit Passthrough - True - - - - False - True - 1 + True + False - - gtk-remove + True - False - True - False - True - True - Remove Passthrough - True - - - - False - True - 2 - - - - - False - True - 4 - - - - - 2 - - - - - True - False - Passthrough - - - 2 - False - - - - - True - True - 0 - - - - - True - True - 3 - - - - - 5 - - - - - True - False - Direct Configuration - - - 5 - False - - - - - False - 6 - vertical - 6 - - - True - False - The lockdown feature is a light version of user and application policies for firewalld. It limits changes to the firewall. The lockdown whitelist can contain commands, contexts, users and user ids. - True - 0 - 0 - - - False - True - 0 - - - - - True - False - 6 - vertical - - - True - True - - - True - False - 6 - vertical - 6 - - - True - False - The context is the security (SELinux) context of a running application or service. To get the context of a running application use <tt>ps -e --context</tt>. - True - True - 0 - 0 - - - False - False - 0 - - - - - True - False - 6 - - - True - True - out - - - True - True - False - - - - - - - - - True - True - 0 - - - - - True - True - 1 - - - - - True - False - 6 - start - - - gtk-add - True - True - False - True - True - Add Context - True - - - - False - True - 0 - - - - - gtk-edit - True - False - True - False - True - True - Edit Context - True - - - - False - True - 1 - - - - - gtk-remove - True - False - True - False - True - True - Remove Context - True - - - - False - True - 2 - - - - - False - True - 2 - - - - - - - True - False - Contexts - - - False - - - - - True - False - 6 - vertical - 6 - - - True - False - If a command entry on the whitelist ends with an asterisk '*', then all command lines starting with the command will match. If the '*' is not there the absolute command inclusive arguments must match. - True - 0 - 0 - - - False - False - 0 - - - - - True - False - 6 - - - True - True - out - - - True - True - False - - - - - - - - - True - True - 0 - - - - - True - True - 1 - - - - - True - False - 6 - start - - - gtk-add - True - True - False - True - True - Add Command Line - True - - - - False - True - 0 - - - - - gtk-edit - True - False - True - False - True - True - Edit Command Line - True - - - - False - True - 1 - - - - - gtk-remove - True - False - True - False - True - True - Remove Command Line - True - - - - False - True - 2 - - - - - False - True - 2 - - - - - 1 - - - - - True - False - Command lines - - - 1 - False - - - - - True - False - 6 - vertical - 6 - - - True - False - User names. - True - 0 - 0 - - - False - False - 0 - - - - - True - False - 6 - - - True - True - out - - - True - True - False - - - - - - - - - True - True - 0 - - - - - True - True - 1 - - - - - True - False - 6 - start - - - gtk-add - True - True - False - True - True - Add User Name - True - - - - False - True - 0 - - - - - gtk-edit - True - False - True - False - True - True - Edit User Name - True - - - - False - True - 1 - - - - - gtk-remove - True - False - True - False - True - True - Remove User Name - True - - - - False - True - 2 - - - - - False - True - 2 - - - - - 2 - - - - - True - False - User names - - - 2 - False - - - - - True - False - 6 - vertical - 6 - - - True - False - User ids. - True - 0 - 0 - - - False - False - 0 - - - - - True - False - 6 - - - True - True - out + False + 5 - + True True - False - - - + in + + + True + False + 6 + 6 + 3 + 3 + + + True + False + start + Please be careful with passthrough rules to not damage the firewall. + True + 0 + 0 + + + - - - True - True - 0 - - - - - True - True - 1 - - - - - True - False - 6 - start - - - gtk-add - True - True - False - True - True - Add User Id - True - - - - False - True - 0 - - - - - gtk-edit - True - False - True - False - True - True - Edit User Id - True - - - - False - True - 1 - - - - - gtk-remove - True - False - True - False - True - True - Remove User Id - True - - - - False - True - 2 + + + True + False - False + True True - 2 + 3 - 3 + 2 - + True False - User Ids + Passthrough - 3 + 2 False @@ -7405,22 +6606,22 @@ True True - 2 + 3 - 6 + 5 - + True False - Lockdown Whitelist + Direct Configuration - 6 + 5 False @@ -7623,38 +6824,6 @@ 0 - - - True - False - 6 - Lockdown: - right - 1 - - - - - - 8 - 0 - - - - - True - False - True - Current default zone of the system. - Current default zone of the system. - label - 0 - - - 9 - 0 - - True @@ -11346,247 +10515,6 @@ sourceDialogOkButton - - False - 5 - User ID - True - dialog - - - False - vertical - 2 - - - False - end - - - gtk-cancel - True - True - True - True - True - - - False - True - 0 - - - - - gtk-ok - True - True - True - True - True - True - - - False - True - 1 - - - - - False - True - end - 0 - - - - - True - False - 6 - vertical - 6 - - - False - start - Please enter the user id. - True - 0 - 0 - - - False - False - 0 - - - - - True - False - 6 - vertical - - - True - True - start - 5 - - True - 5 - 5 - - - - False - True - 0 - - - - - False - True - 1 - - - - - True - True - 1 - - - - - - uidDialogCancelButton - uidDialogOkButton - - - - False - 5 - User name - True - dialog - - - False - vertical - 2 - - - False - end - - - gtk-cancel - True - True - True - True - True - - - False - True - 0 - - - - - gtk-ok - True - True - True - True - True - True - - - False - True - 1 - - - - - False - True - end - 0 - - - - - True - False - 6 - vertical - 6 - - - False - start - Please enter the user name. - True - 0 - 0 - - - False - False - 0 - - - - - True - False - 6 - vertical - - - True - True - True - 256 - - True - 20 - - - - False - True - 0 - - - - - False - True - 1 - - - - - True - True - 1 - - - - - - userDialogCancelButton - userDialogOkButton - - False popup diff --git a/src/firewall-config.in b/src/firewall-config.in index 4c77b29..0fb5fc8 100755 --- a/src/firewall-config.in +++ b/src/firewall-config.in @@ -133,7 +133,6 @@ class FirewallConfig: self.statusLabel = builder.get_object("statusLabel") self.modifiedLabel = builder.get_object("modifiedLabel") - self.lockdownLabel = builder.get_object("lockdownLabel") self.panicLabel = builder.get_object("panicLabel") self.waitingWindow = builder.get_object("waitingWindow") @@ -153,8 +152,6 @@ class FirewallConfig: self.helpersMenuitem = builder.get_object("helpersMenuitem") self.directBox = builder.get_object("directBox") self.directMenuitem = builder.get_object("directMenuitem") - self.lockdownWhitelistBox = builder.get_object("lockdownWhitelistBox") - self.lockdownWhitelistMenuitem = builder.get_object("lockdownWhitelistMenuitem") self.activeBindingsMenuitem = builder.get_object("activeBindingsMenuitem") self.changeZonesConnectionMenuitem = builder.get_object( @@ -173,82 +170,6 @@ class FirewallConfig: self.panic_check_id = self.panicMenuitem.connect_after( "toggled", self.panic_check_cb ) - self.lockdownMenuitem = builder.get_object("lockdownMenuitem") - self.lockdown_check_id = self.lockdownMenuitem.connect_after( - "toggled", self.lockdown_check_cb - ) - - self.lockdownContextView = builder.get_object("lockdownContextView") - self.lockdownContextStore = Gtk.ListStore(GObject.TYPE_STRING) - self.lockdownContextView.append_column( - Gtk.TreeViewColumn(_("Context"), Gtk.CellRendererText(), text=0) - ) - self.lockdownContextView.set_model(self.lockdownContextStore) - self.lockdownContextView.get_selection().connect( - "changed", self.change_lockdown_context_selection_cb - ) - self.editLockdownContextButton = builder.get_object("editLockdownContextButton") - self.removeLockdownContextButton = builder.get_object( - "removeLockdownContextButton" - ) - - self.contextDialog = builder.get_object("contextDialog") - self.contextDialogOkButton = builder.get_object("contextDialogOkButton") - self.contextDialogCancelButton = builder.get_object("contextDialogCancelButton") - self.contextDialogContextEntry = builder.get_object("contextDialogContextEntry") - - self.lockdownCommandView = builder.get_object("lockdownCommandView") - self.lockdownCommandStore = Gtk.ListStore(GObject.TYPE_STRING) - self.lockdownCommandView.append_column( - Gtk.TreeViewColumn(_("Command line"), Gtk.CellRendererText(), text=0) - ) - self.lockdownCommandView.set_model(self.lockdownCommandStore) - self.lockdownCommandView.get_selection().connect( - "changed", self.change_lockdown_command_selection_cb - ) - self.editLockdownCommandButton = builder.get_object("editLockdownCommandButton") - self.removeLockdownCommandButton = builder.get_object( - "removeLockdownCommandButton" - ) - - self.commandDialog = builder.get_object("commandDialog") - self.commandDialogOkButton = builder.get_object("commandDialogOkButton") - self.commandDialogCancelButton = builder.get_object("commandDialogCancelButton") - self.commandDialogCommandEntry = builder.get_object("commandDialogCommandEntry") - - self.lockdownUserView = builder.get_object("lockdownUserView") - self.lockdownUserStore = Gtk.ListStore(GObject.TYPE_STRING) - self.lockdownUserView.append_column( - Gtk.TreeViewColumn(_("User name"), Gtk.CellRendererText(), text=0) - ) - self.lockdownUserView.set_model(self.lockdownUserStore) - self.lockdownUserView.get_selection().connect( - "changed", self.change_lockdown_user_selection_cb - ) - self.editLockdownUserButton = builder.get_object("editLockdownUserButton") - self.removeLockdownUserButton = builder.get_object("removeLockdownUserButton") - - self.userDialog = builder.get_object("userDialog") - self.userDialogOkButton = builder.get_object("userDialogOkButton") - self.userDialogCancelButton = builder.get_object("userDialogCancelButton") - self.userDialogUserEntry = builder.get_object("userDialogUserEntry") - - self.lockdownUidView = builder.get_object("lockdownUidView") - self.lockdownUidStore = Gtk.ListStore(GObject.TYPE_INT) - self.lockdownUidView.append_column( - Gtk.TreeViewColumn(_("User id"), Gtk.CellRendererText(), text=0) - ) - self.lockdownUidView.set_model(self.lockdownUidStore) - self.lockdownUidView.get_selection().connect( - "changed", self.change_lockdown_uid_selection_cb - ) - self.editLockdownUidButton = builder.get_object("editLockdownUidButton") - self.removeLockdownUidButton = builder.get_object("removeLockdownUidButton") - - self.uidDialog = builder.get_object("uidDialog") - self.uidDialogOkButton = builder.get_object("uidDialogOkButton") - self.uidDialogCancelButton = builder.get_object("uidDialogCancelButton") - self.uidDialogUidEntry = builder.get_object("uidDialogUidEntry") self.serviceConfServicesEditBox = builder.get_object( "serviceConfServicesEditBox" @@ -1344,8 +1265,6 @@ class FirewallConfig: self.fw.connect("default-zone-changed", self.default_zone_changed_cb) self.fw.connect("reloaded", self.reload_cb) - self.fw.connect("lockdown-enabled", self.lockdown_enabled_cb) - self.fw.connect("lockdown-disabled", self.lockdown_disabled_cb) self.fw.connect("log-denied-changed", self.log_denied_changed_cb) @@ -1377,33 +1296,6 @@ class FirewallConfig: self.fw.connect("ipset-entry-added", self.ipset_entry_added_cb) self.fw.connect("ipset-entry-removed", self.ipset_entry_removed_cb) - self.fw.connect( - "lockdown-whitelist-command-added", self.lockdown_whitelist_command_added_cb - ) - self.fw.connect( - "lockdown-whitelist-command-removed", - self.lockdown_whitelist_command_removed_cb, - ) - self.fw.connect( - "lockdown-whitelist-context-added", self.lockdown_whitelist_context_added_cb - ) - self.fw.connect( - "lockdown-whitelist-context-removed", - self.lockdown_whitelist_context_removed_cb, - ) - self.fw.connect( - "lockdown-whitelist-uid-added", self.lockdown_whitelist_uid_added_cb - ) - self.fw.connect( - "lockdown-whitelist-uid-removed", self.lockdown_whitelist_uid_removed_cb - ) - self.fw.connect( - "lockdown-whitelist-user-added", self.lockdown_whitelist_user_added_cb - ) - self.fw.connect( - "lockdown-whitelist-user-removed", self.lockdown_whitelist_user_removed_cb - ) - self.fw.connect("direct:chain-added", self.direct_chain_added_cb) self.fw.connect("direct:chain-removed", self.direct_chain_removed_cb) self.fw.connect("direct:rule-added", self.direct_rule_added_cb) @@ -1434,10 +1326,6 @@ class FirewallConfig: self.fw.connect("config:helper-updated", self.conf_helper_updated_cb) self.fw.connect("config:helper-removed", self.conf_helper_removed_cb) self.fw.connect("config:helper-renamed", self.conf_helper_renamed_cb) - self.fw.connect( - "config:policies:lockdown-whitelist-updated", - self.lockdown_whitelist_updated_cb, - ) # settings @@ -1457,13 +1345,6 @@ class FirewallConfig: ) self.settings_show_helpers_changed(self.settings, "show-helpers") - self.settings.connect( - "changed::show-lockdown-whitelist", - self.settings_show_lockdown_whitelist_changed, - ) - self.settings_show_lockdown_whitelist_changed( - self.settings, "show-lockdown-whitelist" - ) self.settings.connect( "changed::show-active-bindings", self.settings_show_active_bindings_changed ) @@ -1625,23 +1506,6 @@ class FirewallConfig: self.directRuleStore.clear() self.directPassthroughStore.clear() - def onViewLockdownWhitelist_toggled(self, button): - self.settings.set_boolean("show-lockdown-whitelist", button.get_active()) - - def settings_show_lockdown_whitelist_changed(self, settings, key): - self.show_lockdown_whitelist = settings.get_boolean(key) - self.lockdownWhitelistBox.set_visible(self.show_lockdown_whitelist) - self.lockdownWhitelistMenuitem.set_active(self.show_lockdown_whitelist) - - if self.show_lockdown_whitelist: - if self.fw.connected: - self.load_lockdown_whitelist() - else: - self.lockdownContextStore.clear() - self.lockdownCommandStore.clear() - self.lockdownUserStore.clear() - self.lockdownUidStore.clear() - def settings_show_active_bindings_changed(self, settings, key): self.show_active_bindings = settings.get_boolean(key) self.activeBindingsMenuitem.set_active(self.show_active_bindings) @@ -1759,20 +1623,12 @@ class FirewallConfig: self.logDeniedLabel.set_text(self.log_denied) self.automatic_helpers = self.fw.getAutomaticHelpers() self.set_automaticHelpersLabel(self.automatic_helpers) - lockdown = self.fw.queryLockdown() - if lockdown: - self.lockdownLabel.set_text(self.enabled) - else: - self.lockdownLabel.set_text(self.disabled) panic = self.fw.queryPanicMode() if panic: self.panicLabel.set_text(self.enabled) else: self.panicLabel.set_text(self.disabled) self.modifiedLabel.set_text("") - self.lockdownMenuitem.handler_block(self.lockdown_check_id) - self.lockdownMenuitem.set_active(lockdown) - self.lockdownMenuitem.handler_unblock(self.lockdown_check_id) self.panicMenuitem.handler_block(self.panic_check_id) self.panicMenuitem.set_active(panic) self.panicMenuitem.handler_unblock(self.panic_check_id) @@ -1794,7 +1650,6 @@ class FirewallConfig: self.connection_lost = True self.statusLabel.set_text(self.trying_to_connect_label) self.defaultZoneLabel.set_text("-") - self.lockdownLabel.set_text("-") self.panicLabel.set_text("-") self.moduleDialogModuleCombobox.remove_all() @@ -1855,7 +1710,6 @@ class FirewallConfig: self.load_icmps() self.load_helpers() self.load_direct() - self.load_lockdown_whitelist() self.update_active_zones() def _load_store_append(self, zone, is_active): @@ -2502,7 +2356,6 @@ class FirewallConfig: self.load_icmps() self.load_helpers() self.load_direct() - self.load_lockdown_whitelist() def update_active_zones(self): self.active_zones.clear() @@ -3443,11 +3296,12 @@ class FirewallConfig: if old_obj.action.limit: self.richRuleDialogActionLimitCheck.set_active(True) - (rate, duration) = old_obj.action.limit.value.split("/") - self.richRuleDialogActionLimitRateEntry.set_text(rate) + self.richRuleDialogActionLimitRateEntry.set_text( + str(old_obj.action.limit.rate) + ) combobox_select_text( self.richRuleDialogActionLimitDurationCombobox, - smhd[duration], + smhd[old_obj.action.limit.duration], insensitive=True, ) @@ -3484,11 +3338,12 @@ class FirewallConfig: ) if old_obj.log.limit: self.richRuleDialogLogLimitCheck.set_active(True) - (rate, duration) = old_obj.log.limit.value.split("/") - self.richRuleDialogLogLimitRateEntry.set_text(rate) + self.richRuleDialogLogLimitRateEntry.set_text( + str(old_obj.log.limit.rate) + ) combobox_select_text( self.richRuleDialogLogLimitDurationCombobox, - smhd[duration], + smhd[old_obj.log.limit.duration], insensitive=True, ) @@ -3497,11 +3352,12 @@ class FirewallConfig: self.richRuleDialogAuditCheck.set_active(True) if old_obj.audit.limit: self.richRuleDialogAuditLimitCheck.set_active(True) - (rate, duration) = old_obj.audit.limit.value.split("/") - self.richRuleDialogAuditLimitRateEntry.set_text(rate) + self.richRuleDialogAuditLimitRateEntry.set_text( + str(old_obj.audit.limit.rate) + ) combobox_select_text( self.richRuleDialogAuditLimitDurationCombobox, - smhd[duration], + smhd[old_obj.audit.limit.duration], insensitive=True, ) @@ -3693,7 +3549,8 @@ class FirewallConfig: selection.select_iter(iter) iter = self.serviceDialogServiceStore.iter_next(iter) - self.serviceDialogOkButton.set_sensitive(False) + if old_service: + self.serviceDialogOkButton.set_sensitive(False) self.serviceDialog.set_position(Gtk.WindowPosition.CENTER_ON_PARENT) self.serviceDialog.set_transient_for(self.mainWindow) self.serviceDialog.show_all() @@ -3843,25 +3700,22 @@ class FirewallConfig: _("debug"): "debug", } # 7, debug-level messages + rule_params = {} + # family combolabel = self.richRuleDialogFamilyCombobox.get_active_text() - if combolabel == _("ipv4"): - rule = rich.Rich_Rule("ipv4") # ipv4 rule - elif combolabel == _("ipv6"): - rule = rich.Rich_Rule("ipv6") # ipv6 rule - else: - rule = rich.Rich_Rule() # ipv4+ipv6 rule + if combolabel in [_("ipv4"), _("ipv6")]: + rule_params["family"] = combolabel # priority priority = self.richRuleDialogPriorityEntry.get_value_as_int() - if priority != 0: - rule.priority = priority + rule_params["priority"] = priority # element if self.richRuleDialogElementCheck.get_active(): combolabel = self.richRuleDialogElementCombobox.get_active_text() if combolabel == _("service"): - rule.element = rich.Rich_Service( + rule_params["element"] = rich.Rich_Service( self.richRuleDialogElementChooser.get_text() ) elif combolabel == _("port"): @@ -3873,17 +3727,16 @@ class FirewallConfig: (port, proto) = text.split("/") except: return None - rule.element = rich.Rich_Port(port, proto) elif combolabel == _("protocol"): - rule.element = rich.Rich_Protocol( + rule_params["element"] = rich.Rich_Protocol( self.richRuleDialogElementChooser.get_text() ) elif combolabel == _("icmp-block"): - rule.element = rich.Rich_IcmpBlock( + rule_params["element"] = rich.Rich_IcmpBlock( self.richRuleDialogElementChooser.get_text() ) elif combolabel == _("icmp-type"): - rule.element = rich.Rich_IcmpType( + rule_params["element"] = rich.Rich_IcmpType( self.richRuleDialogElementChooser.get_text() ) elif combolabel == _("forward-port"): @@ -3892,9 +3745,11 @@ class FirewallConfig: (port, proto, to_port, to_addr) = self.split_fwp_string(text) except: return None - rule.element = rich.Rich_ForwardPort(port, proto, to_port, to_addr) + rule_params["element"] = rich.Rich_ForwardPort( + port, proto, to_port, to_addr + ) elif combolabel == _("masquerade"): - rule.element = rich.Rich_Masquerade() + rule_params["element"] = rich.Rich_Masquerade() elif combolabel == _("source-port"): text = self.richRuleDialogElementChooser.get_text() port = "" @@ -3904,7 +3759,7 @@ class FirewallConfig: (port, proto) = text.split("/") except: return None - rule.element = rich.Rich_SourcePort(port, proto) + rule_params["element"] = rich.Rich_SourcePort(port, proto) # action if ( @@ -3921,19 +3776,19 @@ class FirewallConfig: limit = rich.Rich_Limit(value) combolabel = self.richRuleDialogActionCombobox.get_active_text() if combolabel == _("accept"): - rule.action = rich.Rich_Accept(limit) + rule_params["action"] = rich.Rich_Accept(limit) elif combolabel == _("reject"): _type = None if self.richRuleDialogActionRejectTypeCheck.get_active(): _type = ( self.richRuleDialogActionRejectTypeCombobox.get_active_text() ) - rule.action = rich.Rich_Reject(_type, limit) + rule_params["action"] = rich.Rich_Reject(_type, limit) elif combolabel == _("drop"): - rule.action = rich.Rich_Drop(limit) + rule_params["action"] = rich.Rich_Drop(limit) elif combolabel == _("mark"): _set = self.richRuleDialogActionMarkChooser.get_text() - rule.action = rich.Rich_Mark(_set, limit) + rule_params["action"] = rich.Rich_Mark(_set, limit) # source if self.richRuleDialogSourceChooser.is_sensitive() and ( @@ -3948,7 +3803,7 @@ class FirewallConfig: mac = self.richRuleDialogSourceChooser.get_text() if txt == "ipset": ipset = self.richRuleDialogSourceChooser.get_text() - rule.source = rich.Rich_Source( + rule_params["source"] = rich.Rich_Source( addr, mac, ipset, self.richRuleDialogSourceInvertCheck.get_active() ) @@ -3957,7 +3812,7 @@ class FirewallConfig: self.richRuleDialogDestinationChooser.get_text() != "" or self.richRuleDialogDestinationInvertCheck.get_active() ): - rule.destination = rich.Rich_Destination( + rule_params["destination"] = rich.Rich_Destination( self.richRuleDialogDestinationChooser.get_text(), None, invert=self.richRuleDialogDestinationInvertCheck.get_active(), @@ -3978,7 +3833,7 @@ class FirewallConfig: limit = rich.Rich_Limit(value) level = self.richRuleDialogLogLevelCombobox.get_active_text() - rule.log = rich.Rich_Log( + rule_params["log"] = rich.Rich_Log( self.richRuleDialogLogPrefixEntry.get_text(), loglevel[level], limit ) @@ -3995,9 +3850,9 @@ class FirewallConfig: self.richRuleDialogAuditLimitDurationCombobox.get_active_text() ] limit = rich.Rich_Limit(value) - rule.audit = rich.Rich_Audit(limit) + rule_params["audit"] = rich.Rich_Audit(limit) - return rule + return rich.Rich_Rule(**rule_params) def on_richRuleDialogFamilyCombobox_changed(self, *args): combolabel = self.richRuleDialogFamilyCombobox.get_active_text() @@ -4132,6 +3987,14 @@ class FirewallConfig: self.richRuleDialogActionCheck.set_sensitive(False) self.richRuleDialogActionBox.set_sensitive(False) + if ( + self.richRuleDialogElementChooser.is_sensitive() + and not self.richRuleDialogElementChooser.get_text() + ): + self.richRuleDialogOkButton.set_sensitive(False) + self.richRuleDialogOkButton.set_tooltip_text(_("invalid element")) + return + rule = self.richRuleDialog_getRule() try: rule.check() @@ -7324,15 +7187,6 @@ class FirewallConfig: self.icmpDialogIcmpStore.set_value(use_iter, 0, icmp) - def lockdown_check_cb(self, *args): - if self.fw.queryLockdown(): - self.fw.config().set_property("Lockdown", "no") # permanent - self.fw.disableLockdown() # runtime - else: - self.fw.config().set_property("Lockdown", "yes") # permanent - self.fw.enableLockdown() # runtime - self.changes_applied() - def panic_check_cb(self, *args): if self.fw.queryPanicMode(): self.fw.disablePanicMode() @@ -7368,474 +7222,6 @@ class FirewallConfig: for ipv, args in passthroughs: self.directPassthroughStore.append((ipv, functions.joinArgs(args))) - def load_lockdown_whitelist(self): - if not self.show_lockdown_whitelist: - return - if self.runtime_view: - contexts = self.fw.getLockdownWhitelistContexts() - commands = self.fw.getLockdownWhitelistCommands() - users = self.fw.getLockdownWhitelistUsers() - uids = self.fw.getLockdownWhitelistUids() - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - contexts = whitelist.getContexts() - commands = whitelist.getCommands() - users = whitelist.getUsers() - uids = whitelist.getUids() - - self.lockdownContextStore.clear() - self.lockdownCommandStore.clear() - self.lockdownUserStore.clear() - self.lockdownUidStore.clear() - - for context in contexts: - self.lockdownContextStore.append([context]) - self.lockdownContextView.get_selection().select_path(0) - for command in commands: - self.lockdownCommandStore.append([command]) - self.lockdownCommandView.get_selection().select_path(0) - for user in users: - self.lockdownUserStore.append([user]) - self.lockdownUserView.get_selection().select_path(0) - for uid in uids: - self.lockdownUidStore.append([uid]) - self.lockdownUidView.get_selection().select_path(0) - - def lockdown_enabled_cb(self): - self.lockdownLabel.set_text(self.enabled) - self.lockdownMenuitem.handler_block(self.lockdown_check_id) - self.lockdownMenuitem.set_active(True) - self.lockdownMenuitem.handler_unblock(self.lockdown_check_id) - - def lockdown_disabled_cb(self): - self.lockdownLabel.set_text(self.disabled) - self.lockdownMenuitem.handler_block(self.lockdown_check_id) - self.lockdownMenuitem.set_active(False) - self.lockdownMenuitem.handler_unblock(self.lockdown_check_id) - - def change_lockdown_context_selection_cb(self, selection): - (model, iter) = selection.get_selected() - if iter: - self.editLockdownContextButton.set_sensitive(True) - self.removeLockdownContextButton.set_sensitive(True) - else: - self.editLockdownContextButton.set_sensitive(False) - self.removeLockdownContextButton.set_sensitive(False) - - def change_lockdown_command_selection_cb(self, selection): - (model, iter) = selection.get_selected() - if iter: - self.editLockdownCommandButton.set_sensitive(True) - self.removeLockdownCommandButton.set_sensitive(True) - else: - self.editLockdownCommandButton.set_sensitive(False) - self.removeLockdownCommandButton.set_sensitive(False) - - def change_lockdown_user_selection_cb(self, selection): - (model, iter) = selection.get_selected() - if iter: - self.editLockdownUserButton.set_sensitive(True) - self.removeLockdownUserButton.set_sensitive(True) - else: - self.editLockdownUserButton.set_sensitive(False) - self.removeLockdownUserButton.set_sensitive(False) - - def change_lockdown_uid_selection_cb(self, selection): - (model, iter) = selection.get_selected() - if iter: - self.editLockdownUidButton.set_sensitive(True) - self.removeLockdownUidButton.set_sensitive(True) - else: - self.editLockdownUidButton.set_sensitive(False) - self.removeLockdownUidButton.set_sensitive(False) - - def onAddContext(self, button): - self.add_edit_context(True) - - def onEditContext(self, button): - self.add_edit_context(False) - - def onContextClicked(self, widget, event): - if event.type == Gdk.EventType.DOUBLE_BUTTON_PRESS: - self.add_edit_context(False) - - def onRemoveContext(self, button): - selection = self.lockdownContextView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - context = self.lockdownContextStore.get_value(iter, 0) - - if self.runtime_view: - self.fw.removeLockdownWhitelistContext(context) - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - whitelist.removeContext(context) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def lockdown_whitelist_context_added_cb(self, context): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownContextStore.get_iter_first() - while iter: - if self.lockdownContextStore.get_value(iter, 0) == context: - return - iter = self.lockdownContextStore.iter_next(iter) - self.lockdownContextStore.append([context]) - - def lockdown_whitelist_context_removed_cb(self, context): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownContextStore.get_iter_first() - while iter: - if self.lockdownContextStore.get_value(iter, 0) == context: - self.lockdownContextStore.remove(iter) - break - iter = self.lockdownContextStore.iter_next(iter) - - def add_edit_context(self, add): - if add: - old_context = "" - else: - selection = self.lockdownContextView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - old_context = self.lockdownContextStore.get_value(iter, 0) - - self.contextDialogContextEntry.set_text(old_context) - self.contextDialogOkButton.set_sensitive(False) - - self.contextDialog.set_position(Gtk.WindowPosition.CENTER_ON_PARENT) - self.contextDialog.set_transient_for(self.mainWindow) - self.contextDialog.show_all() - self.add_visible_dialog(self.contextDialog) - result = self.contextDialog.run() - self.contextDialog.hide() - self.remove_visible_dialog(self.contextDialog) - - if result != 1: - return - - context = self.contextDialogContextEntry.get_text() - if old_context == context: - # nothing to change - return - - if self.runtime_view: - if not self.fw.queryLockdownWhitelistContext(context): - self.fw.addLockdownWhitelistContext(context) - if not add: - self.fw.removeLockdownWhitelistContext(old_context) - self.changes_applied() - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - if not whitelist.queryContext(context): - if not add: - whitelist.removeContext(old_context) - whitelist.addContext(context) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def onContextChanged(self, *args): - text = self.contextDialogContextEntry.get_text() - if text != "" and functions.checkContext(text): - self.contextDialogOkButton.set_sensitive(True) - else: - self.contextDialogOkButton.set_sensitive(False) - - def onAddCommand(self, button): - self.add_edit_command(True) - - def onEditCommand(self, button): - self.add_edit_command(False) - - def onCommandClicked(self, widget, event): - if event.type == Gdk.EventType.DOUBLE_BUTTON_PRESS: - self.add_edit_command(False) - - def onRemoveCommand(self, button): - selection = self.lockdownCommandView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - command = self.lockdownCommandStore.get_value(iter, 0) - - if self.runtime_view: - self.fw.removeLockdownWhitelistCommand(command) - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - whitelist.removeCommand(command) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def lockdown_whitelist_command_added_cb(self, command): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownCommandStore.get_iter_first() - while iter: - if self.lockdownCommandStore.get_value(iter, 0) == command: - return - iter = self.lockdownCommandStore.iter_next(iter) - self.lockdownCommandStore.append([command]) - - def lockdown_whitelist_command_removed_cb(self, command): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownCommandStore.get_iter_first() - while iter: - if self.lockdownCommandStore.get_value(iter, 0) == command: - self.lockdownCommandStore.remove(iter) - break - iter = self.lockdownCommandStore.iter_next(iter) - - def add_edit_command(self, add): - if add: - old_command = "" - else: - selection = self.lockdownCommandView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - old_command = self.lockdownCommandStore.get_value(iter, 0) - - self.commandDialogCommandEntry.set_text(old_command) - self.commandDialogOkButton.set_sensitive(False) - - self.commandDialog.set_position(Gtk.WindowPosition.CENTER_ON_PARENT) - self.commandDialog.set_transient_for(self.mainWindow) - self.commandDialog.show_all() - self.add_visible_dialog(self.commandDialog) - result = self.commandDialog.run() - self.commandDialog.hide() - self.remove_visible_dialog(self.commandDialog) - - if result != 1: - return - - command = self.commandDialogCommandEntry.get_text() - if old_command == command: - # nothing to change - return - - if self.runtime_view: - if not self.fw.queryLockdownWhitelistCommand(command): - self.fw.addLockdownWhitelistCommand(command) - if not add: - self.fw.removeLockdownWhitelistCommand(old_command) - self.changes_applied() - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - if not whitelist.queryCommand(command): - if not add: - whitelist.removeCommand(old_command) - whitelist.addCommand(command) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def onCommandChanged(self, *args): - text = self.commandDialogCommandEntry.get_text() - if functions.checkCommand(text): - self.commandDialogOkButton.set_sensitive(True) - else: - self.commandDialogOkButton.set_sensitive(False) - - def onAddUser(self, button): - self.add_edit_user(True) - - def onEditUser(self, button): - self.add_edit_user(False) - - def onUserClicked(self, widget, event): - if event.type == Gdk.EventType.DOUBLE_BUTTON_PRESS: - self.add_edit_user(False) - - def onRemoveUser(self, button): - selection = self.lockdownUserView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - user = self.lockdownUserStore.get_value(iter, 0) - - if self.runtime_view: - self.fw.removeLockdownWhitelistUser(user) - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - whitelist.removeUser(user) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def lockdown_whitelist_user_added_cb(self, user): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownUserStore.get_iter_first() - while iter: - if self.lockdownUserStore.get_value(iter, 0) == user: - return - iter = self.lockdownUserStore.iter_next(iter) - self.lockdownUserStore.append([user]) - - def lockdown_whitelist_user_removed_cb(self, user): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownUserStore.get_iter_first() - while iter: - if self.lockdownUserStore.get_value(iter, 0) == user: - self.lockdownUserStore.remove(iter) - break - iter = self.lockdownUserStore.iter_next(iter) - - def add_edit_user(self, add): - if add: - old_user = "" - else: - selection = self.lockdownUserView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - old_user = self.lockdownUserStore.get_value(iter, 0) - - self.userDialogUserEntry.set_text(old_user) - self.userDialogOkButton.set_sensitive(False) - - self.userDialog.set_position(Gtk.WindowPosition.CENTER_ON_PARENT) - self.userDialog.set_transient_for(self.mainWindow) - self.userDialog.show_all() - self.add_visible_dialog(self.userDialog) - result = self.userDialog.run() - self.userDialog.hide() - self.remove_visible_dialog(self.userDialog) - - if result != 1: - return - - user = self.userDialogUserEntry.get_text() - if old_user == user: - # nothing to change - return - - if self.runtime_view: - if not self.fw.queryLockdownWhitelistUser(user): - self.fw.addLockdownWhitelistUser(user) - if not add: - self.fw.removeLockdownWhitelistUser(old_user) - self.changes_applied() - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - if not whitelist.queryUser(user): - if not add: - whitelist.removeUser(old_user) - whitelist.addUser(user) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def onUserChanged(self, *args): - text = self.userDialogUserEntry.get_text() - if text != "" and functions.checkUser(text): - self.userDialogOkButton.set_sensitive(True) - else: - self.userDialogOkButton.set_sensitive(False) - - def onAddUid(self, button): - self.add_edit_uid(True) - - def onEditUid(self, button): - self.add_edit_uid(False) - - def onUidClicked(self, widget, event): - if event.type == Gdk.EventType.DOUBLE_BUTTON_PRESS: - self.add_edit_uid(False) - - def onRemoveUid(self, button): - selection = self.lockdownUidView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - uid = self.lockdownUidStore.get_value(iter, 0) - - if self.runtime_view: - self.fw.removeLockdownWhitelistUid(uid) - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - whitelist.removeUid(uid) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def lockdown_whitelist_uid_added_cb(self, uid): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownUidStore.get_iter_first() - while iter: - if self.lockdownUidStore.get_value(iter, 0) == uid: - return - iter = self.lockdownUidStore.iter_next(iter) - self.lockdownUidStore.append([uid]) - - def lockdown_whitelist_uid_removed_cb(self, uid): - if not self.show_lockdown_whitelist: - return - iter = self.lockdownUidStore.get_iter_first() - while iter: - if self.lockdownUidStore.get_value(iter, 0) == uid: - self.lockdownUidStore.remove(iter) - break - iter = self.lockdownUidStore.iter_next(iter) - - def add_edit_uid(self, add): - if add: - old_uid = "" - else: - selection = self.lockdownUidView.get_selection() - (model, iter) = selection.get_selected() - if iter is None: - return - old_uid = self.lockdownUidStore.get_value(iter, 0) - - self.uidDialogUidEntry.set_text("%s" % old_uid) - self.uidDialogOkButton.set_sensitive(False) - - self.uidDialog.set_position(Gtk.WindowPosition.CENTER_ON_PARENT) - self.uidDialog.set_transient_for(self.mainWindow) - self.uidDialog.show_all() - self.add_visible_dialog(self.uidDialog) - result = self.uidDialog.run() - self.uidDialog.hide() - self.remove_visible_dialog(self.uidDialog) - - if result != 1: - return - - uid = int(self.uidDialogUidEntry.get_text()) - if old_uid == uid: - # nothing to change - return - - if self.runtime_view: - if not self.fw.queryLockdownWhitelistUid(uid): - self.fw.addLockdownWhitelistUid(uid) - if not add: - self.fw.removeLockdownWhitelistUid(old_uid) - self.changes_applied() - else: - whitelist = self.fw.config().policies().getLockdownWhitelist() - if not whitelist.queryUid(uid): - if not add: - whitelist.removeUid(old_uid) - whitelist.addUid(uid) - self.fw.config().policies().setLockdownWhitelist(whitelist) - self.changes_applied() - - def onUidChanged(self, *args): - text = self.uidDialogUidEntry.get_text() - if text != "" and functions.checkUid(text): - self.uidDialogOkButton.set_sensitive(True) - else: - self.uidDialogOkButton.set_sensitive(False) - - def lockdown_whitelist_updated_cb(self): - self.load_lockdown_whitelist() - def change_chain_selection_cb(self, selection): (model, iter) = selection.get_selected() if iter: diff --git a/src/firewall-offline-cmd b/src/firewall-offline-cmd index af96260..27e9c03 100755 --- a/src/firewall-offline-cmd +++ b/src/firewall-offline-cmd @@ -1,4 +1,4 @@ -#!/opt/hostedtoolcache/Python/3.7.17/x64/bin/python +#!/opt/hostedtoolcache/Python/3.8.18/x64/bin/python # SPDX-License-Identifier: GPL-2.0-or-later # # Copyright (C) 2009-2016 Red Hat, Inc. @@ -481,45 +481,6 @@ Direct Options --query-passthrough {ipv4|ipv6|eb} ... Return whether the passthrough rule has been added -Lockdown Options - --lockdown-on Enable lockdown. - --lockdown-off Disable lockdown. - --query-lockdown Query whether lockdown is enabled - -Lockdown Whitelist Options - --list-lockdown-whitelist-commands - List all command lines that are on the whitelist - --add-lockdown-whitelist-command= - Add the command to the whitelist - --remove-lockdown-whitelist-command= - Remove the command from the whitelist - --query-lockdown-whitelist-command= - Query whether the command is on the whitelist - --list-lockdown-whitelist-contexts - List all contexts that are on the whitelist - --add-lockdown-whitelist-context= - Add the context context to the whitelist - --remove-lockdown-whitelist-context= - Remove the context from the whitelist - --query-lockdown-whitelist-context= - Query whether the context is on the whitelist - --list-lockdown-whitelist-uids - List all user ids that are on the whitelist - --add-lockdown-whitelist-uid= - Add the user id uid to the whitelist - --remove-lockdown-whitelist-uid= - Remove the user id uid from the whitelist - --query-lockdown-whitelist-uid= - Query whether the user id uid is on the whitelist - --list-lockdown-whitelist-users - List all user names that are on the whitelist - --add-lockdown-whitelist-user= - Add the user name user to the whitelist - --remove-lockdown-whitelist-user= - Remove the user name user from the whitelist - --query-lockdown-whitelist-user= - Query whether the user name user is on the whitelist - Polkit Options --policy-server Change Polkit actions to 'server' (more restricted) --policy-desktop Change Polkit actions to 'desktop' (less restricted) @@ -1662,12 +1623,10 @@ try: fw.set_default_zone(a.set_default_zone) # lockdown - elif a.lockdown_on: - fw.enable_lockdown() - elif a.lockdown_off: - fw.disable_lockdown() - elif a.query_lockdown: - cmd.print_query_result(fw.policies.query_lockdown()) + elif a.lockdown_on or a.lockdown_off or a.query_lockdown: + cmd.print_error_msg( + "Lockdown feature is deprecated and removed.", exit_code=0, force=True + ) # reset defaults elif a.reset_to_defaults: @@ -2519,110 +2478,9 @@ try: # lockdown whitelist elif options_lockdown_whitelist: - whitelist = fw.config.get_policies().lockdown_whitelist - - # commands - if a.list_lockdown_whitelist_commands: - l = whitelist.get_commands() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_command: - cmd.add_sequence( - a.add_lockdown_whitelist_command, - whitelist.add_command, - whitelist.has_command, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_command: - cmd.remove_sequence( - a.remove_lockdown_whitelist_command, - whitelist.remove_command, - whitelist.has_command, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_command: - cmd.query_sequence( - a.query_lockdown_whitelist_command, whitelist.has_command, None, "'%s'" - ) - - # contexts - elif a.list_lockdown_whitelist_contexts: - l = whitelist.get_contexts() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_context: - cmd.add_sequence( - a.add_lockdown_whitelist_context, - whitelist.add_context, - whitelist.has_context, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_context: - cmd.remove_sequence( - a.remove_lockdown_whitelist_context, - whitelist.remove_context, - whitelist.has_context, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_context: - cmd.query_sequence( - a.query_lockdown_whitelist_context, whitelist.has_context, None, "'%s'" - ) - - # uids - elif a.list_lockdown_whitelist_uids: - l = whitelist.get_uids() - cmd.print_and_exit(" ".join(map(str, l))) - elif a.add_lockdown_whitelist_uid: - cmd.add_sequence( - a.add_lockdown_whitelist_uid, - whitelist.add_uid, - whitelist.has_uid, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_uid: - cmd.remove_sequence( - a.remove_lockdown_whitelist_uid, - whitelist.remove_uid, - whitelist.has_uid, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_uid: - cmd.query_sequence( - a.query_lockdown_whitelist_uid, whitelist.has_uid, None, "'%s'" - ) - - # users - elif a.list_lockdown_whitelist_users: - l = whitelist.get_users() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_user: - cmd.add_sequence( - a.add_lockdown_whitelist_user, - whitelist.add_user, - whitelist.has_user, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_user: - cmd.remove_sequence( - a.remove_lockdown_whitelist_user, - whitelist.remove_user, - whitelist.has_user, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_user: - cmd.query_sequence( - a.query_lockdown_whitelist_user, whitelist.has_user, None, "'%s'" - ) - - # apply whitelist changes - whitelist.write() + cmd.print_error_msg( + "Lockdown feature is deprecated and removed.", exit_code=0, force=True + ) elif options_direct: obj = fw.config.get_direct() diff --git a/src/firewall-offline-cmd.in b/src/firewall-offline-cmd.in index 177207f..6244053 100755 --- a/src/firewall-offline-cmd.in +++ b/src/firewall-offline-cmd.in @@ -481,45 +481,6 @@ Direct Options --query-passthrough {ipv4|ipv6|eb} ... Return whether the passthrough rule has been added -Lockdown Options - --lockdown-on Enable lockdown. - --lockdown-off Disable lockdown. - --query-lockdown Query whether lockdown is enabled - -Lockdown Whitelist Options - --list-lockdown-whitelist-commands - List all command lines that are on the whitelist - --add-lockdown-whitelist-command= - Add the command to the whitelist - --remove-lockdown-whitelist-command= - Remove the command from the whitelist - --query-lockdown-whitelist-command= - Query whether the command is on the whitelist - --list-lockdown-whitelist-contexts - List all contexts that are on the whitelist - --add-lockdown-whitelist-context= - Add the context context to the whitelist - --remove-lockdown-whitelist-context= - Remove the context from the whitelist - --query-lockdown-whitelist-context= - Query whether the context is on the whitelist - --list-lockdown-whitelist-uids - List all user ids that are on the whitelist - --add-lockdown-whitelist-uid= - Add the user id uid to the whitelist - --remove-lockdown-whitelist-uid= - Remove the user id uid from the whitelist - --query-lockdown-whitelist-uid= - Query whether the user id uid is on the whitelist - --list-lockdown-whitelist-users - List all user names that are on the whitelist - --add-lockdown-whitelist-user= - Add the user name user to the whitelist - --remove-lockdown-whitelist-user= - Remove the user name user from the whitelist - --query-lockdown-whitelist-user= - Query whether the user name user is on the whitelist - Polkit Options --policy-server Change Polkit actions to 'server' (more restricted) --policy-desktop Change Polkit actions to 'desktop' (less restricted) @@ -1662,12 +1623,10 @@ try: fw.set_default_zone(a.set_default_zone) # lockdown - elif a.lockdown_on: - fw.enable_lockdown() - elif a.lockdown_off: - fw.disable_lockdown() - elif a.query_lockdown: - cmd.print_query_result(fw.policies.query_lockdown()) + elif a.lockdown_on or a.lockdown_off or a.query_lockdown: + cmd.print_error_msg( + "Lockdown feature is deprecated and removed.", exit_code=0, force=True + ) # reset defaults elif a.reset_to_defaults: @@ -2519,110 +2478,9 @@ try: # lockdown whitelist elif options_lockdown_whitelist: - whitelist = fw.config.get_policies().lockdown_whitelist - - # commands - if a.list_lockdown_whitelist_commands: - l = whitelist.get_commands() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_command: - cmd.add_sequence( - a.add_lockdown_whitelist_command, - whitelist.add_command, - whitelist.has_command, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_command: - cmd.remove_sequence( - a.remove_lockdown_whitelist_command, - whitelist.remove_command, - whitelist.has_command, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_command: - cmd.query_sequence( - a.query_lockdown_whitelist_command, whitelist.has_command, None, "'%s'" - ) - - # contexts - elif a.list_lockdown_whitelist_contexts: - l = whitelist.get_contexts() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_context: - cmd.add_sequence( - a.add_lockdown_whitelist_context, - whitelist.add_context, - whitelist.has_context, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_context: - cmd.remove_sequence( - a.remove_lockdown_whitelist_context, - whitelist.remove_context, - whitelist.has_context, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_context: - cmd.query_sequence( - a.query_lockdown_whitelist_context, whitelist.has_context, None, "'%s'" - ) - - # uids - elif a.list_lockdown_whitelist_uids: - l = whitelist.get_uids() - cmd.print_and_exit(" ".join(map(str, l))) - elif a.add_lockdown_whitelist_uid: - cmd.add_sequence( - a.add_lockdown_whitelist_uid, - whitelist.add_uid, - whitelist.has_uid, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_uid: - cmd.remove_sequence( - a.remove_lockdown_whitelist_uid, - whitelist.remove_uid, - whitelist.has_uid, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_uid: - cmd.query_sequence( - a.query_lockdown_whitelist_uid, whitelist.has_uid, None, "'%s'" - ) - - # users - elif a.list_lockdown_whitelist_users: - l = whitelist.get_users() - cmd.print_and_exit("\n".join(l)) - elif a.add_lockdown_whitelist_user: - cmd.add_sequence( - a.add_lockdown_whitelist_user, - whitelist.add_user, - whitelist.has_user, - None, - "'%s'", - ) - elif a.remove_lockdown_whitelist_user: - cmd.remove_sequence( - a.remove_lockdown_whitelist_user, - whitelist.remove_user, - whitelist.has_user, - None, - "'%s'", - ) - elif a.query_lockdown_whitelist_user: - cmd.query_sequence( - a.query_lockdown_whitelist_user, whitelist.has_user, None, "'%s'" - ) - - # apply whitelist changes - whitelist.write() + cmd.print_error_msg( + "Lockdown feature is deprecated and removed.", exit_code=0, force=True + ) elif options_direct: obj = fw.config.get_direct() diff --git a/src/firewall/client.py b/src/firewall/client.py index 83a2066..5e5aae6 100644 --- a/src/firewall/client.py +++ b/src/firewall/client.py @@ -2541,211 +2541,6 @@ def queryDestination(self, destination): return self.fw_icmptype.queryDestination(destination) -# config.policies lockdown whitelist - - -class FirewallClientPoliciesLockdownWhitelist: - @handle_exceptions - def __init__(self, settings=None): - if settings: - self.settings = settings - else: - self.settings = [[], [], [], []] - - @handle_exceptions - def __repr__(self): - return "%s(%r)" % (self.__class__, self.settings) - - @handle_exceptions - def getCommands(self): - return self.settings[0] - - @handle_exceptions - def setCommands(self, commands): - self.settings[0] = commands - - @handle_exceptions - def addCommand(self, command): - if command not in self.settings[0]: - self.settings[0].append(command) - - @handle_exceptions - def removeCommand(self, command): - if command in self.settings[0]: - self.settings[0].remove(command) - - @handle_exceptions - def queryCommand(self, command): - return command in self.settings[0] - - @handle_exceptions - def getContexts(self): - return self.settings[1] - - @handle_exceptions - def setContexts(self, contexts): - self.settings[1] = contexts - - @handle_exceptions - def addContext(self, context): - if context not in self.settings[1]: - self.settings[1].append(context) - - @handle_exceptions - def removeContext(self, context): - if context in self.settings[1]: - self.settings[1].remove(context) - - @handle_exceptions - def queryContext(self, context): - return context in self.settings[1] - - @handle_exceptions - def getUsers(self): - return self.settings[2] - - @handle_exceptions - def setUsers(self, users): - self.settings[2] = users - - @handle_exceptions - def addUser(self, user): - if user not in self.settings[2]: - self.settings[2].append(user) - - @handle_exceptions - def removeUser(self, user): - if user in self.settings[2]: - self.settings[2].remove(user) - - @handle_exceptions - def queryUser(self, user): - return user in self.settings[2] - - @handle_exceptions - def getUids(self): - return self.settings[3] - - @handle_exceptions - def setUids(self, uids): - self.settings[3] = uids - - @handle_exceptions - def addUid(self, uid): - if uid not in self.settings[3]: - self.settings[3].append(uid) - - @handle_exceptions - def removeUid(self, uid): - if uid in self.settings[3]: - self.settings[3].remove(uid) - - @handle_exceptions - def queryUid(self, uid): - return uid in self.settings[3] - - -# config.policies - - -class FirewallClientConfigPolicies: - @handle_exceptions - def __init__(self, bus): - self.bus = bus - self.dbus_obj = self.bus.get_object( - config.dbus.DBUS_INTERFACE, config.dbus.DBUS_PATH_CONFIG - ) - self.fw_policies = dbus.Interface( - self.dbus_obj, dbus_interface=config.dbus.DBUS_INTERFACE_CONFIG_POLICIES - ) - - @handle_exceptions - def getLockdownWhitelist(self): - return FirewallClientPoliciesLockdownWhitelist( - list(dbus_to_python(self.fw_policies.getLockdownWhitelist())) - ) - - @handle_exceptions - def setLockdownWhitelist(self, settings): - self.fw_policies.setLockdownWhitelist(tuple(settings.settings)) - - # command - - @handle_exceptions - def addLockdownWhitelistCommand(self, command): - self.fw_policies.addLockdownWhitelistCommand(command) - - @handle_exceptions - def removeLockdownWhitelistCommand(self, command): - self.fw_policies.removeLockdownWhitelistCommand(command) - - @handle_exceptions - def queryLockdownWhitelistCommand(self, command): - return dbus_to_python(self.fw_policies.queryLockdownWhitelistCommand(command)) - - @handle_exceptions - def getLockdownWhitelistCommands(self): - return dbus_to_python(self.fw_policies.getLockdownWhitelistCommands()) - - # context - - @handle_exceptions - def addLockdownWhitelistContext(self, context): - self.fw_policies.addLockdownWhitelistContext(context) - - @handle_exceptions - def removeLockdownWhitelistContext(self, context): - self.fw_policies.removeLockdownWhitelistContext(context) - - @handle_exceptions - def queryLockdownWhitelistContext(self, context): - return dbus_to_python(self.fw_policies.queryLockdownWhitelistContext(context)) - - @handle_exceptions - def getLockdownWhitelistContexts(self): - return dbus_to_python(self.fw_policies.getLockdownWhitelistContexts()) - - # user - - @handle_exceptions - def addLockdownWhitelistUser(self, user): - self.fw_policies.addLockdownWhitelistUser(user) - - @handle_exceptions - def removeLockdownWhitelistUser(self, user): - self.fw_policies.removeLockdownWhitelistUser(user) - - @handle_exceptions - def queryLockdownWhitelistUser(self, user): - return dbus_to_python(self.fw_policies.queryLockdownWhitelistUser(user)) - - @handle_exceptions - def getLockdownWhitelistUsers(self): - return dbus_to_python(self.fw_policies.getLockdownWhitelistUsers()) - - # uid - - @handle_exceptions - def getLockdownWhitelistUids(self): - return dbus_to_python(self.fw_policies.getLockdownWhitelistUids()) - - @handle_exceptions - def setLockdownWhitelistUids(self, uids): - self.fw_policies.setLockdownWhitelistUids(uids) - - @handle_exceptions - def addLockdownWhitelistUid(self, uid): - self.fw_policies.addLockdownWhitelistUid(uid) - - @handle_exceptions - def removeLockdownWhitelistUid(self, uid): - self.fw_policies.removeLockdownWhitelistUid(uid) - - @handle_exceptions - def queryLockdownWhitelistUid(self, uid): - return dbus_to_python(self.fw_policies.queryLockdownWhitelistUid(uid)) - - # config.direct @@ -2982,7 +2777,6 @@ def __init__(self, bus): self.fw_properties = dbus.Interface( self.dbus_obj, dbus_interface="org.freedesktop.DBus.Properties" ) - self._policies = FirewallClientConfigPolicies(self.bus) self._direct = FirewallClientConfigDirect(self.bus) # properties @@ -3154,10 +2948,6 @@ def addIcmpType(self, name, settings): path = self.fw_config.addIcmpType(name, tuple(settings)) return FirewallClientConfigIcmpType(self.bus, path) - @handle_exceptions - def policies(self): - return self._policies - @handle_exceptions def direct(self): return self._direct @@ -3288,19 +3078,7 @@ def __init__(self, bus=None, wait=0, quiet=True): "direct:passthrough-added": "PassthroughAdded", "direct:passthrough-removed": "PassthroughRemoved", "config:direct:updated": "config:direct:Updated", - # policy callbacks - "lockdown-enabled": "LockdownEnabled", - "lockdown-disabled": "LockdownDisabled", - "lockdown-whitelist-command-added": "LockdownWhitelistCommandAdded", - "lockdown-whitelist-command-removed": "LockdownWhitelistCommandRemoved", - "lockdown-whitelist-context-added": "LockdownWhitelistContextAdded", - "lockdown-whitelist-context-removed": "LockdownWhitelistContextRemoved", - "lockdown-whitelist-uid-added": "LockdownWhitelistUidAdded", - "lockdown-whitelist-uid-removed": "LockdownWhitelistUidRemoved", - "lockdown-whitelist-user-added": "LockdownWhitelistUserAdded", - "lockdown-whitelist-user-removed": "LockdownWhitelistUserRemoved", # firewalld.config callbacks - "config:policies:lockdown-whitelist-updated": "config:policies:LockdownWhitelistUpdated", "config:ipset-added": "config:IPSetAdded", "config:ipset-updated": "config:IPSetUpdated", "config:ipset-removed": "config:IPSetRemoved", @@ -4012,94 +3790,6 @@ def removePassthrough(self, ipv, args): def queryPassthrough(self, ipv, args): return dbus_to_python(self.fw_direct.queryPassthrough(ipv, args)) - # lockdown - - @handle_exceptions - def enableLockdown(self): - self.fw_policies.enableLockdown() - - @handle_exceptions - def disableLockdown(self): - self.fw_policies.disableLockdown() - - @handle_exceptions - def queryLockdown(self): - return dbus_to_python(self.fw_policies.queryLockdown()) - - # policies - - # lockdown white list commands - - @handle_exceptions - def addLockdownWhitelistCommand(self, command): - self.fw_policies.addLockdownWhitelistCommand(command) - - @handle_exceptions - def getLockdownWhitelistCommands(self): - return dbus_to_python(self.fw_policies.getLockdownWhitelistCommands()) - - @handle_exceptions - def queryLockdownWhitelistCommand(self, command): - return dbus_to_python(self.fw_policies.queryLockdownWhitelistCommand(command)) - - @handle_exceptions - def removeLockdownWhitelistCommand(self, command): - self.fw_policies.removeLockdownWhitelistCommand(command) - - # lockdown white list contexts - - @handle_exceptions - def addLockdownWhitelistContext(self, context): - self.fw_policies.addLockdownWhitelistContext(context) - - @handle_exceptions - def getLockdownWhitelistContexts(self): - return dbus_to_python(self.fw_policies.getLockdownWhitelistContexts()) - - @handle_exceptions - def queryLockdownWhitelistContext(self, context): - return dbus_to_python(self.fw_policies.queryLockdownWhitelistContext(context)) - - @handle_exceptions - def removeLockdownWhitelistContext(self, context): - self.fw_policies.removeLockdownWhitelistContext(context) - - # lockdown white list uids - - @handle_exceptions - def addLockdownWhitelistUid(self, uid): - self.fw_policies.addLockdownWhitelistUid(uid) - - @handle_exceptions - def getLockdownWhitelistUids(self): - return dbus_to_python(self.fw_policies.getLockdownWhitelistUids()) - - @handle_exceptions - def queryLockdownWhitelistUid(self, uid): - return dbus_to_python(self.fw_policies.queryLockdownWhitelistUid(uid)) - - @handle_exceptions - def removeLockdownWhitelistUid(self, uid): - self.fw_policies.removeLockdownWhitelistUid(uid) - - # lockdown white list users - - @handle_exceptions - def addLockdownWhitelistUser(self, user): - self.fw_policies.addLockdownWhitelistUser(user) - - @handle_exceptions - def getLockdownWhitelistUsers(self): - return dbus_to_python(self.fw_policies.getLockdownWhitelistUsers()) - - @handle_exceptions - def queryLockdownWhitelistUser(self, user): - return dbus_to_python(self.fw_policies.queryLockdownWhitelistUser(user)) - - @handle_exceptions - def removeLockdownWhitelistUser(self, user): - self.fw_policies.removeLockdownWhitelistUser(user) - @handle_exceptions def authorizeAll(self): """Authorize once for all polkit actions.""" diff --git a/src/firewall/command.py b/src/firewall/command.py index ab6e66d..0ffe829 100644 --- a/src/firewall/command.py +++ b/src/firewall/command.py @@ -43,31 +43,35 @@ def set_verbose(self, flag): def get_verbose(self): return self.verbose - def print_msg(self, msg=None): - if msg is not None and not self.quiet: - sys.stdout.write(msg + "\n") - - def print_error_msg(self, msg=None): - if msg is not None and not self.quiet: - sys.stderr.write(msg + "\n") - - def print_warning(self, msg=None): - FAIL = "\033[91m" - END = "\033[00m" - if sys.stderr.isatty(): + def print_msg(self, msg=None, *, force=False, file=None, exit_code=None): + if msg is not None and (not self.quiet or force): + if file is None: + file = sys.stdout + file.write(msg + "\n") + if exit_code is not None: + sys.exit(exit_code) + + def print_error_msg(self, msg=None, *, force=False, file=None, exit_code=None): + if file is None: + file = sys.stderr + self.print_msg(msg=msg, force=force, file=file, exit_code=exit_code) + + def print_warning(self, msg=None, *, exit_code=None): + if msg is not None and sys.stderr.isatty(): + FAIL = "\033[91m" + END = "\033[00m" msg = FAIL + msg + END - self.print_error_msg(msg) + self.print_error_msg(msg, exit_code=exit_code) def print_and_exit(self, msg=None, exit_code=0): # OK = '\033[92m' # END = '\033[00m' if exit_code > 1: - self.print_warning(msg) + self.print_warning(msg, exit_code=exit_code) else: # if sys.stdout.isatty(): # msg = OK + msg + END - self.print_msg(msg) - sys.exit(exit_code) + self.print_msg(msg, exit_code=exit_code) def fail(self, msg=None): self.print_and_exit(msg, 2) diff --git a/src/firewall/config/__init__.py b/src/firewall/config/__init__.py index 9fd7c6b..4d9ff41 100644 --- a/src/firewall/config/__init__.py +++ b/src/firewall/config/__init__.py @@ -30,7 +30,7 @@ DATADIR = "/usr/share/" + DAEMON_NAME CONFIG_GLADE_NAME = CONFIG_NAME + ".glade" COPYRIGHT = "(C) 2010-2017 Red Hat, Inc." -VERSION = "2.1.2" +VERSION = "2.3.1" AUTHORS = [ "Thomas Woerner ", "Jiri Popelka ", @@ -54,7 +54,7 @@ def set_system_config_paths(path): - global ETC_FIREWALLD, FIREWALLD_CONF, ETC_FIREWALLD_ZONES, ETC_FIREWALLD_SERVICES, ETC_FIREWALLD_ICMPTYPES, ETC_FIREWALLD_IPSETS, ETC_FIREWALLD_HELPERS, FIREWALLD_DIRECT, LOCKDOWN_WHITELIST, ETC_FIREWALLD_POLICIES + global ETC_FIREWALLD, FIREWALLD_CONF, ETC_FIREWALLD_ZONES, ETC_FIREWALLD_SERVICES, ETC_FIREWALLD_ICMPTYPES, ETC_FIREWALLD_IPSETS, ETC_FIREWALLD_HELPERS, FIREWALLD_DIRECT, ETC_FIREWALLD_POLICIES ETC_FIREWALLD = path FIREWALLD_CONF = path + "/firewalld.conf" ETC_FIREWALLD_ZONES = path + "/zones" @@ -64,7 +64,6 @@ def set_system_config_paths(path): ETC_FIREWALLD_HELPERS = path + "/helpers" ETC_FIREWALLD_POLICIES = path + "/policies" FIREWALLD_DIRECT = path + "/direct.xml" - LOCKDOWN_WHITELIST = path + "/lockdown-whitelist.xml" set_system_config_paths("/etc/firewalld") @@ -112,14 +111,23 @@ def set_default_config_paths(path): LOG_DENIED_VALUES = ["all", "unicast", "broadcast", "multicast", "off"] AUTOMATIC_HELPERS_VALUES = ["yes", "no", "system"] FIREWALL_BACKEND_VALUES = ["nftables", "iptables"] +IPV6_RPFILTER_VALUES = [ + "yes", + "true", + "no", + "false", + "strict", + "loose", + "loose-forward", + "strict-forward", +] # fallbacks: will be overloaded by firewalld.conf FALLBACK_ZONE = "public" FALLBACK_MINIMAL_MARK = 100 FALLBACK_CLEANUP_ON_EXIT = True FALLBACK_CLEANUP_MODULES_ON_EXIT = False -FALLBACK_LOCKDOWN = False -FALLBACK_IPV6_RPFILTER = True +FALLBACK_IPV6_RPFILTER = "strict" FALLBACK_INDIVIDUAL_CALLS = False FALLBACK_LOG_DENIED = "off" FALLBACK_AUTOMATIC_HELPERS = "no" @@ -130,3 +138,5 @@ def set_default_config_paths(path): FALLBACK_ALLOW_ZONE_DRIFTING = False FALLBACK_NFTABLES_FLOWTABLE = "off" FALLBACK_NFTABLES_COUNTERS = False +FALLBACK_NFTABLES_TABLE_OWNER = True +FALLBACK_STRICT_FORWARD_PORTS = False diff --git a/src/firewall/config/__init__.py.in b/src/firewall/config/__init__.py.in index 12b694e..4951d37 100644 --- a/src/firewall/config/__init__.py.in +++ b/src/firewall/config/__init__.py.in @@ -54,7 +54,7 @@ WEBSITE = "http://www.firewalld.org" def set_system_config_paths(path): - global ETC_FIREWALLD, FIREWALLD_CONF, ETC_FIREWALLD_ZONES, ETC_FIREWALLD_SERVICES, ETC_FIREWALLD_ICMPTYPES, ETC_FIREWALLD_IPSETS, ETC_FIREWALLD_HELPERS, FIREWALLD_DIRECT, LOCKDOWN_WHITELIST, ETC_FIREWALLD_POLICIES + global ETC_FIREWALLD, FIREWALLD_CONF, ETC_FIREWALLD_ZONES, ETC_FIREWALLD_SERVICES, ETC_FIREWALLD_ICMPTYPES, ETC_FIREWALLD_IPSETS, ETC_FIREWALLD_HELPERS, FIREWALLD_DIRECT, ETC_FIREWALLD_POLICIES ETC_FIREWALLD = path FIREWALLD_CONF = path + "/firewalld.conf" ETC_FIREWALLD_ZONES = path + "/zones" @@ -64,7 +64,6 @@ def set_system_config_paths(path): ETC_FIREWALLD_HELPERS = path + "/helpers" ETC_FIREWALLD_POLICIES = path + "/policies" FIREWALLD_DIRECT = path + "/direct.xml" - LOCKDOWN_WHITELIST = path + "/lockdown-whitelist.xml" set_system_config_paths("/etc/firewalld") @@ -112,14 +111,23 @@ COMMANDS = { LOG_DENIED_VALUES = ["all", "unicast", "broadcast", "multicast", "off"] AUTOMATIC_HELPERS_VALUES = ["yes", "no", "system"] FIREWALL_BACKEND_VALUES = ["nftables", "iptables"] +IPV6_RPFILTER_VALUES = [ + "yes", + "true", + "no", + "false", + "strict", + "loose", + "loose-forward", + "strict-forward", +] # fallbacks: will be overloaded by firewalld.conf FALLBACK_ZONE = "public" FALLBACK_MINIMAL_MARK = 100 FALLBACK_CLEANUP_ON_EXIT = True FALLBACK_CLEANUP_MODULES_ON_EXIT = False -FALLBACK_LOCKDOWN = False -FALLBACK_IPV6_RPFILTER = True +FALLBACK_IPV6_RPFILTER = "strict" FALLBACK_INDIVIDUAL_CALLS = False FALLBACK_LOG_DENIED = "off" FALLBACK_AUTOMATIC_HELPERS = "no" @@ -130,3 +138,5 @@ FALLBACK_RFC3964_IPV4 = True FALLBACK_ALLOW_ZONE_DRIFTING = False FALLBACK_NFTABLES_FLOWTABLE = "off" FALLBACK_NFTABLES_COUNTERS = False +FALLBACK_NFTABLES_TABLE_OWNER = True +FALLBACK_STRICT_FORWARD_PORTS = False diff --git a/src/firewall/core/fw.py b/src/firewall/core/fw.py index d37d98f..bf7c109 100644 --- a/src/firewall/core/fw.py +++ b/src/firewall/core/fw.py @@ -23,7 +23,6 @@ from firewall.core.fw_zone import FirewallZone from firewall.core.fw_direct import FirewallDirect from firewall.core.fw_config import FirewallConfig -from firewall.core.fw_policies import FirewallPolicies from firewall.core.fw_ipset import FirewallIPSet from firewall.core.fw_transaction import FirewallTransaction from firewall.core.fw_helper import FirewallHelper @@ -70,7 +69,6 @@ def __init__(self, offline=False): self.zone = FirewallZone(self) self.direct = FirewallDirect(self) self.config = FirewallConfig(self) - self.policies = FirewallPolicies() self.ipset = FirewallIPSet(self) self.helper = FirewallHelper(self) self.policy = FirewallPolicy(self) @@ -90,7 +88,7 @@ def __repr__(self): self._marks, self.cleanup_on_exit, self.cleanup_modules_on_exit, - self.ipv6_rpfilter_enabled, + self._ipv6_rpfilter, self.ipset_enabled, self._individual_calls, self._log_denied, @@ -107,7 +105,7 @@ def __init_vars(self): # fallback settings will be overloaded by firewalld.conf self.cleanup_on_exit = config.FALLBACK_CLEANUP_ON_EXIT self.cleanup_modules_on_exit = config.FALLBACK_CLEANUP_MODULES_ON_EXIT - self.ipv6_rpfilter_enabled = config.FALLBACK_IPV6_RPFILTER + self._ipv6_rpfilter = config.FALLBACK_IPV6_RPFILTER self._individual_calls = config.FALLBACK_INDIVIDUAL_CALLS self._log_denied = config.FALLBACK_LOG_DENIED self._firewall_backend = config.FALLBACK_FIREWALL_BACKEND @@ -116,6 +114,8 @@ def __init_vars(self): self._allow_zone_drifting = config.FALLBACK_ALLOW_ZONE_DRIFTING self._nftables_flowtable = config.FALLBACK_NFTABLES_FLOWTABLE self._nftables_counters = config.FALLBACK_NFTABLES_COUNTERS + self._nftables_table_owner = config.FALLBACK_NFTABLES_TABLE_OWNER + self._strict_forward_ports = config.FALLBACK_STRICT_FORWARD_PORTS if self._offline: self.ip4tables_enabled = False @@ -134,6 +134,25 @@ def __init_vars(self): self.ipset_supported_types = IPSET_TYPES self.nftables_enabled = True + def with_transaction(self, use_transaction=None, *, enable=True): + class TransactionContext: + def __init__(ctxself, self, use_transaction, enable): + ctxself.is_temporary = use_transaction is None + ctxself._enable = enable + if ctxself.is_temporary: + ctxself.transaction = FirewallTransaction(self) + else: + ctxself.transaction = use_transaction + + def __enter__(ctxself): + return ctxself.transaction + + def __exit__(ctxself, exc_type, exc_value, traceback): + if exc_type is None and ctxself.is_temporary: + ctxself.transaction.execute(ctxself._enable) + + return TransactionContext(self, use_transaction, enable) + def get_all_io_objects_dict(self): """ Returns a dict of dicts of all runtime config objects. @@ -253,22 +272,6 @@ def _start_check_tables(self): raise FirewallError(errors.UNKNOWN_ERROR, "No IPv4 and IPv6 firewall.") def _start_probe_backends(self): - try: - self.ipset_backend.set_list() - except ValueError: - if self.nftables_enabled: - log.info1( - "ipset not usable, disabling ipset usage in firewall. Other set backends (nftables) remain usable." - ) - else: - log.warning("ipset not usable, disabling ipset usage in firewall.") - self.ipset_supported_types = [] - # ipset is not usable - self.ipset_enabled = False - else: - # ipset is usable, get all supported types - self.ipset_supported_types = self.ipset_backend.set_supported_types() - self.ip4tables_backend.fill_exists() if not self.ip4tables_backend.restore_command_exists: if self.ip4tables_backend.command_exists: @@ -359,6 +362,17 @@ def _start_probe_backends(self): "option, will therefore not be used" ) + self.nftables_backend.probe_support() + + if ( + self._nftables_table_owner + and not self.nftables_backend.supports_table_owner + ): + log.info1( + "Configuration has NftablesTableOwner=True, but it's " + "not supported by nftables. Table ownership will be disabled." + ) + def _start_load_firewalld_conf(self): # load firewalld config log.debug1("Loading firewalld config file '%s'", config.FIREWALLD_CONF) @@ -385,27 +399,20 @@ def _start_load_firewalld_conf(self): "CleanupModulesOnExit is set to '%s'", self.cleanup_modules_on_exit ) - if self._firewalld_conf.get("Lockdown"): - value = self._firewalld_conf.get("Lockdown") - if value is not None and value.lower() in ["yes", "true"]: - log.debug1("Lockdown is enabled") - try: - self.policies.enable_lockdown() - except FirewallError: - # already enabled, this is probably reload - pass - if self._firewalld_conf.get("IPv6_rpfilter"): value = self._firewalld_conf.get("IPv6_rpfilter") if value is not None: if value.lower() in ["no", "false"]: - self.ipv6_rpfilter_enabled = False - if value.lower() in ["yes", "true"]: - self.ipv6_rpfilter_enabled = True - if self.ipv6_rpfilter_enabled: - log.debug1("IPv6 rpfilter is enabled") - else: - log.debug1("IPV6 rpfilter is disabled") + self._ipv6_rpfilter = "no" + elif value.lower() in ["yes", "true", "strict"]: + self._ipv6_rpfilter = "strict" + elif value.lower() in ["loose"]: + self._ipv6_rpfilter = "loose" + elif value.lower() in ["loose-forward"]: + self._ipv6_rpfilter = "loose-forward" + elif value.lower() in ["strict-forward"]: + self._ipv6_rpfilter = "strict-forward" + log.debug1(f"IPv6_rpfilter is set to '{self._ipv6_rpfilter}'") if self._firewalld_conf.get("IndividualCalls"): value = self._firewalld_conf.get("IndividualCalls") @@ -453,29 +460,27 @@ def _start_load_firewalld_conf(self): self._nftables_counters = True log.debug1("NftablesCounters is set to '%s'", self._nftables_counters) - self.config.set_firewalld_conf(copy.deepcopy(self._firewalld_conf)) - - def _start_load_lockdown_whitelist(self): - # load lockdown whitelist - log.debug1("Loading lockdown whitelist") - try: - self.policies.lockdown_whitelist.read() - except Exception as msg: - if self.policies.query_lockdown(): - log.error( - "Failed to load lockdown whitelist '%s': %s", - self.policies.lockdown_whitelist.filename, - msg, + if self._firewalld_conf.get("NftablesTableOwner"): + value = self._firewalld_conf.get("NftablesTableOwner") + if value.lower() in ["no", "false"]: + self._nftables_table_owner = False + else: + self._nftables_table_owner = True + log.debug1( + "NftablesTableOwner is set to '%s'", self._nftables_table_owner ) - else: + + if self._firewalld_conf.get("StrictForwardPorts"): + value = self._firewalld_conf.get("StrictForwardPorts") + if value.lower() in ["no", "false"]: + self._strict_forward_ports = False + else: + self._strict_forward_ports = True log.debug1( - "Failed to load lockdown whitelist '%s': %s", - self.policies.lockdown_whitelist.filename, - msg, + "StrictForwardPorts is set to '%s'", self._strict_forward_ports ) - # copy policies to config interface - self.config.set_policies(copy.deepcopy(self.policies)) + self.config.set_firewalld_conf(copy.deepcopy(self._firewalld_conf)) def _start_load_stock_config(self): self._loader_ipsets(config.FIREWALLD_IPSETS) @@ -557,73 +562,64 @@ def _start_load_direct_rules(self): self.config.set_direct(obj) def _start_apply_objects(self, reload=False, complete_reload=False): - transaction = FirewallTransaction(self) + with self.with_transaction() as transaction: + + if not reload: + self.flush(use_transaction=transaction) + + # If modules need to be unloaded in complete reload or if there are + # ipsets to get applied, limit the transaction to flush. + # + # Future optimization for the ipset case in reload: The transaction + # only needs to be split here if there are conflicting ipset types in + # exsting ipsets and the configuration in firewalld. + if (reload and complete_reload) or ( + self.ipset.backends() and self.ipset.has_ipsets() + ): + transaction.execute(True) - if not reload: - self.flush(use_transaction=transaction) + # complete reload: unload modules also + if reload and complete_reload: + log.debug1("Unloading firewall modules") + self.modules_backend.unload_firewall_modules() - # If modules need to be unloaded in complete reload or if there are - # ipsets to get applied, limit the transaction to flush. - # - # Future optimization for the ipset case in reload: The transaction - # only needs to be split here if there are conflicting ipset types in - # exsting ipsets and the configuration in firewalld. - if (reload and complete_reload) or ( - self.ipset.backends() and self.ipset.has_ipsets() - ): + self.apply_default_tables(transaction) transaction.execute(True) - transaction.clear() - - # complete reload: unload modules also - if reload and complete_reload: - log.debug1("Unloading firewall modules") - self.modules_backend.unload_firewall_modules() - - self.apply_default_tables(use_transaction=transaction) - transaction.execute(True) - transaction.clear() - # apply settings for loaded ipsets while reloading here - if (self.ipset.backends()) and self.ipset.has_ipsets(): - log.debug1("Applying ipsets") - self.ipset.apply_ipsets() + # apply settings for loaded ipsets while reloading here + if (self.ipset.backends()) and self.ipset.has_ipsets(): + log.debug1("Applying ipsets") + self.ipset.apply_ipsets() - log.debug1("Applying default rule set") - self.apply_default_rules(use_transaction=transaction) + log.debug1("Applying default rule set") + self.apply_default_rules(transaction) - log.debug1("Applying default zone") - self.zone.apply_zone_settings(self._default_zone, transaction) - self.zone._interface(True, self._default_zone, "+", transaction) + log.debug1("Applying default zone") + self.zone.apply_zone_settings(self._default_zone, transaction) + self.zone._interface(True, self._default_zone, "+", transaction) - log.debug1("Applying used zones") - self.zone.apply_zones(use_transaction=transaction) + log.debug1("Applying used zones") + self.zone.apply_zones(transaction) - log.debug1("Applying used policies") - self.policy.apply_policies(use_transaction=transaction) - - transaction.execute(True) - transaction.clear() + log.debug1("Applying used policies") + self.policy.apply_policies(transaction) def _start_apply_direct_rules(self): - transaction = FirewallTransaction(self) - - # apply direct chains, rules and passthrough rules - if self.direct.has_configuration(): - log.debug1("Applying direct chains rules and passthrough rules") - self.direct.apply_direct(transaction) + with self.with_transaction() as transaction: - # since direct rules are easy to make syntax errors lets highlight - # the cause if the transaction fails. - try: - transaction.execute(True) - transaction.clear() - except FirewallError as e: - raise FirewallError(e.code, "Direct: %s" % (e.msg if e.msg else "")) - except Exception: - raise + # apply direct chains, rules and passthrough rules + if self.direct.has_configuration(): + log.debug1("Applying direct chains rules and passthrough rules") + self.direct.apply_direct(transaction) - transaction.execute(True) - transaction.clear() + # since direct rules are easy to make syntax errors lets highlight + # the cause if the transaction fails. + try: + transaction.execute(True) + except FirewallError as e: + raise FirewallError(e.code, "Direct: %s" % (e.msg if e.msg else "")) + except Exception: + raise def _start_check(self): # check minimum required zones @@ -668,7 +664,6 @@ def _start_check(self): def _start(self, reload=False, complete_reload=False): self._start_load_firewalld_conf() - self._start_load_lockdown_whitelist() self._select_firewall_backend(self._firewall_backend) @@ -701,7 +696,6 @@ def _start_failsafe(self, reload=False, complete_reload=False): """ This is basically _start() with at least the following differences: - built-in defaults for firewalld.conf - - no lockdown list - no user config (/etc/firewalld) - no direct rules """ @@ -711,22 +705,21 @@ def _start_failsafe(self, reload=False, complete_reload=False): self._select_firewall_backend(self._firewall_backend) - if not self._offline: - self._start_probe_backends() + self._start_probe_backends() self._start_load_stock_config() self._start_copy_config_to_runtime() self._start_check() - if self._offline: - return - self._start_apply_objects(reload=reload, complete_reload=complete_reload) def start(self): try: self._start() except Exception as original_ex: + if self._offline: + raise + log.error( "Failed to load user configuration. Falling back to " "full stock configuration." @@ -886,7 +879,6 @@ def cleanup(self): self.helper.cleanup() self.config.cleanup() self.direct.cleanup() - self.policies.cleanup() self.policy.cleanup() self._firewalld_conf.cleanup() self.__init_vars() @@ -1015,24 +1007,11 @@ def all_backends(self): backends.append(self.nftables_backend) return backends - def apply_default_tables(self, use_transaction=None): - if use_transaction is None: - transaction = FirewallTransaction(self) - else: - transaction = use_transaction - + def apply_default_tables(self, transaction): for backend in self.enabled_backends(): transaction.add_rules(backend, backend.build_default_tables()) - if use_transaction is None: - transaction.execute(True) - - def apply_default_rules(self, use_transaction=None): - if use_transaction is None: - transaction = FirewallTransaction(self) - else: - transaction = use_transaction - + def apply_default_rules(self, transaction): for backend in self.enabled_backends(): rules = backend.build_default_rules(self._log_denied) transaction.add_rules(backend, rules) @@ -1040,7 +1019,7 @@ def apply_default_rules(self, use_transaction=None): if self.is_ipv_enabled("ipv6"): ipv6_backend = self.get_backend_by_ipv("ipv6") if "raw" in ipv6_backend.get_available_tables(): - if self.ipv6_rpfilter_enabled: + if self._ipv6_rpfilter != "no": rules = ipv6_backend.build_rpfilter_rules(self._log_denied) transaction.add_rules(ipv6_backend, rules) @@ -1048,9 +1027,6 @@ def apply_default_rules(self, use_transaction=None): rules = ipv6_backend.build_rfc3964_ipv4_rules() transaction.add_rules(ipv6_backend, rules) - if use_transaction is None: - transaction.execute(True) - def may_skip_flush_direct_backends(self): if self.nftables_enabled and not self.direct.has_runtime_configuration(): return True @@ -1058,37 +1034,25 @@ def may_skip_flush_direct_backends(self): return False def flush_direct_backends(self, use_transaction=None): - if use_transaction is None: - transaction = FirewallTransaction(self) - else: - transaction = use_transaction - - for backend in self.all_backends(): - if backend in self.enabled_backends(): - continue - rules = backend.build_flush_rules() - transaction.add_rules(backend, rules) + with self.with_transaction(use_transaction) as transaction: - if use_transaction is None: - transaction.execute(True) + for backend in self.all_backends(): + if backend in self.enabled_backends(): + continue + rules = backend.build_flush_rules() + transaction.add_rules(backend, rules) def flush(self, use_transaction=None): - if use_transaction is None: - transaction = FirewallTransaction(self) - else: - transaction = use_transaction - - log.debug1("Flushing rule set") + with self.with_transaction(use_transaction) as transaction: - if not self.may_skip_flush_direct_backends(): - self.flush_direct_backends(use_transaction=transaction) + log.debug1("Flushing rule set") - for backend in self.enabled_backends(): - rules = backend.build_flush_rules() - transaction.add_rules(backend, rules) + if not self.may_skip_flush_direct_backends(): + self.flush_direct_backends(use_transaction=transaction) - if use_transaction is None: - transaction.execute(True) + for backend in self.enabled_backends(): + rules = backend.build_flush_rules() + transaction.add_rules(backend, rules) def _set_policy_build_rules(self, backend, policy, policy_details=None): assert policy in ("ACCEPT", "DROP", "PANIC") @@ -1102,25 +1066,19 @@ def _set_policy_build_rules(self, backend, policy, policy_details=None): return backend.build_set_policy_rules(policy, policy_details) def set_policy(self, policy, policy_details=None, use_transaction=None): - if use_transaction is None: - transaction = FirewallTransaction(self) - else: - transaction = use_transaction - - log.debug1( - "Setting policy to '%s'%s", - policy, - f" (ReloadPolicy={firewalld_conf._unparse_reload_policy(policy_details)})" - if policy == "DROP" - else "", - ) + with self.with_transaction(use_transaction) as transaction: - for backend in self.enabled_backends(): - rules = self._set_policy_build_rules(backend, policy, policy_details) - transaction.add_rules(backend, rules) + log.debug1( + "Setting policy to '%s'%s", + policy, + f" (ReloadPolicy={firewalld_conf._unparse_reload_policy(policy_details)})" + if policy == "DROP" + else "", + ) - if use_transaction is None: - transaction.execute(True) + for backend in self.enabled_backends(): + rules = self._set_policy_build_rules(backend, policy, policy_details) + transaction.add_rules(backend, rules) # rule function used in handle_ functions diff --git a/src/firewall/core/fw_config.py b/src/firewall/core/fw_config.py index 7afe82d..a6d19e9 100644 --- a/src/firewall/core/fw_config.py +++ b/src/firewall/core/fw_config.py @@ -29,7 +29,7 @@ def __init__(self, fw): self.__init_vars() def __repr__(self): - return "%s(%r, %r, %r, %r, %r, %r, %r, %r, %r, %r, %r, %r, %r, %r, %r)" % ( + return "%s(%r, %r, %r, %r, %r, %r, %r, %r, %r, %r, %r, %r, %r, %r)" % ( self.__class__, self._ipsets, self._icmptypes, @@ -44,7 +44,6 @@ def __repr__(self): self._builtin_helpers, self._builtin_policy_objects, self._firewalld_conf, - self._policies, self._direct, ) @@ -62,7 +61,6 @@ def __init_vars(self): self._builtin_helpers = {} self._builtin_policy_objects = {} self._firewalld_conf = None - self._policies = None self._direct = None def cleanup(self): @@ -106,11 +104,6 @@ def cleanup(self): del self._firewalld_conf self._firewalld_conf = None - if self._policies: - self._policies.cleanup() - del self._policies - self._policies = None - if self._direct: self._direct.cleanup() del self._direct @@ -163,14 +156,6 @@ def full_check_config(self, extra_io_objects: Dict[str, List[IO_Object]] = {}): for name, io_obj in io_objs.items(): io_obj.check_config_dict(io_obj.export_config_dict(), all_io_objects) - # access check - - def lockdown_enabled(self): - return self._fw.policies.query_lockdown() - - def access_check(self, key, value): - return self._fw.policies.access_check(key, value) - # firewalld_conf def set_firewalld_conf(self, conf): @@ -208,20 +193,6 @@ def reset_defaults(self): self._firewalld_conf.set_defaults() self._firewalld_conf.write() - # policies - - def set_policies(self, policies): - self._policies = policies - - def get_policies(self): - return self._policies - - def update_lockdown_whitelist(self): - if not os.path.exists(config.LOCKDOWN_WHITELIST): - self._policies.lockdown_whitelist.cleanup() - else: - self._policies.lockdown_whitelist.read() - # direct def set_direct(self, direct): @@ -623,27 +594,13 @@ def load_service_defaults(self, obj): return self._builtin_services[obj.name] def get_service_config(self, obj): - conf_dict = obj.export_config_dict() - conf_list = [] - for i in range(8): # tuple based dbus API has 8 elements - if obj.IMPORT_EXPORT_STRUCTURE[i][0] not in conf_dict: - # old API needs the empty elements as well. Grab it from the - # object otherwise we don't know the type. - conf_list.append( - copy.deepcopy(getattr(obj, obj.IMPORT_EXPORT_STRUCTURE[i][0])) - ) - else: - conf_list.append(conf_dict[obj.IMPORT_EXPORT_STRUCTURE[i][0]]) - return tuple(conf_list) + return obj.export_config_tuple(length=8) def get_service_config_dict(self, obj): return obj.export_config_dict() def set_service_config(self, obj, conf): - conf_dict = {} - for i, value in enumerate(conf): - conf_dict[obj.IMPORT_EXPORT_STRUCTURE[i][0]] = value - + conf_dict = obj.get_dict_from_tuple(conf) return self.set_service_config_dict(obj, conf_dict) def set_service_config_dict(self, obj, conf): @@ -664,10 +621,9 @@ def new_service(self, name, conf): if name in self._services or name in self._builtin_services: raise FirewallError(errors.NAME_CONFLICT, "new_service(): '%s'" % name) - conf_dict = {} - for i, value in enumerate(conf): - conf_dict[Service.IMPORT_EXPORT_STRUCTURE[i][0]] = value - + conf_dict = IO_Object.get_dict_from_tuple_static( + Service.IMPORT_EXPORT_STRUCTURE, conf + ) return self.new_service_dict(name, conf_dict) def new_service_dict(self, name, conf): @@ -832,27 +788,13 @@ def load_zone_defaults(self, obj): return self._builtin_zones[obj.name] def get_zone_config(self, obj): - conf_dict = obj.export_config_dict() - conf_list = [] - for i in range(16): # tuple based dbus API has 16 elements - if obj.IMPORT_EXPORT_STRUCTURE[i][0] not in conf_dict: - # old API needs the empty elements as well. Grab it from the - # object otherwise we don't know the type. - conf_list.append( - copy.deepcopy(getattr(obj, obj.IMPORT_EXPORT_STRUCTURE[i][0])) - ) - else: - conf_list.append(conf_dict[obj.IMPORT_EXPORT_STRUCTURE[i][0]]) - return tuple(conf_list) + return obj.export_config_tuple(length=16) def get_zone_config_dict(self, obj): return obj.export_config_dict() def set_zone_config(self, obj, conf): - conf_dict = {} - for i, value in enumerate(conf): - conf_dict[obj.IMPORT_EXPORT_STRUCTURE[i][0]] = value - + conf_dict = obj.get_dict_from_tuple(conf) return self.set_zone_config_dict(obj, conf_dict) def set_zone_config_dict(self, obj, conf): @@ -873,10 +815,9 @@ def new_zone(self, name, conf): if name in self._zones or name in self._builtin_zones: raise FirewallError(errors.NAME_CONFLICT, "new_zone(): '%s'" % name) - conf_dict = {} - for i, value in enumerate(conf): - conf_dict[Zone.IMPORT_EXPORT_STRUCTURE[i][0]] = value - + conf_dict = IO_Object.get_dict_from_tuple_static( + Zone.IMPORT_EXPORT_STRUCTURE, conf + ) return self.new_zone_dict(name, conf_dict) def new_zone_dict(self, name, conf): diff --git a/src/firewall/core/fw_direct.py b/src/firewall/core/fw_direct.py index 95c3bdf..20c3117 100644 --- a/src/firewall/core/fw_direct.py +++ b/src/firewall/core/fw_direct.py @@ -8,7 +8,6 @@ from firewall.fw_types import LastUpdatedOrderedDict from firewall.core import ipXtables from firewall.core import ebtables -from firewall.core.fw_transaction import FirewallTransaction from firewall.core.logger import log from firewall import errors from firewall.errors import FirewallError @@ -43,11 +42,6 @@ def __init_vars(self): def cleanup(self): self.__init_vars() - # transaction - - def new_transaction(self): - return FirewallTransaction(self._fw) - # configuration def set_permanent_config(self, obj): @@ -70,12 +64,7 @@ def has_configuration(self): return True return False - def apply_direct(self, use_transaction=None): - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - + def apply_direct(self, transaction): # Apply permanent configuration and save the obj to be able to # remove permanent configuration settings within get_runtime_config # for use in firewalld reload. @@ -88,9 +77,6 @@ def apply_direct(self, use_transaction=None): transaction, ) - if use_transaction is None: - transaction.execute(True) - def get_runtime_config(self): # Return only runtime changes # Remove all chains, rules and passthroughs that are in self._obj @@ -126,47 +112,43 @@ def get_config(self): return (self._chains, self._rules, self._passthroughs) def set_config(self, conf, use_transaction=None): - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - (_chains, _rules, _passthroughs) = conf - for table_id in _chains: - (ipv, table) = table_id - for chain in _chains[table_id]: - if not self.query_chain(ipv, table, chain): - try: - self.add_chain(ipv, table, chain, use_transaction=transaction) - except FirewallError as error: - log.warning(str(error)) - - for chain_id in _rules: - (ipv, table, chain) = chain_id - for priority, args in _rules[chain_id]: - if not self.query_rule(ipv, table, chain, priority, args): - try: - self.add_rule( - ipv, - table, - chain, - priority, - args, - use_transaction=transaction, - ) - except FirewallError as error: - log.warning(str(error)) - - for ipv in _passthroughs: - for args in _passthroughs[ipv]: - if not self.query_passthrough(ipv, args): - try: - self.add_passthrough(ipv, args, use_transaction=transaction) - except FirewallError as error: - log.warning(str(error)) - - if use_transaction is None: - transaction.execute(True) + with self._fw.with_transaction(use_transaction) as transaction: + + (_chains, _rules, _passthroughs) = conf + for table_id in _chains: + (ipv, table) = table_id + for chain in _chains[table_id]: + if not self.query_chain(ipv, table, chain): + try: + self.add_chain( + ipv, table, chain, use_transaction=transaction + ) + except FirewallError as error: + log.warning(str(error)) + + for chain_id in _rules: + (ipv, table, chain) = chain_id + for priority, args in _rules[chain_id]: + if not self.query_rule(ipv, table, chain, priority, args): + try: + self.add_rule( + ipv, + table, + chain, + priority, + args, + use_transaction=transaction, + ) + except FirewallError as error: + log.warning(str(error)) + + for ipv in _passthroughs: + for args in _passthroughs[ipv]: + if not self.query_passthrough(ipv, args): + try: + self.add_passthrough(ipv, args, use_transaction=transaction) + except FirewallError as error: + log.warning(str(error)) def _check_ipv(self, ipv): ipvs = ["ipv4", "ipv6", "eb"] @@ -217,33 +199,22 @@ def _register_chain(self, table_id, chain, add): del self._chains[table_id] def add_chain(self, ipv, table, chain, use_transaction=None): - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if self._fw.may_skip_flush_direct_backends(): - transaction.add_pre(self._fw.flush_direct_backends) + with self._fw.with_transaction(use_transaction) as transaction: - if self._fw.ipset_enabled and self._fw.ipset.omit_native_ipset(): - transaction.add_pre(self._fw.ipset.apply_ipsets, [self._fw.ipset_backend]) + if self._fw.may_skip_flush_direct_backends(): + transaction.add_pre(self._fw.flush_direct_backends) - # TODO: policy="ACCEPT" - self._chain(True, ipv, table, chain, transaction) + if self._fw.ipset_enabled and self._fw.ipset.omit_native_ipset(): + transaction.add_pre( + self._fw.ipset.apply_ipsets, [self._fw.ipset_backend] + ) - if use_transaction is None: - transaction.execute(True) + # TODO: policy="ACCEPT" + self._chain(True, ipv, table, chain, transaction) def remove_chain(self, ipv, table, chain, use_transaction=None): - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - self._chain(False, ipv, table, chain, transaction) - - if use_transaction is None: - transaction.execute(True) + with self._fw.with_transaction(use_transaction) as transaction: + self._chain(False, ipv, table, chain, transaction) def query_chain(self, ipv, table, chain): self._check_ipv_table(ipv, table) @@ -267,32 +238,21 @@ def get_all_chains(self): return r def add_rule(self, ipv, table, chain, priority, args, use_transaction=None): - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self._fw.with_transaction(use_transaction) as transaction: - if self._fw.may_skip_flush_direct_backends(): - transaction.add_pre(self._fw.flush_direct_backends) + if self._fw.may_skip_flush_direct_backends(): + transaction.add_pre(self._fw.flush_direct_backends) - if self._fw.ipset_enabled and self._fw.ipset.omit_native_ipset(): - transaction.add_pre(self._fw.ipset.apply_ipsets, [self._fw.ipset_backend]) - - self._rule(True, ipv, table, chain, priority, args, transaction) + if self._fw.ipset_enabled and self._fw.ipset.omit_native_ipset(): + transaction.add_pre( + self._fw.ipset.apply_ipsets, [self._fw.ipset_backend] + ) - if use_transaction is None: - transaction.execute(True) + self._rule(True, ipv, table, chain, priority, args, transaction) def remove_rule(self, ipv, table, chain, priority, args, use_transaction=None): - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - self._rule(False, ipv, table, chain, priority, args, transaction) - - if use_transaction is None: - transaction.execute(True) + with self._fw.with_transaction(use_transaction) as transaction: + self._rule(False, ipv, table, chain, priority, args, transaction) def query_rule(self, ipv, table, chain, priority, args): self._check_ipv_table(ipv, table) @@ -352,32 +312,20 @@ def _register_passthrough(self, ipv, args, enable): del self._passthroughs[ipv] def add_passthrough(self, ipv, args, use_transaction=None): - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if self._fw.may_skip_flush_direct_backends(): - transaction.add_pre(self._fw.flush_direct_backends) + with self._fw.with_transaction(use_transaction) as transaction: + if self._fw.may_skip_flush_direct_backends(): + transaction.add_pre(self._fw.flush_direct_backends) - if self._fw.ipset_enabled and self._fw.ipset.omit_native_ipset(): - transaction.add_pre(self._fw.ipset.apply_ipsets, [self._fw.ipset_backend]) - - self._passthrough(True, ipv, list(args), transaction) + if self._fw.ipset_enabled and self._fw.ipset.omit_native_ipset(): + transaction.add_pre( + self._fw.ipset.apply_ipsets, [self._fw.ipset_backend] + ) - if use_transaction is None: - transaction.execute(True) + self._passthrough(True, ipv, list(args), transaction) def remove_passthrough(self, ipv, args, use_transaction=None): - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - self._passthrough(False, ipv, list(args), transaction) - - if use_transaction is None: - transaction.execute(True) + with self._fw.with_transaction(use_transaction) as transaction: + self._passthrough(False, ipv, list(args), transaction) def query_passthrough(self, ipv, args): return ipv in self._passthroughs and tuple(args) in self._passthroughs[ipv] @@ -584,7 +532,9 @@ def _passthrough(self, enable, ipv, args, transaction): if ipv in ["ipv4", "ipv6"]: table, chain = backend.passthrough_parse_table_chain(args) if table and chain: - self._fw.zone.create_zone_base_by_chain(ipv, table, chain) + self._fw.zone.create_zone_base_by_chain( + ipv, table, chain, transaction + ) _args = args else: _args = backend.reverse_passthrough(args) diff --git a/src/firewall/core/fw_policies.py b/src/firewall/core/fw_policies.py deleted file mode 100644 index 4fc98ac..0000000 --- a/src/firewall/core/fw_policies.py +++ /dev/null @@ -1,63 +0,0 @@ -# SPDX-License-Identifier: GPL-2.0-or-later -# -# Copyright (C) 2011-2016 Red Hat, Inc. -# -# Authors: -# Thomas Woerner - -from firewall import config -from firewall.core.logger import log -from firewall.core.io.lockdown_whitelist import LockdownWhitelist -from firewall import errors -from firewall.errors import FirewallError - - -class FirewallPolicies: - def __init__(self): - self._lockdown = False - self.lockdown_whitelist = LockdownWhitelist(config.LOCKDOWN_WHITELIST) - - def __repr__(self): - return "%s(%r, %r)" % (self.__class__, self._lockdown, self.lockdown_whitelist) - - def cleanup(self): - self._lockdown = False - self.lockdown_whitelist.cleanup() - - # lockdown - - def access_check(self, key, value): - if key == "context": - log.debug2('Doing access check for context "%s"' % value) - if self.lockdown_whitelist.match_context(value): - log.debug3("context matches.") - return True - elif key == "uid": - log.debug2("Doing access check for uid %d" % value) - if self.lockdown_whitelist.match_uid(value): - log.debug3("uid matches.") - return True - elif key == "user": - log.debug2('Doing access check for user "%s"' % value) - if self.lockdown_whitelist.match_user(value): - log.debug3("user matches.") - return True - elif key == "command": - log.debug2('Doing access check for command "%s"' % value) - if self.lockdown_whitelist.match_command(value): - log.debug3("command matches.") - return True - return False - - def enable_lockdown(self): - if self._lockdown: - raise FirewallError(errors.ALREADY_ENABLED, "enable_lockdown()") - self._lockdown = True - - def disable_lockdown(self): - if not self._lockdown: - raise FirewallError(errors.NOT_ENABLED, "disable_lockdown()") - self._lockdown = False - - def query_lockdown(self): - return self._lockdown diff --git a/src/firewall/core/fw_policy.py b/src/firewall/core/fw_policy.py index 270bda3..4cb5157 100644 --- a/src/firewall/core/fw_policy.py +++ b/src/firewall/core/fw_policy.py @@ -2,6 +2,7 @@ # SPDX-License-Identifier: GPL-2.0-or-later import copy +import dataclasses from firewall.core.logger import log from firewall.functions import ( @@ -30,7 +31,6 @@ Rich_IcmpType, Rich_Tcp_Mss_Clamp, ) -from firewall.core.fw_transaction import FirewallTransaction from firewall import errors from firewall.errors import FirewallError from firewall.core.base import SOURCE_IPSET_TYPES @@ -51,10 +51,11 @@ def cleanup(self): # transaction - def new_transaction(self): - t = FirewallTransaction(self._fw) - t.add_pre(self._fw.full_check_config) - return t + def with_transaction(self, *args, **kwargs): + ctx = self._fw.with_transaction(*args, **kwargs) + if ctx.is_temporary: + ctx.transaction.add_pre(self._fw.full_check_config) + return ctx # policies @@ -94,23 +95,24 @@ def add_policy(self, obj): def remove_policy(self, policy): obj = self._policies[policy] if obj.applied: - self.unapply_policy_settings(policy) + with self.with_transaction() as transaction: + self.unapply_policy_settings(policy, transaction) del self._policies[policy] - def apply_policies(self, use_transaction=None): + def apply_policies(self, transaction): for policy in self.get_policies(): p_obj = self._policies[policy] if p_obj.derived_from_zone: continue if policy in self.get_active_policies_not_derived_from_zone(): log.debug1("Applying policy '%s'", policy) - self.apply_policy_settings(policy, use_transaction=use_transaction) + self.apply_policy_settings(policy, transaction) def set_policy_applied(self, policy, applied): obj = self._policies[policy] obj.applied = applied - def _policy_settings(self, enable, policy, use_transaction=None): + def _policy_settings(self, enable, policy, transaction): _policy = self._fw.check_policy(policy) obj = self._policies[_policy] if (enable and obj.applied) or (not enable and not obj.applied): @@ -118,11 +120,6 @@ def _policy_settings(self, enable, policy, use_transaction=None): if enable: obj.applied = True - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - if enable: # build the base chain layout of the policy for table, chain in ( @@ -139,7 +136,7 @@ def _policy_settings(self, enable, policy, use_transaction=None): "forward_ports", "source_ports", "icmp_blocks", - "rules_str", + "rules", "protocols", "icmp_block_inversion", "ingress_zones", @@ -150,6 +147,8 @@ def _policy_settings(self, enable, policy, use_transaction=None): if not ((enable and args_list) or (not enable and args_list)): continue args_list = [args_list] + if key == "rules": + args_list = sorted(args_list) for args in args_list: if key == "icmp_blocks": self._icmp_block(enable, _policy, args, transaction) @@ -167,8 +166,8 @@ def _policy_settings(self, enable, policy, use_transaction=None): self._source_port(enable, _policy, args[0], args[1], transaction) elif key == "masquerade": self._masquerade(enable, _policy, transaction) - elif key == "rules_str": - self.__rule(enable, _policy, Rich_Rule(rule_str=args), transaction) + elif key == "rules": + self.__rule(enable, _policy, args, transaction) elif key == "ingress_zones": if not obj.derived_from_zone: self._ingress_zone(enable, _policy, args, transaction) @@ -192,33 +191,30 @@ def _policy_settings(self, enable, policy, use_transaction=None): self.gen_chain_rules(policy, False, table, chain, transaction) obj.applied = False - if use_transaction is None: - transaction.execute(enable) - - def apply_policy_settings(self, policy, use_transaction=None): - self._policy_settings(True, policy, use_transaction=use_transaction) + def apply_policy_settings(self, policy, transaction): + self._policy_settings(True, policy, transaction) def try_apply_policy_settings(self, policy, use_transaction=None): if policy in self.get_active_policies_not_derived_from_zone(): - self.apply_policy_settings(policy, use_transaction=use_transaction) + with self.with_transaction(use_transaction) as transaction: + self.apply_policy_settings(policy, transaction) - def unapply_policy_settings(self, policy, use_transaction=None): - self._policy_settings(False, policy, use_transaction=use_transaction) + def unapply_policy_settings(self, policy, transaction): + self._policy_settings(False, policy, transaction) def try_unapply_policy_settings(self, policy, use_transaction=None): if policy not in self.get_active_policies_not_derived_from_zone(): - self.unapply_policy_settings(policy, use_transaction=use_transaction) + with self.with_transaction(use_transaction) as transaction: + self.unapply_policy_settings(policy, transaction) def get_config_with_settings_dict(self, policy): return self.get_policy(policy).export_config_dict() def set_config_with_settings_dict(self, policy, settings, sender): # stupid wrappers to convert rich rule string to rich rule object - from firewall.core.rich import Rich_Rule - def add_rule_wrapper(policy, rule_str, timeout=0, sender=None): self.add_rule( - policy, Rich_Rule(rule_str=rule_str), timeout=0, sender=sender + policy, Rich_Rule(rule_str=rule_str), timeout=timeout, sender=sender ) def remove_rule_wrapper(policy, rule_str): @@ -281,9 +277,7 @@ def __ingress_zone_id(self, zone): self.check_ingress_zone(zone) return zone - def add_ingress_zone( - self, policy, zone, timeout=0, sender=None, use_transaction=None - ): + def add_ingress_zone(self, policy, zone, timeout=0, sender=None): _policy = self._fw.check_policy(policy) self._fw.check_timeout(timeout) self._fw.check_panic() @@ -295,27 +289,21 @@ def add_ingress_zone( errors.ALREADY_ENABLED, "'%s' already in '%s'" % (zone, _policy) ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._ingress_zone(True, _policy, zone, transaction) + with self.with_transaction() as transaction: - self.__register_ingress_zone(_obj, zone_id, timeout, sender) - transaction.add_fail(self.__unregister_ingress_zone, _obj, zone_id) + if _obj.applied: + self._ingress_zone(True, _policy, zone, transaction) - if not _obj.applied: - self.try_apply_policy_settings(policy, use_transaction=transaction) + self.__register_ingress_zone(_obj, zone_id, timeout, sender) + transaction.add_fail(self.__unregister_ingress_zone, _obj, zone_id) - if use_transaction is None: - transaction.execute(True) + if not _obj.applied: + self.try_apply_policy_settings(policy, use_transaction=transaction) def __register_ingress_zone(self, _obj, zone_id, timeout, sender): _obj.ingress_zones.append(zone_id) - def remove_ingress_zone(self, policy, zone, use_transaction=None): + def remove_ingress_zone(self, policy, zone): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] @@ -326,21 +314,15 @@ def remove_ingress_zone(self, policy, zone, use_transaction=None): errors.NOT_ENABLED, "'%s' not in '%s'" % (zone, _policy) ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - if len(_obj.ingress_zones) <= 1: - self.unapply_policy_settings(policy, use_transaction=transaction) - else: - self._ingress_zone(False, _policy, zone, transaction) + with self.with_transaction() as transaction: - transaction.add_post(self.__unregister_ingress_zone, _obj, zone_id) + if _obj.applied: + if len(_obj.ingress_zones) <= 1: + self.unapply_policy_settings(policy, transaction) + else: + self._ingress_zone(False, _policy, zone, transaction) - if use_transaction is None: - transaction.execute(True) + transaction.add_post(self.__unregister_ingress_zone, _obj, zone_id) return _policy @@ -366,9 +348,7 @@ def __egress_zone_id(self, zone): self.check_egress_zone(zone) return zone - def add_egress_zone( - self, policy, zone, timeout=0, sender=None, use_transaction=None - ): + def add_egress_zone(self, policy, zone, timeout=0, sender=None): _policy = self._fw.check_policy(policy) self._fw.check_timeout(timeout) self._fw.check_panic() @@ -380,27 +360,21 @@ def add_egress_zone( errors.ALREADY_ENABLED, "'%s' already in '%s'" % (zone, _policy) ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._egress_zone(True, _policy, zone, transaction) + with self.with_transaction() as transaction: - self.__register_egress_zone(_obj, zone_id, timeout, sender) - transaction.add_fail(self.__unregister_egress_zone, _obj, zone_id) + if _obj.applied: + self._egress_zone(True, _policy, zone, transaction) - if not _obj.applied: - self.try_apply_policy_settings(policy, use_transaction=transaction) + self.__register_egress_zone(_obj, zone_id, timeout, sender) + transaction.add_fail(self.__unregister_egress_zone, _obj, zone_id) - if use_transaction is None: - transaction.execute(True) + if not _obj.applied: + self.try_apply_policy_settings(policy, use_transaction=transaction) def __register_egress_zone(self, _obj, zone_id, timeout, sender): _obj.egress_zones.append(zone_id) - def remove_egress_zone(self, policy, zone, use_transaction=None): + def remove_egress_zone(self, policy, zone): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] @@ -411,21 +385,15 @@ def remove_egress_zone(self, policy, zone, use_transaction=None): errors.NOT_ENABLED, "'%s' not in '%s'" % (zone, _policy) ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - if len(_obj.egress_zones) <= 1: - self.unapply_policy_settings(policy, use_transaction=transaction) - else: - self._egress_zone(False, _policy, zone, transaction) + with self.with_transaction() as transaction: - transaction.add_post(self.__unregister_egress_zone, _obj, zone_id) + if _obj.applied: + if len(_obj.egress_zones) <= 1: + self.unapply_policy_settings(policy, transaction) + else: + self._egress_zone(False, _policy, zone, transaction) - if use_transaction is None: - transaction.execute(True) + transaction.add_post(self.__unregister_egress_zone, _obj, zone_id) return _policy @@ -441,13 +409,6 @@ def list_egress_zones(self, policy): # RICH LANGUAGE - def check_rule(self, rule): - rule.check() - - def __rule_id(self, rule): - self.check_rule(rule) - return str(rule) - def _rule_source_ipv(self, source): if not source: return None @@ -469,72 +430,58 @@ def _rule_source_ipv(self, source): def __rule(self, enable, policy, rule, transaction): self._rule_prepare(enable, policy, rule, transaction) - def add_rule(self, policy, rule, timeout=0, sender=None, use_transaction=None): + def add_rule(self, policy, rule, timeout=0, sender=None): _policy = self._fw.check_policy(policy) self._fw.check_timeout(timeout) self._fw.check_panic() _obj = self._policies[_policy] - rule_id = self.__rule_id(rule) - if rule_id in _obj.rules_str: + if rule in _obj.rules: _name = _obj.derived_from_zone if _obj.derived_from_zone else _policy raise FirewallError( errors.ALREADY_ENABLED, "'%s' already in '%s'" % (rule, _name) ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self.__rule(True, _policy, rule, transaction) + with self.with_transaction() as transaction: - self.__register_rule(_obj, rule_id, timeout, sender) - transaction.add_fail(self.__unregister_rule, _obj, rule_id) + if _obj.applied: + self.__rule(True, _policy, rule, transaction) - if use_transaction is None: - transaction.execute(True) + self.__register_rule(_obj, rule, timeout, sender) + transaction.add_fail(self.__unregister_rule, _obj, rule) return _policy - def __register_rule(self, _obj, rule_id, timeout, sender): - _obj.rules_str.append(rule_id) + def __register_rule(self, _obj, rule, timeout, sender): + _obj.rules.add(rule) - def remove_rule(self, policy, rule, use_transaction=None): + def remove_rule(self, policy, rule): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] - rule_id = self.__rule_id(rule) - if rule_id not in _obj.rules_str: + if rule not in _obj.rules: _name = _obj.derived_from_zone if _obj.derived_from_zone else _policy raise FirewallError(errors.NOT_ENABLED, "'%s' not in '%s'" % (rule, _name)) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self.__rule(False, _policy, rule, transaction) + with self.with_transaction() as transaction: - transaction.add_post(self.__unregister_rule, _obj, rule_id) + if _obj.applied: + self.__rule(False, _policy, rule, transaction) - if use_transaction is None: - transaction.execute(True) + transaction.add_post(self.__unregister_rule, _obj, rule) return _policy - def __unregister_rule(self, _obj, rule_id): - if rule_id in _obj.rules_str: - _obj.rules_str.remove(rule_id) + def __unregister_rule(self, _obj, rule): + if rule in _obj.rules: + _obj.rules.remove(rule) def query_rule(self, policy, rule): - return self.__rule_id(rule) in self.get_policy(policy).rules_str + return rule in self.get_policy(policy).rules def list_rules(self, policy): - return self.get_policy(policy).rules_str + return [str(r) for r in self.get_policy(policy).rules] # SERVICES @@ -545,9 +492,7 @@ def __service_id(self, service): self.check_service(service) return service - def add_service( - self, policy, service, timeout=0, sender=None, use_transaction=None - ): + def add_service(self, policy, service, timeout=0, sender=None): _policy = self._fw.check_policy(policy) self._fw.check_timeout(timeout) self._fw.check_panic() @@ -560,26 +505,20 @@ def add_service( errors.ALREADY_ENABLED, "'%s' already in '%s'" % (service, _name) ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: - if _obj.applied: - self._service(True, _policy, service, transaction) + if _obj.applied: + self._service(True, _policy, service, transaction) - self.__register_service(_obj, service_id, timeout, sender) - transaction.add_fail(self.__unregister_service, _obj, service_id) - - if use_transaction is None: - transaction.execute(True) + self.__register_service(_obj, service_id, timeout, sender) + transaction.add_fail(self.__unregister_service, _obj, service_id) return _policy def __register_service(self, _obj, service_id, timeout, sender): _obj.services.append(service_id) - def remove_service(self, policy, service, use_transaction=None): + def remove_service(self, policy, service): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] @@ -591,18 +530,12 @@ def remove_service(self, policy, service, use_transaction=None): errors.NOT_ENABLED, "'%s' not in '%s'" % (service, _name) ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._service(False, _policy, service, transaction) + with self.with_transaction() as transaction: - transaction.add_post(self.__unregister_service, _obj, service_id) + if _obj.applied: + self._service(False, _policy, service, transaction) - if use_transaction is None: - transaction.execute(True) + transaction.add_post(self.__unregister_service, _obj, service_id) return _policy @@ -659,9 +592,7 @@ def __port_id(self, port, protocol): self.check_port(port, protocol) return (portStr(port, "-"), protocol) - def add_port( - self, policy, port, protocol, timeout=0, sender=None, use_transaction=None - ): + def add_port(self, policy, port, protocol, timeout=0, sender=None): _policy = self._fw.check_policy(policy) self._fw.check_timeout(timeout) self._fw.check_panic() @@ -680,34 +611,32 @@ def add_port( port, [_port for (_port, _protocol) in existing_port_ids] ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: + + if _obj.applied: + for range in added_ranges: + self._port( + True, _policy, portStr(range, "-"), protocol, transaction + ) + for range in removed_ranges: + self._port( + False, _policy, portStr(range, "-"), protocol, transaction + ) - if _obj.applied: for range in added_ranges: - self._port(True, _policy, portStr(range, "-"), protocol, transaction) + port_id = self.__port_id(range, protocol) + self.__register_port(_obj, port_id, timeout, sender) + transaction.add_fail(self.__unregister_port, _obj, port_id) for range in removed_ranges: - self._port(False, _policy, portStr(range, "-"), protocol, transaction) - - for range in added_ranges: - port_id = self.__port_id(range, protocol) - self.__register_port(_obj, port_id, timeout, sender) - transaction.add_fail(self.__unregister_port, _obj, port_id) - for range in removed_ranges: - port_id = self.__port_id(range, protocol) - transaction.add_post(self.__unregister_port, _obj, port_id) - - if use_transaction is None: - transaction.execute(True) + port_id = self.__port_id(range, protocol) + transaction.add_post(self.__unregister_port, _obj, port_id) return _policy def __register_port(self, _obj, port_id, timeout, sender): _obj.ports.append(port_id) - def remove_port(self, policy, port, protocol, use_transaction=None): + def remove_port(self, policy, port, protocol): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] @@ -726,27 +655,25 @@ def remove_port(self, policy, port, protocol, use_transaction=None): port, [_port for (_port, _protocol) in existing_port_ids] ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: + + if _obj.applied: + for range in added_ranges: + self._port( + True, _policy, portStr(range, "-"), protocol, transaction + ) + for range in removed_ranges: + self._port( + False, _policy, portStr(range, "-"), protocol, transaction + ) - if _obj.applied: for range in added_ranges: - self._port(True, _policy, portStr(range, "-"), protocol, transaction) + port_id = self.__port_id(range, protocol) + self.__register_port(_obj, port_id, 0, None) + transaction.add_fail(self.__unregister_port, _obj, port_id) for range in removed_ranges: - self._port(False, _policy, portStr(range, "-"), protocol, transaction) - - for range in added_ranges: - port_id = self.__port_id(range, protocol) - self.__register_port(_obj, port_id, 0, None) - transaction.add_fail(self.__unregister_port, _obj, port_id) - for range in removed_ranges: - port_id = self.__port_id(range, protocol) - transaction.add_post(self.__unregister_port, _obj, port_id) - - if use_transaction is None: - transaction.execute(True) + port_id = self.__port_id(range, protocol) + transaction.add_post(self.__unregister_port, _obj, port_id) return _policy @@ -782,9 +709,7 @@ def __protocol_id(self, protocol): self.check_protocol(protocol) return protocol - def add_protocol( - self, policy, protocol, timeout=0, sender=None, use_transaction=None - ): + def add_protocol(self, policy, protocol, timeout=0, sender=None): _policy = self._fw.check_policy(policy) self._fw.check_timeout(timeout) self._fw.check_panic() @@ -797,26 +722,20 @@ def add_protocol( errors.ALREADY_ENABLED, "'%s' already in '%s'" % (protocol, _name) ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._protocol(True, _policy, protocol, transaction) + with self.with_transaction() as transaction: - self.__register_protocol(_obj, protocol_id, timeout, sender) - transaction.add_fail(self.__unregister_protocol, _obj, protocol_id) + if _obj.applied: + self._protocol(True, _policy, protocol, transaction) - if use_transaction is None: - transaction.execute(True) + self.__register_protocol(_obj, protocol_id, timeout, sender) + transaction.add_fail(self.__unregister_protocol, _obj, protocol_id) return _policy def __register_protocol(self, _obj, protocol_id, timeout, sender): _obj.protocols.append(protocol_id) - def remove_protocol(self, policy, protocol, use_transaction=None): + def remove_protocol(self, policy, protocol): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] @@ -828,18 +747,12 @@ def remove_protocol(self, policy, protocol, use_transaction=None): errors.NOT_ENABLED, "'%s' not in '%s'" % (protocol, _name) ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._protocol(False, _policy, protocol, transaction) + with self.with_transaction() as transaction: - transaction.add_post(self.__unregister_protocol, _obj, protocol_id) + if _obj.applied: + self._protocol(False, _policy, protocol, transaction) - if use_transaction is None: - transaction.execute(True) + transaction.add_post(self.__unregister_protocol, _obj, protocol_id) return _policy @@ -859,9 +772,7 @@ def __source_port_id(self, port, protocol): self.check_port(port, protocol) return (portStr(port, "-"), protocol) - def add_source_port( - self, policy, port, protocol, timeout=0, sender=None, use_transaction=None - ): + def add_source_port(self, policy, port, protocol, timeout=0, sender=None): _policy = self._fw.check_policy(policy) self._fw.check_timeout(timeout) self._fw.check_panic() @@ -880,38 +791,32 @@ def add_source_port( port, [_port for (_port, _protocol) in existing_port_ids] ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: + + if _obj.applied: + for range in added_ranges: + self._source_port( + True, _policy, portStr(range, "-"), protocol, transaction + ) + for range in removed_ranges: + self._source_port( + False, _policy, portStr(range, "-"), protocol, transaction + ) - if _obj.applied: for range in added_ranges: - self._source_port( - True, _policy, portStr(range, "-"), protocol, transaction - ) + port_id = self.__source_port_id(range, protocol) + self.__register_source_port(_obj, port_id, timeout, sender) + transaction.add_fail(self.__unregister_source_port, _obj, port_id) for range in removed_ranges: - self._source_port( - False, _policy, portStr(range, "-"), protocol, transaction - ) - - for range in added_ranges: - port_id = self.__source_port_id(range, protocol) - self.__register_source_port(_obj, port_id, timeout, sender) - transaction.add_fail(self.__unregister_source_port, _obj, port_id) - for range in removed_ranges: - port_id = self.__source_port_id(range, protocol) - transaction.add_post(self.__unregister_source_port, _obj, port_id) - - if use_transaction is None: - transaction.execute(True) + port_id = self.__source_port_id(range, protocol) + transaction.add_post(self.__unregister_source_port, _obj, port_id) return _policy def __register_source_port(self, _obj, port_id, timeout, sender): _obj.source_ports.append(port_id) - def remove_source_port(self, policy, port, protocol, use_transaction=None): + def remove_source_port(self, policy, port, protocol): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] @@ -930,31 +835,25 @@ def remove_source_port(self, policy, port, protocol, use_transaction=None): port, [_port for (_port, _protocol) in existing_port_ids] ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: + + if _obj.applied: + for range in added_ranges: + self._source_port( + True, _policy, portStr(range, "-"), protocol, transaction + ) + for range in removed_ranges: + self._source_port( + False, _policy, portStr(range, "-"), protocol, transaction + ) - if _obj.applied: for range in added_ranges: - self._source_port( - True, _policy, portStr(range, "-"), protocol, transaction - ) + port_id = self.__source_port_id(range, protocol) + self.__register_source_port(_obj, port_id, 0, None) + transaction.add_fail(self.__unregister_source_port, _obj, port_id) for range in removed_ranges: - self._source_port( - False, _policy, portStr(range, "-"), protocol, transaction - ) - - for range in added_ranges: - port_id = self.__source_port_id(range, protocol) - self.__register_source_port(_obj, port_id, 0, None) - transaction.add_fail(self.__unregister_source_port, _obj, port_id) - for range in removed_ranges: - port_id = self.__source_port_id(range, protocol) - transaction.add_post(self.__unregister_source_port, _obj, port_id) - - if use_transaction is None: - transaction.execute(True) + port_id = self.__source_port_id(range, protocol) + transaction.add_post(self.__unregister_source_port, _obj, port_id) return _policy @@ -974,7 +873,7 @@ def list_source_ports(self, policy): # MASQUERADE - def add_masquerade(self, policy, timeout=0, sender=None, use_transaction=None): + def add_masquerade(self, policy, timeout=0, sender=None): _policy = self._fw.check_policy(policy) self._fw.check_timeout(timeout) self._fw.check_panic() @@ -986,26 +885,20 @@ def add_masquerade(self, policy, timeout=0, sender=None, use_transaction=None): errors.ALREADY_ENABLED, "masquerade already enabled in '%s'" % _name ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._masquerade(True, _policy, transaction) + with self.with_transaction() as transaction: - self.__register_masquerade(_obj, timeout, sender) - transaction.add_fail(self.__unregister_masquerade, _obj) + if _obj.applied: + self._masquerade(True, _policy, transaction) - if use_transaction is None: - transaction.execute(True) + self.__register_masquerade(_obj, timeout, sender) + transaction.add_fail(self.__unregister_masquerade, _obj) return _policy def __register_masquerade(self, _obj, timeout, sender): _obj.masquerade = True - def remove_masquerade(self, policy, use_transaction=None): + def remove_masquerade(self, policy): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] @@ -1016,18 +909,12 @@ def remove_masquerade(self, policy, use_transaction=None): errors.NOT_ENABLED, "masquerade not enabled in '%s'" % _name ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._masquerade(False, _policy, transaction) + with self.with_transaction() as transaction: - transaction.add_post(self.__unregister_masquerade, _obj) + if _obj.applied: + self._masquerade(False, _policy, transaction) - if use_transaction is None: - transaction.execute(True) + transaction.add_post(self.__unregister_masquerade, _obj) return _policy @@ -1068,7 +955,6 @@ def add_forward_port( toaddr=None, timeout=0, sender=None, - use_transaction=None, ): _policy = self._fw.check_policy(policy) self._fw.check_timeout(timeout) @@ -1084,30 +970,22 @@ def add_forward_port( % (port, protocol, toport, toaddr, _name), ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._forward_port( - True, _policy, transaction, port, protocol, toport, toaddr - ) + with self.with_transaction() as transaction: - self.__register_forward_port(_obj, forward_id, timeout, sender) - transaction.add_fail(self.__unregister_forward_port, _obj, forward_id) + if _obj.applied: + self._forward_port( + True, _policy, transaction, port, protocol, toport, toaddr + ) - if use_transaction is None: - transaction.execute(True) + self.__register_forward_port(_obj, forward_id, timeout, sender) + transaction.add_fail(self.__unregister_forward_port, _obj, forward_id) return _policy def __register_forward_port(self, _obj, forward_id, timeout, sender): _obj.forward_ports.append(forward_id) - def remove_forward_port( - self, policy, port, protocol, toport=None, toaddr=None, use_transaction=None - ): + def remove_forward_port(self, policy, port, protocol, toport=None, toaddr=None): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] @@ -1120,20 +998,14 @@ def remove_forward_port( "'%s:%s:%s:%s' not in '%s'" % (port, protocol, toport, toaddr, _name), ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._forward_port( - False, _policy, transaction, port, protocol, toport, toaddr - ) + with self.with_transaction() as transaction: - transaction.add_post(self.__unregister_forward_port, _obj, forward_id) + if _obj.applied: + self._forward_port( + False, _policy, transaction, port, protocol, toport, toaddr + ) - if use_transaction is None: - transaction.execute(True) + transaction.add_post(self.__unregister_forward_port, _obj, forward_id) return _policy @@ -1157,9 +1029,7 @@ def __icmp_block_id(self, icmp): self.check_icmp_block(icmp) return icmp - def add_icmp_block( - self, policy, icmp, timeout=0, sender=None, use_transaction=None - ): + def add_icmp_block(self, policy, icmp, timeout=0, sender=None): _policy = self._fw.check_policy(policy) self._fw.check_timeout(timeout) self._fw.check_panic() @@ -1172,26 +1042,20 @@ def add_icmp_block( errors.ALREADY_ENABLED, "'%s' already in '%s'" % (icmp, _name) ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._icmp_block(True, _policy, icmp, transaction) + with self.with_transaction() as transaction: - self.__register_icmp_block(_obj, icmp_id, timeout, sender) - transaction.add_fail(self.__unregister_icmp_block, _obj, icmp_id) + if _obj.applied: + self._icmp_block(True, _policy, icmp, transaction) - if use_transaction is None: - transaction.execute(True) + self.__register_icmp_block(_obj, icmp_id, timeout, sender) + transaction.add_fail(self.__unregister_icmp_block, _obj, icmp_id) return _policy def __register_icmp_block(self, _obj, icmp_id, timeout, sender): _obj.icmp_blocks.append(icmp_id) - def remove_icmp_block(self, policy, icmp, use_transaction=None): + def remove_icmp_block(self, policy, icmp): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] @@ -1201,18 +1065,12 @@ def remove_icmp_block(self, policy, icmp, use_transaction=None): _name = _obj.derived_from_zone if _obj.derived_from_zone else _policy raise FirewallError(errors.NOT_ENABLED, "'%s' not in '%s'" % (icmp, _name)) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: - if _obj.applied: - self._icmp_block(False, _policy, icmp, transaction) + if _obj.applied: + self._icmp_block(False, _policy, icmp, transaction) - transaction.add_post(self.__unregister_icmp_block, _obj, icmp_id) - - if use_transaction is None: - transaction.execute(True) + transaction.add_post(self.__unregister_icmp_block, _obj, icmp_id) return _policy @@ -1228,7 +1086,7 @@ def list_icmp_blocks(self, policy): # ICMP BLOCK INVERSION - def add_icmp_block_inversion(self, policy, sender=None, use_transaction=None): + def add_icmp_block_inversion(self, policy, sender=None): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] @@ -1240,30 +1098,24 @@ def add_icmp_block_inversion(self, policy, sender=None, use_transaction=None): "icmp-block-inversion already enabled in '%s'" % _name, ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: - if _obj.applied: - # undo icmp blocks - for args in _obj.icmp_blocks: - self._icmp_block(False, _policy, args, transaction) + if _obj.applied: + # undo icmp blocks + for args in _obj.icmp_blocks: + self._icmp_block(False, _policy, args, transaction) - self._icmp_block_inversion(False, _policy, transaction) + self._icmp_block_inversion(False, _policy, transaction) - self.__register_icmp_block_inversion(_obj, sender) - transaction.add_fail(self.__undo_icmp_block_inversion, _policy, _obj) + self.__register_icmp_block_inversion(_obj, sender) + transaction.add_fail(self.__undo_icmp_block_inversion, _policy, _obj) - # redo icmp blocks - if _obj.applied: - for args in _obj.icmp_blocks: - self._icmp_block(True, _policy, args, transaction) + # redo icmp blocks + if _obj.applied: + for args in _obj.icmp_blocks: + self._icmp_block(True, _policy, args, transaction) - self._icmp_block_inversion(True, _policy, transaction) - - if use_transaction is None: - transaction.execute(True) + self._icmp_block_inversion(True, _policy, transaction) return _policy @@ -1271,23 +1123,21 @@ def __register_icmp_block_inversion(self, _obj, sender): _obj.icmp_block_inversion = True def __undo_icmp_block_inversion(self, _policy, _obj): - transaction = self.new_transaction() - - # undo icmp blocks - if _obj.applied: - for args in _obj.icmp_blocks: - self._icmp_block(False, _policy, args, transaction) + with self.with_transaction() as transaction: - _obj.icmp_block_inversion = False + # undo icmp blocks + if _obj.applied: + for args in _obj.icmp_blocks: + self._icmp_block(False, _policy, args, transaction) - # redo icmp blocks - if _obj.applied: - for args in _obj.icmp_blocks: - self._icmp_block(True, _policy, args, transaction) + _obj.icmp_block_inversion = False - transaction.execute(True) + # redo icmp blocks + if _obj.applied: + for args in _obj.icmp_blocks: + self._icmp_block(True, _policy, args, transaction) - def remove_icmp_block_inversion(self, policy, use_transaction=None): + def remove_icmp_block_inversion(self, policy): _policy = self._fw.check_policy(policy) self._fw.check_panic() _obj = self._policies[_policy] @@ -1298,30 +1148,24 @@ def remove_icmp_block_inversion(self, policy, use_transaction=None): errors.NOT_ENABLED, "icmp-block-inversion not enabled in '%s'" % _name ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: - if _obj.applied: - # undo icmp blocks - for args in _obj.icmp_blocks: - self._icmp_block(False, _policy, args, transaction) + if _obj.applied: + # undo icmp blocks + for args in _obj.icmp_blocks: + self._icmp_block(False, _policy, args, transaction) - self._icmp_block_inversion(False, _policy, transaction) + self._icmp_block_inversion(False, _policy, transaction) - self.__unregister_icmp_block_inversion(_obj) - transaction.add_fail(self.__register_icmp_block_inversion, _obj, None) + self.__unregister_icmp_block_inversion(_obj) + transaction.add_fail(self.__register_icmp_block_inversion, _obj, None) - # redo icmp blocks - if _obj.applied: - for args in _obj.icmp_blocks: - self._icmp_block(True, _policy, args, transaction) + # redo icmp blocks + if _obj.applied: + for args in _obj.icmp_blocks: + self._icmp_block(True, _policy, args, transaction) - self._icmp_block_inversion(True, _policy, transaction) - - if use_transaction is None: - transaction.execute(True) + self._icmp_block_inversion(True, _policy, transaction) return _policy @@ -1409,12 +1253,10 @@ def _rule_prepare(self, enable, policy, rule, transaction, included_services=Non continue self.check_service(include) included_services.append(include) - _rule = copy.deepcopy(rule) - _rule.element.name = include self._rule_prepare( enable, policy, - _rule, + dataclasses.replace(rule, element=Rich_Service(name=include)), transaction, included_services=included_services, ) @@ -1450,9 +1292,6 @@ def _rule_prepare(self, enable, policy, rule, transaction, included_services=Non # clamp ipvs to those that are actually enabled. ipvs = [ipv for ipv in ipvs if self._fw.is_ipv_enabled(ipv)] - # add an element to object to allow backends to know what ipvs this applies to - rule.ipvs = ipvs - for backend in set([self._fw.get_backend_by_ipv(x) for x in ipvs]): # SERVICE if isinstance(rule.element, Rich_Service): @@ -1624,7 +1463,9 @@ def _rule_prepare(self, enable, policy, rule, transaction, included_services=Non errors.INVALID_RULE, "IcmpBlock not usable with accept action" ) - rules = backend.build_policy_icmp_block_rules(enable, policy, ict, rule) + rules = backend.build_policy_icmp_block_rules( + enable, policy, ict, rule, ipvs=ipvs + ) transaction.add_rules(backend, rules) elif rule.element is None: @@ -1771,22 +1612,20 @@ def _forward_port( def _icmp_block(self, enable, policy, icmp, transaction): ict = self._fw.config.get_icmptype(icmp) - for backend in self._fw.enabled_backends(): - if not backend.policies_supported: - continue - skip_backend = False + ipvs = ["ipv4", "ipv6"] + if ict.destination: + ipvs = [ipv for ipv in ["ipv4", "ipv6"] if ipv in ict.destination] - if ict.destination: - for ipv in ["ipv4", "ipv6"]: - if ipv in ict.destination: - if not backend.is_ipv_supported(ipv): - skip_backend = True - break + # clamp ipvs to those that are actually enabled. + ipvs = [ipv for ipv in ipvs if self._fw.is_ipv_enabled(ipv)] - if skip_backend: + for backend in set([self._fw.get_backend_by_ipv(x) for x in ipvs]): + if not backend.policies_supported: continue - rules = backend.build_policy_icmp_block_rules(enable, policy, ict) + rules = backend.build_policy_icmp_block_rules( + enable, policy, ict, ipvs=ipvs + ) transaction.add_rules(backend, rules) def _icmp_block_inversion(self, enable, policy, transaction): diff --git a/src/firewall/core/fw_transaction.py b/src/firewall/core/fw_transaction.py index 43a8b7d..240f3d6 100644 --- a/src/firewall/core/fw_transaction.py +++ b/src/firewall/core/fw_transaction.py @@ -25,9 +25,9 @@ def __init__(self, fw): def clear(self): self.rules.clear() - del self.pre_funcs[:] - del self.post_funcs[:] - del self.fail_funcs[:] + self.pre_funcs.clear() + self.post_funcs.clear() + self.fail_funcs.clear() def add_rule(self, backend, rule): self.rules.setdefault(backend.name, []).append(rule) @@ -68,7 +68,16 @@ def remove_modules(self, modules): for module in modules: self.remove_module(module) - def execute(self, enable): + def execute(self, enable, clear=True): + if ( + not self.rules + and not self.pre_funcs + and not self.post_funcs + and not self.fail_funcs + ): + # empty transaction. Don't do anything. + return + log.debug4("%s.execute(%s)" % (type(self), enable)) rules = self.rules @@ -119,6 +128,9 @@ def execute(self, enable): # post self.post() + if clear: + self.clear() + def pre(self): log.debug4("%s.pre()" % type(self)) diff --git a/src/firewall/core/fw_zone.py b/src/firewall/core/fw_zone.py index 7e887fa..f017da8 100644 --- a/src/firewall/core/fw_zone.py +++ b/src/firewall/core/fw_zone.py @@ -7,7 +7,6 @@ import copy from firewall.core.base import SHORTCUTS, DEFAULT_ZONE_TARGET, SOURCE_IPSET_TYPES -from firewall.core.fw_transaction import FirewallTransaction from firewall.core.io.policy import Policy from firewall.core.logger import log from firewall.core.rich import ( @@ -44,10 +43,11 @@ def cleanup(self): self._zones.clear() self._zone_policies.clear() - def new_transaction(self): - t = FirewallTransaction(self._fw) - t.add_pre(self._fw.full_check_config) - return t + def with_transaction(self, *args, **kwargs): + ctx = self._fw.with_transaction(*args, **kwargs) + if ctx.is_temporary: + ctx.transaction.add_pre(self._fw.full_check_config) + return ctx def policy_name_from_zones(self, fromZone, toZone): return "zone_{fromZone}_{toZone}".format(fromZone=fromZone, toZone=toZone) @@ -106,7 +106,7 @@ def policy_obj_from_zone_obj(self, z_obj, fromZone, toZone): "source_ports", "icmp_blocks", "icmp_block_inversion", - "rules_str", + "rules", "protocols", ]: if ( @@ -136,16 +136,15 @@ def policy_obj_from_zone_obj(self, z_obj, fromZone, toZone): ): # zone --> any zone setattr(p_obj, setting, copy.deepcopy(getattr(z_obj, setting))) - elif setting in ["rules_str"]: - p_obj.rules_str = [] - p_obj.rules = [] - for rule_str in z_obj.rules_str: + elif setting in ["rules"]: + p_obj.rules = set() + for rule in z_obj.rules: current_policy = self.policy_name_from_zones(fromZone, toZone) - rule = Rich_Rule(rule_str=rule_str) - if current_policy in self._rich_rule_to_policies(z_obj.name, rule): - p_obj.rules_str.append(rule_str) - p_obj.rules.append(rule) + if current_policy == self._get_policy_for_rich_rule( + z_obj.name, rule + ): + p_obj.rules.add(rule) return p_obj @@ -176,16 +175,17 @@ def add_zone(self, obj): def remove_zone(self, zone): obj = self._zones[zone] if obj.applied: - self.unapply_zone_settings(zone) + with self.with_transaction() as transaction: + self.unapply_zone_settings(zone, transaction) del self._zones[zone] del self._zone_policies[zone] - def apply_zones(self, use_transaction=None): + def apply_zones(self, transaction): for zone in self.get_zones(): z_obj = self._zones[zone] if len(z_obj.interfaces) > 0 or len(z_obj.sources) > 0: log.debug1("Applying zone '%s'", zone) - self.apply_zone_settings(zone, use_transaction=use_transaction) + self.apply_zone_settings(zone, transaction) def set_zone_applied(self, zone, applied): obj = self._zones[zone] @@ -238,24 +238,16 @@ def policy_from_chain(self, chain): return (self.policy_name_from_zones(fromZone, toZone), _chain) - def create_zone_base_by_chain(self, ipv, table, chain, use_transaction=None): + def create_zone_base_by_chain(self, ipv, table, chain, transaction): # Create zone base chains if the chain is reserved for a zone if ipv in ["ipv4", "ipv6"]: x = self.policy_from_chain(chain) if x is not None: (policy, _chain) = self.policy_from_chain(chain) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - self._fw.policy.gen_chain_rules( policy, True, table, _chain, transaction ) - if use_transaction is None: - transaction.execute(True) - def _zone_settings(self, enable, zone, transaction): for key in ["interfaces", "sources", "forward", "icmp_block_inversion"]: args_list = getattr(self.get_zone(zone), key) @@ -284,63 +276,38 @@ def _zone_settings(self, enable, zone, transaction): if enable: self._icmp_block_inversion(enable, zone, transaction) - def apply_zone_settings(self, zone, use_transaction=None): + def apply_zone_settings(self, zone, transaction): _zone = self._fw.check_zone(zone) obj = self._zones[_zone] if obj.applied: return obj.applied = True - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - for policy in self._zone_policies[_zone]: log.debug1("Applying policy (%s) derived from zone '%s'", policy, zone) - self._fw.policy.apply_policy_settings(policy, use_transaction=transaction) + self._fw.policy.apply_policy_settings(policy, transaction) self._zone_settings(True, _zone, transaction) - if use_transaction is None: - transaction.execute(True) - - def unapply_zone_settings(self, zone, use_transaction=None): + def unapply_zone_settings(self, zone, transaction): _zone = self._fw.check_zone(zone) obj = self._zones[_zone] if not obj.applied: return - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - for policy in self._zone_policies[_zone]: - self._fw.policy.unapply_policy_settings(policy, use_transaction=transaction) + self._fw.policy.unapply_policy_settings(policy, transaction) self._zone_settings(False, _zone, transaction) - if use_transaction is None: - transaction.execute(True) - def get_config_with_settings(self, zone): """ :return: exported config updated with runtime settings """ obj = self.get_zone(zone) - conf_dict = self.get_config_with_settings_dict(zone) - conf_list = [] - for i in range(16): # tuple based API has 16 elements - if obj.IMPORT_EXPORT_STRUCTURE[i][0] not in conf_dict: - # old API needs the empty elements as well. Grab it from the - # class otherwise we don't know the type. - conf_list.append( - copy.deepcopy(getattr(obj, obj.IMPORT_EXPORT_STRUCTURE[i][0])) - ) - else: - conf_list.append(conf_dict[obj.IMPORT_EXPORT_STRUCTURE[i][0]]) - return tuple(conf_list) + return obj.export_config_tuple( + conf_dict=self.get_config_with_settings_dict(zone), length=16 + ) def get_config_with_settings_dict(self, zone): """ @@ -368,7 +335,9 @@ def get_config_with_settings_dict(self, zone): def set_config_with_settings_dict(self, zone, settings, sender): # stupid wrappers to convert rich rule string to rich rule object def add_rule_wrapper(zone, rule_str, timeout=0, sender=None): - self.add_rule(zone, Rich_Rule(rule_str=rule_str), timeout=0, sender=sender) + self.add_rule( + zone, Rich_Rule(rule_str=rule_str), timeout=timeout, sender=sender + ) def remove_rule_wrapper(zone, rule_str): self.remove_rule(zone, Rich_Rule(rule_str=rule_str)) @@ -440,9 +409,7 @@ def __interface_id(self, interface): self.check_interface(interface) return interface - def add_interface( - self, zone, interface, sender=None, use_transaction=None, allow_apply=True - ): + def add_interface(self, zone, interface, sender=None): self._fw.check_panic() _zone = self._fw.check_zone(zone) _obj = self._zones[_zone] @@ -462,23 +429,16 @@ def add_interface( log.debug1("Setting zone of interface '%s' to '%s'" % (interface, _zone)) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: - if not _obj.applied and allow_apply: - self.apply_zone_settings(zone, use_transaction=transaction) - transaction.add_fail(self.set_zone_applied, _zone, False) + if not _obj.applied: + self.apply_zone_settings(zone, transaction) + transaction.add_fail(self.set_zone_applied, _zone, False) - if allow_apply: self._interface(True, _zone, interface, transaction) - self.__register_interface(_obj, interface_id, zone, sender) - transaction.add_fail(self.__unregister_interface, _obj, interface_id) - - if use_transaction is None: - transaction.execute(True) + self.__register_interface(_obj, interface_id, zone, sender) + transaction.add_fail(self.__unregister_interface, _obj, interface_id) return _zone @@ -504,7 +464,7 @@ def change_zone_of_interface(self, zone, interface, sender=None): return _zone - def remove_interface(self, zone, interface, use_transaction=None): + def remove_interface(self, zone, interface): self._fw.check_panic() zoi = self.get_zone_of_interface(interface) if zoi is None: @@ -518,18 +478,12 @@ def remove_interface(self, zone, interface, use_transaction=None): "remove_interface(%s, %s): zoi='%s'" % (zone, interface, zoi), ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: - _obj = self._zones[_zone] - interface_id = self.__interface_id(interface) - transaction.add_post(self.__unregister_interface, _obj, interface_id) - self._interface(False, _zone, interface, transaction) - - if use_transaction is None: - transaction.execute(True) + _obj = self._zones[_zone] + interface_id = self.__interface_id(interface) + transaction.add_post(self.__unregister_interface, _obj, interface_id) + self._interface(False, _zone, interface, transaction) return _zone @@ -568,9 +522,7 @@ def __source_id(self, source, applied=False): self.check_source(source, applied=applied) return source - def add_source( - self, zone, source, sender=None, use_transaction=None, allow_apply=True - ): + def add_source(self, zone, source, sender=None): self._fw.check_panic() _zone = self._fw.check_zone(zone) _obj = self._zones[_zone] @@ -578,8 +530,8 @@ def add_source( if check_mac(source): source = source.upper() - ipv = self.check_source(source, applied=allow_apply) - source_id = self.__source_id(source, applied=allow_apply) + ipv = self.check_source(source, applied=True) + source_id = self.__source_id(source, applied=True) if source_id in _obj.sources: raise FirewallError( @@ -590,23 +542,16 @@ def add_source( errors.ZONE_CONFLICT, "'%s' already bound to a zone" % source ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: - if not _obj.applied and allow_apply: - self.apply_zone_settings(zone, use_transaction=transaction) - transaction.add_fail(self.set_zone_applied, _zone, False) + if not _obj.applied: + self.apply_zone_settings(zone, transaction) + transaction.add_fail(self.set_zone_applied, _zone, False) - if allow_apply: self._source(True, _zone, ipv, source_id, transaction) - self.__register_source(_obj, source_id, zone, sender) - transaction.add_fail(self.__unregister_source, _obj, source_id) - - if use_transaction is None: - transaction.execute(True) + self.__register_source(_obj, source_id, zone, sender) + transaction.add_fail(self.__unregister_source, _obj, source_id) return _zone @@ -631,7 +576,7 @@ def change_zone_of_source(self, zone, source, sender=None): return _zone - def remove_source(self, zone, source, use_transaction=None): + def remove_source(self, zone, source): self._fw.check_panic() if check_mac(source): source = source.upper() @@ -647,19 +592,13 @@ def remove_source(self, zone, source, use_transaction=None): "remove_source(%s, %s): zos='%s'" % (zone, source, zos), ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction + with self.with_transaction() as transaction: - _obj = self._zones[_zone] - ipv = self.check_source(source) - source_id = self.__source_id(source) - transaction.add_post(self.__unregister_source, _obj, source_id) - self._source(False, _zone, ipv, source_id, transaction) - - if use_transaction is None: - transaction.execute(True) + _obj = self._zones[_zone] + ipv = self.check_source(source) + source_id = self.__source_id(source) + transaction.add_post(self.__unregister_source, _obj, source_id) + self._source(False, _zone, ipv, source_id, transaction) return _zone @@ -1130,11 +1069,11 @@ def list_source_ports(self, zone): p_name = self.policy_name_from_zones(zone, "HOST") return self._fw.policy.list_source_ports(p_name) - def _rich_rule_to_policies(self, zone, rule): + def _get_policy_for_rich_rule(self, zone, rule): zone = self._fw.check_zone(zone) if isinstance(rule.action, Rich_Mark): - return [self.policy_name_from_zones(zone, "ANY")] - elif isinstance( + return self.policy_name_from_zones(zone, "ANY") + if isinstance( rule.element, ( Rich_Service, @@ -1145,36 +1084,33 @@ def _rich_rule_to_policies(self, zone, rule): Rich_IcmpType, ), ): - return [self.policy_name_from_zones(zone, "HOST")] - elif isinstance(rule.element, Rich_ForwardPort): - return [self.policy_name_from_zones(zone, "ANY")] - elif isinstance(rule.element, Rich_Masquerade): - return [self.policy_name_from_zones("ANY", zone)] - elif isinstance(rule.element, Rich_Tcp_Mss_Clamp): - return [self.policy_name_from_zones(zone, "ANY")] - elif rule.element is None: - return [self.policy_name_from_zones(zone, "HOST")] - else: - raise FirewallError( - errors.INVALID_RULE, - "Rich rule type (%s) not handled." % (type(rule.element)), - ) + return self.policy_name_from_zones(zone, "HOST") + if isinstance(rule.element, Rich_ForwardPort): + return self.policy_name_from_zones(zone, "ANY") + if isinstance(rule.element, Rich_Masquerade): + return self.policy_name_from_zones("ANY", zone) + if isinstance(rule.element, Rich_Tcp_Mss_Clamp): + return self.policy_name_from_zones(zone, "ANY") + if rule.element is None: + return self.policy_name_from_zones(zone, "HOST") + raise FirewallError( + errors.INVALID_RULE, + "Rich rule type (%s) not handled." % (type(rule.element)), + ) def add_rule(self, zone, rule, timeout=0, sender=None): - for p_name in self._rich_rule_to_policies(zone, rule): - self._fw.policy.add_rule(p_name, rule, timeout, sender) + p_name = self._get_policy_for_rich_rule(zone, rule) + self._fw.policy.add_rule(p_name, rule, timeout, sender) return zone def remove_rule(self, zone, rule): - for p_name in self._rich_rule_to_policies(zone, rule): - self._fw.policy.remove_rule(p_name, rule) + p_name = self._get_policy_for_rich_rule(zone, rule) + self._fw.policy.remove_rule(p_name, rule) return zone def query_rule(self, zone, rule): - ret = True - for p_name in self._rich_rule_to_policies(zone, rule): - ret = ret and self._fw.policy.query_rule(p_name, rule) - return ret + p_name = self._get_policy_for_rich_rule(zone, rule) + return self._fw.policy.query_rule(p_name, rule) def list_rules(self, zone): zone = self._fw.check_zone(zone) @@ -1328,7 +1264,7 @@ def _forward(self, enable, zone, transaction): ) transaction.add_rules(backend, rules) - def add_forward(self, zone, timeout=0, sender=None, use_transaction=None): + def add_forward(self, zone, timeout=0, sender=None): _zone = self._fw.check_zone(zone) self._fw.check_timeout(timeout) self._fw.check_panic() @@ -1339,26 +1275,20 @@ def add_forward(self, zone, timeout=0, sender=None, use_transaction=None): errors.ALREADY_ENABLED, "forward already enabled in '%s'" % _zone ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._forward(True, _zone, transaction) + with self.with_transaction() as transaction: - self.__register_forward(_obj, timeout, sender) - transaction.add_fail(self.__unregister_forward, _obj) + if _obj.applied: + self._forward(True, _zone, transaction) - if use_transaction is None: - transaction.execute(True) + self.__register_forward(_obj, timeout, sender) + transaction.add_fail(self.__unregister_forward, _obj) return _zone def __register_forward(self, _obj, timeout, sender): _obj.forward = True - def remove_forward(self, zone, use_transaction=None): + def remove_forward(self, zone): _zone = self._fw.check_zone(zone) self._fw.check_panic() _obj = self._zones[_zone] @@ -1368,18 +1298,12 @@ def remove_forward(self, zone, use_transaction=None): errors.NOT_ENABLED, "forward not enabled in '%s'" % _zone ) - if use_transaction is None: - transaction = self.new_transaction() - else: - transaction = use_transaction - - if _obj.applied: - self._forward(False, _zone, transaction) + with self.with_transaction() as transaction: - transaction.add_post(self.__unregister_forward, _obj) + if _obj.applied: + self._forward(False, _zone, transaction) - if use_transaction is None: - transaction.execute(True) + transaction.add_post(self.__unregister_forward, _obj) return _zone diff --git a/src/firewall/core/io/direct.py b/src/firewall/core/io/direct.py index e6f5d99..4def4d7 100644 --- a/src/firewall/core/io/direct.py +++ b/src/firewall/core/io/direct.py @@ -103,14 +103,14 @@ def endElement(self, name): class Direct(IO_Object): """Direct class""" - IMPORT_EXPORT_STRUCTURE = ( + IMPORT_EXPORT_STRUCTURE = { # chain: [ ipv, table, [ chain ] ] - ("chains", [("", "", "")]), # a(sss) + "chains": [("", "", "")], # a(sss) # rule: [ ipv, table, chain, [ priority, [ arg ] ] ] - ("rules", [("", "", "", 0, [""])]), # a(sssias) + "rules": [("", "", "", 0, [""])], # a(sssias) # passthrough: [ ipv, [ [ arg ] ] ] - ("passthroughs", [("", [""])]), # a(sas) - ) + "passthroughs": [("", [""])], # a(sas) + } DBUS_SIGNATURE = "(a(sss)a(sssias)a(sas))" PARSER_REQUIRED_ELEMENT_ATTRS = { "direct": None, @@ -153,14 +153,14 @@ def export_config(self): def import_config(self, conf, all_io_objects): self.cleanup() self.check_config(conf) - for i, (element, dummy) in enumerate(self.IMPORT_EXPORT_STRUCTURE): + for i, element in enumerate(self.IMPORT_EXPORT_STRUCTURE): if element == "chains": for x in conf[i]: self.add_chain(*x) - if element == "rules": + elif element == "rules": for x in conf[i]: self.add_rule(*x) - if element == "passthroughs": + elif element == "passthroughs": for x in conf[i]: self.add_passthrough(*x) diff --git a/src/firewall/core/io/firewalld_conf.py b/src/firewall/core/io/firewalld_conf.py index 91d8ec4..c10e8cc 100644 --- a/src/firewall/core/io/firewalld_conf.py +++ b/src/firewall/core/io/firewalld_conf.py @@ -12,13 +12,13 @@ from firewall import config from firewall.core.logger import log +from firewall import errors valid_keys = [ "DefaultZone", "MinimalMark", "CleanupOnExit", "CleanupModulesOnExit", - "Lockdown", "IPv6_rpfilter", "IndividualCalls", "LogDenied", @@ -30,6 +30,10 @@ "AllowZoneDrifting", "NftablesFlowtable", "NftablesCounters", + "NftablesTableOwner", + "StrictForwardPorts", + # Deprecated keys: + "Lockdown", ] @@ -73,8 +77,7 @@ def set_defaults(self): "CleanupModulesOnExit", "yes" if config.FALLBACK_CLEANUP_MODULES_ON_EXIT else "no", ) - self.set("Lockdown", "yes" if config.FALLBACK_LOCKDOWN else "no") - self.set("IPv6_rpfilter", "yes" if config.FALLBACK_IPV6_RPFILTER else "no") + self.set("IPv6_rpfilter", config.FALLBACK_IPV6_RPFILTER) self.set("IndividualCalls", "yes" if config.FALLBACK_INDIVIDUAL_CALLS else "no") self.set("LogDenied", config.FALLBACK_LOG_DENIED) self.set("AutomaticHelpers", config.FALLBACK_AUTOMATIC_HELPERS) @@ -91,6 +94,26 @@ def set_defaults(self): self.set( "NftablesCounters", "yes" if config.FALLBACK_NFTABLES_COUNTERS else "no" ) + self.set( + "NftablesTableOwner", + "yes" if config.FALLBACK_NFTABLES_TABLE_OWNER else "no", + ) + self.set( + "StrictForwardPorts", + "yes" if config.FALLBACK_STRICT_FORWARD_PORTS else "no", + ) + + def sanity_check(self): + if self.get("FirewallBackend") == "iptables" and self.get("IPv6_rpfilter") in ( + "loose-forward", + "strict-forward", + ): + raise errors.FirewallError( + errors.INVALID_VALUE, + f"IPv6_rpfilter={self.get('IPv6_rpfilter')} is incompatible " + "with FirewallBackend=iptables. This is a limitation " + "of the iptables backend.", + ) # load self.filename def read(self): @@ -172,27 +195,20 @@ def read(self): "yes" if config.FALLBACK_CLEANUP_MODULES_ON_EXIT else "no", ) - # check lockdown value = self.get("Lockdown") - if not value or value.lower() not in ["yes", "true", "no", "false"]: - if value is not None: - log.warning( - "Lockdown '%s' is not valid, using default " "value %s", - value if value else "", - config.FALLBACK_LOCKDOWN, - ) - self.set("Lockdown", "yes" if config.FALLBACK_LOCKDOWN else "no") + if value and value.lower() not in ["no", "false"]: + log.warning('"Lockdown" option is deprecated and has no effect') # check ipv6_rpfilter value = self.get("IPv6_rpfilter") - if not value or value.lower() not in ["yes", "true", "no", "false"]: + if not value or value.lower() not in config.IPV6_RPFILTER_VALUES: if value is not None: log.warning( "IPv6_rpfilter '%s' is not valid, using default " "value %s", value if value else "", config.FALLBACK_IPV6_RPFILTER, ) - self.set("IPv6_rpfilter", "yes" if config.FALLBACK_IPV6_RPFILTER else "no") + self.set("IPv6_rpfilter", config.FALLBACK_IPV6_RPFILTER) # check individual calls value = self.get("IndividualCalls") @@ -283,6 +299,8 @@ def read(self): "yes" if config.FALLBACK_ALLOW_ZONE_DRIFTING else "no", ) + self.sanity_check() + # save to self.filename if there are key/value changes def write(self): if len(self._config) < 1: diff --git a/src/firewall/core/io/functions.py b/src/firewall/core/io/functions.py index ca01873..1ff8cd4 100644 --- a/src/firewall/core/io/functions.py +++ b/src/firewall/core/io/functions.py @@ -18,7 +18,6 @@ from firewall.core.io.helper import helper_reader from firewall.core.io.policy import policy_reader from firewall.core.io.direct import Direct -from firewall.core.io.lockdown_whitelist import LockdownWhitelist from firewall.core.io.firewalld_conf import firewalld_conf @@ -90,14 +89,3 @@ def check_on_disk_config(fw): ) except Exception as msg: raise Exception("'%s': %s" % (config.FIREWALLD_DIRECT, msg)) - if os.path.isfile(config.LOCKDOWN_WHITELIST): - try: - obj = LockdownWhitelist(config.LOCKDOWN_WHITELIST) - obj.read() - obj.check_config(obj.export_config()) - except FirewallError as error: - raise FirewallError( - error.code, "'%s': %s" % (config.LOCKDOWN_WHITELIST, error.msg) - ) - except Exception as msg: - raise Exception("'%s': %s" % (config.LOCKDOWN_WHITELIST, msg)) diff --git a/src/firewall/core/io/helper.py b/src/firewall/core/io/helper.py index f20cb79..304a0d8 100644 --- a/src/firewall/core/io/helper.py +++ b/src/firewall/core/io/helper.py @@ -24,14 +24,14 @@ class Helper(IO_Object): - IMPORT_EXPORT_STRUCTURE = ( - ("version", ""), # s - ("short", ""), # s - ("description", ""), # s - ("family", ""), # s - ("module", ""), # s - ("ports", [("", "")]), # a(ss) - ) + IMPORT_EXPORT_STRUCTURE = { + "version": "", # s + "short": "", # s + "description": "", # s + "family": "", # s + "module": "", # s + "ports": [("", "")], # a(ss) + } DBUS_SIGNATURE = "(sssssa(ss))" ADDITIONAL_ALNUM_CHARS = ["-", "."] PARSER_REQUIRED_ELEMENT_ATTRS = { diff --git a/src/firewall/core/io/icmptype.py b/src/firewall/core/io/icmptype.py index 2f2bfb1..035514f 100644 --- a/src/firewall/core/io/icmptype.py +++ b/src/firewall/core/io/icmptype.py @@ -22,12 +22,12 @@ class IcmpType(IO_Object): - IMPORT_EXPORT_STRUCTURE = ( - ("version", ""), # s - ("short", ""), # s - ("description", ""), # s - ("destination", [""]), # as - ) + IMPORT_EXPORT_STRUCTURE = { + "version": "", # s + "short": "", # s + "description": "", # s + "destination": [""], # as + } DBUS_SIGNATURE = "(sssas)" ADDITIONAL_ALNUM_CHARS = ["_", "-"] PARSER_REQUIRED_ELEMENT_ATTRS = { diff --git a/src/firewall/core/io/io_object.py b/src/firewall/core/io/io_object.py index 53cd21c..35d105d 100644 --- a/src/firewall/core/io/io_object.py +++ b/src/firewall/core/io/io_object.py @@ -7,6 +7,7 @@ """Generic io_object handler, io specific check methods.""" +import itertools import xml.sax as sax import xml.sax.saxutils as saxutils import copy @@ -20,7 +21,7 @@ class IO_Object: """Abstract IO_Object as base for icmptype, service and zone""" - IMPORT_EXPORT_STRUCTURE = () + IMPORT_EXPORT_STRUCTURE = {} DBUS_SIGNATURE = "()" ADDITIONAL_ALNUM_CHARS = [] # additional to alnum PARSER_REQUIRED_ELEMENT_ATTRS = {} @@ -34,26 +35,51 @@ def __init__(self): self.builtin = False def export_config(self): - ret = [] - for x in self.IMPORT_EXPORT_STRUCTURE: - ret.append(copy.deepcopy(getattr(self, x[0]))) - return tuple(ret) + return tuple( + copy.deepcopy(getattr(self, key)) for key in self.IMPORT_EXPORT_STRUCTURE + ) + + @staticmethod + def get_dict_from_tuple_static(IMPORT_EXPORT_STRUCTURE, conf): + if len(conf) > len(IMPORT_EXPORT_STRUCTURE): + raise errors.BugError( + f"conf tuple has unexpected too many elements ({conf} vs. {list(IMPORT_EXPORT_STRUCTURE)})" + ) + return dict(zip(IMPORT_EXPORT_STRUCTURE, conf)) + + def get_dict_from_tuple(obj, conf): + return IO_Object.get_dict_from_tuple_static(obj.IMPORT_EXPORT_STRUCTURE, conf) def export_config_dict(self): conf = {} - type_formats = dict([(x[0], x[1]) for x in self.IMPORT_EXPORT_STRUCTURE]) - for key in type_formats: - if ( - getattr(self, key) - or isinstance(getattr(self, key), bool) - or isinstance(getattr(self, key), int) - ): - conf[key] = copy.deepcopy(getattr(self, key)) + for key in self.IMPORT_EXPORT_STRUCTURE: + v = getattr(self, key) + if v or isinstance(v, bool) or isinstance(v, int): + conf[key] = copy.deepcopy(v) return conf + def export_config_tuple(self, conf_dict=None, length=None): + if conf_dict is None: + conf_dict = self.export_config_dict() + + keys = self.IMPORT_EXPORT_STRUCTURE + + if length is not None: + keys = tuple(itertools.islice(keys, length)) + assert length == len(keys) + + def _get(self, conf_dict, key): + if key not in conf_dict: + # old API needs the empty elements as well. Grab it from the + # object otherwise we don't know the type. + return copy.deepcopy(getattr(self, key)) + return conf_dict[key] + + return tuple(_get(self, conf_dict, key) for key in keys) + def import_config(self, conf, all_io_objects): self.check_config(conf, all_io_objects) - for i, (element, dummy) in enumerate(self.IMPORT_EXPORT_STRUCTURE): + for i, element in enumerate(self.IMPORT_EXPORT_STRUCTURE): if isinstance(conf[i], list): # remove duplicates without changing the order _conf = [] @@ -103,19 +129,17 @@ def check_config(self, conf, all_io_objects={}): "structure size mismatch %d != %d" % (len(conf), len(self.IMPORT_EXPORT_STRUCTURE)), ) - conf_dict = {} - for i, (x, y) in enumerate(self.IMPORT_EXPORT_STRUCTURE): - conf_dict[x] = conf[i] + conf_dict = dict(zip(self.IMPORT_EXPORT_STRUCTURE, conf)) self.check_config_dict(conf_dict, all_io_objects) def check_config_dict(self, conf, all_io_objects): - type_formats = dict([(x[0], x[1]) for x in self.IMPORT_EXPORT_STRUCTURE]) for key in conf: - if key not in [x for (x, y) in self.IMPORT_EXPORT_STRUCTURE]: + type_format = self.IMPORT_EXPORT_STRUCTURE.get(key) + if type_format is None: raise FirewallError( errors.INVALID_OPTION, "option '{}' is not valid".format(key) ) - self._check_config_structure(conf[key], type_formats[key]) + self._check_config_structure(conf[key], type_format) self._check_config(conf[key], key, conf, all_io_objects) def _check_config(self, dummy1, dummy2, dummy3, dummy4): diff --git a/src/firewall/core/io/ipset.py b/src/firewall/core/io/ipset.py index 18cf09f..d2d3019 100644 --- a/src/firewall/core/io/ipset.py +++ b/src/firewall/core/io/ipset.py @@ -41,14 +41,14 @@ class IPSet(IO_Object): - IMPORT_EXPORT_STRUCTURE = ( - ("version", ""), # s - ("short", ""), # s - ("description", ""), # s - ("type", ""), # s - ("options", {"": ""}), # a{ss} - ("entries", [""]), # as - ) + IMPORT_EXPORT_STRUCTURE = { + "version": "", # s + "short": "", # s + "description": "", # s + "type": "", # s + "options": {"": ""}, # a{ss} + "entries": [""], # as + } DBUS_SIGNATURE = "(ssssa{ss}as)" ADDITIONAL_ALNUM_CHARS = ["_", "-", ":", "."] PARSER_REQUIRED_ELEMENT_ATTRS = { diff --git a/src/firewall/core/io/lockdown_whitelist.py b/src/firewall/core/io/lockdown_whitelist.py deleted file mode 100644 index fe72453..0000000 --- a/src/firewall/core/io/lockdown_whitelist.py +++ /dev/null @@ -1,374 +0,0 @@ -# SPDX-License-Identifier: GPL-2.0-or-later -# -# Copyright (C) 2011-2016 Red Hat, Inc. -# -# Authors: -# Thomas Woerner - -import xml.sax as sax -import os -import io -import shutil - -from firewall import config -from firewall.core.io.io_object import ( - IO_Object, - IO_Object_ContentHandler, - IO_Object_XMLGenerator, -) -from firewall.core.logger import log -from firewall.functions import uniqify, checkUser, checkUid, checkCommand, checkContext -from firewall import errors -from firewall.errors import FirewallError - - -class lockdown_whitelist_ContentHandler(IO_Object_ContentHandler): - def __init__(self, item): - IO_Object_ContentHandler.__init__(self, item) - self.whitelist = False - - def startElement(self, name, attrs): - IO_Object_ContentHandler.startElement(self, name, attrs) - self.item.parser_check_element_attrs(name, attrs) - - if name == "whitelist": - if self.whitelist: - raise FirewallError(errors.PARSE_ERROR, "More than one whitelist.") - self.whitelist = True - - elif name == "command": - if not self.whitelist: - log.error("Parse Error: command outside of whitelist") - return - command = attrs["name"] - self.item.add_command(command) - - elif name == "user": - if not self.whitelist: - log.error("Parse Error: user outside of whitelist") - return - if "id" in attrs: - try: - uid = int(attrs["id"]) - except ValueError: - log.error("Parse Error: %s is not a valid uid" % attrs["id"]) - return - self.item.add_uid(uid) - elif "name" in attrs: - self.item.add_user(attrs["name"]) - - elif name == "selinux": - if not self.whitelist: - log.error("Parse Error: selinux outside of whitelist") - return - if "context" not in attrs: - log.error("Parse Error: no context") - return - self.item.add_context(attrs["context"]) - - else: - log.error("Unknown XML element %s" % name) - return - - -class LockdownWhitelist(IO_Object): - """LockdownWhitelist class""" - - IMPORT_EXPORT_STRUCTURE = ( - ("commands", [""]), # as - ("contexts", [""]), # as - ("users", [""]), # as - ("uids", [0]), # ai - ) - DBUS_SIGNATURE = "(asasasai)" - ADDITIONAL_ALNUM_CHARS = ["_"] - PARSER_REQUIRED_ELEMENT_ATTRS = { - "whitelist": None, - "command": ["name"], - "user": None, - # "group": None, - "selinux": ["context"], - } - PARSER_OPTIONAL_ELEMENT_ATTRS = { - "user": ["id", "name"], - # "group": [ "id", "name" ], - } - - def __init__(self, filename): - super(LockdownWhitelist, self).__init__() - self.filename = filename - self.parser = None - self.commands = [] - self.contexts = [] - self.users = [] - self.uids = [] - - # self.gids = [ ] - # self.groups = [ ] - - def _check_config(self, config, item, all_config, all_io_objects): - if item in ["commands", "contexts", "users", "uids"]: - for x in config: - self._check_config(x, item[:-1], all_config, all_io_objects) - elif item == "command": - if not checkCommand(config): - raise FirewallError(errors.INVALID_COMMAND, config) - elif item == "context": - if not checkContext(config): - raise FirewallError(errors.INVALID_CONTEXT, config) - elif item == "user": - if not checkUser(config): - raise FirewallError(errors.INVALID_USER, config) - elif item == "uid": - if not checkUid(config): - raise FirewallError(errors.INVALID_UID, config) - - def cleanup(self): - del self.commands[:] - del self.contexts[:] - del self.users[:] - del self.uids[:] - - # del self.gids[:] - # del self.groups[:] - - # commands - - def add_command(self, command): - if not checkCommand(command): - raise FirewallError(errors.INVALID_COMMAND, command) - if command not in self.commands: - self.commands.append(command) - else: - raise FirewallError( - errors.ALREADY_ENABLED, 'Command "%s" already in whitelist' % command - ) - - def remove_command(self, command): - if command in self.commands: - self.commands.remove(command) - else: - raise FirewallError( - errors.NOT_ENABLED, 'Command "%s" not in whitelist.' % command - ) - - def has_command(self, command): - return command in self.commands - - def match_command(self, command): - for _command in self.commands: - if _command.endswith("*"): - if command.startswith(_command[:-1]): - return True - else: - if _command == command: - return True - return False - - def get_commands(self): - return self.commands - - # user ids - - def add_uid(self, uid): - if not checkUid(uid): - raise FirewallError(errors.INVALID_UID, str(uid)) - if uid not in self.uids: - self.uids.append(uid) - else: - raise FirewallError( - errors.ALREADY_ENABLED, 'Uid "%s" already in whitelist' % uid - ) - - def remove_uid(self, uid): - if uid in self.uids: - self.uids.remove(uid) - else: - raise FirewallError(errors.NOT_ENABLED, 'Uid "%s" not in whitelist.' % uid) - - def has_uid(self, uid): - return uid in self.uids - - def match_uid(self, uid): - return uid in self.uids - - def get_uids(self): - return self.uids - - # users - - def add_user(self, user): - if not checkUser(user): - raise FirewallError(errors.INVALID_USER, user) - if user not in self.users: - self.users.append(user) - else: - raise FirewallError( - errors.ALREADY_ENABLED, 'User "%s" already in whitelist' % user - ) - - def remove_user(self, user): - if user in self.users: - self.users.remove(user) - else: - raise FirewallError( - errors.NOT_ENABLED, 'User "%s" not in whitelist.' % user - ) - - def has_user(self, user): - return user in self.users - - def match_user(self, user): - return user in self.users - - def get_users(self): - return self.users - - # # group ids - # - # def add_gid(self, gid): - # if gid not in self.gids: - # self.gids.append(gid) - # - # def remove_gid(self, gid): - # if gid in self.gids: - # self.gids.remove(gid) - # else: - # raise FirewallError(errors.NOT_ENABLED, - # 'Gid "%s" not in whitelist.' % gid) - # - # def has_gid(self, gid): - # return (gid in self.gids) - # - # def match_gid(self, gid): - # return (gid in self.gids) - # - # def get_gids(self): - # return self.gids - - # # groups - # - # def add_group(self, group): - # if group not in self.groups: - # self.groups.append(group) - # - # def remove_group(self, group): - # if group in self.groups: - # self.groups.remove(group) - # else: - # raise FirewallError(errors.NOT_ENABLED, - # 'Group "%s" not in whitelist.' % group) - # - # def has_group(self, group): - # return (group in self.groups) - # - # def match_group(self, group): - # return (group in self.groups) - # - # def get_groups(self): - # return self.groups - - # selinux contexts - - def add_context(self, context): - if not checkContext(context): - raise FirewallError(errors.INVALID_CONTEXT, context) - if context not in self.contexts: - self.contexts.append(context) - else: - raise FirewallError( - errors.ALREADY_ENABLED, 'Context "%s" already in whitelist' % context - ) - - def remove_context(self, context): - if context in self.contexts: - self.contexts.remove(context) - else: - raise FirewallError( - errors.NOT_ENABLED, 'Context "%s" not in whitelist.' % context - ) - - def has_context(self, context): - return context in self.contexts - - def match_context(self, context): - return context in self.contexts - - def get_contexts(self): - return self.contexts - - # read and write - - def read(self): - self.cleanup() - if not self.filename.endswith(".xml"): - raise FirewallError( - errors.INVALID_NAME, "'%s' is missing .xml suffix" % self.filename - ) - handler = lockdown_whitelist_ContentHandler(self) - parser = sax.make_parser() - parser.setContentHandler(handler) - try: - parser.parse(self.filename) - except sax.SAXParseException as msg: - raise FirewallError( - errors.INVALID_TYPE, "Not a valid file: %s" % msg.getException() - ) - del handler - del parser - - def write(self): - if os.path.exists(self.filename): - try: - shutil.copy2(self.filename, "%s.old" % self.filename) - except Exception as msg: - raise IOError("Backup of '%s' failed: %s" % (self.filename, msg)) - - if not os.path.exists(config.ETC_FIREWALLD): - os.mkdir(config.ETC_FIREWALLD, 0o750) - - f = io.open(self.filename, mode="wt", encoding="UTF-8") - handler = IO_Object_XMLGenerator(f) - handler.startDocument() - - # start whitelist element - handler.startElement("whitelist", {}) - handler.ignorableWhitespace("\n") - - # commands - for command in uniqify(self.commands): - handler.ignorableWhitespace(" ") - handler.simpleElement("command", {"name": command}) - handler.ignorableWhitespace("\n") - - for uid in uniqify(self.uids): - handler.ignorableWhitespace(" ") - handler.simpleElement("user", {"id": str(uid)}) - handler.ignorableWhitespace("\n") - - for user in uniqify(self.users): - handler.ignorableWhitespace(" ") - handler.simpleElement("user", {"name": user}) - handler.ignorableWhitespace("\n") - - # for gid in uniqify(self.gids): - # handler.ignorableWhitespace(" ") - # handler.simpleElement("user", { "id": str(gid) }) - # handler.ignorableWhitespace("\n") - - # for group in uniqify(self.groups): - # handler.ignorableWhitespace(" ") - # handler.simpleElement("group", { "name": group }) - # handler.ignorableWhitespace("\n") - - for context in uniqify(self.contexts): - handler.ignorableWhitespace(" ") - handler.simpleElement("selinux", {"context": context}) - handler.ignorableWhitespace("\n") - - # end whitelist element - handler.endElement("whitelist") - handler.ignorableWhitespace("\n") - handler.endDocument() - f.close() - del handler diff --git a/src/firewall/core/io/policy.py b/src/firewall/core/io/policy.py index 7158659..9282727 100644 --- a/src/firewall/core/io/policy.py +++ b/src/firewall/core/io/policy.py @@ -5,12 +5,12 @@ import os import io import shutil +import dataclasses from firewall import config from firewall.functions import ( checkIP, checkIP6, - checkUINT16, coalescePortRange, max_policy_name_len, portInPortRange, @@ -45,29 +45,27 @@ def common_startElement(obj, name, attrs): elif name == "service": if obj._rule: if obj._rule.element: - log.warning( - "Invalid rule: More than one element in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one element in rule '{str(obj._rule)}'.", ) - obj._rule_error = True - return True - obj._rule.element = rich.Rich_Service(attrs["name"]) + obj._rule = dataclasses.replace( + obj._rule, element=rich.Rich_Service(attrs["name"]) + ) return True if attrs["name"] not in obj.item.services: obj.item.services.append(attrs["name"]) - else: - log.warning("Service '%s' already set, ignoring.", attrs["name"]) elif name == "port": if obj._rule: if obj._rule.element: - log.warning( - "Invalid rule: More than one element in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one element in rule '{str(obj._rule)}'.", ) - obj._rule_error = True - return True - obj._rule.element = rich.Rich_Port(attrs["port"], attrs["protocol"]) + obj._rule = dataclasses.replace( + obj._rule, element=rich.Rich_Port(attrs["port"], attrs["protocol"]) + ) return True check_port(attrs["port"]) check_tcpudp(attrs["protocol"]) @@ -79,19 +77,7 @@ def common_startElement(obj, name, attrs): ) for port_id in existing_port_ids: if portInPortRange(new_port_id[0], port_id[0]): - # the range is wholly contained already, so just warn - _name = ( - obj.item.derived_from_zone - if isinstance(obj.item, Policy) - else obj.item.name - ) - log.warning( - FirewallError( - errors.ALREADY_ENABLED, - "'%s:%s' already in '%s'" - % (new_port_id[0], attrs["protocol"], _name), - ) - ) + # the range is wholly contained already; ignore break # for else: # the range can be coalesced into the existing set @@ -109,84 +95,72 @@ def common_startElement(obj, name, attrs): elif name == "protocol": if obj._rule: if obj._rule.element: - log.warning( - "Invalid rule: More than one element in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one element in rule '{str(obj._rule)}'.", ) - obj._rule_error = True - return True - obj._rule.element = rich.Rich_Protocol(attrs["value"]) + obj._rule = dataclasses.replace( + obj._rule, element=rich.Rich_Protocol(attrs["value"]) + ) else: check_protocol(attrs["value"]) if attrs["value"] not in obj.item.protocols: obj.item.protocols.append(attrs["value"]) - else: - log.warning("Protocol '%s' already set, ignoring.", attrs["value"]) elif name == "tcp-mss-clamp": if obj._rule: if obj._rule.element: - log.warning( - "Invalid rule: More than one element in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one element in rule '{str(obj._rule)}'.", ) - obj._rule_error = True - return True _value = "pmtu" if "value" in attrs and attrs["value"] not in [None, "None"]: _value = attrs["value"] - obj._rule.element = rich.Rich_Tcp_Mss_Clamp(_value) + obj._rule = dataclasses.replace( + obj._rule, element=rich.Rich_Tcp_Mss_Clamp(_value) + ) else: - s = "" - if "value" in attrs: - s = f" (value='{attrs['value']})'" - log.warning("Invalid rule: tcp-mss-clamp%s outside of rule", s) + raise FirewallError(errors.INVALID_RULE, "tcp-mss-clamp outside of rule.") elif name == "icmp-block": if obj._rule: if obj._rule.element: - log.warning( - "Invalid rule: More than one element in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one element in rule '{str(obj._rule)}'.", ) - obj._rule_error = True - return True - obj._rule.element = rich.Rich_IcmpBlock(attrs["name"]) + obj._rule = dataclasses.replace( + obj._rule, element=rich.Rich_IcmpBlock(attrs["name"]) + ) return True if attrs["name"] not in obj.item.icmp_blocks: obj.item.icmp_blocks.append(attrs["name"]) - else: - log.warning("icmp-block '%s' already set, ignoring.", attrs["name"]) elif name == "icmp-type": if obj._rule: if obj._rule.element: - log.warning( - "Invalid rule: More than one element in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one element in rule '{str(obj._rule)}'.", ) - obj._rule_error = True - return True - obj._rule.element = rich.Rich_IcmpType(attrs["name"]) + obj._rule = dataclasses.replace( + obj._rule, element=rich.Rich_IcmpType(attrs["name"]) + ) return True else: - log.warning("Invalid rule: icmp-block '%s' outside of rule", attrs["name"]) + raise FirewallError(errors.INVALID_RULE, "icmp-block outside of rule.") elif name == "masquerade": if obj._rule: if obj._rule.element: - log.warning( - "Invalid rule: More than one element in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one element in rule '{str(obj._rule)}'.", ) - obj._rule_error = True - return True - obj._rule.element = rich.Rich_Masquerade() + obj._rule = dataclasses.replace(obj._rule, element=rich.Rich_Masquerade()) else: - if obj.item.masquerade: - log.warning("Masquerade already set, ignoring.") - else: - obj.item.masquerade = True + obj.item.masquerade = True elif name == "forward-port": to_port = "" @@ -198,14 +172,15 @@ def common_startElement(obj, name, attrs): if obj._rule: if obj._rule.element: - log.warning( - "Invalid rule: More than one element in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one element in rule '{str(obj._rule)}'.", ) - obj._rule_error = True - return True - obj._rule.element = rich.Rich_ForwardPort( - attrs["port"], attrs["protocol"], to_port, to_addr + obj._rule = dataclasses.replace( + obj._rule, + element=rich.Rich_ForwardPort( + attrs["port"], attrs["protocol"], to_port, to_addr + ), ) return True @@ -226,25 +201,18 @@ def common_startElement(obj, name, attrs): ) if entry not in obj.item.forward_ports: obj.item.forward_ports.append(entry) - else: - log.warning( - "Forward port %s/%s%s%s already set, ignoring.", - attrs["port"], - attrs["protocol"], - " >%s" % to_port if to_port else "", - " @%s" % to_addr if to_addr else "", - ) elif name == "source-port": if obj._rule: if obj._rule.element: - log.warning( - "Invalid rule: More than one element in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one element in rule '{str(obj._rule)}'.", ) - obj._rule_error = True - return True - obj._rule.element = rich.Rich_SourcePort(attrs["port"], attrs["protocol"]) + obj._rule = dataclasses.replace( + obj._rule, + element=rich.Rich_SourcePort(attrs["port"], attrs["protocol"]), + ) return True check_port(attrs["port"]) check_tcpudp(attrs["protocol"]) @@ -256,19 +224,7 @@ def common_startElement(obj, name, attrs): ) for port_id in existing_port_ids: if portInPortRange(new_port_id[0], port_id[0]): - # the range is wholly contained already, so just warn - _name = ( - obj.item.derived_from_zone - if isinstance(obj.item, Policy) - else obj.item.name - ) - log.warning( - FirewallError( - errors.ALREADY_ENABLED, - "'%s:%s' already in '%s'" - % (new_port_id[0], attrs["protocol"], _name), - ) - ) + # the range is wholly contained already; ignore break # for else: # the range can be coalesced into the existing set @@ -285,15 +241,14 @@ def common_startElement(obj, name, attrs): elif name == "destination": if not obj._rule: - log.warning("Invalid rule: Destination outside of rule") - obj._rule_error = True - return True + raise FirewallError( + errors.INVALID_RULE, "Destination outside of rich rule." + ) if obj._rule.destination: - log.warning( - "Invalid rule: More than one destination in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one destination in rule '{str(obj._rule)}'.", ) - return True invert = False address = None if "address" in attrs: @@ -303,107 +258,76 @@ def common_startElement(obj, name, attrs): ipset = attrs["ipset"] if "invert" in attrs and attrs["invert"].lower() in ["yes", "true"]: invert = True - obj._rule.destination = rich.Rich_Destination(address, ipset, invert) + obj._rule = dataclasses.replace( + obj._rule, destination=rich.Rich_Destination(address, ipset, invert) + ) elif name in ["accept", "reject", "drop", "mark"]: if not obj._rule: - log.warning("Invalid rule: Action outside of rule") - obj._rule_error = True - return True + raise FirewallError(errors.INVALID_RULE, "Action outside of rich rule.") if obj._rule.action: - log.warning("Invalid rule: More than one action") - obj._rule_error = True - return True + raise FirewallError( + errors.INVALID_RULE, f"More than one action in rule '{str(obj._rule)}'." + ) if name == "accept": - obj._rule.action = rich.Rich_Accept() + obj._rule = dataclasses.replace(obj._rule, action=rich.Rich_Accept()) elif name == "reject": _type = None if "type" in attrs: _type = attrs["type"] - obj._rule.action = rich.Rich_Reject(_type) + obj._rule = dataclasses.replace(obj._rule, action=rich.Rich_Reject(_type)) elif name == "drop": - obj._rule.action = rich.Rich_Drop() + obj._rule = dataclasses.replace(obj._rule, action=rich.Rich_Drop()) elif name == "mark": _set = attrs["set"] - obj._rule.action = rich.Rich_Mark(_set) + obj._rule = dataclasses.replace(obj._rule, action=rich.Rich_Mark(_set)) obj._limit_ok = obj._rule.action elif name == "log": if not obj._rule: - log.warning("Invalid rule: Log outside of rule") - return True + raise FirewallError(errors.INVALID_RULE, "Log outside of rich rule.") if obj._rule.log: - log.warning("Invalid rule: More than one log") - return True + raise FirewallError( + errors.INVALID_RULE, f"More than one log in rule '{str(obj._rule)}'." + ) level = None if "level" in attrs: level = attrs["level"] - if level not in [ - "emerg", - "alert", - "crit", - "error", - "warning", - "notice", - "info", - "debug", - ]: - log.warning("Invalid rule: Invalid log level") - obj._rule_error = True - return True prefix = None if "prefix" in attrs: prefix = attrs["prefix"] - if not prefix or len(prefix) > 127: - log.warning("Invalid rule: Invalid log prefix") - obj._rule_error = True - return True - obj._rule.log = rich.Rich_Log(prefix, level) + obj._rule = dataclasses.replace(obj._rule, log=rich.Rich_Log(prefix, level)) obj._limit_ok = obj._rule.log elif name == "nflog": if not obj._rule: - log.warning("Invalid rule: Log outside of rule") - return True + raise FirewallError(errors.INVALID_RULE, "Log outside of rule.") if obj._rule.log: - log.warning("Invalid rule: More than one log") - return True + raise FirewallError( + errors.INVALID_RULE, f"More than one log in rule '{str(obj._rule)}'." + ) group = None if "group" in attrs: group = attrs["group"] - if not checkUINT16(group): - log.warning("Invalid rule: Invalid nflog group value") - obj._rule_error = True - return True prefix = None if "prefix" in attrs: prefix = attrs["prefix"] - if not prefix or len(prefix) > 127: - log.warning("Invalid rule: Invalid nflog prefix") - obj._rule_error = True - return True threshold = None if "queue-size" in attrs: threshold = attrs["queue-size"] - if not checkUINT16(threshold): - log.warning("Invalid rule: Invalid nflog queue-size") - obj._rule_error = True - return True - obj._rule.log = rich.Rich_NFLog(group, prefix, threshold) + obj._rule = dataclasses.replace( + obj._rule, log=rich.Rich_NFLog(group, prefix, threshold) + ) obj._limit_ok = obj._rule.log elif name == "audit": if not obj._rule: - log.warning("Invalid rule: Audit outside of rule") - return True + raise FirewallError(errors.INVALID_RULE, "Audit outside of rule.") if obj._rule.audit: - log.warning( - "Invalid rule: More than one audit in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, f"More than one audit in rule '{str(obj._rule)}'." ) - obj._rule_error = True - return True - obj._rule.audit = rich.Rich_Audit() + obj._rule = dataclasses.replace(obj._rule, audit=rich.Rich_Audit()) obj._limit_ok = obj._rule.audit elif name == "rule": @@ -411,28 +335,32 @@ def common_startElement(obj, name, attrs): priority = 0 if "family" in attrs: family = attrs["family"] - if family not in ["ipv4", "ipv6"]: - log.warning('Invalid rule: Rule family "%s" invalid', attrs["family"]) - obj._rule_error = True - return True if "priority" in attrs: priority = int(attrs["priority"]) obj._rule = rich.Rich_Rule(family=family, priority=priority) elif name == "limit": if not obj._limit_ok: - log.warning("Invalid rule: Limit outside of action, log and audit") - obj._rule_error = True - return True + raise FirewallError( + errors.INVALID_RULE, "Limit outside of action, log and audit." + ) if obj._limit_ok.limit: - log.warning( - "Invalid rule: More than one limit in rule '%s', ignoring.", - str(obj._rule), + raise FirewallError( + errors.INVALID_RULE, f"More than one limit in rule '{str(obj._rule)}'." ) - obj._rule_error = True - return True value = attrs["value"] - obj._limit_ok.limit = rich.Rich_Limit(value) + obj._limit_ok = dataclasses.replace( + obj._limit_ok, limit=rich.Rich_Limit(value, attrs.get("burst")) + ) + if isinstance(obj._limit_ok, rich.Rich_Audit): + obj._rule = dataclasses.replace(obj._rule, audit=obj._limit_ok) + elif isinstance(obj._limit_ok, (rich.Rich_Log, rich.Rich_NFLog)): + obj._rule = dataclasses.replace(obj._rule, log=obj._limit_ok) + elif isinstance( + obj._limit_ok, + (rich.Rich_Accept, rich.Rich_Reject, rich.Rich_Drop, rich.Rich_Mark), + ): + obj._rule = dataclasses.replace(obj._rule, action=obj._limit_ok) else: return False @@ -441,19 +369,9 @@ def common_startElement(obj, name, attrs): def common_endElement(obj, name): if name == "rule": - if not obj._rule_error: - try: - obj._rule.check() - except Exception as e: - log.warning("%s: %s", e, str(obj._rule)) - else: - if str(obj._rule) not in obj.item.rules_str: - obj.item.rules.append(obj._rule) - obj.item.rules_str.append(str(obj._rule)) - else: - log.warning("Rule '%s' already set, ignoring.", str(obj._rule)) + obj._rule.check() + obj.item.rules.add(obj._rule) obj._rule = None - obj._rule_error = False elif name in ["accept", "reject", "drop", "mark", "log", "audit"]: obj._limit_ok = None @@ -578,6 +496,30 @@ def common_check_config(obj, config, item, all_config, all_io_objects): obj_type, obj.name, obj_rich.element.name ), ) + elif obj_rich.source and obj_rich.source.ipset: + if obj_rich.source.ipset not in all_io_objects["ipsets"]: + raise FirewallError( + errors.INVALID_IPSET, + "{} '{}': '{}' not among existing ipsets".format( + obj_type, obj.name, obj_rich.source.ipset + ), + ) + elif obj_rich.destination and obj_rich.destination.ipset: + if obj_rich.destination.ipset not in all_io_objects["ipsets"]: + raise FirewallError( + errors.INVALID_IPSET, + "{} '{}': '{}' not among existing ipsets".format( + obj_type, obj.name, obj_rich.destination.ipset + ), + ) + + +def _handler_add_rich_limit(handler, limit): + d = {"value": limit.value} + burst = limit.burst + if burst is not None: + d["burst"] = str(burst) + handler.simpleElement("limit", d) def common_writer(obj, handler): @@ -645,7 +587,8 @@ def common_writer(obj, handler): handler.ignorableWhitespace("\n") # rules - for rule in obj.rules: + # Use sorted() to stabilize the XML, i.e. diffable + for rule in sorted(obj.rules): attrs = {} if rule.family: attrs["family"] = rule.family @@ -742,49 +685,46 @@ def common_writer(obj, handler): attrs["prefix"] = rule.log.prefix if rule.log.level: attrs["level"] = rule.log.level + handler.ignorableWhitespace(" ") if rule.log.limit: - handler.ignorableWhitespace(" ") handler.startElement("log", attrs) handler.ignorableWhitespace("\n ") - handler.simpleElement("limit", {"value": rule.log.limit.value}) + _handler_add_rich_limit(handler, rule.log.limit) handler.ignorableWhitespace("\n ") handler.endElement("log") else: - handler.ignorableWhitespace(" ") handler.simpleElement("log", attrs) handler.ignorableWhitespace("\n") else: attrs = {} if rule.log.group: - attrs["group"] = rule.log.group + attrs["group"] = str(rule.log.group) if rule.log.prefix: attrs["prefix"] = rule.log.prefix if rule.log.threshold: - attrs["queue-size"] = rule.log.threshold + attrs["queue-size"] = str(rule.log.threshold) + handler.ignorableWhitespace(" ") if rule.log.limit: - handler.ignorableWhitespace(" ") handler.startElement("nflog", attrs) handler.ignorableWhitespace("\n ") - handler.simpleElement("limit", {"value": rule.log.limit.value}) + _handler_add_rich_limit(handler, rule.log.limit) handler.ignorableWhitespace("\n ") handler.endElement("nflog") else: - handler.ignorableWhitespace(" ") handler.simpleElement("nflog", attrs) handler.ignorableWhitespace("\n") # audit if rule.audit: attrs = {} + handler.ignorableWhitespace(" ") if rule.audit.limit: - handler.ignorableWhitespace(" ") handler.startElement("audit", {}) handler.ignorableWhitespace("\n ") - handler.simpleElement("limit", {"value": rule.audit.limit.value}) + _handler_add_rich_limit(handler, rule.audit.limit) handler.ignorableWhitespace("\n ") handler.endElement("audit") else: - handler.ignorableWhitespace(" ") handler.simpleElement("audit", attrs) handler.ignorableWhitespace("\n") @@ -804,16 +744,17 @@ def common_writer(obj, handler): action = "mark" attrs["set"] = rule.action.set else: - log.warning("Unknown action '%s'", type(rule.action)) + raise FirewallError( + errors.INVALID_RULE, f"Unknown action in rule '{str(obj._rule)}'." + ) + handler.ignorableWhitespace(" ") if rule.action.limit: - handler.ignorableWhitespace(" ") handler.startElement(action, attrs) handler.ignorableWhitespace("\n ") - handler.simpleElement("limit", {"value": rule.action.limit.value}) + _handler_add_rich_limit(handler, rule.action.limit) handler.ignorableWhitespace("\n ") handler.endElement(action) else: - handler.ignorableWhitespace(" ") handler.simpleElement(action, attrs) handler.ignorableWhitespace("\n") @@ -828,23 +769,23 @@ class Policy(IO_Object): priority_default = DEFAULT_POLICY_PRIORITY priority_reserved = [0] - IMPORT_EXPORT_STRUCTURE = ( - ("version", ""), # s - ("short", ""), # s - ("description", ""), # s - ("target", ""), # s - ("services", [""]), # as - ("ports", [("", "")]), # a(ss) - ("icmp_blocks", [""]), # as - ("masquerade", False), # b - ("forward_ports", [("", "", "", "")]), # a(ssss) - ("rich_rules", [""]), # as - ("protocols", [""]), # as - ("source_ports", [("", "")]), # a(ss) - ("priority", 0), # i - ("ingress_zones", [""]), # as - ("egress_zones", [""]), # as - ) + IMPORT_EXPORT_STRUCTURE = { + "version": "", # s + "short": "", # s + "description": "", # s + "target": "", # s + "services": [""], # as + "ports": [("", "")], # a(ss) + "icmp_blocks": [""], # as + "masquerade": False, # b + "forward_ports": [("", "", "", "")], # a(ssss) + "rich_rules": [""], # as + "protocols": [""], # as + "source_ports": [("", "")], # a(ss) + "priority": 0, # i + "ingress_zones": [""], # as + "egress_zones": [""], # as + } ADDITIONAL_ALNUM_CHARS = ["_", "-", "/"] PARSER_REQUIRED_ELEMENT_ATTRS = { "short": None, @@ -882,6 +823,7 @@ class Policy(IO_Object): "nflog": ["group", "prefix", "queue-size"], "reject": ["type"], "tcp-mss-clamp": ["value"], + "limit": ["burst"], } def __init__(self): @@ -898,8 +840,7 @@ def __init__(self): self.masquerade = False self.forward_ports = [] self.source_ports = [] - self.rules = [] - self.rules_str = [] + self.rules = set() self.applied = False self.priority = self.priority_default self.derived_from_zone = None @@ -919,8 +860,7 @@ def cleanup(self): self.masquerade = False del self.forward_ports[:] del self.source_ports[:] - del self.rules[:] - del self.rules_str[:] + self.rules.clear() self.applied = False self.priority = self.priority_default del self.ingress_zones[:] @@ -928,15 +868,13 @@ def cleanup(self): def __getattr__(self, name): if name == "rich_rules": - return self.rules_str + return [str(r) for r in sorted(self.rules)] else: return getattr(super(Policy, self), name) def __setattr__(self, name, value): if name == "rich_rules": - self.rules = [rich.Rich_Rule(rule_str=s) for s in value] - # must convert back to string to get the canonical string. - self.rules_str = [str(s) for s in self.rules] + self.rules = set([rich.Rich_Rule(rule_str=s) for s in value]) else: super(Policy, self).__setattr__(name, value) @@ -1202,13 +1140,10 @@ class policy_ContentHandler(IO_Object_ContentHandler): def __init__(self, item): IO_Object_ContentHandler.__init__(self, item) self._rule = None - self._rule_error = False self._limit_ok = None def startElement(self, name, attrs): IO_Object_ContentHandler.startElement(self, name, attrs) - if self._rule_error: - return self.item.parser_check_element_attrs(name, attrs) @@ -1230,28 +1165,20 @@ def startElement(self, name, attrs): elif name == "ingress-zone": if attrs["name"] not in self.item.ingress_zones: self.item.ingress_zones.append(attrs["name"]) - else: - log.warning("Ingress zone '%s' already set, ignoring.", attrs["name"]) elif name == "egress-zone": if attrs["name"] not in self.item.egress_zones: self.item.egress_zones.append(attrs["name"]) - else: - log.warning("Egress zone '%s' already set, ignoring.", attrs["name"]) elif name == "source": if not self._rule: - log.warning("Invalid rule: Source outside of rule") - self._rule_error = True - return + raise FirewallError(errors.INVALID_RULE, "Source outside of rule.") if self._rule.source: - log.warning( - "Invalid rule: More than one source in rule '%s', ignoring.", - str(self._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one source in rule '{str(self._rule)}'.", ) - self._rule_error = True - return invert = False if "invert" in attrs and attrs["invert"].lower() in ["yes", "true"]: invert = True @@ -1262,12 +1189,13 @@ def startElement(self, name, attrs): mac = attrs["mac"] if "ipset" in attrs: ipset = attrs["ipset"] - self._rule.source = rich.Rich_Source(addr, mac, ipset, invert=invert) + self._rule = dataclasses.replace( + self._rule, source=rich.Rich_Source(addr, mac, ipset, invert=invert) + ) return else: - log.warning("Unknown XML element '%s'", name) - return + raise FirewallError(errors.INVALID_POLICY, f"Unknown XML element '{name}'.") def endElement(self, name): IO_Object_ContentHandler.endElement(self, name) diff --git a/src/firewall/core/io/service.py b/src/firewall/core/io/service.py index 5ea7657..fd01738 100644 --- a/src/firewall/core/io/service.py +++ b/src/firewall/core/io/service.py @@ -26,18 +26,18 @@ class Service(IO_Object): - IMPORT_EXPORT_STRUCTURE = ( - ("version", ""), - ("short", ""), - ("description", ""), - ("ports", [("", "")]), - ("modules", [""]), - ("destination", {"": ""}), - ("protocols", [""]), - ("source_ports", [("", "")]), - ("includes", [""]), - ("helpers", [""]), - ) + IMPORT_EXPORT_STRUCTURE = { + "version": "", + "short": "", + "description": "", + "ports": [("", "")], + "modules": [""], + "destination": {"": ""}, + "protocols": [""], + "source_ports": [("", "")], + "includes": [""], + "helpers": [""], + } ADDITIONAL_ALNUM_CHARS = ["_", "-"] PARSER_REQUIRED_ELEMENT_ATTRS = { "short": None, diff --git a/src/firewall/core/io/zone.py b/src/firewall/core/io/zone.py index 5c31fca..5f135bb 100644 --- a/src/firewall/core/io/zone.py +++ b/src/firewall/core/io/zone.py @@ -9,6 +9,7 @@ import os import io import shutil +import dataclasses from firewall import config from firewall.functions import ( @@ -44,27 +45,27 @@ class Zone(IO_Object): priority_max = 32767 priority_default = DEFAULT_ZONE_PRIORITY - IMPORT_EXPORT_STRUCTURE = ( - ("version", ""), # s - ("short", ""), # s - ("description", ""), # s - ("UNUSED", False), # b - ("target", ""), # s - ("services", [""]), # as - ("ports", [("", "")]), # a(ss) - ("icmp_blocks", [""]), # as - ("masquerade", False), # b - ("forward_ports", [("", "", "", "")]), # a(ssss) - ("interfaces", [""]), # as - ("sources", [""]), # as - ("rules_str", [""]), # as - ("protocols", [""]), # as - ("source_ports", [("", "")]), # a(ss) - ("icmp_block_inversion", False), # b - ("forward", True), # b - ("ingress_priority", 0), # i - ("egress_priority", 0), # i - ) + IMPORT_EXPORT_STRUCTURE = { + "version": "", # s + "short": "", # s + "description": "", # s + "UNUSED": False, # b + "target": "", # s + "services": [""], # as + "ports": [("", "")], # a(ss) + "icmp_blocks": [""], # as + "masquerade": False, # b + "forward_ports": [("", "", "", "")], # a(ssss) + "interfaces": [""], # as + "sources": [""], # as + "rules_str": [""], # as + "protocols": [""], # as + "source_ports": [("", "")], # a(ss) + "icmp_block_inversion": False, # b + "forward": True, # b + "ingress_priority": 0, # i + "egress_priority": 0, # i + } ADDITIONAL_ALNUM_CHARS = ["_", "-", "/"] PARSER_REQUIRED_ELEMENT_ATTRS = { "short": None, @@ -109,12 +110,13 @@ class Zone(IO_Object): "log": ["prefix", "level"], "nflog": ["group", "prefix", "queue-size"], "reject": ["type"], + "limit": ["burst"], "tcp-mss-clamp": ["value"], } @staticmethod def index_of(element): - for i, (el, dummy) in enumerate(Zone.IMPORT_EXPORT_STRUCTURE): + for i, el in enumerate(Zone.IMPORT_EXPORT_STRUCTURE): if el == element: return i raise FirewallError(errors.UNKNOWN_ERROR, "index_of()") @@ -136,8 +138,7 @@ def __init__(self): self.source_ports = [] self.interfaces = [] self.sources = [] - self.rules = [] - self.rules_str = [] + self.rules = set() self.icmp_block_inversion = False self.combined = False self.applied = False @@ -160,19 +161,22 @@ def cleanup(self): del self.source_ports[:] del self.interfaces[:] del self.sources[:] - del self.rules[:] - del self.rules_str[:] + self.rules.clear() self.icmp_block_inversion = False self.combined = False self.applied = False self.ingress_priority = self.priority_default self.egress_priority = self.priority_default + def __getattr__(self, name): + if name == "rules_str": + return [str(r) for r in sorted(self.rules)] + else: + return getattr(super(Zone, self), name) + def __setattr__(self, name, value): if name == "rules_str": - self.rules = [rich.Rich_Rule(rule_str=s) for s in value] - # must convert back to string to get the canonical string. - super(Zone, self).__setattr__(name, [str(s) for s in self.rules]) + self.rules = set([rich.Rich_Rule(rule_str=s) for s in value]) else: super(Zone, self).__setattr__(name, value) @@ -309,8 +313,7 @@ def combine(self, zone): if port not in self.source_ports: self.source_ports.append(port) for rule in zone.rules: - self.rules.append(rule) - self.rules_str.append(str(rule)) + self.rules.add(rule) if zone.icmp_block_inversion: self.icmp_block_inversion = True @@ -322,13 +325,10 @@ class zone_ContentHandler(IO_Object_ContentHandler): def __init__(self, item): IO_Object_ContentHandler.__init__(self, item) self._rule = None - self._rule_error = False self._limit_ok = None def startElement(self, name, attrs): IO_Object_ContentHandler.startElement(self, name, attrs) - if self._rule_error: - return self.item.parser_check_element_attrs(name, attrs) @@ -356,35 +356,24 @@ def startElement(self, name, attrs): self.item.egress_priority = int(attrs["egress-priority"]) elif name == "forward": - if self.item.forward: - log.warning("Forward already set, ignoring.") - else: - self.item.forward = True + self.item.forward = True elif name == "interface": if self._rule: - log.warning("Invalid rule: interface use in rule.") - self._rule_error = True - return - # zone bound to interface - if "name" not in attrs: - log.warning("Invalid interface: Name missing.") - self._rule_error = True - return + raise FirewallError( + errors.INVALID_RULE, + f"Interface is not valid in rule '{str(self._rule)}'.", + ) if attrs["name"] not in self.item.interfaces: self.item.interfaces.append(attrs["name"]) - else: - log.warning("Interface '%s' already set, ignoring.", attrs["name"]) elif name == "source": if self._rule: if self._rule.source: - log.warning( - "Invalid rule: More than one source in rule '%s', ignoring.", - str(self._rule), + raise FirewallError( + errors.INVALID_RULE, + f"More than one source in rule '{str(self._rule)}'.", ) - self._rule_error = True - return invert = False if "invert" in attrs and attrs["invert"].lower() in ["yes", "true"]: invert = True @@ -395,21 +384,25 @@ def startElement(self, name, attrs): mac = attrs["mac"] if "ipset" in attrs: ipset = attrs["ipset"] - self._rule.source = rich.Rich_Source(addr, mac, ipset, invert=invert) + self._rule = dataclasses.replace( + self._rule, source=rich.Rich_Source(addr, mac, ipset, invert=invert) + ) return # zone bound to source if "address" not in attrs and "ipset" not in attrs: - log.warning("Invalid source: No address no ipset.") - return + raise FirewallError( + errors.INVALID_SOURCE, "No address or ipset specified." + ) if "address" in attrs and "ipset" in attrs: - log.warning("Invalid source: Address and ipset.") - return + raise FirewallError( + errors.INVALID_SOURCE, "Both address and ipset (can only use one)." + ) if "family" in attrs: log.warning( "Ignoring deprecated attribute family='%s'", attrs["family"] ) if "invert" in attrs: - log.warning("Invalid source: Invertion not allowed here.") + raise FirewallError(errors.INVALID_SOURCE, "Invert not allowed.") return if "address" in attrs: if ( @@ -422,23 +415,16 @@ def startElement(self, name, attrs): entry = "ipset:%s" % attrs["ipset"] if entry not in self.item.sources: self.item.sources.append(entry) - else: - log.warning("Source '%s' already set, ignoring.", attrs["address"]) if "address" in attrs: entry = attrs["address"] if entry not in self.item.sources: self.item.sources.append(entry) - else: - log.warning("Source '%s' already set, ignoring.", attrs["address"]) elif name == "icmp-block-inversion": - if self.item.icmp_block_inversion: - log.warning("Icmp-Block-Inversion already set, ignoring.") - else: - self.item.icmp_block_inversion = True + self.item.icmp_block_inversion = True else: - log.warning("Unknown XML element '%s'", name) + raise FirewallError(errors.INVALID_ZONE, f"Unknown XML element '{name}'.") return def endElement(self, name): diff --git a/src/firewall/core/ipXtables.py b/src/firewall/core/ipXtables.py index 08e9326..8532570 100644 --- a/src/firewall/core/ipXtables.py +++ b/src/firewall/core/ipXtables.py @@ -737,6 +737,16 @@ def build_default_tables(self): # nothing to do, they always exist return [] + def _build_default_rules_dnat(self, chain): + dnat_rules = [] + if self._fw._strict_forward_ports: + self.our_chains["filter"].add(f"{chain}_dnat") + dnat_rules.append(f"-N {chain}_dnat") + dnat_rules.append(f"-A {chain}_dnat -j %%REJECT%%") + dnat_rules.append(f"-A {chain} -m conntrack --ctstate DNAT -j {chain}_dnat") + + return dnat_rules + def build_default_rules(self, log_denied="off"): default_rules = {} @@ -790,9 +800,14 @@ def build_default_rules(self, log_denied="off"): default_rules["filter"] = [] self.our_chains["filter"] = set() + default_rules["filter"].append( - "-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED,DNAT -j ACCEPT" + "-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED{} -j ACCEPT".format( + "" if self._fw._strict_forward_ports else ",DNAT" + ) ) + default_rules["filter"].extend(self._build_default_rules_dnat("INPUT")) + default_rules["filter"].append("-A INPUT -i lo -j ACCEPT") if log_denied != "off": default_rules["filter"].append( @@ -814,8 +829,12 @@ def build_default_rules(self, log_denied="off"): default_rules["filter"].append("-A INPUT -j %%REJECT%%") default_rules["filter"].append( - "-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED,DNAT -j ACCEPT" + "-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED{} -j ACCEPT".format( + "" if self._fw._strict_forward_ports else ",DNAT" + ) ) + default_rules["filter"].extend(self._build_default_rules_dnat("FORWARD")) + default_rules["filter"].append("-A FORWARD -i lo -j ACCEPT") if log_denied != "off": default_rules["filter"].append( @@ -836,9 +855,16 @@ def build_default_rules(self, log_denied="off"): ) default_rules["filter"].append("-A FORWARD -j %%REJECT%%") + default_rules["filter"] += ["-N OUTPUT_direct"] + + default_rules["filter"].append( + "-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED{} -j ACCEPT".format( + "" if self._fw._strict_forward_ports else ",DNAT" + ) + ) + default_rules["filter"].extend(self._build_default_rules_dnat("OUTPUT")) + default_rules["filter"] += [ - "-N OUTPUT_direct", - "-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT", "-A OUTPUT -o lo -j ACCEPT", "-A OUTPUT -j OUTPUT_direct", ] @@ -1162,9 +1188,12 @@ def build_policy_chain_rules(self, enable, policy, table, chain): return rules def _rule_limit(self, limit): - if limit: - return ["-m", "limit", "--limit", limit.value] - return [] + if not limit: + return [] + s = ["-m", "limit", "--limit", limit.value] + if limit.burst: + s += ["--limit-burst", str(limit.burst)] + return s def _rich_rule_chain_suffix(self, rich_rule): if type(rich_rule.element) in [ @@ -1236,11 +1265,11 @@ def _rich_rule_log(self, policy, rich_rule, enable, table, rule_fragment): if isinstance(rich_rule.log, Rich_NFLog): rule += rule_fragment + ["-j", "NFLOG"] if rich_rule.log.group: - rule += ["--nflog-group", rich_rule.log.group] + rule += ["--nflog-group", str(rich_rule.log.group)] if rich_rule.log.prefix: rule += ["--nflog-prefix", "%s" % rich_rule.log.prefix] if rich_rule.log.threshold: - rule += ["--nflog-threshold", rich_rule.log.threshold] + rule += ["--nflog-threshold", str(rich_rule.log.threshold)] else: rule += rule_fragment + ["-j", "LOG"] if rich_rule.log.prefix: @@ -1467,7 +1496,7 @@ def build_policy_tcp_mss_clamp_rules( rule_fragment += self._rich_rule_destination_fragment(rich_rule.destination) rule_fragment += self._rich_rule_source_fragment(rich_rule.source) - if tcp_mss_clamp_value == "pmtu" or tcp_mss_clamp_value is None: + if tcp_mss_clamp_value == "pmtu" or not tcp_mss_clamp_value: rule_fragment += ["-j", "TCPMSS", "--clamp-mss-to-pmtu"] else: rule_fragment += ["-j", "TCPMSS", "--set-mss", tcp_mss_clamp_value] @@ -1599,6 +1628,7 @@ def build_policy_forward_port_rules( _policy = self._fw.policy.policy_base_chain_name( policy, table, POLICY_CHAIN_PREFIX ) + p_obj = self._fw.policy.get_policy(policy) add_del = {True: "-A", False: "-D"}[enable] to = "" @@ -1634,9 +1664,33 @@ def build_policy_forward_port_rules( + ["-j", "DNAT", "--to-destination", to] ) + if self._fw._strict_forward_ports: + if "HOST" in p_obj.ingress_zones: + chain = "OUTPUT" + elif toaddr: + chain = "FORWARD" + else: + chain = "INPUT" + rules.append( + ["-t", "filter", "-I" if enable else "-D", f"{chain}_dnat"] + + [ + "-m", + "conntrack", + "--ctstate", + "DNAT", + "--ctdir", + "ORIGINAL", + "--ctorigdstport", + portStr(port), + ] + + ["-j", "ACCEPT"] + ) + return rules - def build_policy_icmp_block_rules(self, enable, policy, ict, rich_rule=None): + def build_policy_icmp_block_rules( + self, enable, policy, ict, rich_rule=None, ipvs=None + ): table = "filter" _policy = self._fw.policy.policy_base_chain_name( policy, table, POLICY_CHAIN_PREFIX @@ -1779,16 +1833,19 @@ class ip6tables(ip4tables): def build_rpfilter_rules(self, log_denied=False): rules = [] + rpfilter_fragment = ["-m", "rpfilter", "--invert", "--validmark"] + if self._fw._ipv6_rpfilter == "loose": + rpfilter_fragment += ["--loose"] + rules.append( [ "-I", "PREROUTING", "-t", "mangle", - "-m", - "rpfilter", - "--invert", - "--validmark", + ] + + rpfilter_fragment + + [ "-j", "DROP", ] @@ -1800,10 +1857,9 @@ def build_rpfilter_rules(self, log_denied=False): "PREROUTING", "-t", "mangle", - "-m", - "rpfilter", - "--invert", - "--validmark", + ] + + rpfilter_fragment + + [ "-j", "LOG", "--log-prefix", @@ -1888,14 +1944,21 @@ def build_rfc3964_ipv4_rules(self): ) # Inject into FORWARD and OUTPUT chains - rules.append(["-t", "filter", "-I", "OUTPUT", "4", "-j", chain_name]) + index = 4 + if self._fw._strict_forward_ports: + index += 1 + rules.append(["-t", "filter", "-I", "OUTPUT", str(index), "-j", chain_name]) + + index += 1 + if self._fw.get_log_denied() != "off": + index += 1 rules.append( [ "-t", "filter", "-I", "FORWARD", - "6" if self._fw.get_log_denied() != "off" else "5", + str(index), "-j", chain_name, ] diff --git a/src/firewall/core/ipset.py b/src/firewall/core/ipset.py index 2944dc2..fcf34a6 100644 --- a/src/firewall/core/ipset.py +++ b/src/firewall/core/ipset.py @@ -77,27 +77,6 @@ def check_name(self, name): errors.INVALID_NAME, "ipset name '%s' is not valid" % name ) - def set_supported_types(self): - """Return types that are supported by the ipset command and kernel""" - ret = [] - output = "" - try: - output = self.__run(["--help"]) - except ValueError as ex: - log.debug1("ipset error: %s" % ex) - lines = output.splitlines() - - in_types = False - for line in lines: - # print(line) - if in_types: - splits = line.strip().split(None, 2) - if splits[0] not in ret and splits[0] in IPSET_TYPES: - ret.append(splits[0]) - if line.startswith("Supported set types:"): - in_types = True - return ret - def check_type(self, type_name): """Check ipset type""" if len(type_name) > IPSET_MAXNAMELEN or type_name not in IPSET_TYPES: diff --git a/src/firewall/core/nftables.py b/src/firewall/core/nftables.py index 77598dd..7d29944 100644 --- a/src/firewall/core/nftables.py +++ b/src/firewall/core/nftables.py @@ -42,6 +42,7 @@ TABLE_NAME = "firewalld" TABLE_NAME_POLICY = TABLE_NAME + "_" + "policy_drop" +TABLE_NAME_PROBE = TABLE_NAME + "_" + "probe" POLICY_CHAIN_PREFIX = "policy_" # Map iptables (table, chain) to hooks and priorities. @@ -227,6 +228,7 @@ class nftables: def __init__(self, fw): self._fw = fw self.restore_command_exists = True + self.supports_table_owner = False self.available_tables = [] self.rule_to_handle = {} self.rule_ref_count = {} @@ -237,6 +239,60 @@ def __init__(self, fw): self.nftables.set_echo_output(True) self.nftables.set_handle_output(True) + def _probe_support_table_owner(self): + try: + rules = { + "nftables": [ + {"metainfo": {"json_schema_version": 1}}, + { + "add": { + "table": { + "family": "inet", + "name": TABLE_NAME_PROBE, + "flags": ["owner", "persist"], + } + } + }, + ] + } + + rc, output, _ = self.nftables.json_cmd(rules) + if rc: + raise ValueError("nftables probe table owner failed") + + # old nftables versions would ignore table flags in JSON, so we + # must parse back and verify the flags are set. + rules = { + "nftables": [ + {"metainfo": {"json_schema_version": 1}}, + {"list": {"table": {"family": "inet", "name": TABLE_NAME_PROBE}}}, + ] + } + self.nftables.set_echo_output(False) + rc, output, _ = self.nftables.json_cmd(rules) + self.nftables.set_echo_output(True) + flags = output["nftables"][1]["table"]["flags"] + + if "owner" not in flags or "persist" not in flags: + raise ValueError("nftables probe table owner failed") + + log.debug2("nftables: probe_support(): owner flag is supported.") + self.supports_table_owner = True + except: + log.debug2("nftables: probe_support(): owner flag is NOT supported.") + self.supports_table_owner = False + + try: + self.set_rule( + {"delete": {"table": {"family": "inet", "name": TABLE_NAME_PROBE}}}, + self._fw.get_log_denied(), + ) + except: + pass + + def probe_support(self): + self._probe_support_table_owner() + def _set_rule_sort_policy_dispatch(self, rule, policy_dispatch_index_cache): for verb in ["add", "insert", "delete"]: if verb in rule: @@ -499,14 +555,25 @@ def get_available_tables(self, table=None): # Tables always exist in nftables return [table] if table else IPTABLES_TO_NFT_HOOK.keys() + def _build_add_table_rules(self, table): + rule = {"add": {"table": {"family": "inet", "name": table}}} + + if ( + table == TABLE_NAME + and self._fw._nftables_table_owner + and self.supports_table_owner + ): + rule["add"]["table"]["flags"] = ["owner", "persist"] + + return [rule] + def _build_delete_table_rules(self, table): # To avoid nftables returning ENOENT we always add the table before # deleting to guarantee it will exist. # # In the future, this add+delete should be replaced with "destroy", but # that verb is too new to rely upon. - return [ - {"add": {"table": {"family": "inet", "name": table}}}, + return self._build_add_table_rules(table) + [ {"delete": {"table": {"family": "inet", "name": table}}}, ] @@ -546,9 +613,7 @@ def build_set_policy_rules(self, policy, policy_details): # a higher priority than our base chains is sufficient. rules = [] if policy == "PANIC": - rules.append( - {"add": {"table": {"family": "inet", "name": TABLE_NAME_POLICY}}} - ) + rules.extend(self._build_add_table_rules(TABLE_NAME_POLICY)) # Use "raw" priority for panic mode. This occurs before # conntrack, mangle, nat, etc @@ -569,9 +634,7 @@ def build_set_policy_rules(self, policy, policy_details): } ) elif policy == "DROP": - rules.append( - {"add": {"table": {"family": "inet", "name": TABLE_NAME_POLICY}}} - ) + rules.extend(self._build_add_table_rules(TABLE_NAME_POLICY)) # To drop everything except existing connections we use # "filter" because it occurs _after_ conntrack. @@ -638,11 +701,91 @@ def supported_icmp_types(self, ipv=None): return list(supported) def build_default_tables(self): - default_tables = [] - default_tables.append( - {"add": {"table": {"family": "inet", "name": TABLE_NAME}}} - ) - return default_tables + return self._build_add_table_rules(TABLE_NAME) + + def _build_default_rules_dnat(self, chain): + dnat_rules = [] + if self._fw._strict_forward_ports: + # Use a dedicated chain to check for DNAT'd packets on expected ports. + # Drop all other DNAT'd ports. + # + dnat_rules.append( + { + "add": { + "chain": { + "family": "inet", + "table": TABLE_NAME, + "name": f"filter_{chain}_dnat", + } + } + } + ) + dnat_rules.append( + { + "add": { + "rule": { + "family": "inet", + "table": TABLE_NAME, + "chain": f"filter_{chain}_dnat", + "expr": [ + { + "reject": { + "type": "icmpx", + "expr": "admin-prohibited", + } + } + ], + } + } + } + ) + dnat_rules.append( + { + "add": { + "rule": { + "family": "inet", + "table": TABLE_NAME, + "chain": f"filter_{chain}", + "expr": [ + { + "match": { + "left": {"ct": {"key": "status"}}, + "op": "in", + "right": "dnat", + } + }, + {"jump": {"target": f"filter_{chain}_dnat"}}, + ], + } + } + } + ) + else: + # Generic accept of all DNAT'd packets. + # + dnat_rules.append( + { + "add": { + "rule": { + "family": "inet", + "table": TABLE_NAME, + "chain": f"filter_{chain}", + "expr": [ + { + "match": { + "left": {"ct": {"key": "status"}}, + "op": "in", + "right": "dnat", + } + }, + {"accept": None}, + ], + } + } + } + ) + + return dnat_rules def build_default_rules(self, log_denied="off"): default_rules = [] @@ -765,27 +908,9 @@ def build_default_rules(self, log_denied="off"): } } ) - default_rules.append( - { - "add": { - "rule": { - "family": "inet", - "table": TABLE_NAME, - "chain": "filter_%s" % "INPUT", - "expr": [ - { - "match": { - "left": {"ct": {"key": "status"}}, - "op": "in", - "right": "dnat", - } - }, - {"accept": None}, - ], - } - } - } - ) + + default_rules.extend(self._build_default_rules_dnat("INPUT")) + default_rules.append( { "add": { @@ -970,27 +1095,9 @@ def build_default_rules(self, log_denied="off"): } } ) - default_rules.append( - { - "add": { - "rule": { - "family": "inet", - "table": TABLE_NAME, - "chain": "filter_%s" % "FORWARD", - "expr": [ - { - "match": { - "left": {"ct": {"key": "status"}}, - "op": "in", - "right": "dnat", - } - }, - {"accept": None}, - ], - } - } - } - ) + + default_rules.extend(self._build_default_rules_dnat("FORWARD")) + default_rules.append( { "add": { @@ -1132,6 +1239,9 @@ def build_default_rules(self, log_denied="off"): } } ) + + default_rules.extend(self._build_default_rules_dnat("OUTPUT")) + default_rules.append( { "add": { @@ -1594,18 +1704,17 @@ def _rich_rule_limit_fragment(self, limit): "d": "day", } - try: - i = limit.value.index("/") - except ValueError: - raise FirewallError(INVALID_RULE, "Expected '/' in limit") - - return { - "limit": { - "rate": int(limit.value[0:i]), - "per": rich_to_nft[limit.value[i + 1]], - } + d = { + "rate": limit.rate, + "per": rich_to_nft[limit.duration], } + burst = limit.burst + if burst is not None: + d["burst"] = burst + + return {"limit": d} + def _rich_rule_chain_suffix(self, rich_rule): if type(rich_rule.element) in [ Rich_Masquerade, @@ -1674,11 +1783,9 @@ def _rich_rule_log(self, policy, rich_rule, enable, table, expr_fragments): log_options = {} if isinstance(rich_rule.log, Rich_NFLog): - log_options["group"] = ( - int(rich_rule.log.group) if rich_rule.log.group else 0 - ) + log_options["group"] = rich_rule.log.group if rich_rule.log.threshold: - log_options["queue-threshold"] = int(rich_rule.log.threshold) + log_options["queue-threshold"] = rich_rule.log.threshold else: if rich_rule.log.level: level = ( @@ -2016,7 +2123,7 @@ def build_policy_tcp_mss_clamp_rules( } ) - if tcp_mss_clamp_value == "pmtu" or tcp_mss_clamp_value is None: + if tcp_mss_clamp_value == "pmtu" or not tcp_mss_clamp_value: expr_fragments.append( { "mangle": { @@ -2252,6 +2359,7 @@ def build_policy_forward_port_rules( _policy = self._fw.policy.policy_base_chain_name( policy, table, POLICY_CHAIN_PREFIX ) + p_obj = self._fw.policy.get_policy(policy) add_del = {True: "add", False: "delete"}[enable] expr_fragments = [] @@ -2314,6 +2422,30 @@ def build_policy_forward_port_rules( rule.update(self._rich_rule_priority_fragment(rich_rule)) rules.append({add_del: {"rule": rule}}) + if self._fw._strict_forward_ports: + if "HOST" in p_obj.ingress_zones: + chain = "OUTPUT" + elif toaddr: + chain = "FORWARD" + else: + chain = "INPUT" + rule = { + "family": "inet", + "table": TABLE_NAME, + "chain": f"filter_{chain}_dnat", + "expr": [ + { + "match": { + "left": {"ct": {"key": "proto-dst", "dir": "original"}}, + "op": "==", + "right": self._port_fragment(port), + }, + }, + {"accept": None}, + ], + } + rules.append({"insert" if enable else "delete": {"rule": rule}}) + return rules def _icmp_types_to_nft_fragments(self, ipv, icmp_type): @@ -2326,24 +2458,15 @@ def _icmp_types_to_nft_fragments(self, ipv, icmp_type): % (icmp_type, self.name, ipv), ) - def build_policy_icmp_block_rules(self, enable, policy, ict, rich_rule=None): + def build_policy_icmp_block_rules( + self, enable, policy, ict, rich_rule=None, ipvs=["ipv4", "ipv6"] + ): table = "filter" _policy = self._fw.policy.policy_base_chain_name( policy, table, POLICY_CHAIN_PREFIX ) add_del = {True: "add", False: "delete"}[enable] - if rich_rule and rich_rule.ipvs: - ipvs = rich_rule.ipvs - elif ict.destination: - ipvs = [] - if "ipv4" in ict.destination: - ipvs.append("ipv4") - if "ipv6" in ict.destination: - ipvs.append("ipv6") - else: - ipvs = ["ipv4", "ipv6"] - rules = [] for ipv in ipvs: if self._fw.policy.query_icmp_block_inversion(policy): @@ -2493,6 +2616,19 @@ def build_policy_icmp_block_inversion_rules(self, enable, policy): def build_rpfilter_rules(self, log_denied=False): rules = [] + rpfilter_chain = "filter_PREROUTING" + + if self._fw._ipv6_rpfilter == "loose": + fib_flags = ["saddr", "mark"] + elif self._fw._ipv6_rpfilter == "loose-forward": + fib_flags = ["saddr", "mark"] + rpfilter_chain = "filter_FORWARD" + elif self._fw._ipv6_rpfilter == "strict-forward": + fib_flags = ["saddr", "mark", "iif"] + rpfilter_chain = "filter_FORWARD" + else: + fib_flags = ["saddr", "mark", "iif"] + expr_fragments = [ { "match": { @@ -2503,9 +2639,7 @@ def build_rpfilter_rules(self, log_denied=False): }, { "match": { - "left": { - "fib": {"flags": ["saddr", "iif", "mark"], "result": "oif"} - }, + "left": {"fib": {"flags": fib_flags, "result": "oif"}}, "op": "==", "right": False, } @@ -2521,44 +2655,46 @@ def build_rpfilter_rules(self, log_denied=False): "rule": { "family": "inet", "table": TABLE_NAME, - "chain": "filter_PREROUTING", + "chain": rpfilter_chain, "expr": expr_fragments, } } } ) # RHBZ#1058505, RHBZ#1575431 (bug in kernel 4.16-4.17) - rules.append( - { - "insert": { - "rule": { - "family": "inet", - "table": TABLE_NAME, - "chain": "filter_PREROUTING", - "expr": [ - { - "match": { - "left": { - "payload": { - "protocol": "icmpv6", - "field": "type", - } - }, - "op": "==", - "right": { - "set": [ - "nd-router-advert", - "nd-neighbor-solicit", - ] - }, - } - }, - {"accept": None}, - ], + if self._fw._ipv6_rpfilter not in ("loose-forward", "strict-forward"): + # this rule doesn't make sense for forwarded packets + rules.append( + { + "insert": { + "rule": { + "family": "inet", + "table": TABLE_NAME, + "chain": rpfilter_chain, + "expr": [ + { + "match": { + "left": { + "payload": { + "protocol": "icmpv6", + "field": "type", + } + }, + "op": "==", + "right": { + "set": [ + "nd-router-advert", + "nd-neighbor-solicit", + ] + }, + } + }, + {"accept": None}, + ], + } } } - } - ) + ) return rules def build_rfc3964_ipv4_rules(self): @@ -2600,7 +2736,7 @@ def build_rfc3964_ipv4_rules(self): "family": "inet", "table": TABLE_NAME, "chain": "filter_OUTPUT", - "index": 1, + "index": 2, "expr": expr_fragments, } } @@ -2611,6 +2747,8 @@ def build_rfc3964_ipv4_rules(self): forward_index += 1 if self._fw.get_log_denied() != "off": forward_index += 1 + if self._fw._ipv6_rpfilter in ("loose-forward", "strict-forward"): + forward_index += 1 rules.append( { "add": { @@ -2757,7 +2895,7 @@ def _set_match_fragment(self, name, match_dest, invert=False): ) elif format == "iface": fragments.append( - {"meta": {"key": "iifname" if match_dest else "oifname"}} + {"meta": {"key": "oifname" if match_dest else "iifname"}} ) elif format == "mark": fragments.append({"meta": {"key": "mark"}}) diff --git a/src/firewall/core/rich.py b/src/firewall/core/rich.py index d1618a4..7796f45 100644 --- a/src/firewall/core/rich.py +++ b/src/firewall/core/rich.py @@ -5,11 +5,14 @@ # Authors: # Thomas Woerner +from typing import ClassVar +from dataclasses import dataclass, field, InitVar + from firewall import functions from firewall.core.ipset import check_ipset_name from firewall.core.base import REJECT_TYPES from firewall import errors -from firewall.errors import FirewallError +from firewall.errors import FirewallError, BugError # Dummy class for EOL singleton instance. It's a class, so we @@ -24,202 +27,244 @@ def __repr__(self): EOL = _EOLType() -class _Rich_Entry: - def check(self, family=None): - pass +def lt_objects(left, right): + if left is None and right is not None: + return True + elif left is not None and right is None: + return False + elif left is None and right is None: + return False + elif type(left) is type(right): + return left < right + else: + return type(left).__name__ < type(right).__name__ + + +def lt_family(left, right): + return left.family < right.family + + +def lt_priority(left, right): + return left.priority < right.priority + + +def lt_source(left, right): + return lt_objects(left.source, right.source) -class _Rich_EntryWithLimit(_Rich_Entry): - def __init__(self, limit=None): - self.limit = limit +def lt_destination(left, right): + return lt_objects(left.destination, right.destination) - def check(self, family=None): - if self.limit is not None: - self.limit.check(family=family) +def lt_element(left, right): + return lt_objects(left.element, right.element) -class _Rich_Element(_Rich_Entry): - pass +def lt_log(left, right): + return lt_objects(left.log, right.log) -class _Rich_Action(_Rich_EntryWithLimit): - pass +def lt_audit(left, right): + return lt_objects(left.audit, right.audit) -class _Rich_Log(_Rich_EntryWithLimit): - pass +def lt_action(left, right): + return lt_objects(left.action, right.action) -class Rich_Source(_Rich_Entry): - def __init__(self, addr, mac, ipset, invert=False): - self.addr = addr - if self.addr == "": - self.addr = None - self.mac = mac - if self.mac == "" or self.mac is None: - self.mac = None - elif self.mac is not None: - self.mac = self.mac.upper() - self.ipset = ipset - if self.ipset == "": - self.ipset = None - self.invert = invert - if self.addr is None and self.mac is None and self.ipset is None: + +@dataclass(frozen=True, order=True) +class Rich_Source: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + addr: str + mac: str + ipset: str + invert: bool = False + + def __post_init__(self): + if not any([self.addr, self.mac, self.ipset]): raise FirewallError(errors.INVALID_RULE, "no address, mac and ipset") - def __str__(self): - ret = "source%s " % (" NOT" if self.invert else "") - if self.addr is not None: - return ret + 'address="%s"' % self.addr - elif self.mac is not None: - return ret + 'mac="%s"' % self.mac - elif self.ipset is not None: - return ret + 'ipset="%s"' % self.ipset - raise FirewallError(errors.INVALID_RULE, "no address, mac and ipset") + if self.addr is None: + object.__setattr__(self, "addr", "") + if self.mac is None: + object.__setattr__(self, "mac", "") + if self.ipset is None: + object.__setattr__(self, "ipset", "") - def check(self, family=None): - if self.addr is not None: - if family is None: - raise FirewallError(errors.INVALID_FAMILY) - if self.mac is not None: + if self.addr: + if self.mac: raise FirewallError(errors.INVALID_RULE, "address and mac") - if self.ipset is not None: + if self.ipset: raise FirewallError(errors.INVALID_RULE, "address and ipset") - if not functions.check_address(family, self.addr): - raise FirewallError(errors.INVALID_ADDR, str(self.addr)) - elif self.mac is not None: - if self.ipset is not None: + elif self.mac: + if self.ipset: raise FirewallError(errors.INVALID_RULE, "mac and ipset") if not functions.check_mac(self.mac): raise FirewallError(errors.INVALID_MAC, str(self.mac)) - elif self.ipset is not None: + elif self.ipset: if not check_ipset_name(self.ipset): raise FirewallError(errors.INVALID_IPSET, str(self.ipset)) - else: - raise FirewallError(errors.INVALID_RULE, "invalid source") - - -class Rich_Destination(_Rich_Entry): - def __init__(self, addr, ipset, invert=False): - self.addr = addr - if self.addr == "": - self.addr = None - self.ipset = ipset - if self.ipset == "": - self.ipset = None - self.invert = invert - if self.addr is None and self.ipset is None: - raise FirewallError(errors.INVALID_RULE, "no address and ipset") def __str__(self): - ret = "destination%s " % (" NOT" if self.invert else "") - if self.addr is not None: + ret = "source%s " % (" NOT" if self.invert else "") + if self.addr: return ret + 'address="%s"' % self.addr - elif self.ipset is not None: + elif self.mac: + return ret + 'mac="%s"' % self.mac + elif self.ipset: return ret + 'ipset="%s"' % self.ipset - raise FirewallError(errors.INVALID_RULE, "no address and ipset") - def check(self, family=None): - if self.addr is not None: - if family is None: - raise FirewallError(errors.INVALID_FAMILY) - if self.ipset is not None: + +@dataclass(frozen=True, order=True) +class Rich_Destination: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + addr: str + ipset: str + invert: bool = False + + def __post_init__(self): + if not any([self.addr, self.ipset]): + raise FirewallError(errors.INVALID_DESTINATION, "no address or ipset") + + if self.addr is None: + object.__setattr__(self, "addr", "") + if self.ipset is None: + object.__setattr__(self, "ipset", "") + + if self.addr: + if self.ipset: raise FirewallError(errors.INVALID_DESTINATION, "address and ipset") - if not functions.check_address(family, self.addr): - raise FirewallError(errors.INVALID_ADDR, str(self.addr)) - elif self.ipset is not None: + elif self.ipset: if not check_ipset_name(self.ipset): raise FirewallError(errors.INVALID_IPSET, str(self.ipset)) - else: - raise FirewallError(errors.INVALID_RULE, "invalid destination") + def __str__(self): + ret = "destination%s " % (" NOT" if self.invert else "") + if self.addr: + return ret + 'address="%s"' % self.addr + elif self.ipset: + return ret + 'ipset="%s"' % self.ipset -class Rich_Service(_Rich_Element): - def __init__(self, name): - self.name = name + +@dataclass(frozen=True, order=True) +class Rich_Service: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + name: str def __str__(self): return 'service name="%s"' % (self.name) - def check(self, family=None): - if self.name is None or len(self.name) < 1: - raise FirewallError(errors.INVALID_SERVICE, str(self.name)) - -class Rich_Port(_Rich_Element): - def __init__(self, port, protocol): - self.port = port - self.protocol = protocol +@dataclass(frozen=True, order=True) +class Rich_Port: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" - def __str__(self): - return 'port port="%s" protocol="%s"' % (self.port, self.protocol) + port: str + protocol: str - def check(self, family=None): + def __post_init__(self): if not functions.check_port(self.port): raise FirewallError(errors.INVALID_PORT, self.port) if self.protocol not in ["tcp", "udp", "sctp", "dccp"]: raise FirewallError(errors.INVALID_PROTOCOL, self.protocol) + def __str__(self): + return 'port port="%s" protocol="%s"' % (self.port, self.protocol) -class Rich_SourcePort(_Rich_Element): - def __init__(self, port, protocol): - self.port = port - self.protocol = protocol - def __str__(self): - return 'source-port port="%s" protocol="%s"' % (self.port, self.protocol) +@dataclass(frozen=True, order=True) +class Rich_SourcePort: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" - def check(self, family=None): + port: str + protocol: str + + def __post_init__(self): if not functions.check_port(self.port): raise FirewallError(errors.INVALID_PORT, self.port) if self.protocol not in ["tcp", "udp", "sctp", "dccp"]: raise FirewallError(errors.INVALID_PROTOCOL, self.protocol) + def __str__(self): + return 'source-port port="%s" protocol="%s"' % (self.port, self.protocol) -class Rich_Protocol(_Rich_Element): - def __init__(self, value): - self.value = value - def __str__(self): - return 'protocol value="%s"' % (self.value) +@dataclass(frozen=True, order=True) +class Rich_Protocol: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + value: str - def check(self, family=None): + def __post_init__(self): if not functions.checkProtocol(self.value): raise FirewallError(errors.INVALID_PROTOCOL, self.value) + def __str__(self): + return 'protocol value="%s"' % (self.value) + + +@dataclass(frozen=True) +class Rich_Masquerade: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" -class Rich_Masquerade(_Rich_Element): def __str__(self): return "masquerade" -class Rich_IcmpBlock(_Rich_Element): - def __init__(self, name): - self.name = name +@dataclass(frozen=True, order=True) +class Rich_IcmpBlock: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" - def __str__(self): - return 'icmp-block name="%s"' % (self.name) + name: str - def check(self, family=None): + def __post_init__(self): if self.name is None or len(self.name) < 1: raise FirewallError(errors.INVALID_ICMPTYPE, str(self.name)) + def __str__(self): + return 'icmp-block name="%s"' % (self.name) -class Rich_IcmpType(_Rich_Element): - def __init__(self, name): - self.name = name - def __str__(self): - return 'icmp-type name="%s"' % (self.name) +@dataclass(frozen=True, order=True) +class Rich_IcmpType: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" - def check(self, family=None): + name: str + + def __post_init__(self): if self.name is None or len(self.name) < 1: raise FirewallError(errors.INVALID_ICMPTYPE, str(self.name)) + def __str__(self): + return 'icmp-type name="%s"' % (self.name) + + +@dataclass(frozen=True, order=True) +class Rich_Tcp_Mss_Clamp: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + value: str -class Rich_Tcp_Mss_Clamp(_Rich_Element): - def __init__(self, value): - self.value = value + def __post_init__(self): + if self.value is None: + object.__setattr__(self, "value", "") + + if self.value: + if not functions.checkTcpMssClamp(self.value): + raise FirewallError(errors.INVALID_RULE, str(self)) def __str__(self): if self.value: @@ -227,23 +272,31 @@ def __str__(self): else: return "tcp-mss-clamp" - def check(self, family=None): - if self.value: - if not functions.checkTcpMssClamp(self.value): - raise FirewallError(errors.INVALID_RULE, self.value) +@dataclass(frozen=True, order=True) +class Rich_ForwardPort: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + port: str + protocol: str + to_port: str + to_address: str -class Rich_ForwardPort(_Rich_Element): - def __init__(self, port, protocol, to_port, to_address): - self.port = port - self.protocol = protocol - self.to_port = to_port - self.to_address = to_address - # replace None with "" in to_port and/or to_address + def __post_init__(self): if self.to_port is None: - self.to_port = "" + object.__setattr__(self, "to_port", "") if self.to_address is None: - self.to_address = "" + object.__setattr__(self, "to_address", "") + + if not functions.check_port(self.port): + raise FirewallError(errors.INVALID_PORT, self.port) + if self.protocol not in ["tcp", "udp", "sctp", "dccp"]: + raise FirewallError(errors.INVALID_PROTOCOL, self.protocol) + if not self.to_port and not self.to_address: + raise FirewallError(errors.INVALID_PORT, self.to_port) + if self.to_port and not functions.check_port(self.to_port): + raise FirewallError(errors.INVALID_PORT, self.to_port) def __str__(self): return 'forward-port port="%s" protocol="%s"%s%s' % ( @@ -253,38 +306,97 @@ def __str__(self): ' to-addr="%s"' % self.to_address if self.to_address != "" else "", ) - def check(self, family=None): - if not functions.check_port(self.port): - raise FirewallError(errors.INVALID_PORT, self.port) - if self.protocol not in ["tcp", "udp", "sctp", "dccp"]: - raise FirewallError(errors.INVALID_PROTOCOL, self.protocol) - if self.to_port == "" and self.to_address == "": - raise FirewallError(errors.INVALID_PORT, self.to_port) - if self.to_port != "" and not functions.check_port(self.to_port): - raise FirewallError(errors.INVALID_PORT, self.to_port) - if self.to_address != "" and not functions.check_single_address( - family, self.to_address - ): - raise FirewallError(errors.INVALID_ADDR, self.to_address) - if family is None: - raise FirewallError(errors.INVALID_FAMILY) +DURATION_TO_MULT = { + "s": 1, + "m": 60, + "h": 60 * 60, + "d": 24 * 60 * 60, +} + + +@dataclass(frozen=True, order=True) +class Rich_Limit: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + value: InitVar[str] # init only, use rate and duration + burst: int = 0 + rate: int = field(init=False) + duration: str = field(init=False) + + def __post_init__(self, value): + rate, duration = self._value_parse(value) + object.__setattr__(self, "rate", rate) + object.__setattr__(self, "duration", duration) + object.__setattr__(self, "burst", self._burst_parse(self.burst)) + object.__setattr__(self, "value", f"{self.rate}/{self.duration}") + + def _value_parse(self, value): + splits = None + if "/" in value: + splits = value.split("/") + if not splits or len(splits) != 2: + raise FirewallError(errors.INVALID_LIMIT, value) + (rate, duration) = splits + try: + rate = int(rate) + except: + raise FirewallError(errors.INVALID_LIMIT, value) + + duration = duration.strip() + + if duration in ["second", "minute", "hour", "day"]: + duration = duration[:1] + + if rate < 1 or duration not in ["s", "m", "h", "d"]: + raise FirewallError(errors.INVALID_LIMIT, value) + + if 10000 * DURATION_TO_MULT[duration] // rate == 0: + raise FirewallError(errors.INVALID_LIMIT, f"{value} too fast") + + if rate == 1 and duration == "d": + # iptables (v1.4.21) doesn't accept 1/d + raise FirewallError(errors.INVALID_LIMIT, f"{value} too slow") + + return rate, duration + + def _burst_parse(self, burst): + if burst is None: + return 0 + + try: + b = int(burst) + except: + raise FirewallError(errors.INVALID_LIMIT, burst) + + if b < 0 or b > 10_000_000: + raise FirewallError(errors.INVALID_LIMIT, burst) -class Rich_Log(_Rich_Log): - def __init__(self, prefix=None, level=None, limit=None): - super().__init__(limit=limit) - # TODO check default level in iptables - self.prefix = prefix - self.level = level + return b def __str__(self): - return "log%s%s%s" % ( - ' prefix="%s"' % (self.prefix) if self.prefix else "", - ' level="%s"' % (self.level) if self.level else "", - " %s" % self.limit if self.limit else "", - ) + s = f'limit value="{self.value}"' + if self.burst: + s += f" burst={self.burst}" + return s + + +@dataclass(frozen=True) +class Rich_Log: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + prefix: str = "" + level: str = "" + limit: Rich_Limit = None + + def __post_init__(self): + if self.prefix is None: + object.__setattr__(self, "prefix", "") + if self.level is None: + object.__setattr__(self, "level", "") - def check(self, family=None): if self.prefix and len(self.prefix) > 127: raise FirewallError( errors.INVALID_LOG_PREFIX, "maximum accepted length of 'prefix' is 127." @@ -302,30 +414,48 @@ def check(self, family=None): ]: raise FirewallError(errors.INVALID_LOG_LEVEL, self.level) - super().check(family=family) - + def __lt__(self, other): + if self.prefix < other.prefix: + return True + elif self.level < other.level: + return True + elif lt_objects(self.limit, other.limit): + return True -class Rich_NFLog(_Rich_Log): - def __init__(self, group=None, prefix=None, queue_size=None, limit=None): - super().__init__(limit=limit) - self.group = group - self.prefix = prefix - self.threshold = queue_size + return False def __str__(self): - return "nflog%s%s%s%s" % ( - ' group="%s"' % (self.group) if self.group else "", + return "log%s%s%s" % ( ' prefix="%s"' % (self.prefix) if self.prefix else "", - ' queue-size="%s"' % (self.threshold) if self.threshold else "", + ' level="%s"' % (self.level) if self.level else "", " %s" % self.limit if self.limit else "", ) - def check(self, family=None): + +@dataclass(frozen=True) +class Rich_NFLog: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + group: int + prefix: str + threshold: int + limit: Rich_Limit = None + + def __post_init__(self): + if self.group is None: + object.__setattr__(self, "group", 0) + if self.prefix is None: + object.__setattr__(self, "prefix", "") + if self.threshold is None: + object.__setattr__(self, "threshold", 0) + if self.group and not functions.checkUINT16(self.group): raise FirewallError( errors.INVALID_NFLOG_GROUP, "nflog 'group' must be an integer between 0 and 65535.", ) + object.__setattr__(self, "group", int(str(self.group), 0)) if self.prefix and len(self.prefix) > 127: raise FirewallError( @@ -337,31 +467,78 @@ def check(self, family=None): errors.INVALID_NFLOG_QUEUE, "nflog 'queue-size' must be an integer between 0 and 65535.", ) + object.__setattr__(self, "threshold", int(str(self.threshold), 0)) - super().check(family=family) + def __lt__(self, other): + if self.group < other.group: + return True + elif self.prefix < other.prefix: + return True + elif self.threshold < other.threshold: + return True + elif lt_objects(self.limit, other.limit): + return True + return False -class Rich_Audit(_Rich_EntryWithLimit): - def __init__(self, limit=None): - # TODO check default level in iptables - super().__init__(limit=limit) + def __str__(self): + return "nflog%s%s%s%s" % ( + ' group="%s"' % (self.group) if self.group else "", + ' prefix="%s"' % (self.prefix) if self.prefix else "", + ' queue-size="%s"' % (self.threshold) if self.threshold else "", + " %s" % self.limit if self.limit else "", + ) + + +@dataclass(frozen=True) +class Rich_Audit: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + limit: Rich_Limit = None + + def __lt__(self, other): + if lt_objects(self.limit, other.limit): + return True + + return False def __str__(self): return "audit%s" % (" %s" % self.limit if self.limit else "") -class Rich_Accept(_Rich_Action): - def __init__(self, limit=None): - super().__init__(limit=limit) +@dataclass(frozen=True) +class Rich_Accept: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + limit: Rich_Limit = None + + def __lt__(self, other): + if lt_objects(self.limit, other.limit): + return True + + return False def __str__(self): return "accept%s" % (" %s" % self.limit if self.limit else "") -class Rich_Reject(_Rich_Action): - def __init__(self, _type=None, limit=None): - super().__init__(limit=limit) - self.type = _type +@dataclass(frozen=True) +class Rich_Reject: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + type: str = "" + limit: Rich_Limit = None + + def __lt__(self, other): + if self.type < other.type: + return True + elif lt_objects(self.limit, other.limit): + return True + + return False def __str__(self): return "reject%s%s" % ( @@ -369,40 +546,33 @@ def __str__(self): " %s" % self.limit if self.limit else "", ) - def check(self, family=None): - if self.type: - if family not in ["ipv4", "ipv6"]: - raise FirewallError( - errors.INVALID_RULE, - "When using reject type you must specify also rule family.", - ) - if self.type not in REJECT_TYPES[family]: - valid_types = ", ".join(REJECT_TYPES[family]) - raise FirewallError( - errors.INVALID_RULE, - "Wrong reject type %s.\nUse one of: %s." % (self.type, valid_types), - ) - super().check(family=family) +@dataclass(frozen=True) +class Rich_Drop: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + limit: Rich_Limit = None + def __lt__(self, other): + if lt_objects(self.limit, other.limit): + return True -class Rich_Drop(_Rich_Action): - def __init__(self, limit=None): - super().__init__(limit=limit) + return False def __str__(self): return "drop%s" % (" %s" % self.limit if self.limit else "") -class Rich_Mark(_Rich_Action): - def __init__(self, _set, limit=None): - super().__init__(limit=limit) - self.set = _set +@dataclass(frozen=True) +class Rich_Mark: + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" - def __str__(self): - return "mark set=%s%s" % (self.set, " %s" % self.limit if self.limit else "") + set: str + limit: Rich_Limit = None - def check(self, family=None): + def __post_init__(self): if self.set is not None: x = self.set else: @@ -422,86 +592,94 @@ def check(self, family=None): # value is uint32 raise FirewallError(errors.INVALID_MARK, x) - super().check(family=family) - - -class Rich_Limit(_Rich_Entry): - def __init__(self, value): - self.value = value - if "/" in self.value: - splits = self.value.split("/") - if len(splits) == 2 and splits[1] in ["second", "minute", "hour", "day"]: - self.value = "%s/%s" % (splits[0], splits[1][:1]) - - def check(self, family=None): - splits = None - if "/" in self.value: - splits = self.value.split("/") - if not splits or len(splits) != 2: - raise FirewallError(errors.INVALID_LIMIT, self.value) - (rate, duration) = splits - try: - rate = int(rate) - except: - raise FirewallError(errors.INVALID_LIMIT, self.value) - - if rate < 1 or duration not in ["s", "m", "h", "d"]: - raise FirewallError(errors.INVALID_LIMIT, self.value) - - mult = 1 - if duration == "s": - mult = 1 - elif duration == "m": - mult = 60 - elif duration == "h": - mult = 60 * 60 - elif duration == "d": - mult = 24 * 60 * 60 + def __lt__(self, other): + if self.set < other.set: + return True + elif lt_objects(self.limit, other.limit): + return True - if 10000 * mult // rate == 0: - raise FirewallError(errors.INVALID_LIMIT, "%s too fast" % self.value) - - if rate == 1 and duration == "d": - # iptables (v1.4.21) doesn't accept 1/d - raise FirewallError(errors.INVALID_LIMIT, "%s too slow" % self.value) + return False def __str__(self): - return 'limit value="%s"' % (self.value) - - def command(self): - return "" + return "mark set=%s%s" % (self.set, " %s" % self.limit if self.limit else "") +@dataclass(frozen=True) class Rich_Rule: - priority_min = -32768 - priority_max = 32767 - - def __init__(self, family=None, rule_str=None, priority=None): - self.family = None - self.priority = 0 - self.source = None - self.destination = None - self.element = None - self.log = None - self.audit = None - self.action = None + """This object only holds data and is read-only after init. It is also + hashable and can be used as a dictionary key.""" + + priority_min: ClassVar[int] = -32768 + priority_max: ClassVar[int] = 32767 + + rule_str: InitVar[str] = None + family: str = "" + priority: int = 0 + source: Rich_Source = None + destination: Rich_Destination = None + element: [ + Rich_Protocol, + Rich_Tcp_Mss_Clamp, + Rich_Service, + Rich_Port, + Rich_SourcePort, + Rich_ForwardPort, + Rich_IcmpBlock, + Rich_IcmpType, + Rich_Masquerade, + ] = None + log: Rich_Log = None + audit: Rich_Audit = None + action: [Rich_Accept, Rich_Reject, Rich_Drop, Rich_Mark] = None + + def __post_init__(self, rule_str): + if self.family is None: + object.__setattr__(self, "family", "") + if self.priority is None: + object.__setattr__(self, "priority", 0) if rule_str is not None: - self._import_from_string(rule_str) - - if priority is not None: - self.priority = priority - - if family is not None: - family = str(family) - if self.family is None: - self.family = family - elif self.family != family: - raise FirewallError(errors.INVALID_FAMILY, family) + # If we're being built from a rule_str then we should not be passed + # other arguments. + if any( + [ + self.family, + self.priority, + self.source, + self.destination, + self.element, + self.log, + self.audit, + self.action, + ] + ): + raise BugError( + "May not specify other arguments if constructing object using 'rule_str'." + ) - if rule_str is not None: + self._import_from_string(rule_str) self.check() + def __lt__(self, other): + lt_functions = [ + lt_priority, + lt_family, + lt_source, + lt_destination, + lt_element, + lt_log, + lt_audit, + lt_action, + ] + + for _lt in lt_functions: + if _lt(self, other): + return True + elif _lt(other, self): + return False + + return False + @staticmethod def _lexer(rule_str): """Lexical analysis""" @@ -535,7 +713,7 @@ def _import_from_string(self, rule_str): in_elements = [] # stack with elements we are in index = 0 # index into tokens while not (tokens[index].get("element") is EOL and in_elements == ["rule"]): - element = tokens[index].get("element") + current_element = tokens[index].get("element") attr_name = tokens[index].get("attr_name") attr_value = tokens[index].get("attr_value") # print ("in_elements: ", in_elements) @@ -560,12 +738,13 @@ def _import_from_string(self, rule_str): "queue-size", "type", "set", + "burst", ]: raise FirewallError( errors.INVALID_RULE, "bad attribute '%s'" % attr_name ) else: # element - if element in [ + if current_element in [ "rule", "source", "destination", @@ -590,16 +769,16 @@ def _import_from_string(self, rule_str): EOL, "tcp-mss-clamp", ]: - if element == "source" and self.source: + if current_element == "source" and self.source: raise FirewallError( errors.INVALID_RULE, "more than one 'source' element" ) - elif element == "destination" and self.destination: + elif current_element == "destination" and self.destination: raise FirewallError( errors.INVALID_RULE, "more than one 'destination' element" ) elif ( - element + current_element in [ "protocol", "service", @@ -615,27 +794,28 @@ def _import_from_string(self, rule_str): raise FirewallError( errors.INVALID_RULE, "more than one element. There cannot be both '%s' and '%s' in one rule." - % (element, self.element), + % (current_element, self.element), ) - elif element in ["log", "nflog"] and self.log: + elif current_element in ["log", "nflog"] and self.log: raise FirewallError( errors.INVALID_RULE, "more than one logging element" ) - elif element == "audit" and self.audit: + elif current_element == "audit" and self.audit: raise FirewallError( errors.INVALID_RULE, "more than one 'audit' element" ) elif ( - element in ["accept", "drop", "reject", "mark"] and self.action + current_element in ["accept", "drop", "reject", "mark"] + and self.action ): raise FirewallError( errors.INVALID_RULE, "more than one 'action' element. There cannot be both '%s' and '%s' in one rule." - % (element, self.action), + % (current_element, self.action), ) else: raise FirewallError( - errors.INVALID_RULE, "unknown element %s" % element + errors.INVALID_RULE, "unknown element %s" % current_element ) in_element = ( @@ -643,7 +823,7 @@ def _import_from_string(self, rule_str): ) if in_element == "": - if not element and attr_name: + if not current_element and attr_name: if attr_name == "family": raise FirewallError( errors.INVALID_RULE, @@ -660,11 +840,11 @@ def _import_from_string(self, rule_str): "'%s' outside of any element. Use 'rule %s= ...'." % (attr_name, attr_name), ) - elif "rule" not in element: + elif "rule" not in current_element: raise FirewallError( errors.INVALID_RULE, "'%s' outside of rule. Use 'rule ... %s ...'." - % (element, element), + % (current_element, current_element), ) else: in_elements.append("rule") # push into stack @@ -676,10 +856,10 @@ def _import_from_string(self, rule_str): "'family' attribute cannot have '%s' value. Use 'ipv4' or 'ipv6' instead." % attr_value, ) - self.family = attr_value + object.__setattr__(self, "family", attr_value) elif attr_name == "priority": try: - self.priority = int(attr_value) + object.__setattr__(self, "priority", int(attr_value)) except ValueError: raise FirewallError( errors.INVALID_PRIORITY, @@ -695,18 +875,22 @@ def _import_from_string(self, rule_str): ) raise FirewallError(errors.INVALID_RULE, err_msg) else: - in_elements.append(element) # push into stack + in_elements.append(current_element) # push into stack elif in_element == "source": if attr_name in ["address", "mac", "ipset", "invert"]: attrs[attr_name] = attr_value - elif element in ["not", "NOT"]: + elif current_element in ["not", "NOT"]: attrs["invert"] = True else: - self.source = Rich_Source( - attrs.get("address"), - attrs.get("mac"), - attrs.get("ipset"), - attrs.get("invert", False), + object.__setattr__( + self, + "source", + Rich_Source( + attrs.get("address"), + attrs.get("mac"), + attrs.get("ipset"), + attrs.get("invert", False), + ), ) in_elements.pop() # source attrs.clear() @@ -714,20 +898,24 @@ def _import_from_string(self, rule_str): elif in_element == "destination": if attr_name in ["address", "ipset", "invert"]: attrs[attr_name] = attr_value - elif element in ["not", "NOT"]: + elif current_element in ["not", "NOT"]: attrs["invert"] = True else: - self.destination = Rich_Destination( - attrs.get("address"), - attrs.get("ipset"), - attrs.get("invert", False), + object.__setattr__( + self, + "destination", + Rich_Destination( + attrs.get("address"), + attrs.get("ipset"), + attrs.get("invert", False), + ), ) in_elements.pop() # destination attrs.clear() index = index - 1 # return token to input elif in_element == "protocol": if attr_name == "value": - self.element = Rich_Protocol(attr_value) + object.__setattr__(self, "element", Rich_Protocol(attr_value)) in_elements.pop() # protocol else: raise FirewallError( @@ -737,13 +925,15 @@ def _import_from_string(self, rule_str): if attr_name == "value": attrs[attr_name] = attr_value else: - self.element = Rich_Tcp_Mss_Clamp(attrs.get("value")) + object.__setattr__( + self, "element", Rich_Tcp_Mss_Clamp(attrs.get("value")) + ) in_elements.pop() attrs.clear() index = index - 1 elif in_element == "service": if attr_name == "name": - self.element = Rich_Service(attr_value) + object.__setattr__(self, "element", Rich_Service(attr_value)) in_elements.pop() # service else: raise FirewallError( @@ -753,13 +943,17 @@ def _import_from_string(self, rule_str): if attr_name in ["port", "protocol"]: attrs[attr_name] = attr_value else: - self.element = Rich_Port(attrs.get("port"), attrs.get("protocol")) + object.__setattr__( + self, + "element", + Rich_Port(attrs.get("port"), attrs.get("protocol")), + ) in_elements.pop() # port attrs.clear() index = index - 1 # return token to input elif in_element == "icmp-block": if attr_name == "name": - self.element = Rich_IcmpBlock(attr_value) + object.__setattr__(self, "element", Rich_IcmpBlock(attr_value)) in_elements.pop() # icmp-block else: raise FirewallError( @@ -767,14 +961,14 @@ def _import_from_string(self, rule_str): ) elif in_element == "icmp-type": if attr_name == "name": - self.element = Rich_IcmpType(attr_value) + object.__setattr__(self, "element", Rich_IcmpType(attr_value)) in_elements.pop() # icmp-type else: raise FirewallError( errors.INVALID_RULE, "invalid 'icmp-type' element" ) elif in_element == "masquerade": - self.element = Rich_Masquerade() + object.__setattr__(self, "element", Rich_Masquerade()) in_elements.pop() attrs.clear() index = index - 1 # return token to input @@ -782,11 +976,15 @@ def _import_from_string(self, rule_str): if attr_name in ["port", "protocol", "to-port", "to-addr"]: attrs[attr_name] = attr_value else: - self.element = Rich_ForwardPort( - attrs.get("port"), - attrs.get("protocol"), - attrs.get("to-port"), - attrs.get("to-addr"), + object.__setattr__( + self, + "element", + Rich_ForwardPort( + attrs.get("port"), + attrs.get("protocol"), + attrs.get("to-port"), + attrs.get("to-addr"), + ), ) in_elements.pop() # forward-port attrs.clear() @@ -795,8 +993,10 @@ def _import_from_string(self, rule_str): if attr_name in ["port", "protocol"]: attrs[attr_name] = attr_value else: - self.element = Rich_SourcePort( - attrs.get("port"), attrs.get("protocol") + object.__setattr__( + self, + "element", + Rich_SourcePort(attrs.get("port"), attrs.get("protocol")), ) in_elements.pop() # source-port attrs.clear() @@ -804,11 +1004,15 @@ def _import_from_string(self, rule_str): elif in_element == "log": if attr_name in ["prefix", "level"]: attrs[attr_name] = attr_value - elif element == "limit": + elif current_element == "limit": in_elements.append("limit") else: - self.log = Rich_Log( - attrs.get("prefix"), attrs.get("level"), attrs.get("limit") + object.__setattr__( + self, + "log", + Rich_Log( + attrs.get("prefix"), attrs.get("level"), attrs.get("limit") + ), ) in_elements.pop() # log attrs.clear() @@ -816,82 +1020,97 @@ def _import_from_string(self, rule_str): elif in_element == "nflog": if attr_name in ["group", "prefix", "queue-size"]: attrs[attr_name] = attr_value - elif element == "limit": + elif current_element == "limit": in_elements.append("limit") else: - self.log = Rich_NFLog( - attrs.get("group"), - attrs.get("prefix"), - attrs.get("queue-size"), - attrs.get("limit"), + object.__setattr__( + self, + "log", + Rich_NFLog( + attrs.get("group"), + attrs.get("prefix"), + attrs.get("queue-size"), + attrs.get("limit"), + ), ) in_elements.pop() # nflog attrs.clear() index = index - 1 # return token to input elif in_element == "audit": - if element == "limit": + if current_element == "limit": in_elements.append("limit") else: - self.audit = Rich_Audit(attrs.get("limit")) + object.__setattr__(self, "audit", Rich_Audit(attrs.get("limit"))) in_elements.pop() # audit attrs.clear() index = index - 1 # return token to input elif in_element == "accept": - if element == "limit": + if current_element == "limit": in_elements.append("limit") else: - self.action = Rich_Accept(attrs.get("limit")) + object.__setattr__(self, "action", Rich_Accept(attrs.get("limit"))) in_elements.pop() # accept attrs.clear() index = index - 1 # return token to input elif in_element == "drop": - if element == "limit": + if current_element == "limit": in_elements.append("limit") else: - self.action = Rich_Drop(attrs.get("limit")) + object.__setattr__(self, "action", Rich_Drop(attrs.get("limit"))) in_elements.pop() # drop attrs.clear() index = index - 1 # return token to input elif in_element == "reject": if attr_name == "type": attrs[attr_name] = attr_value - elif element == "limit": + elif current_element == "limit": in_elements.append("limit") else: - self.action = Rich_Reject(attrs.get("type"), attrs.get("limit")) + object.__setattr__( + self, + "action", + Rich_Reject(attrs.get("type"), attrs.get("limit")), + ) in_elements.pop() # accept attrs.clear() index = index - 1 # return token to input elif in_element == "mark": if attr_name == "set": attrs[attr_name] = attr_value - elif element == "limit": + elif current_element == "limit": in_elements.append("limit") else: - self.action = Rich_Mark(attrs.get("set"), attrs.get("limit")) + object.__setattr__( + self, "action", Rich_Mark(attrs.get("set"), attrs.get("limit")) + ) in_elements.pop() # accept attrs.clear() index = index - 1 # return token to input elif in_element == "limit": - if attr_name == "value": - attrs["limit"] = Rich_Limit(attr_value) - in_elements.pop() # limit + if attr_name in ["value", "burst"]: + attrs[f"limit.{attr_name}"] = attr_value else: - raise FirewallError(errors.INVALID_RULE, "invalid 'limit' element") + if "limit.value" not in attrs: + raise FirewallError( + errors.INVALID_RULE, "invalid 'limit' element" + ) + attrs["limit"] = Rich_Limit( + attrs["limit.value"], attrs.get("limit.burst") + ) + attrs.pop("limit.value", "") + attrs.pop("limit.burst", "") + in_elements.pop() # limit + index = index - 1 # return token to input index = index + 1 - def _check_entry(self, entry): - if entry is not None: - entry.check(family=self.family) - def check(self): - if self.family is not None: + if self.family: if self.family not in ["ipv4", "ipv6"]: raise FirewallError(errors.INVALID_FAMILY, self.family) else: if ( - self.source is not None and self.source.addr is not None + self.source is not None and self.source.addr ) or self.destination is not None: raise FirewallError(errors.MISSING_FAMILY) if isinstance(self.element, Rich_ForwardPort): @@ -923,20 +1142,31 @@ def check(self): if self.log is None and self.audit is None and self.action is None: raise FirewallError(errors.INVALID_RULE, "no action, no log, no audit") - self._check_entry(self.source) - self._check_entry(self.destination) + if self.source and self.source.addr: + if not self.family: + raise FirewallError(errors.INVALID_FAMILY) + if not functions.check_address(self.family, self.source.addr): + raise FirewallError(errors.INVALID_ADDR, str(self.source.addr)) - self._check_entry(self.element) + if self.destination and self.destination.addr: + if not functions.check_address(self.family, self.destination.addr): + raise FirewallError(errors.INVALID_ADDR, str(self.destination.addr)) if isinstance(self.element, Rich_Masquerade): if self.action is not None: raise FirewallError(errors.INVALID_RULE, "masquerade and action") - if self.source is not None and self.source.mac is not None: + if self.source is not None and self.source.mac: raise FirewallError(errors.INVALID_RULE, "masquerade and mac source") elif isinstance(self.element, Rich_IcmpBlock): if self.action: raise FirewallError(errors.INVALID_RULE, "icmp-block and action") elif isinstance(self.element, Rich_ForwardPort): + if self.element.to_address != "" and not functions.check_single_address( + self.family, self.element.to_address + ): + raise FirewallError(errors.INVALID_ADDR, self.element.to_address) + if not self.family: + raise FirewallError(errors.INVALID_FAMILY) if self.action is not None: raise FirewallError(errors.INVALID_RULE, "forward-port and action") elif isinstance(self.element, Rich_Tcp_Mss_Clamp): @@ -946,14 +1176,24 @@ def check(self): "tcp-mss-clamp and %s are mutually exclusive" % self.action, ) - self._check_entry(self.log) - if self.audit is not None: if type(self.action) not in [Rich_Accept, Rich_Reject, Rich_Drop]: raise FirewallError(errors.INVALID_AUDIT_TYPE, type(self.action)) - self._check_entry(self.audit) - self._check_entry(self.action) + if isinstance(self.action, Rich_Reject): + if self.action.type: + if self.family not in ["ipv4", "ipv6"]: + raise FirewallError( + errors.INVALID_RULE, + "When using reject type you must specify also rule family.", + ) + if self.action.type not in REJECT_TYPES[self.family]: + valid_types = ", ".join(REJECT_TYPES[self.family]) + raise FirewallError( + errors.INVALID_RULE, + "Wrong reject type %s.\nUse one of: %s." + % (self.action.type, valid_types), + ) def __str__(self): ret = "rule" @@ -975,8 +1215,3 @@ def __str__(self): ret += " %s" % self.action return ret - - -# class Rich_RawRule: -# class Rich_RuleSet: -# class Rich_AddressList: diff --git a/src/firewall/dbus_utils.py b/src/firewall/dbus_utils.py index f680623..d28b9a8 100644 --- a/src/firewall/dbus_utils.py +++ b/src/firewall/dbus_utils.py @@ -6,36 +6,11 @@ # Thomas Woerner import dbus -import pwd import xml.etree.ElementTree as ET from firewall.core.logger import log -def command_of_pid(pid): - """Get command for pid from /proc""" - try: - with open("/proc/%d/cmdline" % pid, "r") as f: - cmd = f.readlines()[0].replace("\0", " ").strip() - except Exception: - return None - return cmd - - -def pid_of_sender(bus, sender): - """Get pid from sender string using - org.freedesktop.DBus.GetConnectionUnixProcessID""" - - dbus_obj = bus.get_object("org.freedesktop.DBus", "/org/freedesktop/DBus") - dbus_iface = dbus.Interface(dbus_obj, "org.freedesktop.DBus") - - try: - pid = int(dbus_iface.GetConnectionUnixProcessID(sender)) - except ValueError: - return None - return pid - - def uid_of_sender(bus, sender): """Get user id from sender string using org.freedesktop.DBus.GetConnectionUnixUser""" @@ -50,41 +25,6 @@ def uid_of_sender(bus, sender): return uid -def user_of_uid(uid): - """Get user for uid from pwd""" - - try: - pws = pwd.getpwuid(uid) - except Exception: - return None - return pws[0] - - -def context_of_sender(bus, sender): - """Get SELinux context from sender string using - org.freedesktop.DBus.GetConnectionSELinuxSecurityContext""" - - dbus_obj = bus.get_object("org.freedesktop.DBus", "/org/freedesktop/DBus") - dbus_iface = dbus.Interface(dbus_obj, "org.freedesktop.DBus") - - try: - context = dbus_iface.GetConnectionSELinuxSecurityContext(sender) - except Exception: - return None - - return "".join(map(chr, dbus_to_python(context))) - - -def command_of_sender(bus, sender): - """Return command of D-Bus sender""" - - return command_of_pid(pid_of_sender(bus, sender)) - - -def user_of_sender(bus, sender): - return user_of_uid(uid_of_sender(bus, sender)) - - def dbus_to_python(obj, expected_type=None): if obj is None: python_obj = obj @@ -244,35 +184,33 @@ def dbus_introspection_add_properties(obj, data, interface): def dbus_introspection_add_deprecated( obj, data, interface, deprecated_methods, deprecated_signals ): - modified = False - is_deprecated_method = interface in deprecated_methods - is_deprecated_signal = interface in deprecated_signals + set_methods = deprecated_methods.get(interface) + set_signals = deprecated_signals.get(interface) - if is_deprecated_method or is_deprecated_signal: + if set_methods or set_signals: attrib = { "name": "org.freedesktop.DBus.Deprecated", "value": "true", } doc = ET.fromstring(data) + modified = False for node in doc.iter("interface"): - if "name" in node.attrib and node.attrib["name"] == interface: - if is_deprecated_method: + if node.attrib.get("name") == interface: + if set_methods: for method_node in node.iter("method"): if ( "name" in method_node.attrib - and method_node.attrib["name"] - in deprecated_methods[interface] + and method_node.attrib["name"] in set_methods ): ET.SubElement(method_node, "annotation", attrib) modified = True - if is_deprecated_signal: + if set_signals: for signal_node in node.iter("signal"): if ( "name" in signal_node.attrib - and signal_node.attrib["name"] - in deprecated_signals[interface] + and signal_node.attrib["name"] in set_signals ): ET.SubElement(signal_node, "annotation", attrib) modified = True diff --git a/src/firewall/errors.py b/src/firewall/errors.py index 63afa13..30d6ca4 100644 --- a/src/firewall/errors.py +++ b/src/firewall/errors.py @@ -78,6 +78,7 @@ INVALID_LOG_PREFIX = 141 INVALID_NFLOG_GROUP = 142 INVALID_NFLOG_QUEUE = 143 +INVALID_SOURCE = 144 MISSING_TABLE = 200 MISSING_CHAIN = 201 @@ -135,3 +136,15 @@ def get_code(msg): FirewallError.codes = { FirewallError.errors[code]: code for code in FirewallError.errors } + +############################################################################### + + +class BugError(Exception): + """Indicates that there is a bug in the code. You probably don't + want to catch this, but fix the bug.""" + + def __init__(self, msg=None): + if msg is None: + msg = "should not be reached" + super().__init__(f"BUG: {msg}") diff --git a/src/firewall/functions.py b/src/firewall/functions.py index fcfda60..27c862f 100644 --- a/src/firewall/functions.py +++ b/src/firewall/functions.py @@ -406,24 +406,28 @@ def checkInterface(iface): def checkUINT16(val): - try: - x = int(val, 0) - except ValueError: - return False - else: - if x >= 0 and x <= 65535: - return True + if not isinstance(val, int): + try: + val = int(val, 0) + except ValueError: + return False + + if val >= 0 and val <= 65535: + return True + return False def checkUINT32(val): - try: - x = int(val, 0) - except ValueError: - return False - else: - if x >= 0 and x <= 4294967295: - return True + if not isinstance(val, int): + try: + val = int(val, 0) + except ValueError: + return False + + if val >= 0 and val <= 4294967295: + return True + return False @@ -665,8 +669,10 @@ def wrong_args_for_callable(fcn, *a, **kw): # Check whether fcn(*a, **kw) will fail due to invalid # arguments. + sig = inspect.signature(fcn) + try: - inspect.bind(fcn, *a, **kw) + sig.bind(*a, **kw) except TypeError: return False return True diff --git a/src/firewall/server/config.py b/src/firewall/server/config.py index 818befc..24c9bae 100644 --- a/src/firewall/server/config.py +++ b/src/firewall/server/config.py @@ -9,6 +9,7 @@ import dbus import dbus.service +import collections from firewall import config from firewall.core.base import DEFAULT_ZONE_TARGET @@ -19,6 +20,7 @@ handle_exceptions, dbus_handle_exceptions, dbus_service_method, + dbus_service_signal, dbus_service_method_deprecated, dbus_service_signal_deprecated, dbus_polkit_require_auth, @@ -32,14 +34,9 @@ from firewall.core.io.icmptype import IcmpType from firewall.core.io.ipset import IPSet from firewall.core.io.helper import Helper -from firewall.core.io.lockdown_whitelist import LockdownWhitelist from firewall.core.io.direct import Direct from firewall.dbus_utils import ( dbus_to_python, - command_of_sender, - context_of_sender, - uid_of_sender, - user_of_uid, dbus_introspection_prepare_properties, dbus_introspection_add_properties, dbus_introspection_add_deprecated, @@ -53,6 +50,37 @@ # ############################################################################ +ConfigPropertiesTuple = collections.namedtuple( + "ConfigPropertiesTuple", + [ + "mode", + "is_deprecated", + "ignore_set", + ], +) + + +CONFIG_PROPERTIES = { + "DefaultZone": ConfigPropertiesTuple("read", False, False), + "MinimalMark": ConfigPropertiesTuple("readwrite", True, True), + "CleanupOnExit": ConfigPropertiesTuple("readwrite", False, False), + "CleanupModulesOnExit": ConfigPropertiesTuple("readwrite", False, False), + "IPv6_rpfilter": ConfigPropertiesTuple("readwrite", True, False), + "IPv6_rpfilter2": ConfigPropertiesTuple("readwrite", False, False), + "Lockdown": ConfigPropertiesTuple("readwrite", True, True), + "IndividualCalls": ConfigPropertiesTuple("readwrite", False, False), + "LogDenied": ConfigPropertiesTuple("readwrite", False, False), + "AutomaticHelpers": ConfigPropertiesTuple("readwrite", True, True), + "FirewallBackend": ConfigPropertiesTuple("readwrite", False, False), + "FlushAllOnReload": ConfigPropertiesTuple("readwrite", False, False), + "RFC3964_IPv4": ConfigPropertiesTuple("readwrite", False, False), + "AllowZoneDrifting": ConfigPropertiesTuple("readwrite", True, True), + "NftablesFlowtable": ConfigPropertiesTuple("readwrite", False, False), + "NftablesCounters": ConfigPropertiesTuple("readwrite", False, False), + "NftablesTableOwner": ConfigPropertiesTuple("readwrite", False, False), + "StrictForwardPorts": ConfigPropertiesTuple("readwrite", False, False), +} + class FirewallDConfig(DbusServiceObject): """FirewallD main class""" @@ -88,29 +116,13 @@ def __init__(self, conf, *args, **kwargs): path = "%s/%s" % (config.ETC_FIREWALLD_ZONES, filename) if os.path.isdir(path): self.watcher.add_watch_dir(path) - self.watcher.add_watch_file(config.LOCKDOWN_WHITELIST) self.watcher.add_watch_file(config.FIREWALLD_DIRECT) self.watcher.add_watch_file(config.FIREWALLD_CONF) dbus_introspection_prepare_properties( self, config.dbus.DBUS_INTERFACE_CONFIG, - { - "CleanupOnExit": "readwrite", - "CleanupModulesOnExit": "readwrite", - "IPv6_rpfilter": "readwrite", - "Lockdown": "readwrite", - "MinimalMark": "readwrite", - "IndividualCalls": "readwrite", - "LogDenied": "readwrite", - "AutomaticHelpers": "readwrite", - "FirewallBackend": "readwrite", - "FlushAllOnReload": "readwrite", - "RFC3964_IPv4": "readwrite", - "AllowZoneDrifting": "readwrite", - "NftablesFlowtable": "readwrite", - "NftablesCounters": "readwrite", - }, + {prop: d.mode for prop, d in CONFIG_PROPERTIES.items()}, ) @handle_exceptions @@ -287,16 +299,6 @@ def watch_updater(self, name): elif what == "update": self._updateHelper(obj) - elif name == config.LOCKDOWN_WHITELIST: - try: - self.config.update_lockdown_whitelist() - except Exception as msg: - log.error( - "Failed to load lockdown whitelist file '%s': %s" % (name, msg) - ) - return - self.LockdownWhitelistUpdated() - elif name == config.FIREWALLD_DIRECT: try: self.config.update_direct() @@ -590,53 +592,12 @@ def accessCheck(self, sender): "restarted. Try `firewall-offline-cmd --check-config`.", ) - if self.config.lockdown_enabled(): - if sender is None: - log.error("Lockdown not possible, sender not set.") - return - bus = dbus.SystemBus() - context = context_of_sender(bus, sender) - if self.config.access_check("context", context): - return - uid = uid_of_sender(bus, sender) - if self.config.access_check("uid", uid): - return - user = user_of_uid(uid) - if self.config.access_check("user", user): - return - command = command_of_sender(bus, sender) - if self.config.access_check("command", command): - return - raise FirewallError(errors.ACCESS_DENIED, "lockdown is enabled") - # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # P R O P E R T I E S @dbus_handle_exceptions def _get_property(self, prop): - if prop not in [ - "DefaultZone", - "MinimalMark", - "CleanupOnExit", - "CleanupModulesOnExit", - "Lockdown", - "IPv6_rpfilter", - "IndividualCalls", - "LogDenied", - "AutomaticHelpers", - "FirewallBackend", - "FlushAllOnReload", - "RFC3964_IPv4", - "AllowZoneDrifting", - "NftablesFlowtable", - "NftablesCounters", - ]: - raise dbus.exceptions.DBusException( - "org.freedesktop.DBus.Error.InvalidArgs: " - "Property '%s' does not exist" % prop - ) - value = self.config.get_firewalld_conf().get(prop) if prop == "DefaultZone": @@ -658,12 +619,17 @@ def _get_property(self, prop): value = "yes" if config.FALLBACK_CLEANUP_MODULES_ON_EXIT else "no" return dbus.String(value) elif prop == "Lockdown": - if value is None: - value = "yes" if config.FALLBACK_LOCKDOWN else "no" - return dbus.String(value) + # Deprecated and dropped. + return dbus.String("no") elif prop == "IPv6_rpfilter": + if value is None or value != "no": + return dbus.String("yes") + else: + return dbus.String("no") + elif prop == "IPv6_rpfilter2": + value = self.config.get_firewalld_conf().get("IPv6_rpfilter") if value is None: - value = "yes" if config.FALLBACK_IPV6_RPFILTER else "no" + value = config.FALLBACK_IPV6_RPFILTER return dbus.String(value) elif prop == "IndividualCalls": if value is None: @@ -701,39 +667,14 @@ def _get_property(self, prop): if value is None: value = "yes" if config.FALLBACK_NFTABLES_COUNTERS else "no" return dbus.String(value) - - @dbus_handle_exceptions - def _get_dbus_property(self, prop): - if prop == "DefaultZone": - return dbus.String(self._get_property(prop)) - elif prop == "MinimalMark": - return dbus.Int32(self._get_property(prop)) - elif prop == "CleanupOnExit": - return dbus.String(self._get_property(prop)) - elif prop == "CleanupModulesOnExit": - return dbus.String(self._get_property(prop)) - elif prop == "Lockdown": - return dbus.String(self._get_property(prop)) - elif prop == "IPv6_rpfilter": - return dbus.String(self._get_property(prop)) - elif prop == "IndividualCalls": - return dbus.String(self._get_property(prop)) - elif prop == "LogDenied": - return dbus.String(self._get_property(prop)) - elif prop == "AutomaticHelpers": - return dbus.String(self._get_property(prop)) - elif prop == "FirewallBackend": - return dbus.String(self._get_property(prop)) - elif prop == "FlushAllOnReload": - return dbus.String(self._get_property(prop)) - elif prop == "RFC3964_IPv4": - return dbus.String(self._get_property(prop)) - elif prop == "AllowZoneDrifting": - return dbus.String(self._get_property(prop)) - elif prop == "NftablesFlowtable": - return dbus.String(self._get_property(prop)) - elif prop == "NftablesCounters": - return dbus.String(self._get_property(prop)) + elif prop == "NftablesTableOwner": + if value is None: + value = "yes" if config.FALLBACK_NFTABLES_TABLE_OWNER else "no" + return dbus.String(value) + elif prop == "StrictForwardPorts": + if value is None: + value = "yes" if config.FALLBACK_STRICT_FORWARD_PORTS else "no" + return dbus.String(value) else: raise dbus.exceptions.DBusException( "org.freedesktop.DBus.Error.InvalidArgs: " @@ -749,7 +690,7 @@ def Get(self, interface_name, property_name, sender=None): # pylint: disable=W0 log.debug1("config.Get('%s', '%s')", interface_name, property_name) if interface_name == config.dbus.DBUS_INTERFACE_CONFIG: - return self._get_dbus_property(property_name) + return self._get_property(property_name) elif interface_name in [ config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, @@ -772,23 +713,7 @@ def GetAll(self, interface_name, sender=None): # pylint: disable=W0613 ret = {} if interface_name == config.dbus.DBUS_INTERFACE_CONFIG: - for x in [ - "DefaultZone", - "MinimalMark", - "CleanupOnExit", - "CleanupModulesOnExit", - "Lockdown", - "IPv6_rpfilter", - "IndividualCalls", - "LogDenied", - "AutomaticHelpers", - "FirewallBackend", - "FlushAllOnReload", - "RFC3964_IPv4", - "AllowZoneDrifting", - "NftablesFlowtable", - "NftablesCounters", - ]: + for x in CONFIG_PROPERTIES: ret[x] = self._get_property(x) elif interface_name in [ config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, @@ -816,67 +741,60 @@ def Set(self, interface_name, property_name, new_value, sender=None): self.accessCheck(sender) if interface_name == config.dbus.DBUS_INTERFACE_CONFIG: - if property_name in [ - "CleanupOnExit", - "CleanupModulesOnExit", - "Lockdown", - "IPv6_rpfilter", - "IndividualCalls", - "LogDenied", - "FirewallBackend", - "FlushAllOnReload", - "RFC3964_IPv4", - "NftablesFlowtable", - "NftablesCounters", - ]: + pdata = CONFIG_PROPERTIES.get(property_name) + if pdata is None or pdata.mode != "readwrite": + raise dbus.exceptions.DBusException( + "org.freedesktop.DBus.Error.InvalidArgs: " + "Property '%s' does not exist" % property_name + ) + if pdata.ignore_set: + # deprecated fields. Ignore setting them. + pass + else: if property_name in [ "CleanupOnExit", "CleanupModulesOnExit", - "Lockdown", "IPv6_rpfilter", "IndividualCalls", "FlushAllOnReload", "RFC3964_IPv4", "NftablesCounters", + "NftablesTableOwner", + "StrictForwardPorts", ]: if new_value.lower() not in ["yes", "no", "true", "false"]: raise FirewallError( errors.INVALID_VALUE, "'%s' for %s" % (new_value, property_name), ) + config_name = property_name elif property_name == "LogDenied": if new_value not in config.LOG_DENIED_VALUES: raise FirewallError( errors.INVALID_VALUE, "'%s' for %s" % (new_value, property_name), ) + config_name = property_name elif property_name == "FirewallBackend": if new_value not in config.FIREWALL_BACKEND_VALUES: raise FirewallError( errors.INVALID_VALUE, "'%s' for %s" % (new_value, property_name), ) + config_name = property_name + elif property_name == "IPv6_rpfilter2": + if new_value not in config.IPV6_RPFILTER_VALUES: + raise FirewallError( + errors.INVALID_VALUE, + "'%s' for %s" % (new_value, property_name), + ) + config_name = "IPv6_rpfilter" else: - raise dbus.exceptions.DBusException( - "org.freedesktop.DBus.Error.InvalidArgs: " - "Property '%s' does not exist" % property_name - ) + raise errors.BugError(f'Unhandled property_name "{property_name}"') - self.config.get_firewalld_conf().set(property_name, new_value) + self.config.get_firewalld_conf().set(config_name, new_value) self.config.get_firewalld_conf().write() self.PropertiesChanged(interface_name, {property_name: new_value}, []) - elif property_name in [ - "MinimalMark", - "AutomaticHelpers", - "AllowZoneDrifting", - ]: - # deprecated fields. Ignore setting them. - pass - else: - raise dbus.exceptions.DBusException( - "org.freedesktop.DBus.Error.InvalidArgs: " - "Property '%s' does not exist" % property_name - ) elif interface_name in [ config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, @@ -891,7 +809,7 @@ def Set(self, interface_name, property_name, new_value, sender=None): "Interface '%s' does not exist" % interface_name ) - @dbus.service.signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") + @dbus_service_signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") def PropertiesChanged( self, interface_name, changed_properties, invalidated_properties ): @@ -918,13 +836,16 @@ def Introspect(self, sender=None): # pylint: disable=W0613 self, data, config.dbus.DBUS_INTERFACE_CONFIG ) - for interface in [config.dbus.DBUS_INTERFACE_CONFIG_DIRECT]: + for interface in [ + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + ]: data = dbus_introspection_add_deprecated( self, data, interface, - dbus_service_method_deprecated().deprecated, - dbus_service_signal_deprecated().deprecated, + dbus_service_method_deprecated.deprecated, + dbus_service_signal_deprecated.deprecated, ) return data @@ -935,197 +856,168 @@ def Introspect(self, sender=None): # pylint: disable=W0613 @dbus_service_method( config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, - out_signature=LockdownWhitelist.DBUS_SIGNATURE, + out_signature="(asasasai)", + is_deprecated=True, ) - @dbus_handle_exceptions def getLockdownWhitelist(self, sender=None): # pylint: disable=W0613 - log.debug1("config.policies.getLockdownWhitelist()") - return self.config.get_policies().lockdown_whitelist.export_config() + return ([], [], [], [0]) @dbus_service_method( config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, - in_signature=LockdownWhitelist.DBUS_SIGNATURE, + in_signature="(asasasai)", + is_deprecated=True, ) - @dbus_handle_exceptions def setLockdownWhitelist(self, settings, sender=None): # pylint: disable=W0613 - log.debug1("config.policies.setLockdownWhitelist(...)") - settings = dbus_to_python(settings) - self.config.get_policies().lockdown_whitelist.import_config(settings, {}) - self.config.get_policies().lockdown_whitelist.write() - self.LockdownWhitelistUpdated() + pass - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES) - @dbus_handle_exceptions + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + is_deprecated=True, + ) def LockdownWhitelistUpdated(self): - log.debug1("config.policies.LockdownWhitelistUpdated()") + pass # command - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="s") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="s", + is_deprecated=True, + ) def addLockdownWhitelistCommand(self, command, sender=None): - command = dbus_to_python(command) - log.debug1("config.policies.addLockdownWhitelistCommand('%s')", command) - self.accessCheck(sender) - settings = list(self.getLockdownWhitelist()) - if command in settings[0]: - raise FirewallError(errors.ALREADY_ENABLED, command) - settings[0].append(command) - self.setLockdownWhitelist(settings) + pass - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="s") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="s", + is_deprecated=True, + ) def removeLockdownWhitelistCommand(self, command, sender=None): - command = dbus_to_python(command) - log.debug1("config.policies.removeLockdownWhitelistCommand('%s')", command) - self.accessCheck(sender) - settings = list(self.getLockdownWhitelist()) - if command not in settings[0]: - raise FirewallError(errors.NOT_ENABLED, command) - settings[0].remove(command) - self.setLockdownWhitelist(settings) + pass @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="s", out_signature="b" + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="s", + out_signature="b", + is_deprecated=True, ) - @dbus_handle_exceptions - def queryLockdownWhitelistCommand( - self, command, sender=None - ): # pylint: disable=W0613 - command = dbus_to_python(command) - log.debug1("config.policies.queryLockdownWhitelistCommand('%s')", command) - return command in self.getLockdownWhitelist()[0] + def queryLockdownWhitelistCommand(self, command, sender=None): + return False - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, out_signature="as") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + out_signature="as", + is_deprecated=True, + ) def getLockdownWhitelistCommands(self, sender=None): # pylint: disable=W0613 - log.debug1("config.policies.getLockdownWhitelistCommands()") - return self.getLockdownWhitelist()[0] + return [] # context - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="s") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="s", + is_deprecated=True, + ) def addLockdownWhitelistContext(self, context, sender=None): - context = dbus_to_python(context) - log.debug1("config.policies.addLockdownWhitelistContext('%s')", context) - self.accessCheck(sender) - settings = list(self.getLockdownWhitelist()) - if context in settings[1]: - raise FirewallError(errors.ALREADY_ENABLED, context) - settings[1].append(context) - self.setLockdownWhitelist(settings) + pass - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="s") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="s", + is_deprecated=True, + ) def removeLockdownWhitelistContext(self, context, sender=None): - context = dbus_to_python(context) - log.debug1("config.policies.removeLockdownWhitelistContext('%s')", context) - self.accessCheck(sender) - settings = list(self.getLockdownWhitelist()) - if context not in settings[1]: - raise FirewallError(errors.NOT_ENABLED, context) - settings[1].remove(context) - self.setLockdownWhitelist(settings) + pass @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="s", out_signature="b" + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="s", + out_signature="b", + is_deprecated=True, ) - @dbus_handle_exceptions def queryLockdownWhitelistContext( self, context, sender=None ): # pylint: disable=W0613 - context = dbus_to_python(context) - log.debug1("config.policies.queryLockdownWhitelistContext('%s')", context) - return context in self.getLockdownWhitelist()[1] + return False - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, out_signature="as") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + out_signature="as", + is_deprecated=True, + ) def getLockdownWhitelistContexts(self, sender=None): # pylint: disable=W0613 - log.debug1("config.policies.getLockdownWhitelistContexts()") - return self.getLockdownWhitelist()[1] + return [] # user - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="s") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="s", + is_deprecated=True, + ) def addLockdownWhitelistUser(self, user, sender=None): - user = dbus_to_python(user) - log.debug1("config.policies.addLockdownWhitelistUser('%s')", user) - self.accessCheck(sender) - settings = list(self.getLockdownWhitelist()) - if user in settings[2]: - raise FirewallError(errors.ALREADY_ENABLED, user) - settings[2].append(user) - self.setLockdownWhitelist(settings) + pass - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="s") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="s", + is_deprecated=True, + ) def removeLockdownWhitelistUser(self, user, sender=None): - user = dbus_to_python(user) - log.debug1("config.policies.removeLockdownWhitelistUser('%s')", user) - self.accessCheck(sender) - settings = list(self.getLockdownWhitelist()) - if user not in settings[2]: - raise FirewallError(errors.NOT_ENABLED, user) - settings[2].remove(user) - self.setLockdownWhitelist(settings) + pass @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="s", out_signature="b" + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="s", + out_signature="b", + is_deprecated=True, ) - @dbus_handle_exceptions def queryLockdownWhitelistUser(self, user, sender=None): # pylint: disable=W0613 - user = dbus_to_python(user) - log.debug1("config.policies.queryLockdownWhitelistUser('%s')", user) - return user in self.getLockdownWhitelist()[2] + return False - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, out_signature="as") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + out_signature="as", + is_deprecated=True, + ) def getLockdownWhitelistUsers(self, sender=None): # pylint: disable=W0613 - log.debug1("config.policies.getLockdownWhitelistUsers()") - return self.getLockdownWhitelist()[2] + return [] # uid - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="i") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="i", + is_deprecated=True, + ) def addLockdownWhitelistUid(self, uid, sender=None): - uid = dbus_to_python(uid) - log.debug1("config.policies.addLockdownWhitelistUid(%d)", uid) - self.accessCheck(sender) - settings = list(self.getLockdownWhitelist()) - if uid in settings[3]: - raise FirewallError(errors.ALREADY_ENABLED, uid) - settings[3].append(uid) - self.setLockdownWhitelist(settings) + pass - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="i") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="i", + is_deprecated=True, + ) def removeLockdownWhitelistUid(self, uid, sender=None): - uid = dbus_to_python(uid) - log.debug1("config.policies.removeLockdownWhitelistUid(%d)", uid) - self.accessCheck(sender) - settings = list(self.getLockdownWhitelist()) - if uid not in settings[3]: - raise FirewallError(errors.NOT_ENABLED, uid) - settings[3].remove(uid) - self.setLockdownWhitelist(settings) + pass @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, in_signature="i", out_signature="b" + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + in_signature="i", + out_signature="b", + is_deprecated=True, ) - @dbus_handle_exceptions def queryLockdownWhitelistUid(self, uid, sender=None): # pylint: disable=W0613 - uid = dbus_to_python(uid) - log.debug1("config.policies.queryLockdownWhitelistUid(%d)", uid) - return uid in self.getLockdownWhitelist()[3] + return False - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, out_signature="ai") - @dbus_handle_exceptions + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + out_signature="ai", + is_deprecated=True, + ) def getLockdownWhitelistUids(self, sender=None): # pylint: disable=W0613 - log.debug1("config.policies.getLockdownWhitelistUids()") - return self.getLockdownWhitelist()[3] + return [] # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # @@ -1177,7 +1069,7 @@ def addIPSet(self, ipset, settings, sender=None): config_ipset = self._addIPSet(obj) return config_ipset - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") @dbus_handle_exceptions def IPSetAdded(self, ipset): ipset = dbus_to_python(ipset, str) @@ -1231,7 +1123,7 @@ def addIcmpType(self, icmptype, settings, sender=None): config_icmptype = self._addIcmpType(obj) return config_icmptype - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") @dbus_handle_exceptions def IcmpTypeAdded(self, icmptype): log.debug1("config.IcmpTypeAdded('%s')" % (icmptype)) @@ -1298,7 +1190,7 @@ def addService2(self, service, settings, sender=None): config_service = self._addService(obj) return config_service - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") @dbus_handle_exceptions def ServiceAdded(self, service): log.debug1("config.ServiceAdded('%s')" % (service)) @@ -1418,7 +1310,7 @@ def addZone2(self, zone, settings, sender=None): config_zone = self._addZone(obj) return config_zone - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") @dbus_handle_exceptions def ZoneAdded(self, zone): log.debug1("config.ZoneAdded('%s')" % (zone)) @@ -1469,7 +1361,7 @@ def addPolicy(self, policy, settings, sender=None): config_policy = self._addPolicy(obj) return config_policy - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") @dbus_handle_exceptions def PolicyAdded(self, policy): log.debug1("config.PolicyAdded('%s')" % (policy)) @@ -1524,7 +1416,7 @@ def addHelper(self, helper, settings, sender=None): config_helper = self._addHelper(obj) return config_helper - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG, signature="s") @dbus_handle_exceptions def HelperAdded(self, helper): helper = dbus_to_python(helper, str) @@ -1533,9 +1425,10 @@ def HelperAdded(self, helper): # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # DIRECT - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, out_signature=Direct.DBUS_SIGNATURE + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + out_signature=Direct.DBUS_SIGNATURE, + is_deprecated=True, ) @dbus_handle_exceptions def getSettings(self, sender=None): # pylint: disable=W0613 @@ -1543,9 +1436,10 @@ def getSettings(self, sender=None): # pylint: disable=W0613 log.debug1("config.direct.getSettings()") return self.config.get_direct().export_config() - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature=Direct.DBUS_SIGNATURE + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature=Direct.DBUS_SIGNATURE, + is_deprecated=True, ) @dbus_handle_exceptions def update(self, settings, sender=None): # pylint: disable=W0613 @@ -1556,16 +1450,21 @@ def update(self, settings, sender=None): # pylint: disable=W0613 self.config.get_direct().write() self.Updated() - @dbus_service_signal_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + is_deprecated=True, + ) @dbus_handle_exceptions def Updated(self): log.debug1("config.direct.Updated()") # chain - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="sss") + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature="sss", + is_deprecated=True, + ) @dbus_handle_exceptions def addChain(self, ipv, table, chain, sender=None): ipv = dbus_to_python(ipv) @@ -1583,8 +1482,11 @@ def addChain(self, ipv, table, chain, sender=None): settings[0].append(idx) self.update(settings) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="sss") + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature="sss", + is_deprecated=True, + ) @dbus_handle_exceptions def removeChain(self, ipv, table, chain, sender=None): ipv = dbus_to_python(ipv) @@ -1601,9 +1503,11 @@ def removeChain(self, ipv, table, chain, sender=None): settings[0].remove(idx) self.update(settings) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="sss", out_signature="b" + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature="sss", + out_signature="b", + is_deprecated=True, ) @dbus_handle_exceptions def queryChain(self, ipv, table, chain, sender=None): # pylint: disable=W0613 @@ -1614,9 +1518,11 @@ def queryChain(self, ipv, table, chain, sender=None): # pylint: disable=W0613 idx = tuple((ipv, table, chain)) return idx in self.getSettings()[0] - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="ss", out_signature="as" + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature="ss", + out_signature="as", + is_deprecated=True, ) @dbus_handle_exceptions def getChains(self, ipv, table, sender=None): # pylint: disable=W0613 @@ -1629,11 +1535,11 @@ def getChains(self, ipv, table, sender=None): # pylint: disable=W0613 ret.append(idx[2]) return ret - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="", out_signature="a(sss)", + is_deprecated=True, ) @dbus_handle_exceptions def getAllChains(self, sender=None): # pylint: disable=W0613 @@ -1642,9 +1548,10 @@ def getAllChains(self, sender=None): # pylint: disable=W0613 # rule - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="sssias" + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature="sssias", + is_deprecated=True, ) @dbus_handle_exceptions def addRule( @@ -1670,9 +1577,10 @@ def addRule( settings[1].append(idx) self.update(tuple(settings)) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="sssias" + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature="sssias", + is_deprecated=True, ) @dbus_handle_exceptions def removeRule( @@ -1698,11 +1606,11 @@ def removeRule( settings[1].remove(idx) self.update(tuple(settings)) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="sssias", out_signature="b", + is_deprecated=True, ) @dbus_handle_exceptions def queryRule( @@ -1720,8 +1628,11 @@ def queryRule( idx = (ipv, table, chain, priority, args) return idx in self.getSettings()[1] - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="sss") + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature="sss", + is_deprecated=True, + ) @dbus_handle_exceptions def removeRules(self, ipv, table, chain, sender=None): ipv = dbus_to_python(ipv) @@ -1742,11 +1653,11 @@ def removeRules(self, ipv, table, chain, sender=None): settings[1].remove(rule) self.update(tuple(settings)) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="sss", out_signature="a(ias)", + is_deprecated=True, ) @dbus_handle_exceptions def getRules(self, ipv, table, chain, sender=None): # pylint: disable=W0613 @@ -1760,11 +1671,11 @@ def getRules(self, ipv, table, chain, sender=None): # pylint: disable=W0613 ret.append((idx[3], idx[4])) return ret - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="", out_signature="a(sssias)", + is_deprecated=True, ) @dbus_handle_exceptions def getAllRules(self, sender=None): # pylint: disable=W0613 @@ -1773,8 +1684,11 @@ def getAllRules(self, sender=None): # pylint: disable=W0613 # passthrough - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="sas") + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature="sas", + is_deprecated=True, + ) @dbus_handle_exceptions def addPassthrough(self, ipv, args, sender=None): ipv = dbus_to_python(ipv) @@ -1790,8 +1704,11 @@ def addPassthrough(self, ipv, args, sender=None): settings[2].append(idx) self.update(settings) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) - @dbus_service_method(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="sas") + @dbus_service_method( + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature="sas", + is_deprecated=True, + ) @dbus_handle_exceptions def removePassthrough(self, ipv, args, sender=None): ipv = dbus_to_python(ipv) @@ -1809,9 +1726,11 @@ def removePassthrough(self, ipv, args, sender=None): settings[2].remove(idx) self.update(settings) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="sas", out_signature="b" + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature="sas", + out_signature="b", + is_deprecated=True, ) @dbus_handle_exceptions def queryPassthrough(self, ipv, args, sender=None): # pylint: disable=W0613 @@ -1823,9 +1742,11 @@ def queryPassthrough(self, ipv, args, sender=None): # pylint: disable=W0613 idx = (ipv, args) return idx in self.getSettings()[2] - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, in_signature="s", out_signature="aas" + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + in_signature="s", + out_signature="aas", + is_deprecated=True, ) @dbus_handle_exceptions def getPassthroughs(self, ipv, sender=None): # pylint: disable=W0613 @@ -1837,9 +1758,10 @@ def getPassthroughs(self, ipv, sender=None): # pylint: disable=W0613 ret.append(idx[1]) return ret - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_CONFIG_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, out_signature="a(sas)" + config.dbus.DBUS_INTERFACE_CONFIG_DIRECT, + out_signature="a(sas)", + is_deprecated=True, ) @dbus_handle_exceptions def getAllPassthroughs(self, sender=None): # pylint: disable=W0613 diff --git a/src/firewall/server/config_helper.py b/src/firewall/server/config_helper.py index 007b852..3f7ed01 100644 --- a/src/firewall/server/config_helper.py +++ b/src/firewall/server/config_helper.py @@ -21,6 +21,7 @@ handle_exceptions, dbus_handle_exceptions, dbus_service_method, + dbus_service_signal, dbus_polkit_require_auth, ) from firewall import errors @@ -147,7 +148,7 @@ def Set(self, interface_name, property_name, new_value, sender=None): "Property '%s' is read-only" % property_name ) - @dbus.service.signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") + @dbus_service_signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") def PropertiesChanged( self, interface_name, changed_properties, invalidated_properties ): @@ -208,7 +209,7 @@ def loadDefaults(self, sender=None): self.obj = self.config.load_helper_defaults(self.obj) self.Updated(self.obj.name) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_HELPER, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_HELPER, signature="s") @dbus_handle_exceptions def Updated(self, name): log.debug1("%s.Updated('%s')" % (self._log_prefix, name)) @@ -224,7 +225,7 @@ def remove(self, sender=None): self.config.remove_helper(self.obj) self.parent.removeHelper(self.obj) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_HELPER, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_HELPER, signature="s") @dbus_handle_exceptions def Removed(self, name): log.debug1("%s.Removed('%s')" % (self._log_prefix, name)) @@ -241,7 +242,7 @@ def rename(self, name, sender=None): self.obj = self.config.rename_helper(self.obj, name) self.Renamed(name) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_HELPER, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_HELPER, signature="s") @dbus_handle_exceptions def Renamed(self, name): log.debug1("%s.Renamed('%s')" % (self._log_prefix, name)) diff --git a/src/firewall/server/config_icmptype.py b/src/firewall/server/config_icmptype.py index b5406e3..0511586 100644 --- a/src/firewall/server/config_icmptype.py +++ b/src/firewall/server/config_icmptype.py @@ -21,6 +21,7 @@ handle_exceptions, dbus_handle_exceptions, dbus_service_method, + dbus_service_signal, dbus_polkit_require_auth, ) from firewall import errors @@ -147,7 +148,7 @@ def Set(self, interface_name, property_name, new_value, sender=None): "Property '%s' is read-only" % property_name ) - @dbus.service.signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") + @dbus_service_signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") def PropertiesChanged( self, interface_name, changed_properties, invalidated_properties ): @@ -209,7 +210,7 @@ def loadDefaults(self, sender=None): self.obj = self.config.load_icmptype_defaults(self.obj) self.Updated(self.obj.name) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_ICMPTYPE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_ICMPTYPE, signature="s") @dbus_handle_exceptions def Updated(self, name): log.debug1("%s.Updated('%s')" % (self._log_prefix, name)) @@ -225,7 +226,7 @@ def remove(self, sender=None): self.config.remove_icmptype(self.obj) self.parent.removeIcmpType(self.obj) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_ICMPTYPE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_ICMPTYPE, signature="s") @dbus_handle_exceptions def Removed(self, name): log.debug1("%s.Removed('%s')" % (self._log_prefix, name)) @@ -242,7 +243,7 @@ def rename(self, name, sender=None): self.obj = self.config.rename_icmptype(self.obj, name) self.Renamed(name) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_ICMPTYPE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_ICMPTYPE, signature="s") @dbus_handle_exceptions def Renamed(self, name): log.debug1("%s.Renamed('%s')" % (self._log_prefix, name)) diff --git a/src/firewall/server/config_ipset.py b/src/firewall/server/config_ipset.py index fedb413..e2518f9 100644 --- a/src/firewall/server/config_ipset.py +++ b/src/firewall/server/config_ipset.py @@ -27,6 +27,7 @@ handle_exceptions, dbus_handle_exceptions, dbus_service_method, + dbus_service_signal, dbus_polkit_require_auth, ) from firewall import errors @@ -153,7 +154,7 @@ def Set(self, interface_name, property_name, new_value, sender=None): "Property '%s' is read-only" % property_name ) - @dbus.service.signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") + @dbus_service_signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") def PropertiesChanged( self, interface_name, changed_properties, invalidated_properties ): @@ -216,7 +217,7 @@ def loadDefaults(self, sender=None): # self.PropertiesChanged(config.dbus.DBUS_INTERFACE_CONFIG_IPSET, # { "default": True }, [ ]) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_IPSET, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_IPSET, signature="s") @dbus_handle_exceptions def Updated(self, name): log.debug1("%s.Updated('%s')" % (self._log_prefix, name)) @@ -232,7 +233,7 @@ def remove(self, sender=None): self.config.remove_ipset(self.obj) self.parent.removeIPSet(self.obj) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_IPSET, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_IPSET, signature="s") @dbus_handle_exceptions def Removed(self, name): log.debug1("%s.Removed('%s')" % (self._log_prefix, name)) @@ -251,7 +252,7 @@ def rename(self, name, sender=None): # self.PropertiesChanged(config.dbus.DBUS_INTERFACE_CONFIG_IPSET, # { "name": name }, [ ]) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_IPSET, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_IPSET, signature="s") @dbus_handle_exceptions def Renamed(self, name): log.debug1("%s.Renamed('%s')" % (self._log_prefix, name)) diff --git a/src/firewall/server/config_policy.py b/src/firewall/server/config_policy.py index c240375..df40b37 100644 --- a/src/firewall/server/config_policy.py +++ b/src/firewall/server/config_policy.py @@ -16,6 +16,7 @@ handle_exceptions, dbus_handle_exceptions, dbus_service_method, + dbus_service_signal, dbus_polkit_require_auth, ) @@ -130,7 +131,7 @@ def Set(self, interface_name, property_name, new_value, sender=None): "Property '%s' is read-only" % property_name ) - @dbus.service.signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") + @dbus_service_signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") def PropertiesChanged( self, interface_name, changed_properties, invalidated_properties ): @@ -190,7 +191,7 @@ def loadDefaults(self, sender=None): self.obj = self.config.load_policy_object_defaults(self.obj) self.Updated(self.obj.name) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_POLICY, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_POLICY, signature="s") @dbus_handle_exceptions def Updated(self, name): log.debug1("%s.Updated('%s')" % (self._log_prefix, name)) @@ -206,7 +207,7 @@ def remove(self, sender=None): self.config.remove_policy_object(self.obj) self.parent.removePolicy(self.obj) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_POLICY, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_POLICY, signature="s") @dbus_handle_exceptions def Removed(self, name): log.debug1("%s.Removed('%s')" % (self._log_prefix, name)) @@ -223,7 +224,7 @@ def rename(self, name, sender=None): self.obj = self.config.rename_policy_object(self.obj, name) self.Renamed(name) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_POLICY, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_POLICY, signature="s") @dbus_handle_exceptions def Renamed(self, name): log.debug1("%s.Renamed('%s')" % (self._log_prefix, name)) diff --git a/src/firewall/server/config_service.py b/src/firewall/server/config_service.py index 8e1839c..8de08ee 100644 --- a/src/firewall/server/config_service.py +++ b/src/firewall/server/config_service.py @@ -20,6 +20,7 @@ handle_exceptions, dbus_handle_exceptions, dbus_service_method, + dbus_service_signal, dbus_polkit_require_auth, ) from firewall import errors @@ -146,7 +147,7 @@ def Set(self, interface_name, property_name, new_value, sender=None): "Property '%s' is read-only" % property_name ) - @dbus.service.signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") + @dbus_service_signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") def PropertiesChanged( self, interface_name, changed_properties, invalidated_properties ): @@ -229,7 +230,7 @@ def loadDefaults(self, sender=None): self.obj = self.config.load_service_defaults(self.obj) self.Updated(self.obj.name) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_SERVICE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_SERVICE, signature="s") @dbus_handle_exceptions def Updated(self, name): log.debug1("%s.Updated('%s')" % (self._log_prefix, name)) @@ -245,7 +246,7 @@ def remove(self, sender=None): self.config.remove_service(self.obj) self.parent.removeService(self.obj) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_SERVICE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_SERVICE, signature="s") @dbus_handle_exceptions def Removed(self, name): log.debug1("%s.Removed('%s')" % (self._log_prefix, name)) @@ -262,7 +263,7 @@ def rename(self, name, sender=None): self.obj = self.config.rename_service(self.obj, name) self.Renamed(name) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_SERVICE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_SERVICE, signature="s") @dbus_handle_exceptions def Renamed(self, name): log.debug1("%s.Renamed('%s')" % (self._log_prefix, name)) diff --git a/src/firewall/server/config_zone.py b/src/firewall/server/config_zone.py index a8e9bc0..da53338 100644 --- a/src/firewall/server/config_zone.py +++ b/src/firewall/server/config_zone.py @@ -24,6 +24,7 @@ handle_exceptions, dbus_handle_exceptions, dbus_service_method, + dbus_service_signal, dbus_polkit_require_auth, ) from firewall import errors @@ -156,7 +157,7 @@ def Set(self, interface_name, property_name, new_value, sender=None): "Property '%s' is read-only" % property_name ) - @dbus.service.signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") + @dbus_service_signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") def PropertiesChanged( self, interface_name, changed_properties, invalidated_properties ): @@ -288,7 +289,7 @@ def loadDefaults(self, sender=None): self.obj = self.config.load_zone_defaults(self.obj) self.Updated(self.obj.name) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_ZONE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_ZONE, signature="s") @dbus_handle_exceptions def Updated(self, name): log.debug1("%s.Updated('%s')" % (self._log_prefix, name)) @@ -304,7 +305,7 @@ def remove(self, sender=None): self.config.remove_zone(self.obj) self.parent.removeZone(self.obj) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_ZONE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_ZONE, signature="s") @dbus_handle_exceptions def Removed(self, name): log.debug1("%s.Removed('%s')" % (self._log_prefix, name)) @@ -321,7 +322,7 @@ def rename(self, name, sender=None): self.obj = self.config.rename_zone(self.obj, name) self.Renamed(name) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_CONFIG_ZONE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_CONFIG_ZONE, signature="s") @dbus_handle_exceptions def Renamed(self, name): log.debug1("%s.Renamed('%s')" % (self._log_prefix, name)) diff --git a/src/firewall/server/decorators.py b/src/firewall/server/decorators.py index 7e484ce..e532c6b 100644 --- a/src/firewall/server/decorators.py +++ b/src/firewall/server/decorators.py @@ -89,42 +89,89 @@ def _impl(*args, **kwargs): return _impl -def dbus_service_method(*args, **kwargs): - """Add sender argument for D-Bus""" - kwargs.setdefault("sender_keyword", "sender") - return dbus.service.method(*args, **kwargs) - - -class dbus_service_method_deprecated: +def dbus_service_method( + dbus_interface, + in_signature="", + out_signature="", + *args, + is_deprecated=False, + sender_keyword="sender", + **kwargs, +): + def decorator(func): + if is_deprecated: + dbus_service_method_deprecated.register(dbus_interface, func.__name__) + + dbus_decorator = dbus.service.method( + dbus_interface, + in_signature=in_signature, + out_signature=out_signature, + *args, + sender_keyword=sender_keyword, + **kwargs, + ) + return dbus_decorator(func) + + return decorator + + +def dbus_service_signal( + dbus_interface, + signature="", + *args, + is_deprecated=False, + **kwargs, +): + def decorator(func): + if is_deprecated: + dbus_service_signal_deprecated.register(dbus_interface, func.__name__) + + dbus_decorator = dbus.service.signal( + dbus_interface, + *args, + signature=signature, + **kwargs, + ) + return dbus_decorator(func) + + return decorator + + +class dbus_service_deprecated: """Decorator that maintains a list of deprecated methods in dbus interfaces. """ - deprecated = {} - - def __init__(self, interface=None): + def __init__(self, interface): self.interface = interface - if self.interface: - if self.interface not in self.deprecated: - self.deprecated[self.interface] = set() def __call__(self, func): - if self.interface: - self.deprecated[self.interface].add(func.__name__) + self.register(self.interface, func.__name__) + return func - @functools.wraps(func) - def _impl(*args, **kwargs): - return func(*args, **kwargs) + @classmethod + def register(cls, interface, name): + s = cls.deprecated.get(interface) + if s is None: + s = set() + cls.deprecated[interface] = s + s.add(name) - return _impl + +class dbus_service_method_deprecated(dbus_service_deprecated): + """Decorator that maintains a list of deprecated methods in dbus + interfaces. + """ + + deprecated = {} -class dbus_service_signal_deprecated(dbus_service_method_deprecated): +class dbus_service_signal_deprecated(dbus_service_deprecated): """Decorator that maintains a list of deprecated signals in dbus interfaces. """ - pass + deprecated = {} class dbus_polkit_require_auth: @@ -185,7 +232,12 @@ def _impl(*args, **kwargs): # use polkit if it's available if type(self)._interface_polkit: (result, _, _) = type(self)._interface_polkit.CheckAuthorization( - ("system-bus-name", {"name": sender}), action_id, {}, 1, "" + ("system-bus-name", {"name": sender}), + action_id, + {}, + 1, + "", + timeout=60, ) if not result: raise NotAuthorizedException(action_id, "polkit") diff --git a/src/firewall/server/firewalld.py b/src/firewall/server/firewalld.py index e31cd68..6280252 100644 --- a/src/firewall/server/firewalld.py +++ b/src/firewall/server/firewalld.py @@ -20,6 +20,7 @@ from firewall.server.decorators import ( dbus_handle_exceptions, dbus_service_method, + dbus_service_signal, handle_exceptions, dbus_service_method_deprecated, dbus_service_signal_deprecated, @@ -28,10 +29,6 @@ from firewall.server.config import FirewallDConfig from firewall.dbus_utils import ( dbus_to_python, - command_of_sender, - context_of_sender, - uid_of_sender, - user_of_uid, dbus_introspection_prepare_properties, dbus_introspection_add_properties, dbus_introspection_add_deprecated, @@ -93,28 +90,8 @@ def stop(self): log.debug1("stop()") return self.fw.stop() - # lockdown functions - - @dbus_handle_exceptions def accessCheck(self, sender): - if self.fw.policies.query_lockdown(): - if sender is None: - log.error("Lockdown not possible, sender not set.") - return - bus = dbus.SystemBus() - context = context_of_sender(bus, sender) - if self.fw.policies.access_check("context", context): - return - uid = uid_of_sender(bus, sender) - if self.fw.policies.access_check("uid", uid): - return - user = user_of_uid(uid) - if self.fw.policies.access_check("user", user): - return - command = command_of_sender(bus, sender) - if self.fw.policies.access_check("command", command): - return - raise FirewallError(errors.ACCESS_DENIED, "lockdown is enabled") + pass # timeout functions @@ -166,7 +143,7 @@ def _get_property(self, prop): return dbus.Boolean(self.fw.is_ipv_enabled("ipv6")) elif prop == "IPv6_rpfilter": - return dbus.Boolean(self.fw.ipv6_rpfilter_enabled) + return dbus.Boolean(False if self.fw._ipv6_rpfilter == "no" else True) elif prop == "IPv6ICMPTypes": return dbus.Array(self.fw.ipv6_supported_icmp_types, "s") @@ -313,7 +290,7 @@ def Set(self, interface_name, property_name, new_value, sender=None): "Interface '%s' does not exist" % interface_name ) - @dbus.service.signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") + @dbus_service_signal(dbus.PROPERTIES_IFACE, signature="sa{sv}as") def PropertiesChanged( self, interface_name, changed_properties, invalidated_properties ): @@ -337,13 +314,16 @@ def Introspect(self, sender=None): # pylint: disable=W0613 data = dbus_introspection_add_properties(self, data, config.dbus.DBUS_INTERFACE) - for interface in [config.dbus.DBUS_INTERFACE_DIRECT]: + for interface in [ + config.dbus.DBUS_INTERFACE_DIRECT, + config.dbus.DBUS_INTERFACE_POLICIES, + ]: data = dbus_introspection_add_deprecated( self, data, interface, - dbus_service_method_deprecated().deprecated, - dbus_service_signal_deprecated().deprecated, + dbus_service_method_deprecated.deprecated, + dbus_service_signal_deprecated.deprecated, ) return data @@ -378,7 +358,7 @@ def completeReload(self, sender=None): # pylint: disable=W0613 self.config.reload() self.Reloaded() - @dbus.service.signal(config.dbus.DBUS_INTERFACE) + @dbus_service_signal(config.dbus.DBUS_INTERFACE) @dbus_handle_exceptions def Reloaded(self): log.debug1("Reloaded()") @@ -589,19 +569,6 @@ def runtimeToPermanent(self, sender=None): # pylint: disable=W0613 log.warning("Runtime To Permanent failed on direct configuration: %s" % e) error = True - # policies - - conf = self.fw.policies.lockdown_whitelist.export_config() - try: - if self.config.getSettings() != conf: - log.debug1("Copying policies configuration") - self.config.setLockdownWhitelist(conf) - else: - log.debug1("Policies configuration is identical, ignoring.") - except Exception as e: - log.warning("Runtime To Permanent failed on policies configuration: %s" % e) - error = True - if error: raise FirewallError(errors.RT_TO_PERM_FAILED) @@ -613,48 +580,49 @@ def runtimeToPermanent(self, sender=None): # pylint: disable=W0613 @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="", out_signature="" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="", + out_signature="", + is_deprecated=True, ) - @dbus_handle_exceptions def enableLockdown(self, sender=None): - """Enable lockdown policies""" - log.debug1("policies.enableLockdown()") - self.accessCheck(sender) - self.fw.policies.enable_lockdown() - self.LockdownEnabled() + pass @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="", out_signature="" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="", + out_signature="", + is_deprecated=True, ) - @dbus_handle_exceptions def disableLockdown(self, sender=None): - """Disable lockdown policies""" - log.debug1("policies.disableLockdown()") - self.accessCheck(sender) - self.fw.policies.disable_lockdown() - self.LockdownDisabled() + pass @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES_INFO) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="", out_signature="b" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="", + out_signature="b", + is_deprecated=True, ) - @dbus_handle_exceptions def queryLockdown(self, sender=None): # pylint: disable=W0613 - """Returns True if lockdown is enabled""" - log.debug1("policies.queryLockdown()") - # no access check here - return self.fw.policies.query_lockdown() + return False - @dbus.service.signal(config.dbus.DBUS_INTERFACE_POLICIES, signature="") - @dbus_handle_exceptions + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_POLICIES, + signature="", + is_deprecated=True, + ) def LockdownEnabled(self): - log.debug1("LockdownEnabled()") + pass - @dbus.service.signal(config.dbus.DBUS_INTERFACE_POLICIES, signature="") - @dbus_handle_exceptions + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_POLICIES, + signature="", + is_deprecated=True, + ) def LockdownDisabled(self): - log.debug1("LockdownDisabled()") + pass # lockdown whitelist @@ -662,249 +630,237 @@ def LockdownDisabled(self): @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="s", out_signature="" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="s", + out_signature="", + is_deprecated=True, ) - @dbus_handle_exceptions def addLockdownWhitelistCommand(self, command, sender=None): - """Add lockdown command""" - command = dbus_to_python(command, str) - log.debug1("policies.addLockdownWhitelistCommand('%s')" % command) - self.accessCheck(sender) - self.fw.policies.lockdown_whitelist.add_command(command) - self.LockdownWhitelistCommandAdded(command) + pass @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="s", out_signature="" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="s", + out_signature="", + is_deprecated=True, ) - @dbus_handle_exceptions def removeLockdownWhitelistCommand(self, command, sender=None): - """Remove lockdown command""" - command = dbus_to_python(command, str) - log.debug1("policies.removeLockdownWhitelistCommand('%s')" % command) - self.accessCheck(sender) - self.fw.policies.lockdown_whitelist.remove_command(command) - self.LockdownWhitelistCommandRemoved(command) + pass @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES_INFO) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="s", out_signature="b" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="s", + out_signature="b", + is_deprecated=True, ) - @dbus_handle_exceptions def queryLockdownWhitelistCommand( self, command, sender=None ): # pylint: disable=W0613 - """Query lockdown command""" - command = dbus_to_python(command, str) - log.debug1("policies.queryLockdownWhitelistCommand('%s')" % command) - # no access check here - return self.fw.policies.lockdown_whitelist.has_command(command) + return False @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES_INFO) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="", out_signature="as" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="", + out_signature="as", + is_deprecated=True, ) - @dbus_handle_exceptions def getLockdownWhitelistCommands(self, sender=None): # pylint: disable=W0613 - """Add lockdown command""" - log.debug1("policies.getLockdownWhitelistCommands()") - # no access check here - return self.fw.policies.lockdown_whitelist.get_commands() + return [] - @dbus.service.signal(config.dbus.DBUS_INTERFACE_POLICIES, signature="s") - @dbus_handle_exceptions + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_POLICIES, + signature="s", + is_deprecated=True, + ) def LockdownWhitelistCommandAdded(self, command): - log.debug1("LockdownWhitelistCommandAdded('%s')" % command) + pass - @dbus.service.signal(config.dbus.DBUS_INTERFACE_POLICIES, signature="s") - @dbus_handle_exceptions + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_POLICIES, + signature="s", + is_deprecated=True, + ) def LockdownWhitelistCommandRemoved(self, command): - log.debug1("LockdownWhitelistCommandRemoved('%s')" % command) + pass # uid @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="i", out_signature="" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="i", + out_signature="", + is_deprecated=True, ) - @dbus_handle_exceptions def addLockdownWhitelistUid(self, uid, sender=None): - """Add lockdown uid""" - uid = dbus_to_python(uid, int) - log.debug1("policies.addLockdownWhitelistUid('%s')" % uid) - self.accessCheck(sender) - self.fw.policies.lockdown_whitelist.add_uid(uid) - self.LockdownWhitelistUidAdded(uid) + pass @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="i", out_signature="" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="i", + out_signature="", + is_deprecated=True, ) - @dbus_handle_exceptions def removeLockdownWhitelistUid(self, uid, sender=None): - """Remove lockdown uid""" - uid = dbus_to_python(uid, int) - log.debug1("policies.removeLockdownWhitelistUid('%s')" % uid) - self.accessCheck(sender) - self.fw.policies.lockdown_whitelist.remove_uid(uid) - self.LockdownWhitelistUidRemoved(uid) + pass @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES_INFO) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="i", out_signature="b" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="i", + out_signature="b", + is_deprecated=True, ) - @dbus_handle_exceptions def queryLockdownWhitelistUid(self, uid, sender=None): # pylint: disable=W0613 - """Query lockdown uid""" - uid = dbus_to_python(uid, int) - log.debug1("policies.queryLockdownWhitelistUid('%s')" % uid) - # no access check here - return self.fw.policies.lockdown_whitelist.has_uid(uid) + return False @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES_INFO) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="", out_signature="ai" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="", + out_signature="ai", + is_deprecated=True, ) - @dbus_handle_exceptions def getLockdownWhitelistUids(self, sender=None): # pylint: disable=W0613 - """Add lockdown uid""" - log.debug1("policies.getLockdownWhitelistUids()") - # no access check here - return self.fw.policies.lockdown_whitelist.get_uids() + return [] - @dbus.service.signal(config.dbus.DBUS_INTERFACE_POLICIES, signature="i") - @dbus_handle_exceptions + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_POLICIES, + signature="i", + is_deprecated=True, + ) def LockdownWhitelistUidAdded(self, uid): - log.debug1("LockdownWhitelistUidAdded(%d)" % uid) + pass - @dbus.service.signal(config.dbus.DBUS_INTERFACE_POLICIES, signature="i") - @dbus_handle_exceptions + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_POLICIES, + signature="i", + is_deprecated=True, + ) def LockdownWhitelistUidRemoved(self, uid): - log.debug1("LockdownWhitelistUidRemoved(%d)" % uid) + pass # user @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="s", out_signature="" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="s", + out_signature="", + is_deprecated=True, ) - @dbus_handle_exceptions def addLockdownWhitelistUser(self, user, sender=None): - """Add lockdown user""" - user = dbus_to_python(user, str) - log.debug1("policies.addLockdownWhitelistUser('%s')" % user) - self.accessCheck(sender) - self.fw.policies.lockdown_whitelist.add_user(user) - self.LockdownWhitelistUserAdded(user) + pass @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="s", out_signature="" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="s", + out_signature="", + is_deprecated=True, ) - @dbus_handle_exceptions def removeLockdownWhitelistUser(self, user, sender=None): - """Remove lockdown user""" - user = dbus_to_python(user, str) - log.debug1("policies.removeLockdownWhitelistUser('%s')" % user) - self.accessCheck(sender) - self.fw.policies.lockdown_whitelist.remove_user(user) - self.LockdownWhitelistUserRemoved(user) + pass @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES_INFO) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="s", out_signature="b" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="s", + out_signature="b", + is_deprecated=True, ) - @dbus_handle_exceptions def queryLockdownWhitelistUser(self, user, sender=None): # pylint: disable=W0613 - """Query lockdown user""" - user = dbus_to_python(user, str) - log.debug1("policies.queryLockdownWhitelistUser('%s')" % user) - # no access check here - return self.fw.policies.lockdown_whitelist.has_user(user) + return False @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES_INFO) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="", out_signature="as" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="", + out_signature="as", + is_deprecated=True, ) - @dbus_handle_exceptions def getLockdownWhitelistUsers(self, sender=None): # pylint: disable=W0613 - """Add lockdown user""" - log.debug1("policies.getLockdownWhitelistUsers()") - # no access check here - return self.fw.policies.lockdown_whitelist.get_users() + return [] - @dbus.service.signal(config.dbus.DBUS_INTERFACE_POLICIES, signature="s") - @dbus_handle_exceptions + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_POLICIES, + signature="s", + is_deprecated=True, + ) def LockdownWhitelistUserAdded(self, user): - log.debug1("LockdownWhitelistUserAdded('%s')" % user) + pass - @dbus.service.signal(config.dbus.DBUS_INTERFACE_POLICIES, signature="s") - @dbus_handle_exceptions + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_POLICIES, + signature="s", + is_deprecated=True, + ) def LockdownWhitelistUserRemoved(self, user): - log.debug1("LockdownWhitelistUserRemoved('%s')" % user) + pass # context @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="s", out_signature="" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="s", + out_signature="", + is_deprecated=True, ) - @dbus_handle_exceptions def addLockdownWhitelistContext(self, context, sender=None): - """Add lockdown context""" - context = dbus_to_python(context, str) - log.debug1("policies.addLockdownWhitelistContext('%s')" % context) - self.accessCheck(sender) - self.fw.policies.lockdown_whitelist.add_context(context) - self.LockdownWhitelistContextAdded(context) + pass @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="s", out_signature="" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="s", + out_signature="", + is_deprecated=True, ) - @dbus_handle_exceptions def removeLockdownWhitelistContext(self, context, sender=None): - """Remove lockdown context""" - context = dbus_to_python(context, str) - log.debug1("policies.removeLockdownWhitelistContext('%s')" % context) - self.accessCheck(sender) - self.fw.policies.lockdown_whitelist.remove_context(context) - self.LockdownWhitelistContextRemoved(context) + pass @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES_INFO) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="s", out_signature="b" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="s", + out_signature="b", + is_deprecated=True, ) - @dbus_handle_exceptions def queryLockdownWhitelistContext( self, context, sender=None ): # pylint: disable=W0613 - """Query lockdown context""" - context = dbus_to_python(context, str) - log.debug1("policies.queryLockdownWhitelistContext('%s')" % context) - # no access check here - return self.fw.policies.lockdown_whitelist.has_context(context) + return False @dbus_polkit_require_auth(config.dbus.PK_ACTION_POLICIES_INFO) @dbus_service_method( - config.dbus.DBUS_INTERFACE_POLICIES, in_signature="", out_signature="as" + config.dbus.DBUS_INTERFACE_POLICIES, + in_signature="", + out_signature="as", + is_deprecated=True, ) - @dbus_handle_exceptions def getLockdownWhitelistContexts(self, sender=None): # pylint: disable=W0613 - """Add lockdown context""" - log.debug1("policies.getLockdownWhitelistContexts()") - # no access check here - return self.fw.policies.lockdown_whitelist.get_contexts() + return [] - @dbus.service.signal(config.dbus.DBUS_INTERFACE_POLICIES, signature="s") - @dbus_handle_exceptions + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_POLICIES, + signature="s", + is_deprecated=True, + ) def LockdownWhitelistContextAdded(self, context): - log.debug1("LockdownWhitelistContextAdded('%s')" % context) + pass - @dbus.service.signal(config.dbus.DBUS_INTERFACE_POLICIES, signature="s") - @dbus_handle_exceptions + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_POLICIES, + signature="s", + is_deprecated=True, + ) def LockdownWhitelistContextRemoved(self, context): - log.debug1("LockdownWhitelistContextRemoved('%s')" % context) + pass # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # @@ -945,12 +901,12 @@ def queryPanicMode(self, sender=None): # pylint: disable=W0613 log.debug1("queryPanicMode()") return self.fw.query_panic_mode() - @dbus.service.signal(config.dbus.DBUS_INTERFACE, signature="") + @dbus_service_signal(config.dbus.DBUS_INTERFACE, signature="") @dbus_handle_exceptions def PanicModeEnabled(self): log.debug1("PanicModeEnabled()") - @dbus.service.signal(config.dbus.DBUS_INTERFACE, signature="") + @dbus_service_signal(config.dbus.DBUS_INTERFACE, signature="") @dbus_handle_exceptions def PanicModeDisabled(self): log.debug1("PanicModeDisabled()") @@ -994,7 +950,7 @@ def setZoneSettings2(self, zone, settings, sender=None): ) self.ZoneUpdated(zone, settings) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sa{sv}") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sa{sv}") @dbus_handle_exceptions def ZoneUpdated(self, zone, settings): log.debug1("zone.ZoneUpdated('%s', '%s')" % (zone, settings)) @@ -1021,7 +977,7 @@ def setPolicySettings(self, policy, settings, sender=None): ) self.PolicyUpdated(policy, settings) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_POLICY, signature="sa{sv}") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_POLICY, signature="sa{sv}") @dbus_handle_exceptions def PolicyUpdated(self, policy, settings): log.debug1("policy.PolicyUpdated('%s', '%s')" % (policy, settings)) @@ -1050,18 +1006,7 @@ def getServiceSettings(self, service, sender=None): # pylint: disable=W0613 service = dbus_to_python(service, str) log.debug1("getServiceSettings(%s)", service) obj = self.fw.service.get_service(service) - conf_dict = obj.export_config_dict() - conf_list = [] - for i in range(8): # tuple based dbus API has 8 elements - if obj.IMPORT_EXPORT_STRUCTURE[i][0] not in conf_dict: - # old API needs the empty elements as well. Grab it from the - # object otherwise we don't know the type. - conf_list.append( - copy.deepcopy(getattr(obj, obj.IMPORT_EXPORT_STRUCTURE[i][0])) - ) - else: - conf_list.append(conf_dict[obj.IMPORT_EXPORT_STRUCTURE[i][0]]) - return tuple(conf_list) + return obj.export_config_tuple(length=8) @dbus_polkit_require_auth(config.dbus.PK_ACTION_CONFIG_INFO) @dbus_service_method( @@ -1126,7 +1071,7 @@ def setLogDenied(self, value, sender=None): self.config.reload() self.Reloaded() - @dbus.service.signal(config.dbus.DBUS_INTERFACE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE, signature="s") @dbus_handle_exceptions def LogDeniedChanged(self, value): log.debug1("LogDeniedChanged('%s')" % (value)) @@ -1156,7 +1101,7 @@ def setAutomaticHelpers(self, value, sender=None): # NOTE: This feature was removed and is now a noop. We retain the dbus # call to keep API. - @dbus.service.signal(config.dbus.DBUS_INTERFACE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE, signature="s") @dbus_handle_exceptions def AutomaticHelpersChanged(self, value): log.debug1("AutomaticHelpersChanged('%s')" % (value)) @@ -1187,7 +1132,7 @@ def setDefaultZone(self, zone, sender=None): self.config.reload() self.Reloaded() - @dbus.service.signal(config.dbus.DBUS_INTERFACE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE, signature="s") @dbus_handle_exceptions def DefaultZoneChanged(self, zone): log.debug1("DefaultZoneChanged('%s')" % (zone)) @@ -1401,12 +1346,12 @@ def getInterfaces(self, zone, sender=None): # pylint: disable=W0613 log.debug1("zone.getInterfaces('%s')" % (zone)) return self.fw.zone.list_interfaces(zone) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") @dbus_handle_exceptions def InterfaceAdded(self, zone, interface): log.debug1("zone.InterfaceAdded('%s', '%s')" % (zone, interface)) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") @dbus_handle_exceptions def ZoneChanged(self, zone, interface): """ @@ -1414,13 +1359,13 @@ def ZoneChanged(self, zone, interface): """ log.debug1("zone.ZoneChanged('%s', '%s')" % (zone, interface)) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") @dbus_handle_exceptions def ZoneOfInterfaceChanged(self, zone, interface): log.debug1("zone.ZoneOfInterfaceChanged('%s', '%s')" % (zone, interface)) self.ZoneChanged(zone, interface) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") @dbus_handle_exceptions def InterfaceRemoved(self, zone, interface): log.debug1("zone.InterfaceRemoved('%s', '%s')" % (zone, interface)) @@ -1512,17 +1457,17 @@ def getSources(self, zone, sender=None): # pylint: disable=W0613 log.debug1("zone.getSources('%s')" % (zone)) return self.fw.zone.list_sources(zone) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") @dbus_handle_exceptions def SourceAdded(self, zone, source): log.debug1("zone.SourceAdded('%s', '%s')" % (zone, source)) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") @dbus_handle_exceptions def ZoneOfSourceChanged(self, zone, source): log.debug1("zone.ZoneOfSourceChanged('%s', '%s')" % (zone, source)) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") @dbus_handle_exceptions def SourceRemoved(self, zone, source): log.debug1("zone.SourceRemoved('%s', '%s')" % (zone, source)) @@ -1601,12 +1546,12 @@ def getRichRules(self, zone, sender=None): # pylint: disable=W0613 log.debug1("zone.getRichRules('%s')" % (zone)) return self.fw.zone.list_rules(zone) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ssi") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ssi") @dbus_handle_exceptions def RichRuleAdded(self, zone, rule, timeout): log.debug1("zone.RichRuleAdded('%s', '%s', %d)" % (zone, rule, timeout)) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") @dbus_handle_exceptions def RichRuleRemoved(self, zone, rule): log.debug1("zone.RichRuleRemoved('%s', '%s')" % (zone, rule)) @@ -1689,12 +1634,12 @@ def getServices(self, zone, sender=None): # pylint: disable=W0613 log.debug1("zone.getServices('%s')" % (zone)) return self.fw.zone.list_services(zone) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ssi") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ssi") @dbus_handle_exceptions def ServiceAdded(self, zone, service, timeout): log.debug1("zone.ServiceAdded('%s', '%s', %d)" % (zone, service, timeout)) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") @dbus_handle_exceptions def ServiceRemoved(self, zone, service): log.debug1("zone.ServiceRemoved('%s', '%s')" % (zone, service)) @@ -1782,14 +1727,14 @@ def getPorts(self, zone, sender=None): # pylint: disable=W0613 log.debug1("zone.getPorts('%s')" % (zone)) return self.fw.zone.list_ports(zone) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sssi") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sssi") @dbus_handle_exceptions def PortAdded(self, zone, port, protocol, timeout=0): log.debug1( "zone.PortAdded('%s', '%s', '%s', %d)" % (zone, port, protocol, timeout) ) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sss") @dbus_handle_exceptions def PortRemoved(self, zone, port, protocol): log.debug1("zone.PortRemoved('%s', '%s', '%s')" % (zone, port, protocol)) @@ -1870,12 +1815,12 @@ def getProtocols(self, zone, sender=None): # pylint: disable=W0613 log.debug1("zone.getProtocols('%s')" % (zone)) return self.fw.zone.list_protocols(zone) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ssi") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ssi") @dbus_handle_exceptions def ProtocolAdded(self, zone, protocol, timeout=0): log.debug1("zone.ProtocolAdded('%s', '%s', %d)" % (zone, protocol, timeout)) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") @dbus_handle_exceptions def ProtocolRemoved(self, zone, protocol): log.debug1("zone.ProtocolRemoved('%s', '%s')" % (zone, protocol)) @@ -1967,7 +1912,7 @@ def getSourcePorts(self, zone, sender=None): # pylint: disable=W0613 log.debug1("zone.getSourcePorts('%s')" % (zone)) return self.fw.zone.list_source_ports(zone) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sssi") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sssi") @dbus_handle_exceptions def SourcePortAdded(self, zone, port, protocol, timeout=0): log.debug1( @@ -1975,7 +1920,7 @@ def SourcePortAdded(self, zone, port, protocol, timeout=0): % (zone, port, protocol, timeout) ) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sss") @dbus_handle_exceptions def SourcePortRemoved(self, zone, port, protocol): log.debug1("zone.SourcePortRemoved('%s', '%s', '%s')" % (zone, port, protocol)) @@ -2037,12 +1982,12 @@ def queryMasquerade(self, zone, sender=None): # pylint: disable=W0613 log.debug1("zone.queryMasquerade('%s')" % (zone)) return self.fw.zone.query_masquerade(zone) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="si") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="si") @dbus_handle_exceptions def MasqueradeAdded(self, zone, timeout=0): log.debug1("zone.MasqueradeAdded('%s', %d)" % (zone, timeout)) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="s") @dbus_handle_exceptions def MasqueradeRemoved(self, zone): log.debug1("zone.MasqueradeRemoved('%s')" % (zone)) @@ -2156,7 +2101,7 @@ def getForwardPorts(self, zone, sender=None): # pylint: disable=W0613 log.debug1("zone.getForwardPorts('%s')" % (zone)) return self.fw.zone.list_forward_ports(zone) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sssssi") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sssssi") @dbus_handle_exceptions def ForwardPortAdded( self, zone, port, protocol, toport, toaddr, timeout=0 @@ -2166,7 +2111,7 @@ def ForwardPortAdded( % (zone, port, protocol, toport, toaddr, timeout) ) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sssss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="sssss") @dbus_handle_exceptions def ForwardPortRemoved( self, zone, port, protocol, toport, toaddr @@ -2252,12 +2197,12 @@ def getIcmpBlocks(self, zone, sender=None): # pylint: disable=W0613 log.debug1("zone.getIcmpBlocks('%s')" % (zone)) return self.fw.zone.list_icmp_blocks(zone) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ssi") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ssi") @dbus_handle_exceptions def IcmpBlockAdded(self, zone, icmp, timeout=0): log.debug1("zone.IcmpBlockAdded('%s', '%s', %d)" % (zone, icmp, timeout)) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="ss") @dbus_handle_exceptions def IcmpBlockRemoved(self, zone, icmp): log.debug1("zone.IcmpBlockRemoved('%s', '%s')" % (zone, icmp)) @@ -2307,12 +2252,12 @@ def queryIcmpBlockInversion(self, zone, sender=None): # pylint: disable=W0613 log.debug1("zone.queryIcmpBlockInversion('%s')" % (zone)) return self.fw.zone.query_icmp_block_inversion(zone) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="s") @dbus_handle_exceptions def IcmpBlockInversionAdded(self, zone): log.debug1("zone.IcmpBlockInversionAdded('%s')" % (zone)) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_ZONE, signature="s") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_ZONE, signature="s") @dbus_handle_exceptions def IcmpBlockInversionRemoved(self, zone): log.debug1("zone.IcmpBlockInversionRemoved('%s')" % (zone)) @@ -2324,9 +2269,11 @@ def IcmpBlockInversionRemoved(self, zone): # DIRECT CHAIN @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sss", out_signature="" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sss", + out_signature="", + is_deprecated=True, ) @dbus_handle_exceptions def addChain(self, ipv, table, chain, sender=None): @@ -2340,9 +2287,11 @@ def addChain(self, ipv, table, chain, sender=None): self.ChainAdded(ipv, table, chain) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sss", out_signature="" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sss", + out_signature="", + is_deprecated=True, ) @dbus_handle_exceptions def removeChain(self, ipv, table, chain, sender=None): @@ -2356,9 +2305,11 @@ def removeChain(self, ipv, table, chain, sender=None): self.ChainRemoved(ipv, table, chain) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT_INFO) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sss", out_signature="b" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sss", + out_signature="b", + is_deprecated=True, ) @dbus_handle_exceptions def queryChain(self, ipv, table, chain, sender=None): # pylint: disable=W0613 @@ -2370,9 +2321,11 @@ def queryChain(self, ipv, table, chain, sender=None): # pylint: disable=W0613 return self.fw.direct.query_chain(ipv, table, chain) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT_INFO) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="ss", out_signature="as" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="ss", + out_signature="as", + is_deprecated=True, ) @dbus_handle_exceptions def getChains(self, ipv, table, sender=None): # pylint: disable=W0613 @@ -2383,9 +2336,11 @@ def getChains(self, ipv, table, sender=None): # pylint: disable=W0613 return self.fw.direct.get_chains(ipv, table) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT_INFO) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="", out_signature="a(sss)" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="", + out_signature="a(sss)", + is_deprecated=True, ) @dbus_handle_exceptions def getAllChains(self, sender=None): # pylint: disable=W0613 @@ -2393,14 +2348,20 @@ def getAllChains(self, sender=None): # pylint: disable=W0613 log.debug1("direct.getAllChains()") return self.fw.direct.get_all_chains() - @dbus_service_signal_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_DIRECT, signature="sss") + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_DIRECT, + signature="sss", + is_deprecated=True, + ) @dbus_handle_exceptions def ChainAdded(self, ipv, table, chain): log.debug1("direct.ChainAdded('%s', '%s', '%s')" % (ipv, table, chain)) - @dbus_service_signal_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_DIRECT, signature="sss") + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_DIRECT, + signature="sss", + is_deprecated=True, + ) @dbus_handle_exceptions def ChainRemoved(self, ipv, table, chain): log.debug1("direct.ChainRemoved('%s', '%s', '%s')" % (ipv, table, chain)) @@ -2410,9 +2371,11 @@ def ChainRemoved(self, ipv, table, chain): # DIRECT RULE @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sssias", out_signature="" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sssias", + out_signature="", + is_deprecated=True, ) @dbus_handle_exceptions def addRule( @@ -2433,9 +2396,11 @@ def addRule( self.RuleAdded(ipv, table, chain, priority, args) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sssias", out_signature="" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sssias", + out_signature="", + is_deprecated=True, ) @dbus_handle_exceptions def removeRule( @@ -2456,9 +2421,11 @@ def removeRule( self.RuleRemoved(ipv, table, chain, priority, args) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sss", out_signature="" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sss", + out_signature="", + is_deprecated=True, ) @dbus_handle_exceptions def removeRules(self, ipv, table, chain, sender=None): @@ -2473,9 +2440,11 @@ def removeRules(self, ipv, table, chain, sender=None): self.RuleRemoved(ipv, table, chain, priority, args) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT_INFO) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sssias", out_signature="b" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sssias", + out_signature="b", + is_deprecated=True, ) @dbus_handle_exceptions def queryRule( @@ -2494,9 +2463,11 @@ def queryRule( return self.fw.direct.query_rule(ipv, table, chain, priority, args) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT_INFO) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sss", out_signature="a(ias)" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sss", + out_signature="a(ias)", + is_deprecated=True, ) @dbus_handle_exceptions def getRules(self, ipv, table, chain, sender=None): # pylint: disable=W0613 @@ -2508,9 +2479,11 @@ def getRules(self, ipv, table, chain, sender=None): # pylint: disable=W0613 return self.fw.direct.get_rules(ipv, table, chain) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT_INFO) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="", out_signature="a(sssias)" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="", + out_signature="a(sssias)", + is_deprecated=True, ) @dbus_handle_exceptions def getAllRules(self, sender=None): # pylint: disable=W0613 @@ -2518,8 +2491,11 @@ def getAllRules(self, sender=None): # pylint: disable=W0613 log.debug1("direct.getAllRules()") return self.fw.direct.get_all_rules() - @dbus_service_signal_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_DIRECT, signature="sssias") + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_DIRECT, + signature="sssias", + is_deprecated=True, + ) @dbus_handle_exceptions def RuleAdded(self, ipv, table, chain, priority, args): # pylint: disable=R0913 log.debug1( @@ -2527,8 +2503,11 @@ def RuleAdded(self, ipv, table, chain, priority, args): # pylint: disable=R0913 % (ipv, table, chain, priority, "','".join(args)) ) - @dbus_service_signal_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_DIRECT, signature="sssias") + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_DIRECT, + signature="sssias", + is_deprecated=True, + ) @dbus_handle_exceptions def RuleRemoved(self, ipv, table, chain, priority, args): # pylint: disable=R0913 log.debug1( @@ -2541,9 +2520,11 @@ def RuleRemoved(self, ipv, table, chain, priority, args): # pylint: disable=R09 # DIRECT PASSTHROUGH (untracked) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sas", out_signature="s" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sas", + out_signature="s", + is_deprecated=True, ) @dbus_handle_exceptions def passthrough(self, ipv, args, sender=None): @@ -2569,9 +2550,11 @@ def passthrough(self, ipv, args, sender=None): # DIRECT PASSTHROUGH (tracked) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sas", out_signature="" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sas", + out_signature="", + is_deprecated=True, ) @dbus_handle_exceptions def addPassthrough(self, ipv, args, sender=None): @@ -2584,9 +2567,11 @@ def addPassthrough(self, ipv, args, sender=None): self.PassthroughAdded(ipv, args) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sas", out_signature="" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sas", + out_signature="", + is_deprecated=True, ) @dbus_handle_exceptions def removePassthrough(self, ipv, args, sender=None): @@ -2599,9 +2584,11 @@ def removePassthrough(self, ipv, args, sender=None): self.PassthroughRemoved(ipv, args) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT_INFO) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="sas", out_signature="b" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="sas", + out_signature="b", + is_deprecated=True, ) @dbus_handle_exceptions def queryPassthrough(self, ipv, args, sender=None): # pylint: disable=W0613 @@ -2612,9 +2599,11 @@ def queryPassthrough(self, ipv, args, sender=None): # pylint: disable=W0613 return self.fw.direct.query_passthrough(ipv, args) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT_INFO) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="", out_signature="a(sas)" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="", + out_signature="a(sas)", + is_deprecated=True, ) @dbus_handle_exceptions def getAllPassthroughs(self, sender=None): # pylint: disable=W0613 @@ -2623,9 +2612,11 @@ def getAllPassthroughs(self, sender=None): # pylint: disable=W0613 return self.fw.direct.get_all_passthroughs() @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="", out_signature="" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="", + out_signature="", + is_deprecated=True, ) @dbus_handle_exceptions def removeAllPassthroughs(self, sender=None): # pylint: disable=W0613 @@ -2636,9 +2627,11 @@ def removeAllPassthroughs(self, sender=None): # pylint: disable=W0613 self.removePassthrough(*passthrough) @dbus_polkit_require_auth(config.dbus.PK_ACTION_DIRECT_INFO) - @dbus_service_method_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) @dbus_service_method( - config.dbus.DBUS_INTERFACE_DIRECT, in_signature="s", out_signature="aas" + config.dbus.DBUS_INTERFACE_DIRECT, + in_signature="s", + out_signature="aas", + is_deprecated=True, ) @dbus_handle_exceptions def getPassthroughs(self, ipv, sender=None): # pylint: disable=W0613 @@ -2647,14 +2640,20 @@ def getPassthroughs(self, ipv, sender=None): # pylint: disable=W0613 log.debug1("direct.getPassthroughs('%s')", ipv) return self.fw.direct.get_passthroughs(ipv) - @dbus_service_signal_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_DIRECT, signature="sas") + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_DIRECT, + signature="sas", + is_deprecated=True, + ) @dbus_handle_exceptions def PassthroughAdded(self, ipv, args): log.debug1("direct.PassthroughAdded('%s', '%s')" % (ipv, "','".join(args))) - @dbus_service_signal_deprecated(config.dbus.DBUS_INTERFACE_DIRECT) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_DIRECT, signature="sas") + @dbus_service_signal( + config.dbus.DBUS_INTERFACE_DIRECT, + signature="sas", + is_deprecated=True, + ) @dbus_handle_exceptions def PassthroughRemoved(self, ipv, args): log.debug1("direct.PassthroughRemoved('%s', '%s')" % (ipv, "','".join(args))) @@ -2779,14 +2778,14 @@ def setEntries(self, ipset, entries, sender=None): # pylint: disable=W0613 for entry in old_entries_set - entries_set: self.EntryRemoved(ipset, entry) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_IPSET, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_IPSET, signature="ss") @dbus_handle_exceptions def EntryAdded(self, ipset, entry): ipset = dbus_to_python(ipset) entry = dbus_to_python(entry) log.debug1("ipset.EntryAdded('%s', '%s')" % (ipset, entry)) - @dbus.service.signal(config.dbus.DBUS_INTERFACE_IPSET, signature="ss") + @dbus_service_signal(config.dbus.DBUS_INTERFACE_IPSET, signature="ss") @dbus_handle_exceptions def EntryRemoved(self, ipset, entry): ipset = dbus_to_python(ipset) diff --git a/src/firewalld b/src/firewalld index 00fbf81..ae0d6e0 100755 --- a/src/firewalld +++ b/src/firewalld @@ -1,4 +1,4 @@ -#!/opt/hostedtoolcache/Python/3.7.17/x64/bin/python +#!/opt/hostedtoolcache/Python/3.8.18/x64/bin/python # SPDX-License-Identifier: GPL-2.0-or-later # # Copyright (C) 2010-2016 Red Hat, Inc. diff --git a/src/icons/Makefile.in b/src/icons/Makefile.in index 7047261..d89563c 100644 --- a/src/icons/Makefile.in +++ b/src/icons/Makefile.in @@ -1,7 +1,7 @@ -# Makefile.in generated by automake 1.16.1 from Makefile.am. +# Makefile.in generated by automake 1.16.5 from Makefile.am. # @configure_input@ -# Copyright (C) 1994-2018 Free Software Foundation, Inc. +# Copyright (C) 1994-2021 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -158,6 +158,8 @@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ BASHCOMPLETIONDIR = @BASHCOMPLETIONDIR@ +CSCOPE = @CSCOPE@ +CTAGS = @CTAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_LOG_TARGET = @DEFAULT_LOG_TARGET@ DEFS = @DEFS@ @@ -166,6 +168,7 @@ EBTABLES_RESTORE = @EBTABLES_RESTORE@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ +ETAGS = @ETAGS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GETTEXT_PACKAGE = @GETTEXT_PACKAGE@ GLIB_COMPILE_SCHEMAS = @GLIB_COMPILE_SCHEMAS@ @@ -203,8 +206,8 @@ MAKEINFO = @MAKEINFO@ MKDIR_P = @MKDIR_P@ MODPROBE = @MODPROBE@ MSGFMT = @MSGFMT@ -MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ +MSGMERGE_FOR_MSGFMT_OPTION = @MSGMERGE_FOR_MSGFMT_OPTION@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ @@ -352,7 +355,6 @@ ctags CTAGS: cscope cscopelist: - distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am diff --git a/src/tests/Makefile.am b/src/tests/Makefile.am index e543240..7664cd7 100644 --- a/src/tests/Makefile.am +++ b/src/tests/Makefile.am @@ -64,7 +64,6 @@ $(TESTSUITE) $(TESTSUITE_INTEGRATION): $(TESTSUITE_FILES) $(srcdir)/package.m4 CONTAINER_TARGETS = check-container-debian-sid \ check-container-fedora-rawhide \ - check-container-centos8-stream \ check-container-centos9-stream check-container-debian-sid-image: check-container-%-image: @@ -111,28 +110,6 @@ check-container-fedora-rawhide-image: check-container-%-image: echo "RUN make install" ; \ } | $(PODMAN) build -t firewalld-testsuite-$* -f - . ) -check-container-centos8-stream-image: check-container-%-image: - (cd $(abs_top_srcdir) && { \ - echo "FROM centos:stream8" && \ - echo "RUN dnf -y makecache" && \ - echo "RUN dnf -y install autoconf automake conntrack-tools desktop-file-utils \ - docbook-style-xsl file gettext glib2-devel intltool ipset \ - iptables iptables-ebtables nftables libtool libxml2 \ - libxslt make nftables python3-nftables python3-dbus \ - python3-gobject-base diffutils procps-ng iproute which dbus-daemon \ - NetworkManager NetworkManager-ovs time polkit systemd sudo" && \ - echo "ENV container docker" && \ - echo "VOLUME [ \"/sys/fs/cgroup\" ]" && \ - echo "CMD [\"/usr/sbin/init\"]" && \ - echo "RUN mkdir -p /run/dbus" && \ - echo "COPY . /root/firewalld" && \ - echo "WORKDIR /root/firewalld" && \ - echo "RUN ./autogen.sh" && \ - echo "RUN ./configure PYTHON=\"/usr/libexec/platform-python\"" && \ - echo "RUN make" && \ - echo "RUN make install" ; \ - } | $(PODMAN) build -t firewalld-testsuite-$* -f - . ) - check-container-centos9-stream-image: check-container-%-image: (cd $(abs_top_srcdir) && { \ echo "FROM centos:stream9" && \ diff --git a/src/tests/Makefile.in b/src/tests/Makefile.in index df18913..381671a 100644 --- a/src/tests/Makefile.in +++ b/src/tests/Makefile.in @@ -1,7 +1,7 @@ -# Makefile.in generated by automake 1.16.1 from Makefile.am. +# Makefile.in generated by automake 1.16.5 from Makefile.am. # @configure_input@ -# Copyright (C) 1994-2018 Free Software Foundation, Inc. +# Copyright (C) 1994-2021 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, @@ -153,7 +153,7 @@ am__can_run_installinfo = \ esac DATA = $(dist_testsuite_DATA) $(dist_testsuite_python_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) -am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/atlocal.in +am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/atlocal.in README.md DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ ALL_LINGUAS = @ALL_LINGUAS@ @@ -164,6 +164,8 @@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ BASHCOMPLETIONDIR = @BASHCOMPLETIONDIR@ +CSCOPE = @CSCOPE@ +CTAGS = @CTAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_LOG_TARGET = @DEFAULT_LOG_TARGET@ DEFS = @DEFS@ @@ -172,6 +174,7 @@ EBTABLES_RESTORE = @EBTABLES_RESTORE@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ +ETAGS = @ETAGS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GETTEXT_PACKAGE = @GETTEXT_PACKAGE@ GLIB_COMPILE_SCHEMAS = @GLIB_COMPILE_SCHEMAS@ @@ -209,8 +212,8 @@ MAKEINFO = @MAKEINFO@ MKDIR_P = @MKDIR_P@ MODPROBE = @MODPROBE@ MSGFMT = @MSGFMT@ -MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ +MSGMERGE_FOR_MSGFMT_OPTION = @MSGMERGE_FOR_MSGFMT_OPTION@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ @@ -330,7 +333,6 @@ AUTOM4TE = $(SHELL) $(top_srcdir)/missing --run autom4te AUTOTEST = $(AUTOM4TE) --language=autotest CONTAINER_TARGETS = check-container-debian-sid \ check-container-fedora-rawhide \ - check-container-centos8-stream \ check-container-centos9-stream all: all-am @@ -485,7 +487,6 @@ ctags CTAGS: cscope cscopelist: - distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am @@ -722,28 +723,6 @@ check-container-fedora-rawhide-image: check-container-%-image: echo "RUN make install" ; \ } | $(PODMAN) build -t firewalld-testsuite-$* -f - . ) -check-container-centos8-stream-image: check-container-%-image: - (cd $(abs_top_srcdir) && { \ - echo "FROM centos:stream8" && \ - echo "RUN dnf -y makecache" && \ - echo "RUN dnf -y install autoconf automake conntrack-tools desktop-file-utils \ - docbook-style-xsl file gettext glib2-devel intltool ipset \ - iptables iptables-ebtables nftables libtool libxml2 \ - libxslt make nftables python3-nftables python3-dbus \ - python3-gobject-base diffutils procps-ng iproute which dbus-daemon \ - NetworkManager NetworkManager-ovs time polkit systemd sudo" && \ - echo "ENV container docker" && \ - echo "VOLUME [ \"/sys/fs/cgroup\" ]" && \ - echo "CMD [\"/usr/sbin/init\"]" && \ - echo "RUN mkdir -p /run/dbus" && \ - echo "COPY . /root/firewalld" && \ - echo "WORKDIR /root/firewalld" && \ - echo "RUN ./autogen.sh" && \ - echo "RUN ./configure PYTHON=\"/usr/libexec/platform-python\"" && \ - echo "RUN make" && \ - echo "RUN make install" ; \ - } | $(PODMAN) build -t firewalld-testsuite-$* -f - . ) - check-container-centos9-stream-image: check-container-%-image: (cd $(abs_top_srcdir) && { \ echo "FROM centos:stream9" && \ diff --git a/src/tests/atlocal.in b/src/tests/atlocal.in index 595a96f..f69f974 100644 --- a/src/tests/atlocal.in +++ b/src/tests/atlocal.in @@ -6,5 +6,6 @@ export IPTABLES_RESTORE="@IPTABLES_RESTORE@" export IP6TABLES="@IP6TABLES@" export IP6TABLES_RESTORE="@IP6TABLES_RESTORE@" export IPSET="@IPSET@" +export PODMAN="@PODMAN@" export NFT_NUMERIC_ARGS="$(nft -h |grep numeric-protocol >/dev/null && echo -n '' || { echo -n '-' && echo -n 'nn'; })" diff --git a/src/tests/cli/firewall-cmd.at b/src/tests/cli/firewall-cmd.at index 539d2df..bc8a946 100644 --- a/src/tests/cli/firewall-cmd.at +++ b/src/tests/cli/firewall-cmd.at @@ -1031,9 +1031,9 @@ FWD_START_TEST([ipset]) NFT_LIST_RULES([inet], [filter_INPUT_POLICIES], 0, [dnl table inet firewalld { chain filter_INPUT_POLICIES { - ip saddr . oifname @foobar jump filter_IN_policy_allow-host-ipv6 - ip saddr . oifname @foobar jump filter_IN_internal - ip saddr . oifname @foobar reject with icmpx admin-prohibited + ip saddr . iifname @foobar jump filter_IN_policy_allow-host-ipv6 + ip saddr . iifname @foobar jump filter_IN_internal + ip saddr . iifname @foobar reject with icmpx admin-prohibited jump filter_IN_policy_allow-host-ipv6 jump filter_IN_public reject with icmpx admin-prohibited @@ -1274,58 +1274,86 @@ FWD_END_TEST FWD_START_TEST([lockdown]) AT_KEYWORDS(lockdown) - FWD_CHECK([--add-lockdown-whitelist-command /usr/bin/command], 0, ignore) - FWD_CHECK([--query-lockdown-whitelist-command /usr/bin/command], 0, ignore) - FWD_CHECK([--list-lockdown-whitelist-commands | grep "/usr/bin/command"], 0, ignore) - FWD_CHECK([--remove-lockdown-whitelist-command /usr/bin/command], 0, ignore) - FWD_CHECK([--query-lockdown-whitelist-command /usr/bin/command], 1, ignore) - FWD_CHECK([--permanent --add-lockdown-whitelist-command /usr/bin/command], 0, ignore) - FWD_CHECK([--permanent --query-lockdown-whitelist-command /usr/bin/command], 0, ignore) - FWD_CHECK([--permanent --list-lockdown-whitelist-commands | grep "/usr/bin/command"], 0, ignore) - FWD_CHECK([--permanent --remove-lockdown-whitelist-command /usr/bin/command], 0, ignore) - FWD_CHECK([--permanent --query-lockdown-whitelist-command /usr/bin/command], 1, ignore) - - FWD_CHECK([--add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, ignore) - FWD_CHECK([--query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, ignore) - FWD_CHECK([--list-lockdown-whitelist-contexts | grep "system_u:system_r:MadDaemon_t:s0"], 0, ignore) - FWD_CHECK([--remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, ignore) - FWD_CHECK([--query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 1, ignore) - FWD_CHECK([--permanent --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, ignore) - FWD_CHECK([--permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, ignore) - FWD_CHECK([--permanent --list-lockdown-whitelist-contexts | grep "system_u:system_r:MadDaemon_t:s0"], 0, ignore) - FWD_CHECK([--permanent --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, ignore) - FWD_CHECK([--permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 1, ignore) - - FWD_CHECK([--add-lockdown-whitelist-uid 6666], 0, ignore) - FWD_CHECK([--query-lockdown-whitelist-uid 6666], 0, ignore) - FWD_CHECK([--list-lockdown-whitelist-uids | grep "6666"], 0, ignore) - FWD_CHECK([--remove-lockdown-whitelist-uid 6666], 0, ignore) - FWD_CHECK([--query-lockdown-whitelist-uid 6666], 1, ignore) + FWD_CHECK([--add-lockdown-whitelist-command /usr/bin/command], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--query-lockdown-whitelist-command /usr/bin/command], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--remove-lockdown-whitelist-command /usr/bin/command], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--query-lockdown-whitelist-command /usr/bin/command], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --add-lockdown-whitelist-command /usr/bin/command], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --query-lockdown-whitelist-command /usr/bin/command], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --remove-lockdown-whitelist-command /usr/bin/command], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --query-lockdown-whitelist-command /usr/bin/command], 0, [], [Lockdown feature is deprecated and removed. +]) + + FWD_CHECK([--add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0], 0, [], [Lockdown feature is deprecated and removed. +]) + + FWD_CHECK([--add-lockdown-whitelist-uid 6666], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--query-lockdown-whitelist-uid 6666], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--remove-lockdown-whitelist-uid 6666], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--query-lockdown-whitelist-uid 6666], 0, [], [Lockdown feature is deprecated and removed. +]) FWD_CHECK([--add-lockdown-whitelist-uid 6666x], 2, ignore, ignore) - FWD_CHECK([--permanent --add-lockdown-whitelist-uid 6666], 0, ignore) - FWD_CHECK([--permanent --query-lockdown-whitelist-uid 6666], 0, ignore) - FWD_CHECK([--permanent --list-lockdown-whitelist-uids | grep "6666"], 0, ignore) - FWD_CHECK([--permanent --remove-lockdown-whitelist-uid 6666], 0, ignore) - FWD_CHECK([--permanent --query-lockdown-whitelist-uid 6666], 1, ignore) + FWD_CHECK([--permanent --add-lockdown-whitelist-uid 6666], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --query-lockdown-whitelist-uid 6666], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --remove-lockdown-whitelist-uid 6666], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --query-lockdown-whitelist-uid 6666], 0, [], [Lockdown feature is deprecated and removed. +]) FWD_CHECK([--permanent --add-lockdown-whitelist-uid 6666x], 2, ignore, ignore) - - FWD_CHECK([--add-lockdown-whitelist-user theboss], 0, ignore) - FWD_CHECK([--query-lockdown-whitelist-user theboss], 0, ignore) - FWD_CHECK([--list-lockdown-whitelist-users | grep "theboss"], 0, ignore) - FWD_CHECK([--remove-lockdown-whitelist-user theboss], 0, ignore) - FWD_CHECK([--query-lockdown-whitelist-user theboss], 1, ignore) - FWD_CHECK([--permanent --add-lockdown-whitelist-user theboss], 0, ignore) - FWD_CHECK([--permanent --query-lockdown-whitelist-user theboss], 0, ignore) - FWD_CHECK([--permanent --list-lockdown-whitelist-users | grep "theboss"], 0, ignore) - FWD_CHECK([--permanent --remove-lockdown-whitelist-user theboss], 0, ignore) - FWD_CHECK([--permanent --query-lockdown-whitelist-user theboss], 1, ignore) + FWD_CHECK([--add-lockdown-whitelist-user theboss], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--query-lockdown-whitelist-user theboss], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--remove-lockdown-whitelist-user theboss], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--query-lockdown-whitelist-user theboss], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --add-lockdown-whitelist-user theboss], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --query-lockdown-whitelist-user theboss], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --remove-lockdown-whitelist-user theboss], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--permanent --query-lockdown-whitelist-user theboss], 0, [], [Lockdown feature is deprecated and removed. +]) AT_SKIP_IF([test `whoami` != 'root']) - FWD_CHECK([--add-lockdown-whitelist-user root], 0, ignore) - FWD_CHECK([--lockdown-on], 0, ignore) - FWD_CHECK([--query-lockdown], 0, ignore) - FWD_CHECK([--lockdown-off], 0, ignore) - FWD_CHECK([--query-lockdown], 1, ignore) + FWD_CHECK([--add-lockdown-whitelist-user root], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--lockdown-on], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--query-lockdown], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--lockdown-off], 0, [], [Lockdown feature is deprecated and removed. +]) + FWD_CHECK([--query-lockdown], 0, [], [Lockdown feature is deprecated and removed. +]) FWD_END_TEST m4_define([rich_rule_test], [ @@ -1345,9 +1373,9 @@ FWD_START_TEST([rich rules good]) rich_rule_test([rule protocol value="esp" accept]) rich_rule_test([rule protocol value="sctp" log]) rich_rule_test([rule protocol value="igmp" log]) - rich_rule_test([rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept]) + rich_rule_test([rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept]) rich_rule_test([rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop]) - rich_rule_test([rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept]) + rich_rule_test([rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept]) rich_rule_test([rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop]) rich_rule_test([rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop]) rich_rule_test([rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept]) @@ -1958,7 +1986,7 @@ FWD_START_TEST([rich rules bad]) rich_rule_test([rule protocol value="igmp" log level="eror"], 125) dnl bad log level IF_HOST_SUPPORTS_IPV6_RULES([ rich_rule_test([family="ipv6" accept], 122) dnl no rule - rich_rule_test([rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"], 207) dnl missing family + rich_rule_test([rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/m"], 207) dnl missing family rich_rule_test([rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"], 123) dnl bad limit ]) rich_rule_test([rule protocol value="esp"], 122) dnl no action/log/audit @@ -2040,7 +2068,7 @@ ERROR: Invalid option: 'SomeBogusField=yes' ]) - FWD_CHECK([--check-config], 28, ignore, ignore) + FWD_CHECK([--check-config], 0, ignore, ignore) AT_DATA([./lockdown-whitelist.xml], [dnl @@ -2048,7 +2076,7 @@ ERROR: Invalid option: 'SomeBogusField=yes' ]) - FWD_CHECK([--check-config], 28, ignore, ignore) + FWD_CHECK([--check-config], 0, ignore, ignore) AT_DATA([./lockdown-whitelist.xml], [dnl @@ -2056,7 +2084,7 @@ ERROR: Invalid option: 'SomeBogusField=yes' ]) - FWD_CHECK([--check-config], 28, ignore, ignore) + FWD_CHECK([--check-config], 0, ignore, ignore) AT_CHECK([rm ./lockdown-whitelist.xml]) dnl ipset @@ -2308,11 +2336,7 @@ AT_DATA([./ipsets/foobar.xml], [dnl ]) - FWD_CHECK([--check-config], 0, ignore, [dnl -m4_ifdef([TESTING_FIREWALL_OFFLINE_CMD], [dnl -WARNING: Invalid source: No address no ipset. -WARNING: Invalid source: No address no ipset. -])]) + FWD_CHECK([--check-config], 144, ignore, ignore) AT_DATA([./zones/foobar.xml], [dnl @@ -2336,11 +2360,7 @@ WARNING: Invalid source: No address no ipset. ]) - FWD_CHECK([--check-config], 0, ignore, [dnl -m4_ifdef([TESTING_FIREWALL_OFFLINE_CMD], [dnl -WARNING: INVALID_LIMIT: none: rule family="ipv4" source address="10.0.0.1/24" accept limit value="none" -WARNING: INVALID_LIMIT: none: rule family="ipv4" source address="10.0.0.1/24" accept limit value="none" -])]) + FWD_CHECK([--check-config], 123, [ignore], [ignore]) AT_DATA([./zones/foobar.xml], [dnl @@ -2351,11 +2371,7 @@ WARNING: INVALID_LIMIT: none: rule family="ipv4" source address="10.0.0.1/24" ac ]) - FWD_CHECK([--check-config], 0, ignore, [dnl -m4_ifdef([TESTING_FIREWALL_OFFLINE_CMD], [dnl -WARNING: Invalid rule: Invalid log prefix -WARNING: Invalid rule: Invalid log prefix -])]) + FWD_CHECK([--check-config], 141, ignore, ignore) AT_DATA([./zones/foobar.xml], [dnl @@ -2366,11 +2382,7 @@ WARNING: Invalid rule: Invalid log prefix ]) - FWD_CHECK([--check-config], 0, ignore, [dnl -m4_ifdef([TESTING_FIREWALL_OFFLINE_CMD], [dnl -WARNING: Invalid rule: Invalid log level -WARNING: Invalid rule: Invalid log level -])]) + FWD_CHECK([--check-config], 125, ignore, ignore) AT_DATA([./zones/foobar.xml], [dnl @@ -2381,11 +2393,7 @@ WARNING: Invalid rule: Invalid log level ]) - FWD_CHECK([--check-config], 0, ignore, [dnl -m4_ifdef([TESTING_FIREWALL_OFFLINE_CMD], [dnl -WARNING: Invalid rule: Invalid nflog group value -WARNING: Invalid rule: Invalid nflog group value -])]) + FWD_CHECK([--check-config], 142, ignore, ignore) AT_DATA([./zones/foobar.xml], [dnl @@ -2396,11 +2404,7 @@ WARNING: Invalid rule: Invalid nflog group value ]) - FWD_CHECK([--check-config], 0, ignore, [dnl -m4_ifdef([TESTING_FIREWALL_OFFLINE_CMD], [dnl -WARNING: Invalid rule: Invalid nflog queue-size -WARNING: Invalid rule: Invalid nflog queue-size -])]) + FWD_CHECK([--check-config], 143, ignore, ignore) AT_DATA([./zones/foobar.xml], [dnl @@ -2423,11 +2427,7 @@ WARNING: Invalid rule: Invalid nflog queue-size ]) - FWD_CHECK([--check-config], 0, ignore, [dnl -m4_ifdef([TESTING_FIREWALL_OFFLINE_CMD], [dnl -WARNING: INVALID_ADDR: 10.0.0.1/24: rule family="ipv6" source address="10.0.0.1/24" accept -WARNING: INVALID_ADDR: 10.0.0.1/24: rule family="ipv6" source address="10.0.0.1/24" accept -])]) + FWD_CHECK([--check-config], 105, ignore, ignore) ]) AT_CHECK([rm ./zones/foobar.xml]) diff --git a/src/tests/dbus/dbus.at b/src/tests/dbus/dbus.at index 9de1293..4f52d4e 100644 --- a/src/tests/dbus/dbus.at +++ b/src/tests/dbus/dbus.at @@ -12,3 +12,4 @@ m4_include([dbus/policy_runtime_signatures.at]) m4_include([dbus/policy_permanent_functional.at]) m4_include([dbus/policy_runtime_functional.at]) m4_include([dbus/direct.at]) +m4_include([dbus/lockdown.at]) diff --git a/src/tests/dbus/firewalld.conf.at b/src/tests/dbus/firewalld.conf.at index 9852a5e..d59d57a 100644 --- a/src/tests/dbus/firewalld.conf.at +++ b/src/tests/dbus/firewalld.conf.at @@ -3,8 +3,10 @@ AT_KEYWORDS(dbus) IF_HOST_SUPPORTS_NFT_FIB([ EXPECTED_IPV6_RPFILTER_VALUE=yes + EXPECTED_IPV6_RPFILTER2_VALUE=strict ], [ EXPECTED_IPV6_RPFILTER_VALUE=no + EXPECTED_IPV6_RPFILTER2_VALUE=no ]) IF_HOST_SUPPORTS_NFT_RULE_INDEX([ @@ -23,13 +25,16 @@ string "DefaultZone" : variant string "public" string "FirewallBackend" : variant string "nftables" string "FlushAllOnReload" : variant string "yes" string "IPv6_rpfilter" : variant string m4_escape(["${EXPECTED_IPV6_RPFILTER_VALUE}"]) +string "IPv6_rpfilter2" : variant string m4_escape(["${EXPECTED_IPV6_RPFILTER2_VALUE}"]) string "IndividualCalls" : variant string m4_escape(["${EXPECTED_INDIVIDUAL_CALLS_VALUE}"]) string "Lockdown" : variant string "no" string "LogDenied" : variant string "off" string "MinimalMark" : variant int32 100 string "NftablesCounters" : variant string "no" string "NftablesFlowtable" : variant string "off" +string "NftablesTableOwner" : variant string "yes" string "RFC3964_IPv4" : variant string "yes" +string "StrictForwardPorts" : variant string "no" ]) m4_define([_helper], [ @@ -42,9 +47,11 @@ $3 dnl Test individual Set/Get _helper([MinimalMark], [int32:1234], [variant int32 100]) _helper([AutomaticHelpers], [string:"yes"], [variant string "no"]) -_helper([Lockdown], [string:"yes"], [variant string "yes"]) +_helper([Lockdown], [string:"no"], [variant string "no"]) +_helper([Lockdown], [string:"yes"], [variant string "no"]) _helper([LogDenied], [string:"all"], [variant string "all"]) _helper([IPv6_rpfilter], [string:"yes"], [variant string "yes"]) +_helper([IPv6_rpfilter2], [string:"no"], [variant string "no"]) _helper([IndividualCalls], [string:"yes"], [variant string "yes"]) _helper([FirewallBackend], [string:"iptables"], [variant string "iptables"]) _helper([FlushAllOnReload], [string:"no"], [variant string "no"]) @@ -53,6 +60,8 @@ _helper([CleanupOnExit], [string:"no"], [variant string "no"]) _helper([RFC3964_IPv4], [string:"no"], [variant string "no"]) _helper([AllowZoneDrifting], [string:"yes"], [variant string "no"]) _helper([NftablesCounters], [string:"yes"], [variant string "yes"]) +_helper([NftablesTableOwner], [string:"no"], [variant string "no"]) +_helper([StrictForwardPorts], [string:"yes"], [variant string "yes"]) dnl Note: DefaultZone is RO m4_undefine([_helper]) diff --git a/src/tests/dbus/lockdown.at b/src/tests/dbus/lockdown.at new file mode 100644 index 0000000..a59686b --- /dev/null +++ b/src/tests/dbus/lockdown.at @@ -0,0 +1,37 @@ +FWD_START_TEST([dbus api - lockdown signatures]) +AT_KEYWORDS(dbus lockdown) + +dnl ############################### +dnl ########## runtime ############ +dnl ############################### + +DBUS_INTROSPECT([], [[//method[@name="enableLockdown"]]], 0, [dnl + + + +]) + +DBUS_INTROSPECT([], [[//signal[@name="LockdownEnabled"]]], 0, [dnl + + + +]) + +dnl ############################### +dnl ######### permanent ########### +dnl ############################### + +DBUS_INTROSPECT([config], [[//interface[@name="org.fedoraproject.FirewallD1.config.policies"]//method[@name="setLockdownWhitelist"]]], 0, [dnl + + + + +]) + +DBUS_INTROSPECT([config], [[//interface[@name="org.fedoraproject.FirewallD1.config.policies"]//signal[@name="LockdownWhitelistUpdated"]]], 0, [dnl + + + +]) + +FWD_END_TEST diff --git a/src/tests/dbus/policy_permanent_functional.at b/src/tests/dbus/policy_permanent_functional.at index a5e1af9..db391da 100644 --- a/src/tests/dbus/policy_permanent_functional.at +++ b/src/tests/dbus/policy_permanent_functional.at @@ -155,7 +155,7 @@ DBUS_CHECK([config/policy/${DBUS_BUILTIN_POLICY_OBJ}], [config.policy.getSetting 'ingress_zones': m4_escape([<['ANY']>]) 'masquerade': 'priority': <-15000> - 'rich_rules': m4_escape([<['rule family="ipv6" icmp-type name="neighbour-advertisement" accept', 'rule family="ipv6" icmp-type name="neighbour-solicitation" accept', 'rule family="ipv6" icmp-type name="router-advertisement" accept', 'rule family="ipv6" icmp-type name="redirect" accept']>]) + 'rich_rules': m4_escape([<['rule family="ipv6" icmp-type name="neighbour-advertisement" accept', 'rule family="ipv6" icmp-type name="neighbour-solicitation" accept', 'rule family="ipv6" icmp-type name="redirect" accept', 'rule family="ipv6" icmp-type name="router-advertisement" accept']>]) 'short': <'Allow host IPv6'> 'target': <'DROP'> 'version': <'1.2'> @@ -168,7 +168,7 @@ DBUS_CHECK([config/policy/${DBUS_BUILTIN_POLICY_OBJ}], [config.policy.getSetting 'ingress_zones': m4_escape([<['ANY']>]) 'masquerade': 'priority': <-15000> - 'rich_rules': m4_escape([<['rule family="ipv6" icmp-type name="neighbour-advertisement" accept', 'rule family="ipv6" icmp-type name="neighbour-solicitation" accept', 'rule family="ipv6" icmp-type name="router-advertisement" accept', 'rule family="ipv6" icmp-type name="redirect" accept']>]) + 'rich_rules': m4_escape([<['rule family="ipv6" icmp-type name="neighbour-advertisement" accept', 'rule family="ipv6" icmp-type name="neighbour-solicitation" accept', 'rule family="ipv6" icmp-type name="redirect" accept', 'rule family="ipv6" icmp-type name="router-advertisement" accept']>]) 'short': <'Allow host IPv6'> 'target': <'CONTINUE'> ]) diff --git a/src/tests/dbus/policy_runtime_functional.at b/src/tests/dbus/policy_runtime_functional.at index ab9a43d..e50529f 100644 --- a/src/tests/dbus/policy_runtime_functional.at +++ b/src/tests/dbus/policy_runtime_functional.at @@ -11,7 +11,7 @@ DBUS_CHECK([], [policy.getPolicySettings], ["allow-host-ipv6"], 0, [dnl 'ingress_zones': m4_escape([<['ANY']>]) 'masquerade': 'priority': <-15000> - 'rich_rules': m4_escape([<['rule family="ipv6" icmp-type name="neighbour-advertisement" accept', 'rule family="ipv6" icmp-type name="neighbour-solicitation" accept', 'rule family="ipv6" icmp-type name="router-advertisement" accept', 'rule family="ipv6" icmp-type name="redirect" accept']>]) + 'rich_rules': m4_escape([<['rule family="ipv6" icmp-type name="neighbour-advertisement" accept', 'rule family="ipv6" icmp-type name="neighbour-solicitation" accept', 'rule family="ipv6" icmp-type name="redirect" accept', 'rule family="ipv6" icmp-type name="router-advertisement" accept']>]) 'short': <'Allow host IPv6'> 'target': <'CONTINUE'> ]) diff --git a/src/tests/features/features.at b/src/tests/features/features.at index fcfb6a2..cd75453 100644 --- a/src/tests/features/features.at +++ b/src/tests/features/features.at @@ -24,3 +24,5 @@ m4_include([features/zone_priority.at]) m4_include([features/nftables_flowtable.at]) m4_include([features/nftables_counters.at]) m4_include([features/reloadpolicy.at]) +m4_include([features/nftables_table_owner.at]) +m4_include([features/strict_forward_ports.at]) diff --git a/src/tests/features/nftables_table_owner.at b/src/tests/features/nftables_table_owner.at new file mode 100644 index 0000000..dd9c3de --- /dev/null +++ b/src/tests/features/nftables_table_owner.at @@ -0,0 +1,27 @@ +m4_if(nftables, FIREWALL_BACKEND, [ +FWD_START_TEST([nftables table owner]) +AT_KEYWORDS(RHEL-17002) + +AT_CHECK([sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=yes/' ./firewalld.conf]) +FWD_RELOAD() + +AT_SKIP_IF([grep "Configuration has NftablesTableOwner=True, but it's not supported by nftables." ./firewalld.log]) + +dnl Make sure it's initially working +dnl +NS_CHECK([nft list table inet firewalld | TRIM_WHITESPACE | grep "flags owner,persist"], 0, [ignore]) + +dnl Test the transitions from On to Off +dnl +AT_CHECK([sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=no/' ./firewalld.conf]) +FWD_RELOAD() +NS_CHECK([nft list table inet firewalld | TRIM_WHITESPACE | grep "flags owner,persist"], 1) + +dnl Test the transitions from Off to On +dnl +AT_CHECK([sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=yes/' ./firewalld.conf]) +FWD_RELOAD() +NS_CHECK([nft list table inet firewalld | TRIM_WHITESPACE | grep "flags owner,persist"], 0, [ignore]) + +FWD_END_TEST() +]) diff --git a/src/tests/features/policy.at b/src/tests/features/policy.at index 630bd83..758d2f7 100644 --- a/src/tests/features/policy.at +++ b/src/tests/features/policy.at @@ -125,8 +125,8 @@ allow-host-ipv6 (active) rich rules: rule family="ipv6" icmp-type name="neighbour-advertisement" accept rule family="ipv6" icmp-type name="neighbour-solicitation" accept - rule family="ipv6" icmp-type name="router-advertisement" accept rule family="ipv6" icmp-type name="redirect" accept + rule family="ipv6" icmp-type name="router-advertisement" accept ])]) FWD_CHECK([--permanent --info-policy allow-host-ipv6 | TRIM_WHITESPACE], 0, [m4_strip([dnl allow-host-ipv6 @@ -144,8 +144,8 @@ allow-host-ipv6 rich rules: rule family="ipv6" icmp-type name="neighbour-advertisement" accept rule family="ipv6" icmp-type name="neighbour-solicitation" accept - rule family="ipv6" icmp-type name="router-advertisement" accept rule family="ipv6" icmp-type name="redirect" accept + rule family="ipv6" icmp-type name="router-advertisement" accept ])]) FWD_CHECK([--list-all-policies | TRIM_WHITESPACE], 0, [m4_strip([dnl @@ -164,8 +164,8 @@ allow-host-ipv6 (active) rich rules: rule family="ipv6" icmp-type name="neighbour-advertisement" accept rule family="ipv6" icmp-type name="neighbour-solicitation" accept - rule family="ipv6" icmp-type name="router-advertisement" accept rule family="ipv6" icmp-type name="redirect" accept + rule family="ipv6" icmp-type name="router-advertisement" accept ])]) FWD_CHECK([--permanent --list-all-policies | TRIM_WHITESPACE], 0, [m4_strip([dnl allow-host-ipv6 @@ -183,8 +183,8 @@ allow-host-ipv6 rich rules: rule family="ipv6" icmp-type name="neighbour-advertisement" accept rule family="ipv6" icmp-type name="neighbour-solicitation" accept - rule family="ipv6" icmp-type name="router-advertisement" accept rule family="ipv6" icmp-type name="redirect" accept + rule family="ipv6" icmp-type name="router-advertisement" accept ])]) FWD_CHECK([--policy allow-host-ipv6 --list-all | TRIM_WHITESPACE], 0, [m4_strip([dnl @@ -203,8 +203,8 @@ allow-host-ipv6 (active) rich rules: rule family="ipv6" icmp-type name="neighbour-advertisement" accept rule family="ipv6" icmp-type name="neighbour-solicitation" accept - rule family="ipv6" icmp-type name="router-advertisement" accept rule family="ipv6" icmp-type name="redirect" accept + rule family="ipv6" icmp-type name="router-advertisement" accept ])]) FWD_CHECK([--permanent --policy allow-host-ipv6 --list-all | TRIM_WHITESPACE], 0, [m4_strip([dnl allow-host-ipv6 @@ -222,8 +222,8 @@ allow-host-ipv6 rich rules: rule family="ipv6" icmp-type name="neighbour-advertisement" accept rule family="ipv6" icmp-type name="neighbour-solicitation" accept - rule family="ipv6" icmp-type name="router-advertisement" accept rule family="ipv6" icmp-type name="redirect" accept + rule family="ipv6" icmp-type name="router-advertisement" accept ])]) FWD_END_TEST @@ -982,6 +982,7 @@ NFT_LIST_RULES([inet], [filter_OUTPUT], 0, [dnl table inet firewalld { chain filter_OUTPUT { ct state established,related accept + ct status dnat accept oifname "lo" accept ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable jump filter_OUTPUT_POLICIES @@ -989,13 +990,13 @@ NFT_LIST_RULES([inet], [filter_OUTPUT], 0, [dnl } ]) IPTABLES_LIST_RULES([filter], [OUTPUT], 0, [dnl -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 OUTPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 OUTPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 ]) IP6TABLES_LIST_RULES([filter], [OUTPUT], 0, [dnl -ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED +ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT ACCEPT 0 -- ::/0 ::/0 OUTPUT_direct 0 -- ::/0 ::/0 RFC3964_IPv4 0 -- ::/0 ::/0 diff --git a/src/tests/features/rfc3964_ipv4.at b/src/tests/features/rfc3964_ipv4.at index 9f1200d..53f14c9 100644 --- a/src/tests/features/rfc3964_ipv4.at +++ b/src/tests/features/rfc3964_ipv4.at @@ -24,6 +24,7 @@ NFT_LIST_RULES([inet], [filter_OUTPUT], 0, [dnl table inet firewalld { chain filter_OUTPUT { ct state established,related accept + ct status dnat accept oifname "lo" accept ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } log prefix "RFC3964_IPv4_REJECT: " reject with icmpv6 addr-unreachable jump filter_OUTPUT_POLICIES @@ -62,7 +63,7 @@ IP6TABLES_LIST_RULES([filter], [FORWARD], 0, [dnl REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited ]) IP6TABLES_LIST_RULES([filter], [OUTPUT], 0, [dnl - ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED + ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT ACCEPT 0 -- ::/0 ::/0 OUTPUT_direct 0 -- ::/0 ::/0 RFC3964_IPv4 0 -- ::/0 ::/0 @@ -90,6 +91,7 @@ NFT_LIST_RULES([inet], [filter_OUTPUT], 0, [dnl table inet firewalld { chain filter_OUTPUT { ct state established,related accept + ct status dnat accept oifname "lo" accept jump filter_OUTPUT_POLICIES } @@ -108,7 +110,7 @@ IP6TABLES_LIST_RULES([filter], [FORWARD], 0, [dnl REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited ]) IP6TABLES_LIST_RULES([filter], [OUTPUT], 0, [dnl - ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED + ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT ACCEPT 0 -- ::/0 ::/0 OUTPUT_direct 0 -- ::/0 ::/0 OUTPUT_POLICIES 0 -- ::/0 ::/0 diff --git a/src/tests/features/rich_rules.at b/src/tests/features/rich_rules.at index f7d1a1d..408265b 100644 --- a/src/tests/features/rich_rules.at +++ b/src/tests/features/rich_rules.at @@ -64,14 +64,14 @@ IPTABLES_LIST_RULES([filter], [IN_foobar_pre], 0, [dnl NFT_LIST_RULES([inet], [filter_IN_policy_foobar_log], 0, [dnl table inet firewalld { chain filter_IN_policy_foobar_log { - ip saddr 10.10.10.11 log ip saddr 10.10.10.11 log level audit + ip saddr 10.10.10.11 log } } ]) IPTABLES_LIST_RULES([filter], [IN_foobar_log], 0, [dnl - LOG 0 -- 10.10.10.11 0.0.0.0/0 LOG flags 0 level 4 AUDIT 0 -- 10.10.10.11 0.0.0.0/0 AUDIT accept + LOG 0 -- 10.10.10.11 0.0.0.0/0 LOG flags 0 level 4 ]) NFT_LIST_RULES([inet], [filter_IN_policy_foobar_deny], 0, [dnl table inet firewalld { @@ -147,19 +147,19 @@ NFT_LIST_RULES([inet], [filter_IN_policy_foobar_pre], 0, [dnl chain filter_IN_policy_foobar_pre { ip6 daddr 1234::4444 ip6 saddr 1234::4321 drop ip daddr 10.20.20.23 ip saddr 10.20.20.22 drop - ip daddr 10.20.20.21 accept icmp echo-request accept icmpv6 echo-request accept + ip daddr 10.20.20.21 accept + icmpv6 nd-neighbor-advert accept ip saddr 10.10.10.14 accept ip saddr 10.20.20.20 accept - icmpv6 nd-neighbor-advert accept } } ]) IPTABLES_LIST_RULES([filter], [IN_foobar_pre], 0, [dnl DROP 0 -- 10.20.20.22 10.20.20.23 - ACCEPT 0 -- 0.0.0.0/0 10.20.20.21 ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 + ACCEPT 0 -- 0.0.0.0/0 10.20.20.21 ACCEPT 0 -- 10.10.10.14 0.0.0.0/0 ACCEPT 0 -- 10.20.20.20 0.0.0.0/0 ]) diff --git a/src/tests/features/rich_tcp_mss_clamp.at b/src/tests/features/rich_tcp_mss_clamp.at index e3afb75..97c5554 100644 --- a/src/tests/features/rich_tcp_mss_clamp.at +++ b/src/tests/features/rich_tcp_mss_clamp.at @@ -41,13 +41,7 @@ AT_DATA([./zones/tcp.xml], [dnl ]) -m4_ifdef([TESTING_FIREWALL_OFFLINE_CMD], [FWD_CHECK([--check-config], 0, ignore, [dnl -WARNING: INVALID_RULE: thisdoesnotexist: rule tcp-mss-clamp value="thisdoesnotexist" -WARNING: INVALID_RULE: thisdoesnotexist: rule tcp-mss-clamp value="thisdoesnotexist" -])], [FWD_CHECK([--check-config], 0, ignore, ignore) -FWD_GREP_LOG([dnl -WARNING: INVALID_RULE: thisdoesnotexist: rule tcp-mss-clamp value="thisdoesnotexist" -])]) +FWD_CHECK([--check-config], 122, ignore, ignore) AT_DATA([./zones/tcp.xml], [dnl diff --git a/src/tests/features/rpfilter.at b/src/tests/features/rpfilter.at index e33b8b1..a0771ff 100644 --- a/src/tests/features/rpfilter.at +++ b/src/tests/features/rpfilter.at @@ -1,22 +1,17 @@ -FWD_START_TEST([rpfilter]) +FWD_START_TEST([rpfilter - strict]) AT_KEYWORDS(rpfilter) +CHECK_NFTABLES_FIB() -IF_HOST_SUPPORTS_NFT_FIB([ - NFT_LIST_RULES([inet], [filter_PREROUTING], 0, [dnl - table inet firewalld { - chain filter_PREROUTING { - icmpv6 type { nd-router-advert, nd-neighbor-solicit } accept - meta nfproto ipv6 fib saddr . mark . iif oif missing drop - } - } - ]) -], [ - NFT_LIST_RULES([inet], [filter_PREROUTING], 0, [dnl - table inet firewalld { - chain filter_PREROUTING { - } +AT_CHECK([sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf]) +FWD_RELOAD() + +NFT_LIST_RULES([inet], [filter_PREROUTING], 0, [dnl + table inet firewalld { + chain filter_PREROUTING { + icmpv6 type { nd-router-advert, nd-neighbor-solicit } accept + meta nfproto ipv6 fib saddr . mark . iif oif missing drop } - ]) + } ]) IP6TABLES_LIST_RULES([mangle], [PREROUTING], 0, [dnl @@ -27,4 +22,147 @@ IP6TABLES_LIST_RULES([mangle], [PREROUTING], 0, [dnl PREROUTING_POLICIES 0 -- ::/0 ::/0 ]) -FWD_END_TEST +FWD_END_TEST() + +FWD_START_TEST([rpfilter - loose]) +AT_KEYWORDS(rpfilter) +CHECK_NFTABLES_FIB() + +AT_CHECK([sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf]) +FWD_RELOAD() + +NFT_LIST_RULES([inet], [filter_PREROUTING], 0, [dnl + table inet firewalld { + chain filter_PREROUTING { + icmpv6 type { nd-router-advert, nd-neighbor-solicit } accept + meta nfproto ipv6 fib saddr . mark oif missing drop + } + } +]) + +IP6TABLES_LIST_RULES([mangle], [PREROUTING], 0, [dnl + ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 134 + ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 135 + DROP 0 -- ::/0 ::/0 rpfilter loose validmark invert + PREROUTING_direct 0 -- ::/0 ::/0 + PREROUTING_POLICIES 0 -- ::/0 ::/0 +]) + +FWD_END_TEST() + +FWD_START_TEST([rpfilter - strict-forward]) +AT_KEYWORDS(rpfilter) +CHECK_NFTABLES_FIB() +CHECK_NFTABLES_FIB_IN_FORWARD() + +AT_CHECK([sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf]) +m4_if(iptables, FIREWALL_BACKEND, [ +FWD_RELOAD(114, [ignore], [ignore]) +], [ +FWD_RELOAD() +]) + +NFT_LIST_RULES([inet], [filter_FORWARD], 0, [dnl + table inet firewalld { + chain filter_FORWARD { + meta nfproto ipv6 fib saddr . mark . iif oif missing drop + ct state established,related accept + ct status dnat accept + iifname "lo" accept + ct state invalid drop + ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable + jump filter_FORWARD_POLICIES + reject with icmpx admin-prohibited + } + } +]) + +NFT_LIST_RULES([inet], [filter_PREROUTING], 0, [dnl + table inet firewalld { + chain filter_PREROUTING { + } + } +]) + +FWD_END_TEST([-e "/^ERROR: INVALID_VALUE:/d"]) + +FWD_START_TEST([rpfilter - loose-forward]) +AT_KEYWORDS(rpfilter) +CHECK_NFTABLES_FIB() +CHECK_NFTABLES_FIB_IN_FORWARD() + +AT_CHECK([sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf]) +m4_if(iptables, FIREWALL_BACKEND, [ +FWD_RELOAD(114, [ignore], [ignore]) +], [ +FWD_RELOAD() +]) + +NFT_LIST_RULES([inet], [filter_FORWARD], 0, [dnl + table inet firewalld { + chain filter_FORWARD { + meta nfproto ipv6 fib saddr . mark oif missing drop + ct state established,related accept + ct status dnat accept + iifname "lo" accept + ct state invalid drop + ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable + jump filter_FORWARD_POLICIES + reject with icmpx admin-prohibited + } + } +]) + +NFT_LIST_RULES([inet], [filter_PREROUTING], 0, [dnl + table inet firewalld { + chain filter_PREROUTING { + } + } +]) + +FWD_END_TEST([-e "/^ERROR: INVALID_VALUE:/d"]) + +FWD_START_TEST([rpfilter - config values]) +AT_KEYWORDS(rpfilter RHEL-72937) +CHECK_NFTABLES_FIB() + +dnl Verify all configuration values are accepted. +dnl +m4_foreach([VALUE], [[no], [yes], [false], [true], [strict], [loose]], [ + AT_CHECK([sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=VALUE/' ./firewalld.conf]) + FWD_RELOAD() + m4_ifdef([TESTING_FIREWALL_OFFLINE_CMD], [], [ + DBUS_GET([config], [config], [string:"IPv6_rpfilter2"], 0, [dnl + variant string "VALUE" + ]) + ]) +]) + +dnl And a bogus one. +AT_CHECK([sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=bogus/' ./firewalld.conf]) +FWD_RELOAD() + +FWD_END_TEST([-e "/^WARNING: IPv6_rpfilter 'bogus' is not valid/d"]) + +FWD_START_TEST([rpfilter - config values, -forward]) +AT_KEYWORDS(rpfilter RHEL-72937) +CHECK_NFTABLES_FIB() +CHECK_NFTABLES_FIB_IN_FORWARD() + +dnl These are not valid for iptables. +dnl +m4_foreach([VALUE], [[strict-forward], [loose-forward]], [ + AT_CHECK([sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=VALUE/' ./firewalld.conf]) + m4_if(iptables, FIREWALL_BACKEND, [ + FWD_RELOAD(114, [ignore], [ignore]) + ], [ + FWD_RELOAD() + m4_ifdef([TESTING_FIREWALL_OFFLINE_CMD], [], [ + DBUS_GET([config], [config], [string:"IPv6_rpfilter2"], 0, [dnl + variant string "VALUE" + ]) + ]) + ]) +]) + +FWD_END_TEST([-e "/^ERROR: INVALID_VALUE:.*is incompatible with FirewallBackend=iptables."]) diff --git a/src/tests/features/strict_forward_ports.at b/src/tests/features/strict_forward_ports.at new file mode 100644 index 0000000..a7b798b --- /dev/null +++ b/src/tests/features/strict_forward_ports.at @@ -0,0 +1,246 @@ +FWD_START_TEST([strict forward ports]) +AT_KEYWORDS(forward_port gh869 gh1380) + +FWD_CHECK([--permanent --new-policy inputPolicy], 0, [ignore]) +FWD_CHECK([--permanent --policy inputPolicy --add-ingress-zone ANY], 0, [ignore]) +FWD_CHECK([--permanent --policy inputPolicy --add-egress-zone HOST], 0, [ignore]) +FWD_CHECK([--permanent --policy inputPolicy --add-forward-port=port=12345:proto=tcp:toport=54321], 0, [ignore]) + +FWD_CHECK([--permanent --new-policy forwardPolicy], 0, [ignore]) +FWD_CHECK([--permanent --policy forwardPolicy --add-ingress-zone ANY], 0, [ignore]) +FWD_CHECK([--permanent --policy forwardPolicy --add-egress-zone ANY], 0, [ignore]) +FWD_CHECK([--permanent --policy forwardPolicy --add-rich-rule='rule family=ipv4 priority=-1 source address=10.0.0.0/8 forward-port port=3333 protocol=tcp to-port=4444 to-addr=10.222.222.222'], 0, [ignore]) + +FWD_CHECK([--permanent --new-policy outputPolicy], 0, [ignore]) +FWD_CHECK([--permanent --policy outputPolicy --add-ingress-zone HOST], 0, [ignore]) +FWD_CHECK([--permanent --policy outputPolicy --add-egress-zone ANY], 0, [ignore]) +FWD_CHECK([--permanent --policy outputPolicy --add-forward-port=port=11111:proto=tcp:toport=22222:toaddr=10.20.20.1], 0, [ignore]) + +AT_CHECK([sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=no/' ./firewalld.conf]) +FWD_RELOAD() + +NFT_LIST_RULES([inet], [filter_INPUT], 0, [dnl + table inet firewalld { + chain filter_INPUT { + ct state established,related accept + ct status dnat accept + iifname "lo" accept + ct state invalid drop + jump filter_INPUT_POLICIES + reject with icmpx admin-prohibited + } + } +]) +NFT_LIST_RULES([inet], [filter_FORWARD], 0, [dnl + table inet firewalld { + chain filter_FORWARD { + ct state established,related accept + ct status dnat accept + iifname "lo" accept + ct state invalid drop + ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable + jump filter_FORWARD_POLICIES + reject with icmpx admin-prohibited + } + } +]) +NFT_LIST_RULES([inet], [filter_OUTPUT], 0, [dnl + table inet firewalld { + chain filter_OUTPUT { + ct state established,related accept + ct status dnat accept + oifname "lo" accept + ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable + jump filter_OUTPUT_POLICIES + } + } +]) + +IPTABLES_LIST_RULES([filter], [INPUT], 0, [dnl + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 + DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID + INPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 + INPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 + REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +]) +IPTABLES_LIST_RULES([filter], [FORWARD], 0, [dnl + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 + DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID + FORWARD_direct 0 -- 0.0.0.0/0 0.0.0.0/0 + FORWARD_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 + REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +]) +IPTABLES_LIST_RULES([filter], [OUTPUT], 0, [dnl + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 + OUTPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 + OUTPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +]) + +IP6TABLES_LIST_RULES([filter], [INPUT], 0, [dnl + ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT + ACCEPT 0 -- ::/0 ::/0 + DROP 0 -- ::/0 ::/0 ctstate INVALID + INPUT_direct 0 -- ::/0 ::/0 + INPUT_POLICIES 0 -- ::/0 ::/0 + REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +]) +IP6TABLES_LIST_RULES([filter], [FORWARD], 0, [dnl + ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT + ACCEPT 0 -- ::/0 ::/0 + DROP 0 -- ::/0 ::/0 ctstate INVALID + FORWARD_direct 0 -- ::/0 ::/0 + RFC3964_IPv4 0 -- ::/0 ::/0 + FORWARD_POLICIES 0 -- ::/0 ::/0 + REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +]) +IP6TABLES_LIST_RULES([filter], [OUTPUT], 0, [dnl + ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT + ACCEPT 0 -- ::/0 ::/0 + OUTPUT_direct 0 -- ::/0 ::/0 + RFC3964_IPv4 0 -- ::/0 ::/0 + OUTPUT_POLICIES 0 -- ::/0 ::/0 +]) + +AT_CHECK([sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=yes/' ./firewalld.conf]) +FWD_RELOAD() + +NFT_LIST_RULES([inet], [filter_INPUT], 0, [dnl + table inet firewalld { + chain filter_INPUT { + ct state established,related accept + ct status dnat jump filter_INPUT_dnat + iifname "lo" accept + ct state invalid drop + jump filter_INPUT_POLICIES + reject with icmpx admin-prohibited + } + } +]) +NFT_LIST_RULES([inet], [filter_INPUT_dnat], 0, [dnl + table inet firewalld { + chain filter_INPUT_dnat { + ct original proto-dst 12345 accept + reject with icmpx admin-prohibited + } + } +]) +NFT_LIST_RULES([inet], [filter_FORWARD], 0, [dnl + table inet firewalld { + chain filter_FORWARD { + ct state established,related accept + ct status dnat jump filter_FORWARD_dnat + iifname "lo" accept + ct state invalid drop + ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable + jump filter_FORWARD_POLICIES + reject with icmpx admin-prohibited + } + } +]) +NFT_LIST_RULES([inet], [filter_FORWARD_dnat], 0, [dnl + table inet firewalld { + chain filter_FORWARD_dnat { + ct original proto-dst 3333 accept + reject with icmpx admin-prohibited + } + } +]) +NFT_LIST_RULES([inet], [filter_OUTPUT], 0, [dnl + table inet firewalld { + chain filter_OUTPUT { + ct state established,related accept + ct status dnat jump filter_OUTPUT_dnat + oifname "lo" accept + ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable + jump filter_OUTPUT_POLICIES + } + } +]) +NFT_LIST_RULES([inet], [filter_OUTPUT_dnat], 0, [dnl + table inet firewalld { + chain filter_OUTPUT_dnat { + ct original proto-dst 11111 accept + reject with icmpx admin-prohibited + } + } +]) + +IPTABLES_LIST_RULES([filter], [INPUT], 0, [dnl + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED + INPUT_dnat 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 + DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID + INPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 + INPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 + REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +]) +IPTABLES_LIST_RULES([filter], [INPUT_dnat], 0, [dnl + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT ctorigdstport 12345 ctdir ORIGINAL + REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +]) +IPTABLES_LIST_RULES([filter], [FORWARD], 0, [dnl + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED + FORWARD_dnat 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 + DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID + FORWARD_direct 0 -- 0.0.0.0/0 0.0.0.0/0 + FORWARD_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 + REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +]) +IPTABLES_LIST_RULES([filter], [FORWARD_dnat], 0, [dnl + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT ctorigdstport 3333 ctdir ORIGINAL + REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +]) +IPTABLES_LIST_RULES([filter], [OUTPUT], 0, [dnl + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED + OUTPUT_dnat 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 + OUTPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 + OUTPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +]) +IPTABLES_LIST_RULES([filter], [OUTPUT_dnat], 0, [dnl + ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT ctorigdstport 11111 ctdir ORIGINAL + REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +]) + +IP6TABLES_LIST_RULES([filter], [INPUT], 0, [dnl + ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED + INPUT_dnat 0 -- ::/0 ::/0 ctstate DNAT + ACCEPT 0 -- ::/0 ::/0 + DROP 0 -- ::/0 ::/0 ctstate INVALID + INPUT_direct 0 -- ::/0 ::/0 + INPUT_POLICIES 0 -- ::/0 ::/0 + REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +]) +IP6TABLES_LIST_RULES([filter], [INPUT_dnat], 0, [dnl + REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +]) +IP6TABLES_LIST_RULES([filter], [FORWARD], 0, [dnl + ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED + FORWARD_dnat 0 -- ::/0 ::/0 ctstate DNAT + ACCEPT 0 -- ::/0 ::/0 + DROP 0 -- ::/0 ::/0 ctstate INVALID + FORWARD_direct 0 -- ::/0 ::/0 + RFC3964_IPv4 0 -- ::/0 ::/0 + FORWARD_POLICIES 0 -- ::/0 ::/0 + REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +]) +IP6TABLES_LIST_RULES([filter], [FORWARD_dnat], 0, [dnl + REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +]) +IP6TABLES_LIST_RULES([filter], [OUTPUT], 0, [dnl + ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED + OUTPUT_dnat 0 -- ::/0 ::/0 ctstate DNAT + ACCEPT 0 -- ::/0 ::/0 + OUTPUT_direct 0 -- ::/0 ::/0 + RFC3964_IPv4 0 -- ::/0 ::/0 + OUTPUT_POLICIES 0 -- ::/0 ::/0 +]) +IP6TABLES_LIST_RULES([filter], [OUTPUT_dnat], 0, [dnl + REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +]) + +FWD_END_TEST() diff --git a/src/tests/functions.at b/src/tests/functions.at index 1f6a5cb..3f487f5 100644 --- a/src/tests/functions.at +++ b/src/tests/functions.at @@ -9,7 +9,7 @@ m4_define([FWD_STOP_FIREWALLD], [ ]) m4_define([FWD_START_FIREWALLD], [ - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" dnl if testsuite ran with debug flag, add debug output ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then @@ -116,6 +116,7 @@ m4_define([FWD_START_TEST], [ test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" dnl We test some unicode strings and autotest overrides LC_ALL=C, so set it dnl again for every test. @@ -414,10 +415,11 @@ m4_define([IPXTABLES_LIST_RULES_NORMALIZE], [dnl -e ['s/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g'] dnl -e ['s/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g'] dnl -e ['s/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g'] dnl + -e ['s/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g'] dnl dnl commit 6e41c2d8747b ("iptables: xshared: Output '--' in the opt field dnl in ipv6's fake mode") added "--" to the output of ip6tables. This regex dnl adds the "--" for older ip6tables versions. - -e ['s/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g'] dnl + -e ['s/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g'] dnl ]) m4_define([IPTABLES_LIST_RULES_NORMALIZE], [dnl @@ -787,3 +789,18 @@ m4_define([SKIP_IF_FW_IN_CONTAINER_WITH_NFTABLES], [ SKIP_IF_FW_IN_CONTAINER ]) ]) + +m4_define([CHECK_NFTABLES_FIB], [ + m4_if(nftables, FIREWALL_BACKEND, [ + IF_HOST_SUPPORTS_NFT_FIB([], [AT_SKIP_IF([:])]) + ]) +]) + +m4_define([CHECK_NFTABLES_FIB_IN_FORWARD], [ + m4_if(nftables, FIREWALL_BACKEND, [ + NS_CHECK([nft add table inet firewalld_check]) + NS_CHECK([nft add chain inet firewalld_check foobar { type filter hook forward priority 0 \; }]) + AT_SKIP_IF([! NS_CMD([nft add rule inet firewalld_check foobar meta nfproto ipv6 fib saddr . mark . iif oif missing drop >/dev/null 2>&1])]) + NS_CHECK([nft delete table inet firewalld_check]) + ]) +]) diff --git a/src/tests/integration/networkmanager.at b/src/tests/integration/networkmanager.at index b94ff5e..0c6acfd 100644 --- a/src/tests/integration/networkmanager.at +++ b/src/tests/integration/networkmanager.at @@ -1,4 +1,4 @@ -AT_BANNER([NetworkManager (FIREWALL_BACKEND)]) +AT_BANNER([NetworkManager]) m4_include([integration/rhbz1773809.at]) m4_include([integration/rhbz1928860.at]) m4_include([integration/gh976.at]) diff --git a/src/tests/integration/podman-strict-forward-ports.at b/src/tests/integration/podman-strict-forward-ports.at new file mode 100644 index 0000000..fa87a9b --- /dev/null +++ b/src/tests/integration/podman-strict-forward-ports.at @@ -0,0 +1,124 @@ +m4_define([common_init], [dnl +AT_SKIP_IF([! NS_CMD([command -v $PODMAN >/dev/null 2>&1])]) +AT_SKIP_IF([! NS_CMD([command -v curl >/dev/null 2>&1])]) +AT_SKIP_IF([! NS_CMD([command -v sysctl >/dev/null 2>&1])]) + +dnl Other tests may restart firewalld and thus blow away podman/docker firewall +dnl rules. Restart them to make sure they're in good shape. +FWD_STOP_FIREWALLD() +test $(basename ${PODMAN}) = "podman" && { + podman network reload --all +} +test $(basename ${PODMAN}) = "docker" && { + systemctl restart docker +} +FWD_START_FIREWALLD() + +dnl Make sure that even with "allow" rules for the new destination port (DNAT) +dnl it's still blocked. firewalld should check if it's a DNAT packet that does +dnl not belong to us and still block it. +dnl +dnl With StrictForwardPorts=yes, these are blocked because firewalld blocks +dnl DNAT packets that it does not expect. +dnl +dnl This covers INPUT. +FWD_CHECK([--permanent --new-policy inputPolicy], 0, [ignore]) +FWD_CHECK([--permanent --policy inputPolicy --add-ingress-zone ANY], 0, [ignore]) +FWD_CHECK([--permanent --policy inputPolicy --add-egress-zone HOST], 0, [ignore]) +FWD_CHECK([--permanent --policy inputPolicy --add-port 80/tcp], 0, [ignore]) +dnl This covers FORWARD. +FWD_CHECK([--permanent --new-policy forwardPolicy], 0, [ignore]) +FWD_CHECK([--permanent --policy forwardPolicy --add-ingress-zone ANY], 0, [ignore]) +FWD_CHECK([--permanent --policy forwardPolicy --add-egress-zone ANY], 0, [ignore]) +FWD_CHECK([--permanent --policy forwardPolicy --add-port 80/tcp], 0, [ignore]) +dnl This covers OUTPUT. +FWD_CHECK([--permanent --new-policy outputPolicy], 0, [ignore]) +FWD_CHECK([--permanent --policy outputPolicy --add-ingress-zone HOST], 0, [ignore]) +FWD_CHECK([--permanent --policy outputPolicy --add-egress-zone ANY], 0, [ignore]) +FWD_CHECK([--permanent --policy outputPolicy --add-port 80/tcp], 0, [ignore]) + +AT_CHECK([sysctl -w net.ipv4.conf.all.forwarding=1], 0, [ignore]) + +cat <> ./cleanup +ip link delete fwd-test-pod +ip netns delete fwd-test-ns +HERE + +dnl create a test namespace to simulate external network +AT_CHECK([ip netns add fwd-test-ns]) +AT_CHECK([ip link add fwd-test-send type veth peer name fwd-test-pod]) +AT_CHECK([ip link set fwd-test-send netns fwd-test-ns]) +AT_CHECK([ip netns exec fwd-test-ns ip link set fwd-test-send up]) +AT_CHECK([ip netns exec fwd-test-ns ip addr add 10.10.10.2/24 dev fwd-test-send]) +AT_CHECK([ip netns exec fwd-test-ns ip route add default via 10.10.10.1 dev fwd-test-send]) +AT_CHECK([ip addr add 10.10.10.1/24 dev fwd-test-pod]) +AT_CHECK([ip link set fwd-test-pod up]) + +dnl make sure the container is in the cache +AT_CHECK([$PODMAN run --rm quay.io/centos/centos:stream9 ls], 0, [ignore], [ignore]) +]) + +dnl ############################ +dnl ##### StrictForwardPorts=yes +dnl ############################ + +FWD_START_TEST([podman - StrictForwardPorts=yes], [0]) +AT_KEYWORDS(forward_port gh869 gh1380) + +common_init() + +AT_CHECK([sed -i 's/^StrictForwardPorts.*/StrictForwardPorts=yes/' ./firewalld.conf]) +FWD_RELOAD() + +dnl start a container with --publish +AT_CHECK([$PODMAN run --rm --detach --publish 10.10.10.1:55080:80 quay.io/centos/centos:stream9 sh -c "dnl +echo hello world > index.html && dnl +exec python3 -m http.server 80" > ./pod_name], 0, [ignore]) +echo "$PODMAN stop \$(cat ./pod_name)" >> ./cleanup +sleep 10 + +dnl verify access is blocked: local to HOST_IP +AT_CHECK([curl --max-time 10 "http://10.10.10.1:55080/index.html"], 7, [ignore], [ignore]) +dnl verify access is blocked: remote (namespace) to HOST_IP +AT_CHECK([ip netns exec fwd-test-ns curl --max-time 10 "http://10.10.10.1:55080/index.html"], 7, [ignore], [ignore]) + +dnl Now add an explicit forward port via firewalld. This should forward +dnl properly to the container. +pod_address=$($PODMAN inspect -f '{{range.NetworkSettings.Networks}}{{.IPAddress}}{{end}}' $(cat ./pod_name)) +FWD_CHECK([--policy outputPolicy --add-forward-port=port=55080:proto=tcp:toport=80:toaddr=${pod_address}], 0, [ignore]) +FWD_CHECK([--policy forwardPolicy --add-forward-port=port=55080:proto=tcp:toport=80:toaddr=${pod_address}], 0, [ignore]) + +dnl verify access is allowed: local to HOST_IP +AT_CHECK([curl --max-time 10 "http://10.10.10.1:55080/index.html"], 0, [ignore], [ignore]) +dnl verify access is allowed: remote (namespace) to HOST_IP +AT_CHECK([ip netns exec fwd-test-ns curl --max-time 10 "http://10.10.10.1:55080/index.html"], 0, [ignore], [ignore]) + +FWD_END_TEST() + +dnl ############################ +dnl ##### StrictForwardPorts=no +dnl ############################ + +FWD_START_TEST([podman - StrictForwardPorts=no], [0]) +AT_KEYWORDS(forward_port gh869 gh1380) + +common_init() + +AT_CHECK([sed -i 's/^StrictForwardPorts.*/StrictForwardPorts=no/' ./firewalld.conf]) +FWD_RELOAD() + +dnl start a container with --publish +AT_CHECK([$PODMAN run --rm --detach --publish 10.10.10.1:55081:80 quay.io/centos/centos:stream9 sh -c "dnl +echo hello world > index.html && dnl +exec python3 -m http.server 80" > ./pod_name], 0, [ignore]) +echo "$PODMAN stop \$(cat ./pod_name)" >> ./cleanup +sleep 10 + +dnl verify access is allowed: local to HOST_IP +AT_CHECK([curl --max-time 10 "http://10.10.10.1:55081/index.html"], 0, [ignore], [ignore]) +dnl verify access is allowed: remote (namespace) to HOST_IP +AT_CHECK([ip netns exec fwd-test-ns curl --max-time 10 "http://10.10.10.1:55081/index.html"], 0, [ignore], [ignore]) + +FWD_END_TEST() + +m4_undefine([common_init]) diff --git a/src/tests/integration/podman.at b/src/tests/integration/podman.at new file mode 100644 index 0000000..acf39ca --- /dev/null +++ b/src/tests/integration/podman.at @@ -0,0 +1,2 @@ +AT_BANNER([podman]) +m4_include([integration/podman-strict-forward-ports.at]) diff --git a/src/tests/integration/polkit_auth_desktop.at b/src/tests/integration/polkit_auth_desktop.at index 1edd7ec..da1aecd 100644 --- a/src/tests/integration/polkit_auth_desktop.at +++ b/src/tests/integration/polkit_auth_desktop.at @@ -42,11 +42,11 @@ NS_CHECK([sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd NS_CHECK([firewall-cmd --direct --get-all-rules], 0, [ignore], [ignore]) dnl org.fedoraproject.FirewallD1.policies -NS_CHECK([sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --add-lockdown-whitelist-command="/usr/bin/firewall-cmd"], 253, [ignore], [ignore]) +NS_CHECK([sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --add-lockdown-whitelist-command="/usr/bin/firewall-cmd"], 0, [ignore], [ignore]) NS_CHECK([firewall-cmd --add-lockdown-whitelist-command="/usr/bin/firewall-cmd"], 0, [ignore], [ignore]) dnl org.fedoraproject.FirewallD1.policies.info -NS_CHECK([sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --query-lockdown], 1, [ignore], [ignore]) -NS_CHECK([firewall-cmd --query-lockdown], 1, [ignore], [ignore]) +NS_CHECK([sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --query-lockdown], 0, [ignore], [ignore]) +NS_CHECK([firewall-cmd --query-lockdown], 0, [ignore], [ignore]) FWD_END_TEST diff --git a/src/tests/integration/polkit_auth_server.at b/src/tests/integration/polkit_auth_server.at index e57be62..3a9b8d7 100644 --- a/src/tests/integration/polkit_auth_server.at +++ b/src/tests/integration/polkit_auth_server.at @@ -42,11 +42,11 @@ NS_CHECK([sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd NS_CHECK([firewall-cmd --direct --get-all-rules], 0, [ignore], [ignore]) dnl org.fedoraproject.FirewallD1.policies -NS_CHECK([sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --add-lockdown-whitelist-command="/usr/bin/firewall-cmd"], 253, [ignore], [ignore]) +NS_CHECK([sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --add-lockdown-whitelist-command="/usr/bin/firewall-cmd"], 0, [ignore], [ignore]) NS_CHECK([firewall-cmd --add-lockdown-whitelist-command="/usr/bin/firewall-cmd"], 0, [ignore], [ignore]) dnl org.fedoraproject.FirewallD1.policies.info -NS_CHECK([sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --query-lockdown], 253, [ignore], [ignore]) -NS_CHECK([firewall-cmd --query-lockdown], 1, [ignore], [ignore]) +NS_CHECK([sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --query-lockdown], 0, [ignore], [ignore]) +NS_CHECK([firewall-cmd --query-lockdown], 0, [ignore], [ignore]) FWD_END_TEST diff --git a/src/tests/integration/testsuite b/src/tests/integration/testsuite index 0760bdf..703c10a 100755 --- a/src/tests/integration/testsuite +++ b/src/tests/integration/testsuite @@ -1,7 +1,7 @@ #! /bin/sh -# Generated from integration/testsuite.at by GNU Autoconf 2.69. +# Generated from testsuite.at by GNU Autoconf 2.71. # -# Copyright (C) 2009-2012 Free Software Foundation, Inc. +# Copyright (C) 2009-2017, 2020-2021 Free Software Foundation, Inc. # # This test suite is free software; the Free Software Foundation gives # unlimited permission to copy, distribute and modify it. @@ -11,14 +11,16 @@ # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh -if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : +as_nop=: +if test ${ZSH_VERSION+y} && (emulate sh) >/dev/null 2>&1 +then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST -else +else $as_nop case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( @@ -28,46 +30,46 @@ esac fi + +# Reset variables that may have inherited troublesome values from +# the environment. + +# IFS needs to be set, to space, tab, and newline, in precisely that order. +# (If _AS_PATH_WALK were called with IFS unset, it would have the +# side effect of setting IFS to empty, thus disabling word splitting.) +# Quoting is to prevent editors from complaining about space-tab. as_nl=' ' export as_nl -# Printing a long string crashes Solaris 7 /usr/bin/printf. -as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' -as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo -as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo -# Prefer a ksh shell builtin over an external printf program on Solaris, -# but without wasting forks for bash or zsh. -if test -z "$BASH_VERSION$ZSH_VERSION" \ - && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then - as_echo='print -r --' - as_echo_n='print -rn --' -elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then - as_echo='printf %s\n' - as_echo_n='printf %s' -else - if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then - as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' - as_echo_n='/usr/ucb/echo -n' - else - as_echo_body='eval expr "X$1" : "X\\(.*\\)"' - as_echo_n_body='eval - arg=$1; - case $arg in #( - *"$as_nl"*) - expr "X$arg" : "X\\(.*\\)$as_nl"; - arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; - esac; - expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" - ' - export as_echo_n_body - as_echo_n='sh -c $as_echo_n_body as_echo' - fi - export as_echo_body - as_echo='sh -c $as_echo_body as_echo' -fi +IFS=" "" $as_nl" + +PS1='$ ' +PS2='> ' +PS4='+ ' + +# Ensure predictable behavior from utilities with locale-dependent output. +LC_ALL=C +export LC_ALL +LANGUAGE=C +export LANGUAGE + +# We cannot yet rely on "unset" to work, but we need these variables +# to be unset--not just set to an empty or harmless value--now, to +# avoid bugs in old shells (e.g. pre-3.0 UWIN ksh). This construct +# also avoids known problems related to "unset" and subshell syntax +# in other old shells (e.g. bash 2.01 and pdksh 5.2.14). +for as_var in BASH_ENV ENV MAIL MAILPATH CDPATH +do eval test \${$as_var+y} \ + && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : +done + +# Ensure that fds 0, 1, and 2 are open. +if (exec 3>&0) 2>/dev/null; then :; else exec 0&1) 2>/dev/null; then :; else exec 1>/dev/null; fi +if (exec 3>&2) ; then :; else exec 2>/dev/null; fi # The user is always right. -if test "${PATH_SEPARATOR+set}" != set; then +if ${PATH_SEPARATOR+false} :; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || @@ -76,13 +78,6 @@ if test "${PATH_SEPARATOR+set}" != set; then fi -# IFS -# We need space, tab and new line, in precisely that order. Quoting is -# there to prevent editors from complaining about space-tab. -# (If _AS_PATH_WALK were called with IFS unset, it would disable word -# splitting by setting IFS to empty value.) -IFS=" "" $as_nl" - # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( @@ -91,8 +86,12 @@ case $0 in #(( for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac + test -r "$as_dir$0" && as_myself=$as_dir$0 && break done IFS=$as_save_IFS @@ -104,40 +103,22 @@ if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then - $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 + printf "%s\n" "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi -# Unset variables that we do not need and which cause bugs (e.g. in -# pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" -# suppresses any "Segmentation fault" message there. '((' could -# trigger a bug in pdksh 5.2.14. -for as_var in BASH_ENV ENV MAIL MAILPATH -do eval test x\${$as_var+set} = xset \ - && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : -done -PS1='$ ' -PS2='> ' -PS4='+ ' - -# NLS nuisances. -LC_ALL=C -export LC_ALL -LANGUAGE=C -export LANGUAGE - -# CDPATH. -(unset CDPATH) >/dev/null 2>&1 && unset CDPATH if test "x$CONFIG_SHELL" = x; then - as_bourne_compatible="if test -n \"\${ZSH_VERSION+set}\" && (emulate sh) >/dev/null 2>&1; then : + as_bourne_compatible="as_nop=: +if test \${ZSH_VERSION+y} && (emulate sh) >/dev/null 2>&1 +then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on \${1+\"\$@\"}, which # is contrary to our usage. Disable this feature. alias -g '\${1+\"\$@\"}'='\"\$@\"' setopt NO_GLOB_SUBST -else +else \$as_nop case \`(set -o) 2>/dev/null\` in #( *posix*) : set -o posix ;; #( @@ -157,42 +138,53 @@ as_fn_success || { exitcode=1; echo as_fn_success failed.; } as_fn_failure && { exitcode=1; echo as_fn_failure succeeded.; } as_fn_ret_success || { exitcode=1; echo as_fn_ret_success failed.; } as_fn_ret_failure && { exitcode=1; echo as_fn_ret_failure succeeded.; } -if ( set x; as_fn_ret_success y && test x = \"\$1\" ); then : +if ( set x; as_fn_ret_success y && test x = \"\$1\" ) +then : -else +else \$as_nop exitcode=1; echo positional parameters were not saved. fi test x\$exitcode = x0 || exit 1 +blah=\$(echo \$(echo blah)) +test x\"\$blah\" = xblah || exit 1 test -x / || exit 1" as_suggested=" as_lineno_1=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_1a=\$LINENO as_lineno_2=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_2a=\$LINENO eval 'test \"x\$as_lineno_1'\$as_run'\" != \"x\$as_lineno_2'\$as_run'\" && test \"x\`expr \$as_lineno_1'\$as_run' + 1\`\" = \"x\$as_lineno_2'\$as_run'\"' || exit 1 test \$(( 1 + 1 )) = 2 || exit 1" - if (eval "$as_required") 2>/dev/null; then : + if (eval "$as_required") 2>/dev/null +then : as_have_required=yes -else +else $as_nop as_have_required=no fi - if test x$as_have_required = xyes && (eval "$as_suggested") 2>/dev/null; then : + if test x$as_have_required = xyes && (eval "$as_suggested") 2>/dev/null +then : -else +else $as_nop as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_found=false for as_dir in /bin$PATH_SEPARATOR/usr/bin$PATH_SEPARATOR$PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac as_found=: case $as_dir in #( /*) for as_base in sh bash ksh sh5; do # Try only shells that exist, to save several forks. - as_shell=$as_dir/$as_base + as_shell=$as_dir$as_base if { test -f "$as_shell" || test -f "$as_shell.exe"; } && - { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$as_shell"; } 2>/dev/null; then : + as_run=a "$as_shell" -c "$as_bourne_compatible""$as_required" 2>/dev/null +then : CONFIG_SHELL=$as_shell as_have_required=yes - if { $as_echo "$as_bourne_compatible""$as_suggested" | as_run=a "$as_shell"; } 2>/dev/null; then : + if as_run=a "$as_shell" -c "$as_bourne_compatible""$as_suggested" 2>/dev/null +then : break 2 fi fi @@ -200,14 +192,21 @@ fi esac as_found=false done -$as_found || { if { test -f "$SHELL" || test -f "$SHELL.exe"; } && - { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$SHELL"; } 2>/dev/null; then : - CONFIG_SHELL=$SHELL as_have_required=yes -fi; } IFS=$as_save_IFS +if $as_found +then : + +else $as_nop + if { test -f "$SHELL" || test -f "$SHELL.exe"; } && + as_run=a "$SHELL" -c "$as_bourne_compatible""$as_required" 2>/dev/null +then : + CONFIG_SHELL=$SHELL as_have_required=yes +fi +fi - if test "x$CONFIG_SHELL" != x; then : + if test "x$CONFIG_SHELL" != x +then : export CONFIG_SHELL # We cannot yet assume a decent shell, so we have to provide a # neutralization value for shells without unset; and this also @@ -225,18 +224,19 @@ esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. -$as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 +printf "%s\n" "$0: could not re-execute with $CONFIG_SHELL" >&2 exit 255 fi - if test x$as_have_required = xno; then : - $as_echo "$0: This script requires a shell more modern than all" - $as_echo "$0: the shells that I found on your system." - if test x${ZSH_VERSION+set} = xset ; then - $as_echo "$0: In particular, zsh $ZSH_VERSION has bugs and should" - $as_echo "$0: be upgraded to zsh 4.3.4 or later." + if test x$as_have_required = xno +then : + printf "%s\n" "$0: This script requires a shell more modern than all" + printf "%s\n" "$0: the shells that I found on your system." + if test ${ZSH_VERSION+y} ; then + printf "%s\n" "$0: In particular, zsh $ZSH_VERSION has bugs and should" + printf "%s\n" "$0: be upgraded to zsh 4.3.4 or later." else - $as_echo "$0: Please tell bug-autoconf@gnu.org about your system, + printf "%s\n" "$0: Please tell bug-autoconf@gnu.org about your system, $0: including any error possibly output before this $0: message. Then install a modern shell, or manually run $0: the script under such a shell if you do have one." @@ -263,6 +263,7 @@ as_fn_unset () } as_unset=as_fn_unset + # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. @@ -280,6 +281,14 @@ as_fn_exit () as_fn_set_status $1 exit $1 } # as_fn_exit +# as_fn_nop +# --------- +# Do nothing but, unlike ":", preserve the value of $?. +as_fn_nop () +{ + return $? +} +as_nop=as_fn_nop # as_fn_mkdir_p # ------------- @@ -294,7 +303,7 @@ as_fn_mkdir_p () as_dirs= while :; do case $as_dir in #( - *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( + *\'*) as_qdir=`printf "%s\n" "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" @@ -303,7 +312,7 @@ $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || -$as_echo X"$as_dir" | +printf "%s\n" X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q @@ -342,12 +351,13 @@ as_fn_executable_p () # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. -if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : +if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null +then : eval 'as_fn_append () { eval $1+=\$2 }' -else +else $as_nop as_fn_append () { eval $1=\$$1\$2 @@ -359,12 +369,13 @@ fi # as_fn_append # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. -if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : +if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null +then : eval 'as_fn_arith () { as_val=$(( $* )) }' -else +else $as_nop as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` @@ -382,9 +393,9 @@ as_fn_error () as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack - $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 + printf "%s\n" "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi - $as_echo "$as_me: error: $2" >&2 + printf "%s\n" "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error @@ -405,7 +416,7 @@ as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || -$as_echo X/"$0" | +printf "%s\n" X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q @@ -455,7 +466,7 @@ as_cr_alnum=$as_cr_Letters$as_cr_digits s/-\n.*// ' >$as_me.lineno && chmod +x "$as_me.lineno" || - { $as_echo "$as_me: error: cannot create $as_me.lineno; rerun with a POSIX shell" >&2; as_fn_exit 1; } + { printf "%s\n" "$as_me: error: cannot create $as_me.lineno; rerun with a POSIX shell" >&2; as_fn_exit 1; } # If we had to re-execute with $CONFIG_SHELL, we're ensured to have # already done that, so ensure we don't try to do so again and fall @@ -469,6 +480,10 @@ as_cr_alnum=$as_cr_Letters$as_cr_digits exit } + +# Determine whether it's possible to make 'echo' print without a newline. +# These variables are no longer used directly by Autoconf, but are AC_SUBSTed +# for compatibility with existing Makefiles. ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) @@ -482,6 +497,13 @@ case `echo -n x` in #((((( ECHO_N='-n';; esac +# For backward compatibility with old third-party macros, we provide +# the shell variables $as_echo and $as_echo_n. New code should use +# AS_ECHO(["message"]) and AS_ECHO_N(["message"]), respectively. +as_echo='printf %s\n' +as_echo_n='printf %s' + + rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file @@ -583,12 +605,10 @@ at_change_dir=false # Whether to enable colored test results. at_color=auto -# List of the tested programs. -at_tested='' # As many question marks as there are digits in the last test group number. # Used to normalize the test group numbers so that `ls' lists them in # numerical order. -at_format='?' +at_format='??' # Description of all the test groups. at_help_all="1;rhbz1773809.at:1;NM overrides interface on reload;nftables integration/rhbz1773809.at:1 integration/rhbz1773809.at rhbz1773809.at:1 rhbz1773809.at rhbz1773809 integration zone reload; 2;rhbz1928860.at:1;reload don't consider non IP capable interfaces;nftables integration/rhbz1928860.at:1 integration/rhbz1928860.at rhbz1928860.at:1 rhbz1928860.at rhbz1928860 integration reload; @@ -599,9 +619,11 @@ at_help_all="1;rhbz1773809.at:1;NM overrides interface on reload;nftables integr 7;polkit_restart.at:1;polkit - restart;nftables integration/polkit_restart.at:1 integration/polkit_restart.at polkit_restart.at:1 polkit_restart.at polkit_restart integration dbus polkit auth; 8;dbus_auth_uid.at:1;dbus - UID auth, no polkit;nftables integration/dbus_auth_uid.at:1 integration/dbus_auth_uid.at dbus_auth_uid.at:1 dbus_auth_uid.at dbus_auth_uid integration dbus auth; 9;failsafe_missing_iptables.at:1;startup failsafe - broken iptables;nftables integration/failsafe_missing_iptables.at:1 integration/failsafe_missing_iptables.at failsafe_missing_iptables.at:1 failsafe_missing_iptables.at failsafe_missing_iptables integration failsafe; +10;podman-strict-forward-ports.at:65;podman - StrictForwardPorts=yes;nftables integration/podman-strict-forward-ports.at:65 integration/podman-strict-forward-ports.at podman-strict-forward-ports.at:65 podman-strict-forward-ports.at podman-strict-forward-ports integration forward_port gh869 gh1380; +11;podman-strict-forward-ports.at:102;podman - StrictForwardPorts=no;nftables integration/podman-strict-forward-ports.at:102 integration/podman-strict-forward-ports.at podman-strict-forward-ports.at:102 podman-strict-forward-ports.at podman-strict-forward-ports integration forward_port gh869 gh1380; " # List of the all the test groups. -at_groups_all=`$as_echo "$at_help_all" | sed 's/;.*//'` +at_groups_all=`printf "%s\n" "$at_help_all" | sed 's/;.*//'` # at_fn_validate_ranges NAME... # ----------------------------- @@ -612,8 +634,8 @@ at_fn_validate_ranges () for at_grp do eval at_value=\$$at_grp - if test $at_value -lt 1 || test $at_value -gt 9; then - $as_echo "invalid test group: $at_value" >&2 + if test $at_value -lt 1 || test $at_value -gt 11; then + printf "%s\n" "invalid test group: $at_value" >&2 exit 1 fi case $at_value in @@ -641,8 +663,6 @@ do *) at_optarg= ;; esac - # Accept the important Cygnus configure options, so we can diagnose typos. - case $at_option in --help | -h ) at_help_p=: @@ -701,7 +721,7 @@ do [0-9]- | [0-9][0-9]- | [0-9][0-9][0-9]- | [0-9][0-9][0-9][0-9]-) at_range_start=`echo $at_option |tr -d X-` at_fn_validate_ranges at_range_start - at_range=`$as_echo "$at_groups_all" | \ + at_range=`printf "%s\n" "$at_groups_all" | \ sed -ne '/^'$at_range_start'$/,$p'` as_fn_append at_groups "$at_range$as_nl" ;; @@ -709,7 +729,7 @@ do -[0-9] | -[0-9][0-9] | -[0-9][0-9][0-9] | -[0-9][0-9][0-9][0-9]) at_range_end=`echo $at_option |tr -d X-` at_fn_validate_ranges at_range_end - at_range=`$as_echo "$at_groups_all" | \ + at_range=`printf "%s\n" "$at_groups_all" | \ sed -ne '1,/^'$at_range_end'$/p'` as_fn_append at_groups "$at_range$as_nl" ;; @@ -728,7 +748,7 @@ do at_range_start=$at_tmp fi at_fn_validate_ranges at_range_start at_range_end - at_range=`$as_echo "$at_groups_all" | \ + at_range=`printf "%s\n" "$at_groups_all" | \ sed -ne '/^'$at_range_start'$/,/^'$at_range_end'$/p'` as_fn_append at_groups "$at_range$as_nl" ;; @@ -782,11 +802,11 @@ do ;; esac # It is on purpose that we match the test group titles too. - at_groups_selected=`$as_echo "$at_groups_selected" | + at_groups_selected=`printf "%s\n" "$at_groups_selected" | grep -i $at_invert "^[1-9][^;]*;.*[; ]$at_keyword[ ;]"` done # Smash the keywords. - at_groups_selected=`$as_echo "$at_groups_selected" | sed 's/;.*//'` + at_groups_selected=`printf "%s\n" "$at_groups_selected" | sed 's/;.*//'` as_fn_append at_groups "$at_groups_selected$as_nl" ;; --recheck) @@ -800,21 +820,22 @@ do '' | [0-9]* | *[!_$as_cr_alnum]* ) as_fn_error $? "invalid variable name: \`$at_envvar'" ;; esac - at_value=`$as_echo "$at_optarg" | sed "s/'/'\\\\\\\\''/g"` + at_value=`printf "%s\n" "$at_optarg" | sed "s/'/'\\\\\\\\''/g"` # Export now, but save eval for later and for debug scripts. export $at_envvar as_fn_append at_debug_args " $at_envvar='$at_value'" ;; - *) $as_echo "$as_me: invalid option: $at_option" >&2 - $as_echo "Try \`$0 --help' for more information." >&2 + *) printf "%s\n" "$as_me: invalid option: $at_option" >&2 + printf "%s\n" "Try \`$0 --help' for more information." >&2 exit 1 ;; esac done # Verify our last option didn't require an argument -if test -n "$at_prev"; then : +if test -n "$at_prev" +then : as_fn_error $? "\`$at_prev' requires an argument" fi @@ -838,7 +859,7 @@ else as_fn_append at_groups "$at_oldfails$as_nl" fi # Sort the tests, removing duplicates. - at_groups=`$as_echo "$at_groups" | sort -nu | sed '/^$/d'` + at_groups=`printf "%s\n" "$at_groups" | sort -nu | sed '/^$/d'` fi if test x"$at_color" = xalways \ @@ -911,14 +932,14 @@ fi # List of tests. if $at_list_p; then cat <<_ATEOF || at_write_fail=1 -firewalld 2.1.2 test suite test groups: +firewalld 2.3.1 test suite test groups: NUM: FILE-NAME:LINE TEST-GROUP-NAME KEYWORDS _ATEOF # Pass an empty line as separator between selected groups and help. - $as_echo "$at_groups$as_nl$as_nl$at_help_all" | + printf "%s\n" "$at_groups$as_nl$as_nl$at_help_all" | awk 'NF == 1 && FS != ";" { selected[$ 1] = 1 next @@ -952,10 +973,10 @@ _ATEOF exit $at_write_fail fi if $at_version_p; then - $as_echo "$as_me (firewalld 2.1.2)" && + printf "%s\n" "$as_me (firewalld 2.3.1)" && cat <<\_ATEOF || at_write_fail=1 -Copyright (C) 2012 Free Software Foundation, Inc. +Copyright (C) 2021 Free Software Foundation, Inc. This test suite is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it. _ATEOF @@ -971,7 +992,7 @@ esac # Text for banner N, set to a single space once printed. # Banner 1. networkmanager.at:1 # Category starts at test group 1. -at_banner_text_1="NetworkManager (nftables)" +at_banner_text_1="NetworkManager" # Banner 2. polkit.at:1 # Category starts at test group 5. at_banner_text_2="polkit" @@ -981,6 +1002,9 @@ at_banner_text_3="dbus" # Banner 4. failsafe.at:1 # Category starts at test group 9. at_banner_text_4="startup failsafe" +# Banner 5. podman.at:1 +# Category starts at test group 10. +at_banner_text_5="podman" # Take any -C into account. if $at_change_dir ; then @@ -1074,13 +1098,17 @@ fi # For embedded test suites, AUTOTEST_PATH is relative to the top level # of the package. Then expand it into build/src parts, since users # may create executables in both places. -AUTOTEST_PATH=`$as_echo "$AUTOTEST_PATH" | sed "s|:|$PATH_SEPARATOR|g"` +AUTOTEST_PATH=`printf "%s\n" "$AUTOTEST_PATH" | sed "s|:|$PATH_SEPARATOR|g"` at_path= as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $AUTOTEST_PATH $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac test -n "$at_path" && as_fn_append at_path $PATH_SEPARATOR case $as_dir in [\\/]* | ?:[\\/]* ) @@ -1110,7 +1138,11 @@ as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $at_path do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac test -d "$as_dir" || continue case $as_dir in [\\/]* | ?:[\\/]* ) ;; @@ -1140,23 +1172,23 @@ fi exec 5>>"$at_suite_log" # Banners and logs. -$as_echo "## --------------------------- ## -## firewalld 2.1.2 test suite. ## +printf "%s\n" "## --------------------------- ## +## firewalld 2.3.1 test suite. ## ## --------------------------- ##" { - $as_echo "## --------------------------- ## -## firewalld 2.1.2 test suite. ## + printf "%s\n" "## --------------------------- ## +## firewalld 2.3.1 test suite. ## ## --------------------------- ##" echo - $as_echo "$as_me: command line was:" - $as_echo " \$ $0 $at_cli_args" + printf "%s\n" "$as_me: command line was:" + printf "%s\n" " \$ $0 $at_cli_args" echo # If ChangeLog exists, list a few lines in case it might help determining # the exact version. if test -n "$at_top_srcdir" && test -f "$at_top_srcdir/ChangeLog"; then - $as_echo "## ---------- ## + printf "%s\n" "## ---------- ## ## ChangeLog. ## ## ---------- ##" echo @@ -1193,8 +1225,12 @@ as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - $as_echo "PATH: $as_dir" + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac + printf "%s\n" "PATH: $as_dir" done IFS=$as_save_IFS @@ -1205,7 +1241,7 @@ IFS=$as_save_IFS for at_file in atconfig atlocal do test -r $at_file || continue - $as_echo "$as_me: $at_file:" + printf "%s\n" "$as_me: $at_file:" sed 's/^/| /' $at_file echo done @@ -1229,7 +1265,7 @@ at_fn_banner () if test -z "$at_banner_text"; then $at_first || echo else - $as_echo "$as_nl$at_banner_text$as_nl" + printf "%s\n" "$as_nl$at_banner_text$as_nl" fi } # at_fn_banner @@ -1240,7 +1276,7 @@ at_fn_banner () at_fn_check_prepare_notrace () { $at_trace_echo "Not enabling shell tracing (command contains $1)" - $as_echo "$2" >"$at_check_line_file" + printf "%s\n" "$2" >"$at_check_line_file" at_check_trace=: at_check_filter=: : >"$at_stdout"; : >"$at_stderr" } @@ -1251,7 +1287,7 @@ at_fn_check_prepare_notrace () # command. at_fn_check_prepare_trace () { - $as_echo "$1" >"$at_check_line_file" + printf "%s\n" "$1" >"$at_check_line_file" at_check_trace=$at_traceon at_check_filter=$at_check_filter_trace : >"$at_stdout"; : >"$at_stderr" } @@ -1288,7 +1324,7 @@ at_fn_filter_trace () at_fn_log_failure () { for file - do $as_echo "$file:"; sed 's/^/> /' "$file"; done + do printf "%s\n" "$file:"; sed 's/^/> /' "$file"; done echo 1 > "$at_status_file" exit 1 } @@ -1302,7 +1338,7 @@ at_fn_check_skip () { case $1 in 99) echo 99 > "$at_status_file"; at_failed=: - $as_echo "$2: hard failure"; exit 99;; + printf "%s\n" "$2: hard failure"; exit 99;; 77) echo 77 > "$at_status_file"; exit 77;; esac } @@ -1319,8 +1355,8 @@ at_fn_check_status () $1 ) ;; 77) echo 77 > "$at_status_file"; exit 77;; 99) echo 99 > "$at_status_file"; at_failed=: - $as_echo "$3: hard failure"; exit 99;; - *) $as_echo "$3: exit code was $2, expected $1" + printf "%s\n" "$3: hard failure"; exit 99;; + *) printf "%s\n" "$3: exit code was $2, expected $1" at_failed=:;; esac } @@ -1352,9 +1388,9 @@ at_fn_create_debugging_script () { { echo "#! /bin/sh" && - echo 'test "${ZSH_VERSION+set}" = set && alias -g '\''${1+"$@"}'\''='\''"$@"'\''' && - $as_echo "cd '$at_dir'" && - $as_echo "exec \${CONFIG_SHELL-$SHELL} \"$at_myself\" -v -d $at_debug_args $at_group \${1+\"\$@\"}" && + echo 'test ${ZSH_VERSION+y} && alias -g '\''${1+"$@"}'\''='\''"$@"'\''' && + printf "%s\n" "cd '$at_dir'" && + printf "%s\n" "exec \${CONFIG_SHELL-$SHELL} \"$at_myself\" -v -d $at_debug_args $at_group \${1+\"\$@\"}" && echo 'exit 1' } >"$at_group_dir/run" && chmod +x "$at_group_dir/run" @@ -1364,50 +1400,14 @@ at_fn_create_debugging_script () ## End of autotest shell functions. ## ## -------------------------------- ## { - $as_echo "## ---------------- ## -## Tested programs. ## -## ---------------- ##" - echo -} >&5 - -# Report what programs are being tested. -for at_program in : $at_tested -do - test "$at_program" = : && continue - case $at_program in - [\\/]* | ?:[\\/]* ) $at_program_=$at_program ;; - * ) - as_save_IFS=$IFS; IFS=$PATH_SEPARATOR -for as_dir in $PATH -do - IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - test -f "$as_dir/$at_program" && break - done -IFS=$as_save_IFS - - at_program_=$as_dir/$at_program ;; - esac - if test -f "$at_program_"; then - { - $as_echo "$at_srcdir/testsuite.at:1: $at_program_ --version" - "$at_program_" --version &5 2>&1 - else - as_fn_error $? "cannot find $at_program" "$LINENO" 5 - fi -done - -{ - $as_echo "## ------------------ ## + printf "%s\n" "## ------------------ ## ## Running the tests. ## ## ------------------ ##" } >&5 at_start_date=`date` at_start_time=`date +%s 2>/dev/null` -$as_echo "$as_me: starting at: $at_start_date" >&5 +printf "%s\n" "$as_me: starting at: $at_start_date" >&5 # Create the master directory if it doesn't already exist. as_dir="$at_suite_dir"; as_fn_mkdir_p || @@ -1518,12 +1518,13 @@ at_fn_group_prepare () # under the shell's notion of the current directory. at_group_dir=$at_suite_dir/$at_group_normalized at_group_log=$at_group_dir/$as_me.log - if test -d "$at_group_dir"; then + if test -d "$at_group_dir" +then find "$at_group_dir" -type d ! -perm -700 -exec chmod u+rwx {} \; rm -fr "$at_group_dir"/* "$at_group_dir"/.[!.] "$at_group_dir"/.??* fi || - { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: test directory for $at_group_normalized could not be cleaned" >&5 -$as_echo "$as_me: WARNING: test directory for $at_group_normalized could not be cleaned" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: test directory for $at_group_normalized could not be cleaned" >&5 +printf "%s\n" "$as_me: WARNING: test directory for $at_group_normalized could not be cleaned" >&2;} # Be tolerant if the above `rm' was not able to remove the directory. as_dir="$at_group_dir"; as_fn_mkdir_p @@ -1553,7 +1554,7 @@ at_fn_group_banner () *) at_desc_line="$1: " ;; esac as_fn_append at_desc_line "$3$4" - $at_quiet $as_echo_n "$at_desc_line" + $at_quiet printf %s "$at_desc_line" echo "# -*- compilation -*-" >> "$at_group_log" } @@ -1572,11 +1573,11 @@ at_fn_group_postprocess () run. This means that test suite is improperly designed. Please report this failure to . _ATEOF - $as_echo "$at_setup_line" >"$at_check_line_file" + printf "%s\n" "$at_setup_line" >"$at_check_line_file" at_status=99 fi - $at_verbose $as_echo_n "$at_group. $at_setup_line: " - $as_echo_n "$at_group. $at_setup_line: " >> "$at_group_log" + $at_verbose printf %s "$at_group. $at_setup_line: " + printf %s "$at_group. $at_setup_line: " >> "$at_group_log" case $at_xfail:$at_status in yes:0) at_msg="UNEXPECTED PASS" @@ -1612,10 +1613,10 @@ _ATEOF echo "$at_res" > "$at_job_dir/$at_res" # In parallel mode, output the summary line only afterwards. if test $at_jobs -ne 1 && test -n "$at_verbose"; then - $as_echo "$at_desc_line $at_color$at_msg$at_std" + printf "%s\n" "$at_desc_line $at_color$at_msg$at_std" else # Make sure there is a separator even with long titles. - $as_echo " $at_color$at_msg$at_std" + printf "%s\n" " $at_color$at_msg$at_std" fi at_log_msg="$at_group. $at_desc ($at_setup_line): $at_msg" case $at_status in @@ -1628,8 +1629,8 @@ _ATEOF at_log_msg="$at_log_msg ("`sed 1d "$at_times_file"`')' rm -f "$at_times_file" fi - $as_echo "$at_log_msg" >> "$at_group_log" - $as_echo "$at_log_msg" >&5 + printf "%s\n" "$at_log_msg" >> "$at_group_log" + printf "%s\n" "$at_log_msg" >&5 # Cleanup the group directory, unless the user wants the files # or the success was unexpected. @@ -1650,7 +1651,7 @@ _ATEOF # Upon failure, include the log into the testsuite's global # log. The failure message is written in the group log. It # is later included in the global log. - $as_echo "$at_log_msg" >> "$at_group_log" + printf "%s\n" "$at_log_msg" >> "$at_group_log" # Upon failure, keep the group directory for autopsy, and create # the debugging script. With -e, do not start any further tests. @@ -1693,8 +1694,8 @@ for at_signal in 1 2 15; do at_signame=`kill -l $at_signal 2>&1 || echo $at_signal` set x $at_signame test 0 -gt 2 && at_signame=$at_signal - { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: caught signal $at_signame, bailing out" >&5 -$as_echo "$as_me: WARNING: caught signal $at_signame, bailing out" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: caught signal $at_signame, bailing out" >&5 +printf "%s\n" "$as_me: WARNING: caught signal $at_signame, bailing out" >&2;} as_fn_arith 128 + $at_signal && exit_status=$as_val as_fn_exit $exit_status' $at_signal done @@ -1715,7 +1716,7 @@ then done if test -n "$at_pids"; then at_sig=TSTP - test "${TMOUT+set}" = set && at_sig=STOP + test ${TMOUT+y} && at_sig=STOP kill -$at_sig $at_pids 2>/dev/null fi kill -STOP $$ @@ -1723,7 +1724,7 @@ then echo # Turn jobs into a list of numbers, starting from 1. - at_joblist=`$as_echo "$at_groups" | sed -n 1,${at_jobs}p` + at_joblist=`printf "%s\n" "$at_groups" | sed -n 1,${at_jobs}p` set X $at_joblist shift @@ -1747,8 +1748,8 @@ then at_fn_test $at_group && . "$at_test_source" then :; else - { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unable to parse test group: $at_group" >&5 -$as_echo "$as_me: WARNING: unable to parse test group: $at_group" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: unable to parse test group: $at_group" >&5 +printf "%s\n" "$as_me: WARNING: unable to parse test group: $at_group" >&2;} at_failed=: fi at_fn_group_postprocess @@ -1786,8 +1787,8 @@ else if cd "$at_group_dir" && at_fn_test $at_group && . "$at_test_source"; then :; else - { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unable to parse test group: $at_group" >&5 -$as_echo "$as_me: WARNING: unable to parse test group: $at_group" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: unable to parse test group: $at_group" >&5 +printf "%s\n" "$as_me: WARNING: unable to parse test group: $at_group" >&2;} at_failed=: fi at_fn_group_postprocess @@ -1826,7 +1827,7 @@ rm -rf "$at_helper_dir" # Compute the duration of the suite. at_stop_date=`date` at_stop_time=`date +%s 2>/dev/null` -$as_echo "$as_me: ending at: $at_stop_date" >&5 +printf "%s\n" "$as_me: ending at: $at_stop_date" >&5 case $at_start_time,$at_stop_time in [0-9]*,[0-9]*) as_fn_arith $at_stop_time - $at_start_time && at_duration_s=$as_val @@ -1835,18 +1836,18 @@ case $at_start_time,$at_stop_time in as_fn_arith $at_duration_s % 60 && at_duration_s=$as_val as_fn_arith $at_duration_m % 60 && at_duration_m=$as_val at_duration="${at_duration_h}h ${at_duration_m}m ${at_duration_s}s" - $as_echo "$as_me: test suite duration: $at_duration" >&5 + printf "%s\n" "$as_me: test suite duration: $at_duration" >&5 ;; esac echo -$as_echo "## ------------- ## +printf "%s\n" "## ------------- ## ## Test results. ## ## ------------- ##" echo { echo - $as_echo "## ------------- ## + printf "%s\n" "## ------------- ## ## Test results. ## ## ------------- ##" echo @@ -1926,7 +1927,7 @@ else echo "ERROR: $at_result" >&5 { echo - $as_echo "## ------------------------ ## + printf "%s\n" "## ------------------------ ## ## Summary of the failures. ## ## ------------------------ ##" @@ -1947,7 +1948,7 @@ else echo fi if test $at_fail_count != 0; then - $as_echo "## ---------------------- ## + printf "%s\n" "## ---------------------- ## ## Detailed failed tests. ## ## ---------------------- ##" echo @@ -1986,10 +1987,14 @@ _ASBOX else at_msg="\`${at_testdir+${at_testdir}/}$as_me.log'" fi - $as_echo "Please send $at_msg and all information you think might help: + at_msg1a=${at_xpass_list:+', '} + at_msg1=$at_fail_list${at_fail_list:+" failed$at_msg1a"} + at_msg2=$at_xpass_list${at_xpass_list:+" passed unexpectedly"} + + printf "%s\n" "Please send $at_msg and all information you think might help: To: - Subject: [firewalld 2.1.2] $as_me: $at_fail_list${at_fail_list:+ failed${at_xpass_list:+, }}$at_xpass_list${at_xpass_list:+ passed unexpectedly} + Subject: [firewalld 2.3.1] $as_me: $at_msg1$at_msg2 You may investigate any problem if you feel able to do so, in which case the test suite provides a good starting point. Its output may @@ -2008,7 +2013,7 @@ at_fn_group_banner 1 'rhbz1773809.at:1' \ "NM overrides interface on reload" " " 1 at_xfail=no ( - $as_echo "1. $at_setup_line: testing $at_desc ..." + printf "%s\n" "1. $at_setup_line: testing $at_desc ..." $at_traceon @@ -2026,6 +2031,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -2042,7 +2048,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1773809.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1773809.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1773809.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2056,7 +2062,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1773809.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1773809.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1773809.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2072,7 +2078,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1773809.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1773809.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1773809.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2207,17 +2213,17 @@ $at_traceon; } _ATEOF - $as_echo "rhbz1773809.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:1" >"$at_check_line_file" (pgrep firewalld >/dev/null 2>&1) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:1" - $as_echo "rhbz1773809.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system.d/FirewallD.conf) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:1" - $as_echo "rhbz1773809.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system-services/org.freedesktop.PolicyKit1.service) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:1" - $as_echo "rhbz1773809.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:1" >"$at_check_line_file" (! test -r /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:1" @@ -2235,7 +2241,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1773809.at:1: nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1773809.at:1: nft -f ./nft_rule_index.nft " at_fn_check_prepare_trace "rhbz1773809.at:1" ( $at_check_trace; nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2256,7 +2262,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1773809.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1773809.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1773809.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2273,7 +2279,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1773809.at:1: rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1773809.at:1: rm ./nft_rule_index.nft " at_fn_check_prepare_trace "rhbz1773809.at:1" ( $at_check_trace; rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2288,7 +2294,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1773809.at:1: nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1773809.at:1: nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_trace "rhbz1773809.at:1" ( $at_check_trace; nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2305,7 +2311,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -2313,7 +2319,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1773809.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1773809.at:1" fi echo "$!" > firewalld.pid @@ -2330,7 +2336,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1773809.at:1" fi sleep 1 done - $as_echo "rhbz1773809.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1773809.at:1" @@ -2339,13 +2345,13 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1773809.at:1" - $as_echo "rhbz1773809.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:4" >"$at_check_line_file" (! which NetworkManager >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:4" - $as_echo "rhbz1773809.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:4" >"$at_check_line_file" ( pgrep NetworkManager >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:4" - $as_echo "rhbz1773809.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:4" >"$at_check_line_file" (! which nmcli >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:4" @@ -2365,7 +2371,7 @@ _ATEOF NM_ARGS="--no-daemon --config ./NetworkManager.conf" NetworkManager $NM_ARGS & if test $? -ne 0; then - $as_echo "rhbz1773809.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:4" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1773809.at:4" fi echo "$!" > networkmanager.pid @@ -2378,18 +2384,18 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1773809.at:4" fi sleep 1 done - $as_echo "rhbz1773809.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:4" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1773809.at:4" - $as_echo "rhbz1773809.at:6" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:6" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:6" { set +x -$as_echo "$at_srcdir/rhbz1773809.at:6: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1773809.at:6: sh <<-\"HERE\" { { { { nmcli connection add type dummy con-name dummy0 ifname dummy0 ip4 10.0.0.2 gw4 10.0.0.1; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -2411,12 +2417,12 @@ $at_traceon; } echo nmcli connection delete dummy0 >> ./cleanup - $as_echo "rhbz1773809.at:8" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:8" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:8" { set +x -$as_echo "$at_srcdir/rhbz1773809.at:8: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1773809.at:8: sh <<-\"HERE\" { { { { nmcli connection show dummy0; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -2437,12 +2443,12 @@ $at_traceon; } - $as_echo "rhbz1773809.at:9" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:9" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:9" { set +x -$as_echo "$at_srcdir/rhbz1773809.at:9: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1773809.at:9: sh <<-\"HERE\" { { { { nmcli connection up dummy0; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -2463,12 +2469,12 @@ $at_traceon; } - $as_echo "rhbz1773809.at:10" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:10" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:10" { set +x -$as_echo "$at_srcdir/rhbz1773809.at:10: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1773809.at:10: sh <<-\"HERE\" { { { { nmcli -f connection.zone connection show dummy0; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -2481,7 +2487,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "connection.zone: -- +echo >>"$at_stdout"; printf "%s\n" "connection.zone: -- " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1773809.at:10" @@ -2498,7 +2504,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rhbz1773809.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface dummy0" +printf "%s\n" "$at_srcdir/rhbz1773809.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface dummy0" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface dummy0" "rhbz1773809.at:16" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2516,7 +2522,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1773809.at:17: firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1773809.at:17: firewall-cmd -q --reload " at_fn_check_prepare_trace "rhbz1773809.at:17" ( $at_check_trace; firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2535,7 +2541,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1773809.at:17: firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1773809.at:17: firewall-cmd -q --state " at_fn_check_prepare_trace "rhbz1773809.at:17" ( $at_check_trace; firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2552,12 +2558,12 @@ $at_traceon; } - $as_echo "rhbz1773809.at:18" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:18" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:18" { set +x -$as_echo "$at_srcdir/rhbz1773809.at:18: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1773809.at:18: sh <<-\"HERE\" { { { { nmcli -f connection.zone connection show dummy0; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -2570,7 +2576,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "connection.zone: -- +echo >>"$at_stdout"; printf "%s\n" "connection.zone: -- " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1773809.at:18" @@ -2584,7 +2590,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1773809.at:23: firewall-cmd --permanent --zone trusted --change-interface dummy0 " +printf "%s\n" "$at_srcdir/rhbz1773809.at:23: firewall-cmd --permanent --zone trusted --change-interface dummy0 " at_fn_check_prepare_trace "rhbz1773809.at:23" ( $at_check_trace; firewall-cmd --permanent --zone trusted --change-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2600,12 +2606,12 @@ $at_traceon; } - $as_echo "rhbz1773809.at:24" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:24" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1773809.at:24" { set +x -$as_echo "$at_srcdir/rhbz1773809.at:24: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1773809.at:24: sh <<-\"HERE\" { { { { nmcli -f connection.zone connection show dummy0; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -2618,7 +2624,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "connection.zone: trusted +echo >>"$at_stdout"; printf "%s\n" "connection.zone: trusted " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1773809.at:24" @@ -2633,7 +2639,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1773809.at:28: firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1773809.at:28: firewall-cmd -q --reload " at_fn_check_prepare_trace "rhbz1773809.at:28" ( $at_check_trace; firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2652,7 +2658,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1773809.at:28: firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1773809.at:28: firewall-cmd -q --state " at_fn_check_prepare_trace "rhbz1773809.at:28" ( $at_check_trace; firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2672,14 +2678,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1773809.at:29: firewall-cmd --get-zone-of-interface dummy0 " +printf "%s\n" "$at_srcdir/rhbz1773809.at:29: firewall-cmd --get-zone-of-interface dummy0 " at_fn_check_prepare_trace "rhbz1773809.at:29" ( $at_check_trace; firewall-cmd --get-zone-of-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "trusted +echo >>"$at_stdout"; printf "%s\n" "trusted " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1773809.at:29" @@ -2693,7 +2699,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1773809.at:33" >"$at_check_line_file" + printf "%s\n" "rhbz1773809.at:33" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1773809.at:33" fi @@ -2710,7 +2716,7 @@ at_fn_group_banner 2 'rhbz1928860.at:1' \ "reload don't consider non IP capable interfaces" "" 1 at_xfail=no ( - $as_echo "2. $at_setup_line: testing $at_desc ..." + printf "%s\n" "2. $at_setup_line: testing $at_desc ..." $at_traceon @@ -2728,6 +2734,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -2744,7 +2751,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1928860.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1928860.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1928860.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2758,7 +2765,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1928860.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1928860.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1928860.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2774,7 +2781,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1928860.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1928860.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1928860.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2909,17 +2916,17 @@ $at_traceon; } _ATEOF - $as_echo "rhbz1928860.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:1" >"$at_check_line_file" (pgrep firewalld >/dev/null 2>&1) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:1" - $as_echo "rhbz1928860.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system.d/FirewallD.conf) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:1" - $as_echo "rhbz1928860.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system-services/org.freedesktop.PolicyKit1.service) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:1" - $as_echo "rhbz1928860.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:1" >"$at_check_line_file" (! test -r /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:1" @@ -2937,7 +2944,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1928860.at:1: nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1928860.at:1: nft -f ./nft_rule_index.nft " at_fn_check_prepare_trace "rhbz1928860.at:1" ( $at_check_trace; nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2958,7 +2965,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1928860.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1928860.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1928860.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2975,7 +2982,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1928860.at:1: rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1928860.at:1: rm ./nft_rule_index.nft " at_fn_check_prepare_trace "rhbz1928860.at:1" ( $at_check_trace; rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2990,7 +2997,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1928860.at:1: nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1928860.at:1: nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_trace "rhbz1928860.at:1" ( $at_check_trace; nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3007,7 +3014,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -3015,7 +3022,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1928860.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1928860.at:1" fi echo "$!" > firewalld.pid @@ -3032,7 +3039,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1928860.at:1" fi sleep 1 done - $as_echo "rhbz1928860.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1928860.at:1" @@ -3041,13 +3048,13 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1928860.at:1" - $as_echo "rhbz1928860.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:4" >"$at_check_line_file" (! which NetworkManager >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:4" - $as_echo "rhbz1928860.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:4" >"$at_check_line_file" ( pgrep NetworkManager >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:4" - $as_echo "rhbz1928860.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:4" >"$at_check_line_file" (! which nmcli >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:4" @@ -3067,7 +3074,7 @@ _ATEOF NM_ARGS="--no-daemon --config ./NetworkManager.conf" NetworkManager $NM_ARGS & if test $? -ne 0; then - $as_echo "rhbz1928860.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:4" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1928860.at:4" fi echo "$!" > networkmanager.pid @@ -3080,17 +3087,17 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1928860.at:4" fi sleep 1 done - $as_echo "rhbz1928860.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:4" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1928860.at:4" - $as_echo "rhbz1928860.at:5" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:5" >"$at_check_line_file" (! which busctl >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:5" { set +x -$as_echo "$at_srcdir/rhbz1928860.at:5: busctl get-property \\ +printf "%s\n" "$at_srcdir/rhbz1928860.at:5: busctl get-property \\ org.freedesktop.NetworkManager \\ /org/freedesktop/NetworkManager \\ org.freedesktop.NetworkManager \\ @@ -3120,12 +3127,12 @@ $at_traceon; } - $as_echo "rhbz1928860.at:8" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:8" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:8" { set +x -$as_echo "$at_srcdir/rhbz1928860.at:8: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1928860.at:8: sh <<-\"HERE\" { { { { nmcli connection add type ovs-bridge conn.interface ovs-br con-name ovs-br; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -3146,12 +3153,12 @@ $at_traceon; } - $as_echo "rhbz1928860.at:9" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:9" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:9" { set +x -$as_echo "$at_srcdir/rhbz1928860.at:9: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1928860.at:9: sh <<-\"HERE\" { { { { nmcli connection add type ovs-port conn.interface ovs-interface-port master ovs-br con-name ovs-interface-port; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -3175,12 +3182,12 @@ echo nmcli connection delete ovs-br >> ./cleanup echo nmcli connection delete ovs-interface-port >> ./cleanup - $as_echo "rhbz1928860.at:14" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:14" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:14" { set +x -$as_echo "$at_srcdir/rhbz1928860.at:14: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1928860.at:14: sh <<-\"HERE\" { { { { nmcli connection up ovs-br; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -3201,12 +3208,12 @@ $at_traceon; } - $as_echo "rhbz1928860.at:15" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:15" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1928860.at:15" { set +x -$as_echo "$at_srcdir/rhbz1928860.at:15: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1928860.at:15: sh <<-\"HERE\" { { { { nmcli connection up ovs-interface-port; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -3233,7 +3240,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1928860.at:25: firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1928860.at:25: firewall-cmd -q --reload " at_fn_check_prepare_trace "rhbz1928860.at:25" ( $at_check_trace; firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3252,7 +3259,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1928860.at:25: firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1928860.at:25: firewall-cmd -q --state " at_fn_check_prepare_trace "rhbz1928860.at:25" ( $at_check_trace; firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3272,7 +3279,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1928860.at:27" >"$at_check_line_file" + printf "%s\n" "rhbz1928860.at:27" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1928860.at:27" fi @@ -3289,7 +3296,7 @@ at_fn_group_banner 3 'gh976.at:1' \ "interfaces during runtime to permanent" " " 1 at_xfail=no ( - $as_echo "3. $at_setup_line: testing $at_desc ..." + printf "%s\n" "3. $at_setup_line: testing $at_desc ..." $at_traceon @@ -3307,6 +3314,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -3323,7 +3331,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh976.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh976.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh976.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3337,7 +3345,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh976.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh976.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh976.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3353,7 +3361,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh976.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh976.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh976.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3488,17 +3496,17 @@ $at_traceon; } _ATEOF - $as_echo "gh976.at:1" >"$at_check_line_file" + printf "%s\n" "gh976.at:1" >"$at_check_line_file" (pgrep firewalld >/dev/null 2>&1) \ && at_fn_check_skip 77 "$at_srcdir/gh976.at:1" - $as_echo "gh976.at:1" >"$at_check_line_file" + printf "%s\n" "gh976.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system.d/FirewallD.conf) \ && at_fn_check_skip 77 "$at_srcdir/gh976.at:1" - $as_echo "gh976.at:1" >"$at_check_line_file" + printf "%s\n" "gh976.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system-services/org.freedesktop.PolicyKit1.service) \ && at_fn_check_skip 77 "$at_srcdir/gh976.at:1" - $as_echo "gh976.at:1" >"$at_check_line_file" + printf "%s\n" "gh976.at:1" >"$at_check_line_file" (! test -r /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy) \ && at_fn_check_skip 77 "$at_srcdir/gh976.at:1" @@ -3516,7 +3524,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh976.at:1: nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh976.at:1: nft -f ./nft_rule_index.nft " at_fn_check_prepare_trace "gh976.at:1" ( $at_check_trace; nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3537,7 +3545,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh976.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh976.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh976.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3554,7 +3562,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh976.at:1: rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh976.at:1: rm ./nft_rule_index.nft " at_fn_check_prepare_trace "gh976.at:1" ( $at_check_trace; rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3569,7 +3577,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh976.at:1: nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh976.at:1: nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_trace "gh976.at:1" ( $at_check_trace; nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3586,7 +3594,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -3594,7 +3602,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh976.at:1" >"$at_check_line_file" + printf "%s\n" "gh976.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh976.at:1" fi echo "$!" > firewalld.pid @@ -3611,7 +3619,7 @@ at_fn_check_skip 99 "$at_srcdir/gh976.at:1" fi sleep 1 done - $as_echo "gh976.at:1" >"$at_check_line_file" + printf "%s\n" "gh976.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh976.at:1" @@ -3620,13 +3628,13 @@ at_fn_check_skip 99 "$at_srcdir/gh976.at:1" - $as_echo "gh976.at:4" >"$at_check_line_file" + printf "%s\n" "gh976.at:4" >"$at_check_line_file" (! which NetworkManager >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh976.at:4" - $as_echo "gh976.at:4" >"$at_check_line_file" + printf "%s\n" "gh976.at:4" >"$at_check_line_file" ( pgrep NetworkManager >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh976.at:4" - $as_echo "gh976.at:4" >"$at_check_line_file" + printf "%s\n" "gh976.at:4" >"$at_check_line_file" (! which nmcli >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh976.at:4" @@ -3646,7 +3654,7 @@ _ATEOF NM_ARGS="--no-daemon --config ./NetworkManager.conf" NetworkManager $NM_ARGS & if test $? -ne 0; then - $as_echo "gh976.at:4" >"$at_check_line_file" + printf "%s\n" "gh976.at:4" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh976.at:4" fi echo "$!" > networkmanager.pid @@ -3659,18 +3667,18 @@ at_fn_check_skip 99 "$at_srcdir/gh976.at:4" fi sleep 1 done - $as_echo "gh976.at:4" >"$at_check_line_file" + printf "%s\n" "gh976.at:4" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh976.at:4" - $as_echo "gh976.at:6" >"$at_check_line_file" + printf "%s\n" "gh976.at:6" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh976.at:6" { set +x -$as_echo "$at_srcdir/gh976.at:6: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh976.at:6: sh <<-\"HERE\" { { { { nmcli connection add type dummy con-name dummy0 ifname dummy0 ip4 10.0.0.2 gw4 10.0.0.1; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -3692,12 +3700,12 @@ $at_traceon; } echo nmcli connection delete dummy0 >> ./cleanup - $as_echo "gh976.at:8" >"$at_check_line_file" + printf "%s\n" "gh976.at:8" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh976.at:8" { set +x -$as_echo "$at_srcdir/gh976.at:8: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh976.at:8: sh <<-\"HERE\" { { { { nmcli connection show dummy0; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -3718,12 +3726,12 @@ $at_traceon; } - $as_echo "gh976.at:9" >"$at_check_line_file" + printf "%s\n" "gh976.at:9" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh976.at:9" { set +x -$as_echo "$at_srcdir/gh976.at:9: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh976.at:9: sh <<-\"HERE\" { { { { nmcli connection up dummy0; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -3748,7 +3756,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh976.at:11: firewall-cmd --add-service smtp " +printf "%s\n" "$at_srcdir/gh976.at:11: firewall-cmd --add-service smtp " at_fn_check_prepare_trace "gh976.at:11" ( $at_check_trace; firewall-cmd --add-service smtp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3767,7 +3775,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh976.at:12: firewall-cmd --runtime-to-permanent " +printf "%s\n" "$at_srcdir/gh976.at:12: firewall-cmd --runtime-to-permanent " at_fn_check_prepare_trace "gh976.at:12" ( $at_check_trace; firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3786,7 +3794,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh976.at:14" >"$at_check_line_file" + printf "%s\n" "gh976.at:14" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh976.at:14" fi @@ -3803,7 +3811,7 @@ at_fn_group_banner 4 'rhel-5802.at:1' \ "interfaces present after --runtime-to-permanent" "" 1 at_xfail=no ( - $as_echo "4. $at_setup_line: testing $at_desc ..." + printf "%s\n" "4. $at_setup_line: testing $at_desc ..." $at_traceon @@ -3821,6 +3829,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -3837,7 +3846,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhel-5802.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhel-5802.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhel-5802.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3851,7 +3860,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhel-5802.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhel-5802.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhel-5802.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3867,7 +3876,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhel-5802.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhel-5802.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhel-5802.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4002,17 +4011,17 @@ $at_traceon; } _ATEOF - $as_echo "rhel-5802.at:1" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:1" >"$at_check_line_file" (pgrep firewalld >/dev/null 2>&1) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:1" - $as_echo "rhel-5802.at:1" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system.d/FirewallD.conf) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:1" - $as_echo "rhel-5802.at:1" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system-services/org.freedesktop.PolicyKit1.service) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:1" - $as_echo "rhel-5802.at:1" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:1" >"$at_check_line_file" (! test -r /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:1" @@ -4030,7 +4039,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhel-5802.at:1: nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhel-5802.at:1: nft -f ./nft_rule_index.nft " at_fn_check_prepare_trace "rhel-5802.at:1" ( $at_check_trace; nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4051,7 +4060,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhel-5802.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhel-5802.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhel-5802.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4068,7 +4077,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhel-5802.at:1: rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhel-5802.at:1: rm ./nft_rule_index.nft " at_fn_check_prepare_trace "rhel-5802.at:1" ( $at_check_trace; rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4083,7 +4092,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhel-5802.at:1: nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhel-5802.at:1: nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_trace "rhel-5802.at:1" ( $at_check_trace; nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4100,7 +4109,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -4108,7 +4117,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhel-5802.at:1" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhel-5802.at:1" fi echo "$!" > firewalld.pid @@ -4125,7 +4134,7 @@ at_fn_check_skip 99 "$at_srcdir/rhel-5802.at:1" fi sleep 1 done - $as_echo "rhel-5802.at:1" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhel-5802.at:1" @@ -4134,13 +4143,13 @@ at_fn_check_skip 99 "$at_srcdir/rhel-5802.at:1" - $as_echo "rhel-5802.at:4" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:4" >"$at_check_line_file" (! which NetworkManager >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:4" - $as_echo "rhel-5802.at:4" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:4" >"$at_check_line_file" ( pgrep NetworkManager >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:4" - $as_echo "rhel-5802.at:4" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:4" >"$at_check_line_file" (! which nmcli >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:4" @@ -4160,7 +4169,7 @@ _ATEOF NM_ARGS="--no-daemon --config ./NetworkManager.conf" NetworkManager $NM_ARGS & if test $? -ne 0; then - $as_echo "rhel-5802.at:4" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:4" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhel-5802.at:4" fi echo "$!" > networkmanager.pid @@ -4173,18 +4182,18 @@ at_fn_check_skip 99 "$at_srcdir/rhel-5802.at:4" fi sleep 1 done - $as_echo "rhel-5802.at:4" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:4" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhel-5802.at:4" - $as_echo "rhel-5802.at:6" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:6" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:6" { set +x -$as_echo "$at_srcdir/rhel-5802.at:6: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhel-5802.at:6: sh <<-\"HERE\" { { { { nmcli connection add type dummy con-name dummy0 ifname dummy0 ip4 10.0.0.2 gw4 10.0.0.1; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -4206,12 +4215,12 @@ $at_traceon; } echo nmcli connection delete dummy0 >> ./cleanup - $as_echo "rhel-5802.at:8" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:8" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:8" { set +x -$as_echo "$at_srcdir/rhel-5802.at:8: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhel-5802.at:8: sh <<-\"HERE\" { { { { nmcli connection show dummy0; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -4232,12 +4241,12 @@ $at_traceon; } - $as_echo "rhel-5802.at:9" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:9" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:9" { set +x -$as_echo "$at_srcdir/rhel-5802.at:9: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhel-5802.at:9: sh <<-\"HERE\" { { { { nmcli connection up dummy0; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -4258,12 +4267,12 @@ $at_traceon; } - $as_echo "rhel-5802.at:10" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:10" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:10" { set +x -$as_echo "$at_srcdir/rhel-5802.at:10: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhel-5802.at:10: sh <<-\"HERE\" { { { { nmcli -f connection.zone connection show dummy0; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -4276,7 +4285,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "connection.zone: -- +echo >>"$at_stdout"; printf "%s\n" "connection.zone: -- " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhel-5802.at:10" @@ -4290,7 +4299,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhel-5802.at:14: firewall-cmd --permanent --zone internal --change-interface dummy0 " +printf "%s\n" "$at_srcdir/rhel-5802.at:14: firewall-cmd --permanent --zone internal --change-interface dummy0 " at_fn_check_prepare_trace "rhel-5802.at:14" ( $at_check_trace; firewall-cmd --permanent --zone internal --change-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4306,12 +4315,12 @@ $at_traceon; } - $as_echo "rhel-5802.at:15" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:15" >"$at_check_line_file" (! nmcli connection show >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhel-5802.at:15" { set +x -$as_echo "$at_srcdir/rhel-5802.at:15: sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhel-5802.at:15: sh <<-\"HERE\" { { { { nmcli -f connection.zone connection show dummy0; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -4324,7 +4333,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "connection.zone: internal +echo >>"$at_stdout"; printf "%s\n" "connection.zone: internal " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhel-5802.at:15" @@ -4338,14 +4347,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhel-5802.at:19: firewall-cmd --get-zone-of-interface dummy0 " +printf "%s\n" "$at_srcdir/rhel-5802.at:19: firewall-cmd --get-zone-of-interface dummy0 " at_fn_check_prepare_trace "rhel-5802.at:19" ( $at_check_trace; firewall-cmd --get-zone-of-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "internal +echo >>"$at_stdout"; printf "%s\n" "internal " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhel-5802.at:19" @@ -4360,7 +4369,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhel-5802.at:23: firewall-cmd --runtime-to-permanent " +printf "%s\n" "$at_srcdir/rhel-5802.at:23: firewall-cmd --runtime-to-permanent " at_fn_check_prepare_trace "rhel-5802.at:23" ( $at_check_trace; firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4380,14 +4389,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhel-5802.at:25: firewall-cmd --get-zone-of-interface dummy0 " +printf "%s\n" "$at_srcdir/rhel-5802.at:25: firewall-cmd --get-zone-of-interface dummy0 " at_fn_check_prepare_trace "rhel-5802.at:25" ( $at_check_trace; firewall-cmd --get-zone-of-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "internal +echo >>"$at_stdout"; printf "%s\n" "internal " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhel-5802.at:25" @@ -4401,7 +4410,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhel-5802.at:29" >"$at_check_line_file" + printf "%s\n" "rhel-5802.at:29" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhel-5802.at:29" fi @@ -4418,7 +4427,7 @@ at_fn_group_banner 5 'polkit_auth_server.at:1' \ "polkit - auth server" " " 2 at_xfail=no ( - $as_echo "5. $at_setup_line: testing $at_desc ..." + printf "%s\n" "5. $at_setup_line: testing $at_desc ..." $at_traceon @@ -4436,6 +4445,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -4452,7 +4462,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/polkit_auth_server.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "polkit_auth_server.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4466,7 +4476,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/polkit_auth_server.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "polkit_auth_server.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4482,7 +4492,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/polkit_auth_server.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "polkit_auth_server.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4617,17 +4627,17 @@ $at_traceon; } _ATEOF - $as_echo "polkit_auth_server.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_server.at:1" >"$at_check_line_file" (pgrep firewalld >/dev/null 2>&1) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_server.at:1" - $as_echo "polkit_auth_server.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_server.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system.d/FirewallD.conf) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_server.at:1" - $as_echo "polkit_auth_server.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_server.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system-services/org.freedesktop.PolicyKit1.service) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_server.at:1" - $as_echo "polkit_auth_server.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_server.at:1" >"$at_check_line_file" (! test -r /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_server.at:1" @@ -4645,7 +4655,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:1: nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:1: nft -f ./nft_rule_index.nft " at_fn_check_prepare_trace "polkit_auth_server.at:1" ( $at_check_trace; nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4666,7 +4676,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/polkit_auth_server.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "polkit_auth_server.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4683,7 +4693,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:1: rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:1: rm ./nft_rule_index.nft " at_fn_check_prepare_trace "polkit_auth_server.at:1" ( $at_check_trace; rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4698,7 +4708,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:1: nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:1: nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_trace "polkit_auth_server.at:1" ( $at_check_trace; nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4715,7 +4725,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -4723,7 +4733,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "polkit_auth_server.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_server.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/polkit_auth_server.at:1" fi echo "$!" > firewalld.pid @@ -4740,7 +4750,7 @@ at_fn_check_skip 99 "$at_srcdir/polkit_auth_server.at:1" fi sleep 1 done - $as_echo "polkit_auth_server.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_server.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/polkit_auth_server.at:1" @@ -4748,13 +4758,13 @@ at_fn_check_skip 99 "$at_srcdir/polkit_auth_server.at:1" -$as_echo "polkit_auth_server.at:4" >"$at_check_line_file" +printf "%s\n" "polkit_auth_server.at:4" >"$at_check_line_file" (! which sudo >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_server.at:4" -$as_echo "polkit_auth_server.at:5" >"$at_check_line_file" +printf "%s\n" "polkit_auth_server.at:5" >"$at_check_line_file" (! which getent >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_server.at:5" -$as_echo "polkit_auth_server.at:6" >"$at_check_line_file" +printf "%s\n" "polkit_auth_server.at:6" >"$at_check_line_file" (! getent passwd nobody >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_server.at:6" @@ -4766,7 +4776,7 @@ $as_echo "polkit_auth_server.at:6" >"$at_check_line_file" fi { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy-server" +printf "%s\n" "$at_srcdir/polkit_auth_server.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy-server" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy-server" "polkit_auth_server.at:16" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy-server ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4790,7 +4800,7 @@ $at_traceon; } test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -4798,7 +4808,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "polkit_auth_server.at:17" >"$at_check_line_file" + printf "%s\n" "polkit_auth_server.at:17" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/polkit_auth_server.at:17" fi echo "$!" > firewalld.pid @@ -4815,7 +4825,7 @@ at_fn_check_skip 99 "$at_srcdir/polkit_auth_server.at:17" fi sleep 1 done - $as_echo "polkit_auth_server.at:17" >"$at_check_line_file" + printf "%s\n" "polkit_auth_server.at:17" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/polkit_auth_server.at:17" @@ -4824,7 +4834,7 @@ at_fn_check_skip 99 "$at_srcdir/polkit_auth_server.at:17" { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:25: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --query-panic " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:25: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --query-panic " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --query-panic " "polkit_auth_server.at:25" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4839,7 +4849,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:26: firewall-cmd --query-panic " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:26: firewall-cmd --query-panic " at_fn_check_prepare_trace "polkit_auth_server.at:26" ( $at_check_trace; firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4855,7 +4865,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:29: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --add-service http " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:29: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --add-service http " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --add-service http " "polkit_auth_server.at:29" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4870,7 +4880,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:30: firewall-cmd --add-service http " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:30: firewall-cmd --add-service http " at_fn_check_prepare_trace "polkit_auth_server.at:30" ( $at_check_trace; firewall-cmd --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4886,7 +4896,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:33: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --list-all " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:33: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --list-all " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --list-all " "polkit_auth_server.at:33" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4901,7 +4911,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:34: firewall-cmd --list-all " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:34: firewall-cmd --list-all " at_fn_check_prepare_trace "polkit_auth_server.at:34" ( $at_check_trace; firewall-cmd --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4917,7 +4927,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:37: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:37: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT " "polkit_auth_server.at:37" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4932,7 +4942,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:38: firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:38: firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT " at_fn_check_prepare_trace "polkit_auth_server.at:38" ( $at_check_trace; firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4948,7 +4958,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:41: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --direct --get-all-rules " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:41: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --direct --get-all-rules " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --direct --get-all-rules " "polkit_auth_server.at:41" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --direct --get-all-rules ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4963,7 +4973,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:42: firewall-cmd --direct --get-all-rules " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:42: firewall-cmd --direct --get-all-rules " at_fn_check_prepare_trace "polkit_auth_server.at:42" ( $at_check_trace; firewall-cmd --direct --get-all-rules ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4979,7 +4989,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:45: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --add-lockdown-whitelist-command=\"/usr/bin/firewall-cmd\" " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:45: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --add-lockdown-whitelist-command=\"/usr/bin/firewall-cmd\" " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --add-lockdown-whitelist-command=\"/usr/bin/firewall-cmd\" " "polkit_auth_server.at:45" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --add-lockdown-whitelist-command="/usr/bin/firewall-cmd" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4987,14 +4997,14 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 253 $at_status "$at_srcdir/polkit_auth_server.at:45" +at_fn_check_status 0 $at_status "$at_srcdir/polkit_auth_server.at:45" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:46: firewall-cmd --add-lockdown-whitelist-command=\"/usr/bin/firewall-cmd\" " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:46: firewall-cmd --add-lockdown-whitelist-command=\"/usr/bin/firewall-cmd\" " at_fn_check_prepare_trace "polkit_auth_server.at:46" ( $at_check_trace; firewall-cmd --add-lockdown-whitelist-command="/usr/bin/firewall-cmd" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5010,7 +5020,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:49: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --query-lockdown " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:49: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --query-lockdown " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --query-lockdown " "polkit_auth_server.at:49" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --query-lockdown ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5018,14 +5028,14 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 253 $at_status "$at_srcdir/polkit_auth_server.at:49" +at_fn_check_status 0 $at_status "$at_srcdir/polkit_auth_server.at:49" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_server.at:50: firewall-cmd --query-lockdown " +printf "%s\n" "$at_srcdir/polkit_auth_server.at:50: firewall-cmd --query-lockdown " at_fn_check_prepare_trace "polkit_auth_server.at:50" ( $at_check_trace; firewall-cmd --query-lockdown ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5033,7 +5043,7 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/polkit_auth_server.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/polkit_auth_server.at:50" $at_failed && at_fn_log_failure $at_traceon; } @@ -5042,7 +5052,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "polkit_auth_server.at:52" >"$at_check_line_file" + printf "%s\n" "polkit_auth_server.at:52" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/polkit_auth_server.at:52" fi @@ -5059,7 +5069,7 @@ at_fn_group_banner 6 'polkit_auth_desktop.at:1' \ "polkit - auth desktop" " " 2 at_xfail=no ( - $as_echo "6. $at_setup_line: testing $at_desc ..." + printf "%s\n" "6. $at_setup_line: testing $at_desc ..." $at_traceon @@ -5077,6 +5087,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -5093,7 +5104,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "polkit_auth_desktop.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5107,7 +5118,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "polkit_auth_desktop.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5123,7 +5134,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "polkit_auth_desktop.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5258,17 +5269,17 @@ $at_traceon; } _ATEOF - $as_echo "polkit_auth_desktop.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_desktop.at:1" >"$at_check_line_file" (pgrep firewalld >/dev/null 2>&1) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_desktop.at:1" - $as_echo "polkit_auth_desktop.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_desktop.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system.d/FirewallD.conf) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_desktop.at:1" - $as_echo "polkit_auth_desktop.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_desktop.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system-services/org.freedesktop.PolicyKit1.service) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_desktop.at:1" - $as_echo "polkit_auth_desktop.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_desktop.at:1" >"$at_check_line_file" (! test -r /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_desktop.at:1" @@ -5286,7 +5297,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:1: nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:1: nft -f ./nft_rule_index.nft " at_fn_check_prepare_trace "polkit_auth_desktop.at:1" ( $at_check_trace; nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5307,7 +5318,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "polkit_auth_desktop.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5324,7 +5335,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:1: rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:1: rm ./nft_rule_index.nft " at_fn_check_prepare_trace "polkit_auth_desktop.at:1" ( $at_check_trace; rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5339,7 +5350,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:1: nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:1: nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_trace "polkit_auth_desktop.at:1" ( $at_check_trace; nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5356,7 +5367,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -5364,7 +5375,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "polkit_auth_desktop.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_desktop.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/polkit_auth_desktop.at:1" fi echo "$!" > firewalld.pid @@ -5381,7 +5392,7 @@ at_fn_check_skip 99 "$at_srcdir/polkit_auth_desktop.at:1" fi sleep 1 done - $as_echo "polkit_auth_desktop.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_auth_desktop.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/polkit_auth_desktop.at:1" @@ -5389,13 +5400,13 @@ at_fn_check_skip 99 "$at_srcdir/polkit_auth_desktop.at:1" -$as_echo "polkit_auth_desktop.at:4" >"$at_check_line_file" +printf "%s\n" "polkit_auth_desktop.at:4" >"$at_check_line_file" (! which sudo >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_desktop.at:4" -$as_echo "polkit_auth_desktop.at:5" >"$at_check_line_file" +printf "%s\n" "polkit_auth_desktop.at:5" >"$at_check_line_file" (! which getent >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_desktop.at:5" -$as_echo "polkit_auth_desktop.at:6" >"$at_check_line_file" +printf "%s\n" "polkit_auth_desktop.at:6" >"$at_check_line_file" (! getent passwd nobody >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/polkit_auth_desktop.at:6" @@ -5407,7 +5418,7 @@ $as_echo "polkit_auth_desktop.at:6" >"$at_check_line_file" fi { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy-desktop" +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy-desktop" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy-desktop" "polkit_auth_desktop.at:16" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy-desktop ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5431,7 +5442,7 @@ $at_traceon; } test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -5439,7 +5450,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "polkit_auth_desktop.at:17" >"$at_check_line_file" + printf "%s\n" "polkit_auth_desktop.at:17" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/polkit_auth_desktop.at:17" fi echo "$!" > firewalld.pid @@ -5456,7 +5467,7 @@ at_fn_check_skip 99 "$at_srcdir/polkit_auth_desktop.at:17" fi sleep 1 done - $as_echo "polkit_auth_desktop.at:17" >"$at_check_line_file" + printf "%s\n" "polkit_auth_desktop.at:17" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/polkit_auth_desktop.at:17" @@ -5465,7 +5476,7 @@ at_fn_check_skip 99 "$at_srcdir/polkit_auth_desktop.at:17" { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:25: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --query-panic " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:25: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --query-panic " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --query-panic " "polkit_auth_desktop.at:25" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5480,7 +5491,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:26: firewall-cmd --query-panic " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:26: firewall-cmd --query-panic " at_fn_check_prepare_trace "polkit_auth_desktop.at:26" ( $at_check_trace; firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5496,7 +5507,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:29: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --add-service http " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:29: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --add-service http " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --add-service http " "polkit_auth_desktop.at:29" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5511,7 +5522,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:30: firewall-cmd --add-service http " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:30: firewall-cmd --add-service http " at_fn_check_prepare_trace "polkit_auth_desktop.at:30" ( $at_check_trace; firewall-cmd --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5527,7 +5538,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:33: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --list-all " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:33: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --list-all " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --list-all " "polkit_auth_desktop.at:33" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5542,7 +5553,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:34: firewall-cmd --list-all " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:34: firewall-cmd --list-all " at_fn_check_prepare_trace "polkit_auth_desktop.at:34" ( $at_check_trace; firewall-cmd --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5558,7 +5569,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:37: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:37: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT " "polkit_auth_desktop.at:37" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5573,7 +5584,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:38: firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:38: firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT " at_fn_check_prepare_trace "polkit_auth_desktop.at:38" ( $at_check_trace; firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5589,7 +5600,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:41: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --direct --get-all-rules " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:41: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --direct --get-all-rules " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --direct --get-all-rules " "polkit_auth_desktop.at:41" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --direct --get-all-rules ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5604,7 +5615,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:42: firewall-cmd --direct --get-all-rules " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:42: firewall-cmd --direct --get-all-rules " at_fn_check_prepare_trace "polkit_auth_desktop.at:42" ( $at_check_trace; firewall-cmd --direct --get-all-rules ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5620,7 +5631,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:45: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --add-lockdown-whitelist-command=\"/usr/bin/firewall-cmd\" " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:45: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --add-lockdown-whitelist-command=\"/usr/bin/firewall-cmd\" " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --add-lockdown-whitelist-command=\"/usr/bin/firewall-cmd\" " "polkit_auth_desktop.at:45" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --add-lockdown-whitelist-command="/usr/bin/firewall-cmd" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5628,14 +5639,14 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 253 $at_status "$at_srcdir/polkit_auth_desktop.at:45" +at_fn_check_status 0 $at_status "$at_srcdir/polkit_auth_desktop.at:45" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:46: firewall-cmd --add-lockdown-whitelist-command=\"/usr/bin/firewall-cmd\" " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:46: firewall-cmd --add-lockdown-whitelist-command=\"/usr/bin/firewall-cmd\" " at_fn_check_prepare_trace "polkit_auth_desktop.at:46" ( $at_check_trace; firewall-cmd --add-lockdown-whitelist-command="/usr/bin/firewall-cmd" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5651,7 +5662,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:49: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --query-lockdown " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:49: sudo -u nobody env PATH=\"\$PATH\" PYTHONPATH=\"\$PYTHONPATH\" firewall-cmd --query-lockdown " at_fn_check_prepare_dynamic " sudo -u nobody env PATH=\"$PATH\" PYTHONPATH=\"$PYTHONPATH\" firewall-cmd --query-lockdown " "polkit_auth_desktop.at:49" ( $at_check_trace; sudo -u nobody env PATH="$PATH" PYTHONPATH="$PYTHONPATH" firewall-cmd --query-lockdown ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5659,14 +5670,14 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/polkit_auth_desktop.at:49" +at_fn_check_status 0 $at_status "$at_srcdir/polkit_auth_desktop.at:49" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_auth_desktop.at:50: firewall-cmd --query-lockdown " +printf "%s\n" "$at_srcdir/polkit_auth_desktop.at:50: firewall-cmd --query-lockdown " at_fn_check_prepare_trace "polkit_auth_desktop.at:50" ( $at_check_trace; firewall-cmd --query-lockdown ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5674,7 +5685,7 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/polkit_auth_desktop.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/polkit_auth_desktop.at:50" $at_failed && at_fn_log_failure $at_traceon; } @@ -5683,7 +5694,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "polkit_auth_desktop.at:52" >"$at_check_line_file" + printf "%s\n" "polkit_auth_desktop.at:52" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/polkit_auth_desktop.at:52" fi @@ -5700,7 +5711,7 @@ at_fn_group_banner 7 'polkit_restart.at:1' \ "polkit - restart" " " 2 at_xfail=no ( - $as_echo "7. $at_setup_line: testing $at_desc ..." + printf "%s\n" "7. $at_setup_line: testing $at_desc ..." $at_traceon @@ -5718,6 +5729,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -5734,7 +5746,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/polkit_restart.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/polkit_restart.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "polkit_restart.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5748,7 +5760,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/polkit_restart.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/polkit_restart.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "polkit_restart.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5764,7 +5776,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_restart.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/polkit_restart.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "polkit_restart.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5899,17 +5911,17 @@ $at_traceon; } _ATEOF - $as_echo "polkit_restart.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_restart.at:1" >"$at_check_line_file" (pgrep firewalld >/dev/null 2>&1) \ && at_fn_check_skip 77 "$at_srcdir/polkit_restart.at:1" - $as_echo "polkit_restart.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_restart.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system.d/FirewallD.conf) \ && at_fn_check_skip 77 "$at_srcdir/polkit_restart.at:1" - $as_echo "polkit_restart.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_restart.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system-services/org.freedesktop.PolicyKit1.service) \ && at_fn_check_skip 77 "$at_srcdir/polkit_restart.at:1" - $as_echo "polkit_restart.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_restart.at:1" >"$at_check_line_file" (! test -r /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy) \ && at_fn_check_skip 77 "$at_srcdir/polkit_restart.at:1" @@ -5927,7 +5939,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/polkit_restart.at:1: nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/polkit_restart.at:1: nft -f ./nft_rule_index.nft " at_fn_check_prepare_trace "polkit_restart.at:1" ( $at_check_trace; nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5948,7 +5960,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/polkit_restart.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/polkit_restart.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "polkit_restart.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5965,7 +5977,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_restart.at:1: rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/polkit_restart.at:1: rm ./nft_rule_index.nft " at_fn_check_prepare_trace "polkit_restart.at:1" ( $at_check_trace; rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5980,7 +5992,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_restart.at:1: nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/polkit_restart.at:1: nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_trace "polkit_restart.at:1" ( $at_check_trace; nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5997,7 +6009,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -6005,7 +6017,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "polkit_restart.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_restart.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/polkit_restart.at:1" fi echo "$!" > firewalld.pid @@ -6022,7 +6034,7 @@ at_fn_check_skip 99 "$at_srcdir/polkit_restart.at:1" fi sleep 1 done - $as_echo "polkit_restart.at:1" >"$at_check_line_file" + printf "%s\n" "polkit_restart.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/polkit_restart.at:1" @@ -6030,16 +6042,16 @@ at_fn_check_skip 99 "$at_srcdir/polkit_restart.at:1" -$as_echo "polkit_restart.at:4" >"$at_check_line_file" +printf "%s\n" "polkit_restart.at:4" >"$at_check_line_file" (! which sudo >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/polkit_restart.at:4" -$as_echo "polkit_restart.at:5" >"$at_check_line_file" +printf "%s\n" "polkit_restart.at:5" >"$at_check_line_file" (! which getent >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/polkit_restart.at:5" -$as_echo "polkit_restart.at:6" >"$at_check_line_file" +printf "%s\n" "polkit_restart.at:6" >"$at_check_line_file" (! getent passwd nobody >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/polkit_restart.at:6" -$as_echo "polkit_restart.at:7" >"$at_check_line_file" +printf "%s\n" "polkit_restart.at:7" >"$at_check_line_file" (! systemctl >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/polkit_restart.at:7" @@ -6050,7 +6062,7 @@ $as_echo "polkit_restart.at:7" >"$at_check_line_file" fi { set +x -$as_echo "$at_srcdir/polkit_restart.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy-server" +printf "%s\n" "$at_srcdir/polkit_restart.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy-server" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy-server" "polkit_restart.at:9" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy-server ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6074,7 +6086,7 @@ $at_traceon; } test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -6082,7 +6094,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "polkit_restart.at:10" >"$at_check_line_file" + printf "%s\n" "polkit_restart.at:10" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/polkit_restart.at:10" fi echo "$!" > firewalld.pid @@ -6099,7 +6111,7 @@ at_fn_check_skip 99 "$at_srcdir/polkit_restart.at:10" fi sleep 1 done - $as_echo "polkit_restart.at:10" >"$at_check_line_file" + printf "%s\n" "polkit_restart.at:10" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/polkit_restart.at:10" @@ -6107,7 +6119,7 @@ at_fn_check_skip 99 "$at_srcdir/polkit_restart.at:10" { set +x -$as_echo "$at_srcdir/polkit_restart.at:14: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --query-panic " +printf "%s\n" "$at_srcdir/polkit_restart.at:14: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --query-panic " at_fn_check_prepare_dynamic " sudo -E -u nobody env PATH=\"$PATH\" firewall-cmd --query-panic " "polkit_restart.at:14" ( $at_check_trace; sudo -E -u nobody env PATH="$PATH" firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6122,7 +6134,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_restart.at:15: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --add-service http " +printf "%s\n" "$at_srcdir/polkit_restart.at:15: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --add-service http " at_fn_check_prepare_dynamic " sudo -E -u nobody env PATH=\"$PATH\" firewall-cmd --add-service http " "polkit_restart.at:15" ( $at_check_trace; sudo -E -u nobody env PATH="$PATH" firewall-cmd --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6137,7 +6149,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_restart.at:16: firewall-cmd --add-service http " +printf "%s\n" "$at_srcdir/polkit_restart.at:16: firewall-cmd --add-service http " at_fn_check_prepare_trace "polkit_restart.at:16" ( $at_check_trace; firewall-cmd --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6152,7 +6164,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_restart.at:17: firewall-cmd --remove-service http " +printf "%s\n" "$at_srcdir/polkit_restart.at:17: firewall-cmd --remove-service http " at_fn_check_prepare_trace "polkit_restart.at:17" ( $at_check_trace; firewall-cmd --remove-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6168,7 +6180,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_restart.at:19: systemctl restart polkit " +printf "%s\n" "$at_srcdir/polkit_restart.at:19: systemctl restart polkit " at_fn_check_prepare_trace "polkit_restart.at:19" ( $at_check_trace; systemctl restart polkit ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6184,7 +6196,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_restart.at:21: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --query-panic " +printf "%s\n" "$at_srcdir/polkit_restart.at:21: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --query-panic " at_fn_check_prepare_dynamic " sudo -E -u nobody env PATH=\"$PATH\" firewall-cmd --query-panic " "polkit_restart.at:21" ( $at_check_trace; sudo -E -u nobody env PATH="$PATH" firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6199,7 +6211,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_restart.at:22: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --add-service http " +printf "%s\n" "$at_srcdir/polkit_restart.at:22: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --add-service http " at_fn_check_prepare_dynamic " sudo -E -u nobody env PATH=\"$PATH\" firewall-cmd --add-service http " "polkit_restart.at:22" ( $at_check_trace; sudo -E -u nobody env PATH="$PATH" firewall-cmd --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6214,7 +6226,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_restart.at:23: firewall-cmd --add-service http " +printf "%s\n" "$at_srcdir/polkit_restart.at:23: firewall-cmd --add-service http " at_fn_check_prepare_trace "polkit_restart.at:23" ( $at_check_trace; firewall-cmd --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6229,7 +6241,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/polkit_restart.at:24: firewall-cmd --remove-service http " +printf "%s\n" "$at_srcdir/polkit_restart.at:24: firewall-cmd --remove-service http " at_fn_check_prepare_trace "polkit_restart.at:24" ( $at_check_trace; firewall-cmd --remove-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6246,7 +6258,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "polkit_restart.at:26" >"$at_check_line_file" + printf "%s\n" "polkit_restart.at:26" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/polkit_restart.at:26" fi @@ -6263,7 +6275,7 @@ at_fn_group_banner 8 'dbus_auth_uid.at:1' \ "dbus - UID auth, no polkit" " " 3 at_xfail=no ( - $as_echo "8. $at_setup_line: testing $at_desc ..." + printf "%s\n" "8. $at_setup_line: testing $at_desc ..." $at_traceon @@ -6281,6 +6293,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -6297,7 +6310,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "dbus_auth_uid.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6311,7 +6324,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "dbus_auth_uid.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6327,7 +6340,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "dbus_auth_uid.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6462,17 +6475,17 @@ $at_traceon; } _ATEOF - $as_echo "dbus_auth_uid.at:1" >"$at_check_line_file" + printf "%s\n" "dbus_auth_uid.at:1" >"$at_check_line_file" (pgrep firewalld >/dev/null 2>&1) \ && at_fn_check_skip 77 "$at_srcdir/dbus_auth_uid.at:1" - $as_echo "dbus_auth_uid.at:1" >"$at_check_line_file" + printf "%s\n" "dbus_auth_uid.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system.d/FirewallD.conf) \ && at_fn_check_skip 77 "$at_srcdir/dbus_auth_uid.at:1" - $as_echo "dbus_auth_uid.at:1" >"$at_check_line_file" + printf "%s\n" "dbus_auth_uid.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system-services/org.freedesktop.PolicyKit1.service) \ && at_fn_check_skip 77 "$at_srcdir/dbus_auth_uid.at:1" - $as_echo "dbus_auth_uid.at:1" >"$at_check_line_file" + printf "%s\n" "dbus_auth_uid.at:1" >"$at_check_line_file" (! test -r /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy) \ && at_fn_check_skip 77 "$at_srcdir/dbus_auth_uid.at:1" @@ -6490,7 +6503,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:1: nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:1: nft -f ./nft_rule_index.nft " at_fn_check_prepare_trace "dbus_auth_uid.at:1" ( $at_check_trace; nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6511,7 +6524,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "dbus_auth_uid.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6528,7 +6541,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:1: rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:1: rm ./nft_rule_index.nft " at_fn_check_prepare_trace "dbus_auth_uid.at:1" ( $at_check_trace; rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6543,7 +6556,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:1: nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:1: nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_trace "dbus_auth_uid.at:1" ( $at_check_trace; nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6560,7 +6573,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -6568,7 +6581,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "dbus_auth_uid.at:1" >"$at_check_line_file" + printf "%s\n" "dbus_auth_uid.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/dbus_auth_uid.at:1" fi echo "$!" > firewalld.pid @@ -6585,7 +6598,7 @@ at_fn_check_skip 99 "$at_srcdir/dbus_auth_uid.at:1" fi sleep 1 done - $as_echo "dbus_auth_uid.at:1" >"$at_check_line_file" + printf "%s\n" "dbus_auth_uid.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/dbus_auth_uid.at:1" @@ -6593,13 +6606,13 @@ at_fn_check_skip 99 "$at_srcdir/dbus_auth_uid.at:1" -$as_echo "dbus_auth_uid.at:4" >"$at_check_line_file" +printf "%s\n" "dbus_auth_uid.at:4" >"$at_check_line_file" (! which sudo >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/dbus_auth_uid.at:4" -$as_echo "dbus_auth_uid.at:5" >"$at_check_line_file" +printf "%s\n" "dbus_auth_uid.at:5" >"$at_check_line_file" (! which getent >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/dbus_auth_uid.at:5" -$as_echo "dbus_auth_uid.at:6" >"$at_check_line_file" +printf "%s\n" "dbus_auth_uid.at:6" >"$at_check_line_file" (! getent passwd nobody >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/dbus_auth_uid.at:6" @@ -6608,7 +6621,7 @@ systemctl mask polkit systemctl stop polkit { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:19: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --add-service http" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:19: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --add-service http" at_fn_check_prepare_dynamic "sudo -E -u nobody env PATH=\"$PATH\" firewall-cmd --add-service http" "dbus_auth_uid.at:19" ( $at_check_trace; sudo -E -u nobody env PATH="$PATH" firewall-cmd --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6621,7 +6634,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:20: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --list-all" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:20: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --list-all" at_fn_check_prepare_dynamic "sudo -E -u nobody env PATH=\"$PATH\" firewall-cmd --list-all" "dbus_auth_uid.at:20" ( $at_check_trace; sudo -E -u nobody env PATH="$PATH" firewall-cmd --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6634,7 +6647,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:21: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --query-panic" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:21: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --query-panic" at_fn_check_prepare_dynamic "sudo -E -u nobody env PATH=\"$PATH\" firewall-cmd --query-panic" "dbus_auth_uid.at:21" ( $at_check_trace; sudo -E -u nobody env PATH="$PATH" firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6647,7 +6660,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:22: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --state" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:22: sudo -E -u nobody env PATH=\"\$PATH\" firewall-cmd --state" at_fn_check_prepare_dynamic "sudo -E -u nobody env PATH=\"$PATH\" firewall-cmd --state" "dbus_auth_uid.at:22" ( $at_check_trace; sudo -E -u nobody env PATH="$PATH" firewall-cmd --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6660,7 +6673,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:23: firewall-cmd --add-service http" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:23: firewall-cmd --add-service http" at_fn_check_prepare_trace "dbus_auth_uid.at:23" ( $at_check_trace; firewall-cmd --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6673,7 +6686,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:24: firewall-cmd --list-all" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:24: firewall-cmd --list-all" at_fn_check_prepare_trace "dbus_auth_uid.at:24" ( $at_check_trace; firewall-cmd --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6686,7 +6699,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:25: firewall-cmd --query-panic" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:25: firewall-cmd --query-panic" at_fn_check_prepare_trace "dbus_auth_uid.at:25" ( $at_check_trace; firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6699,7 +6712,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/dbus_auth_uid.at:26: firewall-cmd --state" +printf "%s\n" "$at_srcdir/dbus_auth_uid.at:26: firewall-cmd --state" at_fn_check_prepare_trace "dbus_auth_uid.at:26" ( $at_check_trace; firewall-cmd --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6715,7 +6728,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "dbus_auth_uid.at:28" >"$at_check_line_file" + printf "%s\n" "dbus_auth_uid.at:28" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/dbus_auth_uid.at:28" fi @@ -6732,7 +6745,7 @@ at_fn_group_banner 9 'failsafe_missing_iptables.at:1' \ "startup failsafe - broken iptables" " " 4 at_xfail=no ( - $as_echo "9. $at_setup_line: testing $at_desc ..." + printf "%s\n" "9. $at_setup_line: testing $at_desc ..." $at_traceon @@ -6750,6 +6763,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -6766,7 +6780,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "failsafe_missing_iptables.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6780,7 +6794,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "failsafe_missing_iptables.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6796,7 +6810,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "failsafe_missing_iptables.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6931,17 +6945,17 @@ $at_traceon; } _ATEOF - $as_echo "failsafe_missing_iptables.at:1" >"$at_check_line_file" + printf "%s\n" "failsafe_missing_iptables.at:1" >"$at_check_line_file" (pgrep firewalld >/dev/null 2>&1) \ && at_fn_check_skip 77 "$at_srcdir/failsafe_missing_iptables.at:1" - $as_echo "failsafe_missing_iptables.at:1" >"$at_check_line_file" + printf "%s\n" "failsafe_missing_iptables.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system.d/FirewallD.conf) \ && at_fn_check_skip 77 "$at_srcdir/failsafe_missing_iptables.at:1" - $as_echo "failsafe_missing_iptables.at:1" >"$at_check_line_file" + printf "%s\n" "failsafe_missing_iptables.at:1" >"$at_check_line_file" (! test -r /usr/share/dbus-1/system-services/org.freedesktop.PolicyKit1.service) \ && at_fn_check_skip 77 "$at_srcdir/failsafe_missing_iptables.at:1" - $as_echo "failsafe_missing_iptables.at:1" >"$at_check_line_file" + printf "%s\n" "failsafe_missing_iptables.at:1" >"$at_check_line_file" (! test -r /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy) \ && at_fn_check_skip 77 "$at_srcdir/failsafe_missing_iptables.at:1" @@ -6959,7 +6973,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:1: nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:1: nft -f ./nft_rule_index.nft " at_fn_check_prepare_trace "failsafe_missing_iptables.at:1" ( $at_check_trace; nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6980,7 +6994,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "failsafe_missing_iptables.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6997,7 +7011,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:1: rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:1: rm ./nft_rule_index.nft " at_fn_check_prepare_trace "failsafe_missing_iptables.at:1" ( $at_check_trace; rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7012,7 +7026,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:1: nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:1: nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_trace "failsafe_missing_iptables.at:1" ( $at_check_trace; nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7029,7 +7043,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -7037,7 +7051,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "failsafe_missing_iptables.at:1" >"$at_check_line_file" + printf "%s\n" "failsafe_missing_iptables.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/failsafe_missing_iptables.at:1" fi echo "$!" > firewalld.pid @@ -7054,7 +7068,7 @@ at_fn_check_skip 99 "$at_srcdir/failsafe_missing_iptables.at:1" fi sleep 1 done - $as_echo "failsafe_missing_iptables.at:1" >"$at_check_line_file" + printf "%s\n" "failsafe_missing_iptables.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/failsafe_missing_iptables.at:1" @@ -7076,7 +7090,7 @@ IPTABLES_RESTORE_PATH=$(command -v ${IPTABLES_RESTORE}) echo "mv ${IPTABLES_PATH}.broken ${IPTABLES_PATH}" >> ./cleanup echo "mv ${IPTABLES_RESTORE_PATH}.broken ${IPTABLES_RESTORE_PATH}" >> ./cleanup { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:13: mv \${IPTABLES_PATH} \${IPTABLES_PATH}.broken" +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:13: mv \${IPTABLES_PATH} \${IPTABLES_PATH}.broken" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "failsafe_missing_iptables.at:13" ( $at_check_trace; mv ${IPTABLES_PATH} ${IPTABLES_PATH}.broken ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7089,7 +7103,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:14: mv \${IPTABLES_RESTORE_PATH} \${IPTABLES_RESTORE_PATH}.broken" +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:14: mv \${IPTABLES_RESTORE_PATH} \${IPTABLES_RESTORE_PATH}.broken" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "failsafe_missing_iptables.at:14" ( $at_check_trace; mv ${IPTABLES_RESTORE_PATH} ${IPTABLES_RESTORE_PATH}.broken ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7102,7 +7116,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:15: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:15: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" at_fn_check_prepare_trace "failsafe_missing_iptables.at:15" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7115,7 +7129,7 @@ $at_failed && at_fn_log_failure $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -7123,7 +7137,7 @@ $at_traceon; } firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "failsafe_missing_iptables.at:16" >"$at_check_line_file" + printf "%s\n" "failsafe_missing_iptables.at:16" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/failsafe_missing_iptables.at:16" fi echo "$!" > firewalld.pid @@ -7140,7 +7154,7 @@ at_fn_check_skip 99 "$at_srcdir/failsafe_missing_iptables.at:16" fi sleep 1 done - $as_echo "failsafe_missing_iptables.at:16" >"$at_check_line_file" + printf "%s\n" "failsafe_missing_iptables.at:16" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/failsafe_missing_iptables.at:16" @@ -7148,7 +7162,7 @@ at_fn_check_skip 99 "$at_srcdir/failsafe_missing_iptables.at:16" { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:17: firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:17: firewall-cmd -q --state " at_fn_check_prepare_trace "failsafe_missing_iptables.at:17" ( $at_check_trace; firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7167,14 +7181,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/failsafe_missing_iptables.at:20: dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"FirewallBackend\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/failsafe_missing_iptables.at:20: dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"FirewallBackend\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "failsafe_missing_iptables.at:20" ( $at_check_trace; dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"FirewallBackend" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"nftables\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"nftables\" " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/failsafe_missing_iptables.at:20" @@ -7187,7 +7201,7 @@ $at_traceon; } if test x"ignore" != x"ignore"; then - $as_echo "failsafe_missing_iptables.at:24" >"$at_check_line_file" + printf "%s\n" "failsafe_missing_iptables.at:24" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/failsafe_missing_iptables.at:24" fi @@ -7199,3 +7213,1814 @@ $at_traceon; } ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" #AT_STOP_9 +#AT_START_10 +at_fn_group_banner 10 'podman-strict-forward-ports.at:65' \ + "podman - StrictForwardPorts=yes" " " 5 +at_xfail=no +( + printf "%s\n" "10. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="0" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:65: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "podman-strict-forward-ports.at:65" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:65" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:65: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:65" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:65" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:65: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:65" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:65" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + + else + : + + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf + + fi + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + printf "%s\n" "podman-strict-forward-ports.at:65" >"$at_check_line_file" +(pgrep firewalld >/dev/null 2>&1) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:65" + + printf "%s\n" "podman-strict-forward-ports.at:65" >"$at_check_line_file" +(! test -r /usr/share/dbus-1/system.d/FirewallD.conf) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:65" + printf "%s\n" "podman-strict-forward-ports.at:65" >"$at_check_line_file" +(! test -r /usr/share/dbus-1/system-services/org.freedesktop.PolicyKit1.service) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:65" + printf "%s\n" "podman-strict-forward-ports.at:65" >"$at_check_line_file" +(! test -r /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:65" + + + + + cat >./nft_rule_index.nft <<'_ATEOF' + + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:65: nft -f ./nft_rule_index.nft " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:65" +( $at_check_trace; nft -f ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:65" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + if test "$( nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + + else + : + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:65: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:65" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:65" +$at_failed && at_fn_log_failure +$at_traceon; } + + + fi + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:65: rm ./nft_rule_index.nft " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:65" +( $at_check_trace; rm ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:65" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:65: nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:65" +( $at_check_trace; nft delete table inet firewalld_check_rule_index +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:65" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "podman-strict-forward-ports.at:65" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/podman-strict-forward-ports.at:65" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "podman-strict-forward-ports.at:65" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/podman-strict-forward-ports.at:65" + + + + + +printf "%s\n" "podman-strict-forward-ports.at:68" >"$at_check_line_file" +(! command -v $PODMAN >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:68" +printf "%s\n" "podman-strict-forward-ports.at:68" >"$at_check_line_file" +(! command -v curl >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:68" +printf "%s\n" "podman-strict-forward-ports.at:68" >"$at_check_line_file" +(! command -v sysctl >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:68" + + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + +test $(basename ${PODMAN}) = "podman" && { + podman network reload --all +} +test $(basename ${PODMAN}) = "docker" && { + systemctl restart docker +} + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "podman-strict-forward-ports.at:68" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/podman-strict-forward-ports.at:68" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "podman-strict-forward-ports.at:68" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/podman-strict-forward-ports.at:68" + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --new-policy inputPolicy " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --new-policy inputPolicy +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --policy inputPolicy --add-ingress-zone ANY " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --policy inputPolicy --add-ingress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --policy inputPolicy --add-egress-zone HOST " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --policy inputPolicy --add-egress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --policy inputPolicy --add-port 80/tcp " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --policy inputPolicy --add-port 80/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --new-policy forwardPolicy " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --new-policy forwardPolicy +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --policy forwardPolicy --add-ingress-zone ANY " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --policy forwardPolicy --add-ingress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --policy forwardPolicy --add-egress-zone ANY " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --policy forwardPolicy --add-egress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --policy forwardPolicy --add-port 80/tcp " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --policy forwardPolicy --add-port 80/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --new-policy outputPolicy " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --new-policy outputPolicy +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --policy outputPolicy --add-ingress-zone HOST " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --policy outputPolicy --add-ingress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --policy outputPolicy --add-egress-zone ANY " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --policy outputPolicy --add-egress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: firewall-cmd --permanent --policy outputPolicy --add-port 80/tcp " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; firewall-cmd --permanent --policy outputPolicy --add-port 80/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: sysctl -w net.ipv4.conf.all.forwarding=1" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; sysctl -w net.ipv4.conf.all.forwarding=1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + +cat <> ./cleanup +ip link delete fwd-test-pod +ip netns delete fwd-test-ns +HERE + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: ip netns add fwd-test-ns" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; ip netns add fwd-test-ns +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: ip link add fwd-test-send type veth peer name fwd-test-pod" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; ip link add fwd-test-send type veth peer name fwd-test-pod +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: ip link set fwd-test-send netns fwd-test-ns" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; ip link set fwd-test-send netns fwd-test-ns +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: ip netns exec fwd-test-ns ip link set fwd-test-send up" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; ip netns exec fwd-test-ns ip link set fwd-test-send up +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: ip netns exec fwd-test-ns ip addr add 10.10.10.2/24 dev fwd-test-send" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; ip netns exec fwd-test-ns ip addr add 10.10.10.2/24 dev fwd-test-send +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: ip netns exec fwd-test-ns ip route add default via 10.10.10.1 dev fwd-test-send" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; ip netns exec fwd-test-ns ip route add default via 10.10.10.1 dev fwd-test-send +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: ip addr add 10.10.10.1/24 dev fwd-test-pod" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; ip addr add 10.10.10.1/24 dev fwd-test-pod +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: ip link set fwd-test-pod up" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:68" +( $at_check_trace; ip link set fwd-test-pod up +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:68: \$PODMAN run --rm quay.io/centos/centos:stream9 ls" +at_fn_check_prepare_dynamic "$PODMAN run --rm quay.io/centos/centos:stream9 ls" "podman-strict-forward-ports.at:68" +( $at_check_trace; $PODMAN run --rm quay.io/centos/centos:stream9 ls +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:70: sed -i 's/^StrictForwardPorts.*/StrictForwardPorts=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:70" +( $at_check_trace; sed -i 's/^StrictForwardPorts.*/StrictForwardPorts=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:71: firewall-cmd -q --reload " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:71" +( $at_check_trace; firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:71: firewall-cmd -q --state " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:71" +( $at_check_trace; firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:74: \$PODMAN run --rm --detach --publish 10.10.10.1:55080:80 quay.io/centos/centos:stream9 sh -c \"echo hello world > index.html && exec python3 -m http.server 80\" > ./pod_name" +at_fn_check_prepare_dynamic "$PODMAN run --rm --detach --publish 10.10.10.1:55080:80 quay.io/centos/centos:stream9 sh -c \"echo hello world > index.html && exec python3 -m http.server 80\" > ./pod_name" "podman-strict-forward-ports.at:74" +( $at_check_trace; $PODMAN run --rm --detach --publish 10.10.10.1:55080:80 quay.io/centos/centos:stream9 sh -c "echo hello world > index.html && exec python3 -m http.server 80" > ./pod_name +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:74" +$at_failed && at_fn_log_failure +$at_traceon; } + +echo "$PODMAN stop \$(cat ./pod_name)" >> ./cleanup +sleep 10 + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:81: curl --max-time 10 \"http://10.10.10.1:55080/index.html\"" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:81" +( $at_check_trace; curl --max-time 10 "http://10.10.10.1:55080/index.html" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 7 $at_status "$at_srcdir/podman-strict-forward-ports.at:81" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:83: ip netns exec fwd-test-ns curl --max-time 10 \"http://10.10.10.1:55080/index.html\"" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:83" +( $at_check_trace; ip netns exec fwd-test-ns curl --max-time 10 "http://10.10.10.1:55080/index.html" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 7 $at_status "$at_srcdir/podman-strict-forward-ports.at:83" +$at_failed && at_fn_log_failure +$at_traceon; } + + +pod_address=$($PODMAN inspect -f '{{range.NetworkSettings.Networks}}{{.IPAddress}}{{end}}' $(cat ./pod_name)) + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:88: firewall-cmd --policy outputPolicy --add-forward-port=port=55080:proto=tcp:toport=80:toaddr=\${pod_address} " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "podman-strict-forward-ports.at:88" +( $at_check_trace; firewall-cmd --policy outputPolicy --add-forward-port=port=55080:proto=tcp:toport=80:toaddr=${pod_address} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:88" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:89: firewall-cmd --policy forwardPolicy --add-forward-port=port=55080:proto=tcp:toport=80:toaddr=\${pod_address} " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "podman-strict-forward-ports.at:89" +( $at_check_trace; firewall-cmd --policy forwardPolicy --add-forward-port=port=55080:proto=tcp:toport=80:toaddr=${pod_address} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:89" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:92: curl --max-time 10 \"http://10.10.10.1:55080/index.html\"" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:92" +( $at_check_trace; curl --max-time 10 "http://10.10.10.1:55080/index.html" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:92" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:94: ip netns exec fwd-test-ns curl --max-time 10 \"http://10.10.10.1:55080/index.html\"" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:94" +( $at_check_trace; ip netns exec fwd-test-ns curl --max-time 10 "http://10.10.10.1:55080/index.html" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:94" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + if test x"" != x"ignore"; then + printf "%s\n" "podman-strict-forward-ports.at:96" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/podman-strict-forward-ports.at:96" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_10 +#AT_START_11 +at_fn_group_banner 11 'podman-strict-forward-ports.at:102' \ + "podman - StrictForwardPorts=no" " " 5 +at_xfail=no +( + printf "%s\n" "11. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="0" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:102: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "podman-strict-forward-ports.at:102" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:102" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:102: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:102" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:102" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:102: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:102" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:102" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + + else + : + + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf + + fi + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + printf "%s\n" "podman-strict-forward-ports.at:102" >"$at_check_line_file" +(pgrep firewalld >/dev/null 2>&1) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:102" + + printf "%s\n" "podman-strict-forward-ports.at:102" >"$at_check_line_file" +(! test -r /usr/share/dbus-1/system.d/FirewallD.conf) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:102" + printf "%s\n" "podman-strict-forward-ports.at:102" >"$at_check_line_file" +(! test -r /usr/share/dbus-1/system-services/org.freedesktop.PolicyKit1.service) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:102" + printf "%s\n" "podman-strict-forward-ports.at:102" >"$at_check_line_file" +(! test -r /usr/share/polkit-1/actions/org.fedoraproject.FirewallD1.policy) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:102" + + + + + cat >./nft_rule_index.nft <<'_ATEOF' + + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:102: nft -f ./nft_rule_index.nft " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:102" +( $at_check_trace; nft -f ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:102" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + if test "$( nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + + else + : + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:102: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:102" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:102" +$at_failed && at_fn_log_failure +$at_traceon; } + + + fi + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:102: rm ./nft_rule_index.nft " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:102" +( $at_check_trace; rm ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:102" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:102: nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:102" +( $at_check_trace; nft delete table inet firewalld_check_rule_index +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:102" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "podman-strict-forward-ports.at:102" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/podman-strict-forward-ports.at:102" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "podman-strict-forward-ports.at:102" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/podman-strict-forward-ports.at:102" + + + + + +printf "%s\n" "podman-strict-forward-ports.at:105" >"$at_check_line_file" +(! command -v $PODMAN >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:105" +printf "%s\n" "podman-strict-forward-ports.at:105" >"$at_check_line_file" +(! command -v curl >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:105" +printf "%s\n" "podman-strict-forward-ports.at:105" >"$at_check_line_file" +(! command -v sysctl >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/podman-strict-forward-ports.at:105" + + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + +test $(basename ${PODMAN}) = "podman" && { + podman network reload --all +} +test $(basename ${PODMAN}) = "docker" && { + systemctl restart docker +} + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "podman-strict-forward-ports.at:105" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/podman-strict-forward-ports.at:105" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "podman-strict-forward-ports.at:105" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/podman-strict-forward-ports.at:105" + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --new-policy inputPolicy " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --new-policy inputPolicy +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --policy inputPolicy --add-ingress-zone ANY " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --policy inputPolicy --add-ingress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --policy inputPolicy --add-egress-zone HOST " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --policy inputPolicy --add-egress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --policy inputPolicy --add-port 80/tcp " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --policy inputPolicy --add-port 80/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --new-policy forwardPolicy " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --new-policy forwardPolicy +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --policy forwardPolicy --add-ingress-zone ANY " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --policy forwardPolicy --add-ingress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --policy forwardPolicy --add-egress-zone ANY " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --policy forwardPolicy --add-egress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --policy forwardPolicy --add-port 80/tcp " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --policy forwardPolicy --add-port 80/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --new-policy outputPolicy " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --new-policy outputPolicy +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --policy outputPolicy --add-ingress-zone HOST " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --policy outputPolicy --add-ingress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --policy outputPolicy --add-egress-zone ANY " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --policy outputPolicy --add-egress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: firewall-cmd --permanent --policy outputPolicy --add-port 80/tcp " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; firewall-cmd --permanent --policy outputPolicy --add-port 80/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: sysctl -w net.ipv4.conf.all.forwarding=1" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; sysctl -w net.ipv4.conf.all.forwarding=1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + +cat <> ./cleanup +ip link delete fwd-test-pod +ip netns delete fwd-test-ns +HERE + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: ip netns add fwd-test-ns" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; ip netns add fwd-test-ns +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: ip link add fwd-test-send type veth peer name fwd-test-pod" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; ip link add fwd-test-send type veth peer name fwd-test-pod +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: ip link set fwd-test-send netns fwd-test-ns" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; ip link set fwd-test-send netns fwd-test-ns +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: ip netns exec fwd-test-ns ip link set fwd-test-send up" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; ip netns exec fwd-test-ns ip link set fwd-test-send up +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: ip netns exec fwd-test-ns ip addr add 10.10.10.2/24 dev fwd-test-send" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; ip netns exec fwd-test-ns ip addr add 10.10.10.2/24 dev fwd-test-send +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: ip netns exec fwd-test-ns ip route add default via 10.10.10.1 dev fwd-test-send" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; ip netns exec fwd-test-ns ip route add default via 10.10.10.1 dev fwd-test-send +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: ip addr add 10.10.10.1/24 dev fwd-test-pod" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; ip addr add 10.10.10.1/24 dev fwd-test-pod +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: ip link set fwd-test-pod up" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:105" +( $at_check_trace; ip link set fwd-test-pod up +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:105: \$PODMAN run --rm quay.io/centos/centos:stream9 ls" +at_fn_check_prepare_dynamic "$PODMAN run --rm quay.io/centos/centos:stream9 ls" "podman-strict-forward-ports.at:105" +( $at_check_trace; $PODMAN run --rm quay.io/centos/centos:stream9 ls +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:107: sed -i 's/^StrictForwardPorts.*/StrictForwardPorts=no/' ./firewalld.conf" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:107" +( $at_check_trace; sed -i 's/^StrictForwardPorts.*/StrictForwardPorts=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:107" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:108: firewall-cmd -q --reload " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:108" +( $at_check_trace; firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:108" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:108: firewall-cmd -q --state " +at_fn_check_prepare_trace "podman-strict-forward-ports.at:108" +( $at_check_trace; firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:108" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:111: \$PODMAN run --rm --detach --publish 10.10.10.1:55081:80 quay.io/centos/centos:stream9 sh -c \"echo hello world > index.html && exec python3 -m http.server 80\" > ./pod_name" +at_fn_check_prepare_dynamic "$PODMAN run --rm --detach --publish 10.10.10.1:55081:80 quay.io/centos/centos:stream9 sh -c \"echo hello world > index.html && exec python3 -m http.server 80\" > ./pod_name" "podman-strict-forward-ports.at:111" +( $at_check_trace; $PODMAN run --rm --detach --publish 10.10.10.1:55081:80 quay.io/centos/centos:stream9 sh -c "echo hello world > index.html && exec python3 -m http.server 80" > ./pod_name +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:111" +$at_failed && at_fn_log_failure +$at_traceon; } + +echo "$PODMAN stop \$(cat ./pod_name)" >> ./cleanup +sleep 10 + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:118: curl --max-time 10 \"http://10.10.10.1:55081/index.html\"" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:118" +( $at_check_trace; curl --max-time 10 "http://10.10.10.1:55081/index.html" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:118" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/podman-strict-forward-ports.at:120: ip netns exec fwd-test-ns curl --max-time 10 \"http://10.10.10.1:55081/index.html\"" +at_fn_check_prepare_trace "podman-strict-forward-ports.at:120" +( $at_check_trace; ip netns exec fwd-test-ns curl --max-time 10 "http://10.10.10.1:55081/index.html" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/podman-strict-forward-ports.at:120" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + if test x"" != x"ignore"; then + printf "%s\n" "podman-strict-forward-ports.at:122" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/podman-strict-forward-ports.at:122" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_11 diff --git a/src/tests/integration/testsuite.at b/src/tests/integration/testsuite.at index 4965bcc..cd056cf 100644 --- a/src/tests/integration/testsuite.at +++ b/src/tests/integration/testsuite.at @@ -14,5 +14,6 @@ m4_include([integration/networkmanager.at]) m4_include([integration/polkit.at]) m4_include([integration/dbus.at]) m4_include([integration/failsafe.at]) +m4_include([integration/podman.at]) m4_undefine([TESTING_INTEGRATION]) diff --git a/src/tests/package.m4 b/src/tests/package.m4 index 1a61503..75f7721 100644 --- a/src/tests/package.m4 +++ b/src/tests/package.m4 @@ -1,5 +1,5 @@ m4_define([AT_PACKAGE_NAME],[firewalld]) -m4_define([AT_PACKAGE_VERSION],[2.1.2]) -m4_define([AT_PACKAGE_STRING],[firewalld 2.1.2]) +m4_define([AT_PACKAGE_VERSION],[2.3.1]) +m4_define([AT_PACKAGE_STRING],[firewalld 2.3.1]) m4_define([AT_PACKAGE_URL],[http://firewalld.org/]) m4_define([AT_PACKAGE_BUGREPORT],[https://github.com/firewalld/firewalld]) diff --git a/src/tests/regression/RHEL-67103.at b/src/tests/regression/RHEL-67103.at new file mode 100644 index 0000000..0cca717 --- /dev/null +++ b/src/tests/regression/RHEL-67103.at @@ -0,0 +1,34 @@ +FWD_START_TEST([rich rule invalid ipset]) +AT_KEYWORDS(rich ipset RHEL-67103 RHEL-67331) + +dnl valid ipset +FWD_CHECK([--permanent --new-ipset thisexists --type=hash:net], 0, [ignore]) +FWD_CHECK([--permanent --add-rich-rule="rule family=ipv4 source ipset=thisexists accept"], 0, [ignore]) +FWD_CHECK([--permanent --add-rich-rule="rule family=ipv4 destination ipset=thisexists accept"], 0, [ignore]) +FWD_RELOAD() + +dnl invalid ipset +FWD_CHECK([ --add-rich-rule="rule family=ipv4 source ipset=doesnotexist accept"], 135, [ignore], [ignore]) +FWD_CHECK([--permanent --add-rich-rule="rule family=ipv4 source ipset=doesnotexist accept"], 135, [ignore], [ignore]) +FWD_CHECK([ --add-rich-rule="rule family=ipv4 destination ipset=doesnotexist accept"], 135, [ignore], [ignore]) +FWD_CHECK([--permanent --add-rich-rule="rule family=ipv4 destination ipset=doesnotexist accept"], 135, [ignore], [ignore]) + +dnl verify checks for manually added XML +AT_DATA([./zones/broken.xml], [m4_strip([dnl + + + broken + + + + + + + + + + +])]) +FWD_RELOAD(135, [ignore], [ignore]) + +FWD_END_TEST([-e '/ERROR: INVALID_IPSET/d']) diff --git a/src/tests/regression/gh1152.at b/src/tests/regression/gh1152.at index 624cabc..87a914e 100644 --- a/src/tests/regression/gh1152.at +++ b/src/tests/regression/gh1152.at @@ -314,8 +314,8 @@ allow-host-ipv6 rich rules: rule family="ipv6" icmp-type name="neighbour-advertisement" accept rule family="ipv6" icmp-type name="neighbour-solicitation" accept - rule family="ipv6" icmp-type name="router-advertisement" accept rule family="ipv6" icmp-type name="redirect" accept + rule family="ipv6" icmp-type name="router-advertisement" accept foobar priority: -1 target: CONTINUE @@ -346,8 +346,8 @@ allow-host-ipv6 rich rules: rule family="ipv6" icmp-type name="neighbour-advertisement" accept rule family="ipv6" icmp-type name="neighbour-solicitation" accept - rule family="ipv6" icmp-type name="router-advertisement" accept rule family="ipv6" icmp-type name="redirect" accept + rule family="ipv6" icmp-type name="router-advertisement" accept foobar priority: -1 target: CONTINUE @@ -526,8 +526,8 @@ allow-host-ipv6 (active) rich rules: rule family="ipv6" icmp-type name="neighbour-advertisement" accept rule family="ipv6" icmp-type name="neighbour-solicitation" accept - rule family="ipv6" icmp-type name="router-advertisement" accept rule family="ipv6" icmp-type name="redirect" accept + rule family="ipv6" icmp-type name="router-advertisement" accept foobar priority: -1 target: CONTINUE diff --git a/src/tests/regression/gh1406.at b/src/tests/regression/gh1406.at new file mode 100644 index 0000000..8d4f601 --- /dev/null +++ b/src/tests/regression/gh1406.at @@ -0,0 +1,62 @@ +FWD_START_TEST([ipset iface]) +AT_KEYWORDS(ipset gh1406) + +FWD_CHECK([--permanent --new-ipset foobar --type hash:net,iface], 0, [ignore]) +FWD_CHECK([--permanent --ipset foobar --add-entry 10.10.10.0/24,dummy0], 0, [ignore]) +FWD_CHECK([--permanent --zone internal --add-source ipset:foobar], 0, [ignore]) + +FWD_CHECK([--permanent --new-policy blah], 0, [ignore]) +FWD_CHECK([--permanent --policy blah --add-ingress-zone HOST], 0, [ignore]) +FWD_CHECK([--permanent --policy blah --add-egress-zone internal], 0, [ignore]) +FWD_RELOAD() + +NFT_LIST_RULES([inet], [filter_INPUT_POLICIES], 0, [dnl + table inet firewalld { + chain filter_INPUT_POLICIES { + ip saddr . iifname @foobar jump filter_IN_policy_allow-host-ipv6 + ip saddr . iifname @foobar jump filter_IN_internal + ip saddr . iifname @foobar reject with icmpx admin-prohibited + jump filter_IN_policy_allow-host-ipv6 + jump filter_IN_public + reject with icmpx admin-prohibited + } + } +]) +NFT_LIST_RULES([inet], [filter_OUTPUT_POLICIES], 0, [dnl + table inet firewalld { + chain filter_OUTPUT_POLICIES { + ip daddr . oifname @foobar jump filter_OUT_policy_blah + ip daddr . oifname @foobar jump filter_OUT_internal + ip daddr . oifname @foobar return + jump filter_OUT_public + return + } + } +]) + +IPTABLES_LIST_RULES([filter], [INPUT_POLICIES], 0, [dnl + IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar src,src + IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar src,src + REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar src,src reject-with icmp-port-unreachable + IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 + IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 + REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +]) +IP6TABLES_LIST_RULES([filter], [INPUT_POLICIES], 0, [dnl + IN_allow-host-ipv6 0 -- ::/0 ::/0 + IN_public 0 -- ::/0 ::/0 + REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +]) +IPTABLES_LIST_RULES([filter], [OUTPUT_POLICIES], 0, [dnl + OUT_blah 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar dst,dst + OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar dst,dst + RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar dst,dst + OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 + RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +]) +IP6TABLES_LIST_RULES([filter], [OUTPUT_POLICIES], 0, [dnl + OUT_public 0 -- ::/0 ::/0 + RETURN 0 -- ::/0 ::/0 +]) + +FWD_END_TEST() diff --git a/src/tests/regression/ipset_scale.at b/src/tests/regression/ipset_scale.at index 14bf400..f544cc9 100644 --- a/src/tests/regression/ipset_scale.at +++ b/src/tests/regression/ipset_scale.at @@ -1,5 +1,5 @@ FWD_START_TEST([ipset scale], 307200) -AT_KEYWORDS(ipset gh738) +AT_KEYWORDS(ipset gh738 scale) dnl Create a huge ipset diff --git a/src/tests/regression/regression.at b/src/tests/regression/regression.at index 9c340d1..bba4926 100644 --- a/src/tests/regression/regression.at +++ b/src/tests/regression/regression.at @@ -60,3 +60,5 @@ m4_include([regression/gh1152.at]) m4_include([regression/rhbz2222044.at]) m4_include([regression/gh1229.at]) m4_include([regression/gh1278.at]) +m4_include([regression/gh1406.at]) +m4_include([regression/RHEL-67103.at]) diff --git a/src/tests/regression/rhbz1871298.at b/src/tests/regression/rhbz1871298.at index 3a40e2a..e9fcfe6 100644 --- a/src/tests/regression/rhbz1871298.at +++ b/src/tests/regression/rhbz1871298.at @@ -1,5 +1,5 @@ FWD_START_TEST([rich rule parsing bottleneck]) -AT_KEYWORDS(rich offline rhbz1871298) +AT_KEYWORDS(rich offline rhbz1871298 scale) AT_SKIP_IF([! NS_CMD([which timeout >/dev/null 2>&1])]) diff --git a/src/tests/regression/rhbz1914935.at b/src/tests/regression/rhbz1914935.at index 5b110ea..1e8b287 100644 --- a/src/tests/regression/rhbz1914935.at +++ b/src/tests/regression/rhbz1914935.at @@ -12,8 +12,6 @@ AT_DATA([./zones/foobar.xml], [dnl ]) FWD_RELOAD -FWD_GREP_LOG([WARNING: ALREADY_ENABLED: '1234:tcp' already in 'foobar']) -FWD_GREP_LOG([WARNING: ALREADY_ENABLED: '2000-3000:tcp' already in 'foobar']) FWD_CHECK([--zone foobar --list-ports], 0, [dnl 1024-65535/tcp ]) @@ -27,13 +25,10 @@ AT_DATA([./zones/foobar.xml], [dnl ]) FWD_RELOAD -FWD_GREP_LOG([WARNING: ALREADY_ENABLED: '1234:tcp' already in 'foobar']) -FWD_GREP_LOG([WARNING: ALREADY_ENABLED: '2000-3000:tcp' already in 'foobar']) FWD_CHECK([--zone foobar --list-source-ports], 0, [dnl 1024-65535/tcp ]) -dnl this one partially overlaps so it should not throw a warning. AT_DATA([./zones/foobar.xml], [dnl @@ -42,12 +37,10 @@ AT_DATA([./zones/foobar.xml], [dnl ]) FWD_RELOAD -FWD_GREP_LOG([WARNING: ALREADY_ENABLED: '1500-2500:tcp' already in 'foobar'], 1) FWD_CHECK([--zone foobar --list-ports], 0, [dnl 1024-2500/tcp ]) -dnl this one partially overlaps so it should not throw a warning. AT_DATA([./zones/foobar.xml], [dnl @@ -56,7 +49,6 @@ AT_DATA([./zones/foobar.xml], [dnl ]) FWD_RELOAD -FWD_GREP_LOG([WARNING: ALREADY_ENABLED: '1500-2500:tcp' already in 'foobar'], 1) FWD_CHECK([--zone foobar --list-source-ports], 0, [dnl 1024-2500/tcp ]) diff --git a/src/tests/regression/rhbz2222044.at b/src/tests/regression/rhbz2222044.at index 19e1e8e..6cb0b9d 100644 --- a/src/tests/regression/rhbz2222044.at +++ b/src/tests/regression/rhbz2222044.at @@ -2,11 +2,16 @@ FWD_START_TEST([duplicate rules after restart]) AT_KEYWORDS(rhbz2222044) AT_SKIP_IF([! NS_CMD([command -v wc >/dev/null 2>&1])]) +dnl Disable for this test because CI do not support table owner. It's very new +dnl in nftables. +AT_CHECK([sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=no/' ./firewalld.conf]) +FWD_RELOAD() + dnl rules have not changed so rule count should not change m4_define([check_rule_count], [ m4_if(nftables, FIREWALL_BACKEND, [ NS_CHECK([nft list table inet firewalld | wc -l], 0, [dnl -331 +332 ]) ], [ dnl iptables NS_CHECK([iptables-save | wc -l], 0, [dnl diff --git a/src/tests/testsuite b/src/tests/testsuite index 9db5508..03ba5f7 100755 --- a/src/tests/testsuite +++ b/src/tests/testsuite @@ -1,7 +1,7 @@ #! /bin/sh -# Generated from testsuite.at by GNU Autoconf 2.69. +# Generated from testsuite.at by GNU Autoconf 2.71. # -# Copyright (C) 2009-2012 Free Software Foundation, Inc. +# Copyright (C) 2009-2017, 2020-2021 Free Software Foundation, Inc. # # This test suite is free software; the Free Software Foundation gives # unlimited permission to copy, distribute and modify it. @@ -11,14 +11,16 @@ # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh -if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : +as_nop=: +if test ${ZSH_VERSION+y} && (emulate sh) >/dev/null 2>&1 +then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST -else +else $as_nop case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( @@ -28,46 +30,46 @@ esac fi + +# Reset variables that may have inherited troublesome values from +# the environment. + +# IFS needs to be set, to space, tab, and newline, in precisely that order. +# (If _AS_PATH_WALK were called with IFS unset, it would have the +# side effect of setting IFS to empty, thus disabling word splitting.) +# Quoting is to prevent editors from complaining about space-tab. as_nl=' ' export as_nl -# Printing a long string crashes Solaris 7 /usr/bin/printf. -as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' -as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo -as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo -# Prefer a ksh shell builtin over an external printf program on Solaris, -# but without wasting forks for bash or zsh. -if test -z "$BASH_VERSION$ZSH_VERSION" \ - && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then - as_echo='print -r --' - as_echo_n='print -rn --' -elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then - as_echo='printf %s\n' - as_echo_n='printf %s' -else - if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then - as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' - as_echo_n='/usr/ucb/echo -n' - else - as_echo_body='eval expr "X$1" : "X\\(.*\\)"' - as_echo_n_body='eval - arg=$1; - case $arg in #( - *"$as_nl"*) - expr "X$arg" : "X\\(.*\\)$as_nl"; - arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; - esac; - expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" - ' - export as_echo_n_body - as_echo_n='sh -c $as_echo_n_body as_echo' - fi - export as_echo_body - as_echo='sh -c $as_echo_body as_echo' -fi +IFS=" "" $as_nl" + +PS1='$ ' +PS2='> ' +PS4='+ ' + +# Ensure predictable behavior from utilities with locale-dependent output. +LC_ALL=C +export LC_ALL +LANGUAGE=C +export LANGUAGE + +# We cannot yet rely on "unset" to work, but we need these variables +# to be unset--not just set to an empty or harmless value--now, to +# avoid bugs in old shells (e.g. pre-3.0 UWIN ksh). This construct +# also avoids known problems related to "unset" and subshell syntax +# in other old shells (e.g. bash 2.01 and pdksh 5.2.14). +for as_var in BASH_ENV ENV MAIL MAILPATH CDPATH +do eval test \${$as_var+y} \ + && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : +done + +# Ensure that fds 0, 1, and 2 are open. +if (exec 3>&0) 2>/dev/null; then :; else exec 0&1) 2>/dev/null; then :; else exec 1>/dev/null; fi +if (exec 3>&2) ; then :; else exec 2>/dev/null; fi # The user is always right. -if test "${PATH_SEPARATOR+set}" != set; then +if ${PATH_SEPARATOR+false} :; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || @@ -76,13 +78,6 @@ if test "${PATH_SEPARATOR+set}" != set; then fi -# IFS -# We need space, tab and new line, in precisely that order. Quoting is -# there to prevent editors from complaining about space-tab. -# (If _AS_PATH_WALK were called with IFS unset, it would disable word -# splitting by setting IFS to empty value.) -IFS=" "" $as_nl" - # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( @@ -91,8 +86,12 @@ case $0 in #(( for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac + test -r "$as_dir$0" && as_myself=$as_dir$0 && break done IFS=$as_save_IFS @@ -104,40 +103,22 @@ if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then - $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 + printf "%s\n" "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi -# Unset variables that we do not need and which cause bugs (e.g. in -# pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" -# suppresses any "Segmentation fault" message there. '((' could -# trigger a bug in pdksh 5.2.14. -for as_var in BASH_ENV ENV MAIL MAILPATH -do eval test x\${$as_var+set} = xset \ - && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : -done -PS1='$ ' -PS2='> ' -PS4='+ ' - -# NLS nuisances. -LC_ALL=C -export LC_ALL -LANGUAGE=C -export LANGUAGE - -# CDPATH. -(unset CDPATH) >/dev/null 2>&1 && unset CDPATH if test "x$CONFIG_SHELL" = x; then - as_bourne_compatible="if test -n \"\${ZSH_VERSION+set}\" && (emulate sh) >/dev/null 2>&1; then : + as_bourne_compatible="as_nop=: +if test \${ZSH_VERSION+y} && (emulate sh) >/dev/null 2>&1 +then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on \${1+\"\$@\"}, which # is contrary to our usage. Disable this feature. alias -g '\${1+\"\$@\"}'='\"\$@\"' setopt NO_GLOB_SUBST -else +else \$as_nop case \`(set -o) 2>/dev/null\` in #( *posix*) : set -o posix ;; #( @@ -157,42 +138,53 @@ as_fn_success || { exitcode=1; echo as_fn_success failed.; } as_fn_failure && { exitcode=1; echo as_fn_failure succeeded.; } as_fn_ret_success || { exitcode=1; echo as_fn_ret_success failed.; } as_fn_ret_failure && { exitcode=1; echo as_fn_ret_failure succeeded.; } -if ( set x; as_fn_ret_success y && test x = \"\$1\" ); then : +if ( set x; as_fn_ret_success y && test x = \"\$1\" ) +then : -else +else \$as_nop exitcode=1; echo positional parameters were not saved. fi test x\$exitcode = x0 || exit 1 +blah=\$(echo \$(echo blah)) +test x\"\$blah\" = xblah || exit 1 test -x / || exit 1" as_suggested=" as_lineno_1=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_1a=\$LINENO as_lineno_2=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_2a=\$LINENO eval 'test \"x\$as_lineno_1'\$as_run'\" != \"x\$as_lineno_2'\$as_run'\" && test \"x\`expr \$as_lineno_1'\$as_run' + 1\`\" = \"x\$as_lineno_2'\$as_run'\"' || exit 1 test \$(( 1 + 1 )) = 2 || exit 1" - if (eval "$as_required") 2>/dev/null; then : + if (eval "$as_required") 2>/dev/null +then : as_have_required=yes -else +else $as_nop as_have_required=no fi - if test x$as_have_required = xyes && (eval "$as_suggested") 2>/dev/null; then : + if test x$as_have_required = xyes && (eval "$as_suggested") 2>/dev/null +then : -else +else $as_nop as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_found=false for as_dir in /bin$PATH_SEPARATOR/usr/bin$PATH_SEPARATOR$PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac as_found=: case $as_dir in #( /*) for as_base in sh bash ksh sh5; do # Try only shells that exist, to save several forks. - as_shell=$as_dir/$as_base + as_shell=$as_dir$as_base if { test -f "$as_shell" || test -f "$as_shell.exe"; } && - { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$as_shell"; } 2>/dev/null; then : + as_run=a "$as_shell" -c "$as_bourne_compatible""$as_required" 2>/dev/null +then : CONFIG_SHELL=$as_shell as_have_required=yes - if { $as_echo "$as_bourne_compatible""$as_suggested" | as_run=a "$as_shell"; } 2>/dev/null; then : + if as_run=a "$as_shell" -c "$as_bourne_compatible""$as_suggested" 2>/dev/null +then : break 2 fi fi @@ -200,14 +192,21 @@ fi esac as_found=false done -$as_found || { if { test -f "$SHELL" || test -f "$SHELL.exe"; } && - { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$SHELL"; } 2>/dev/null; then : - CONFIG_SHELL=$SHELL as_have_required=yes -fi; } IFS=$as_save_IFS +if $as_found +then : + +else $as_nop + if { test -f "$SHELL" || test -f "$SHELL.exe"; } && + as_run=a "$SHELL" -c "$as_bourne_compatible""$as_required" 2>/dev/null +then : + CONFIG_SHELL=$SHELL as_have_required=yes +fi +fi - if test "x$CONFIG_SHELL" != x; then : + if test "x$CONFIG_SHELL" != x +then : export CONFIG_SHELL # We cannot yet assume a decent shell, so we have to provide a # neutralization value for shells without unset; and this also @@ -225,18 +224,19 @@ esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. -$as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 +printf "%s\n" "$0: could not re-execute with $CONFIG_SHELL" >&2 exit 255 fi - if test x$as_have_required = xno; then : - $as_echo "$0: This script requires a shell more modern than all" - $as_echo "$0: the shells that I found on your system." - if test x${ZSH_VERSION+set} = xset ; then - $as_echo "$0: In particular, zsh $ZSH_VERSION has bugs and should" - $as_echo "$0: be upgraded to zsh 4.3.4 or later." + if test x$as_have_required = xno +then : + printf "%s\n" "$0: This script requires a shell more modern than all" + printf "%s\n" "$0: the shells that I found on your system." + if test ${ZSH_VERSION+y} ; then + printf "%s\n" "$0: In particular, zsh $ZSH_VERSION has bugs and should" + printf "%s\n" "$0: be upgraded to zsh 4.3.4 or later." else - $as_echo "$0: Please tell bug-autoconf@gnu.org about your system, + printf "%s\n" "$0: Please tell bug-autoconf@gnu.org about your system, $0: including any error possibly output before this $0: message. Then install a modern shell, or manually run $0: the script under such a shell if you do have one." @@ -263,6 +263,7 @@ as_fn_unset () } as_unset=as_fn_unset + # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. @@ -280,6 +281,14 @@ as_fn_exit () as_fn_set_status $1 exit $1 } # as_fn_exit +# as_fn_nop +# --------- +# Do nothing but, unlike ":", preserve the value of $?. +as_fn_nop () +{ + return $? +} +as_nop=as_fn_nop # as_fn_mkdir_p # ------------- @@ -294,7 +303,7 @@ as_fn_mkdir_p () as_dirs= while :; do case $as_dir in #( - *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( + *\'*) as_qdir=`printf "%s\n" "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" @@ -303,7 +312,7 @@ $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || -$as_echo X"$as_dir" | +printf "%s\n" X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q @@ -342,12 +351,13 @@ as_fn_executable_p () # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. -if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : +if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null +then : eval 'as_fn_append () { eval $1+=\$2 }' -else +else $as_nop as_fn_append () { eval $1=\$$1\$2 @@ -359,12 +369,13 @@ fi # as_fn_append # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. -if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : +if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null +then : eval 'as_fn_arith () { as_val=$(( $* )) }' -else +else $as_nop as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` @@ -382,9 +393,9 @@ as_fn_error () as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack - $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 + printf "%s\n" "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi - $as_echo "$as_me: error: $2" >&2 + printf "%s\n" "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error @@ -405,7 +416,7 @@ as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || -$as_echo X/"$0" | +printf "%s\n" X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q @@ -455,7 +466,7 @@ as_cr_alnum=$as_cr_Letters$as_cr_digits s/-\n.*// ' >$as_me.lineno && chmod +x "$as_me.lineno" || - { $as_echo "$as_me: error: cannot create $as_me.lineno; rerun with a POSIX shell" >&2; as_fn_exit 1; } + { printf "%s\n" "$as_me: error: cannot create $as_me.lineno; rerun with a POSIX shell" >&2; as_fn_exit 1; } # If we had to re-execute with $CONFIG_SHELL, we're ensured to have # already done that, so ensure we don't try to do so again and fall @@ -469,6 +480,10 @@ as_cr_alnum=$as_cr_Letters$as_cr_digits exit } + +# Determine whether it's possible to make 'echo' print without a newline. +# These variables are no longer used directly by Autoconf, but are AC_SUBSTed +# for compatibility with existing Makefiles. ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) @@ -482,6 +497,13 @@ case `echo -n x` in #((((( ECHO_N='-n';; esac +# For backward compatibility with old third-party macros, we provide +# the shell variables $as_echo and $as_echo_n. New code should use +# AS_ECHO(["message"]) and AS_ECHO_N(["message"]), respectively. +as_echo='printf %s\n' +as_echo_n='printf %s' + + rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file @@ -583,8 +605,6 @@ at_change_dir=false # Whether to enable colored test results. at_color=auto -# List of the tested programs. -at_tested='' # As many question marks as there are digits in the last test group number. # Used to normalize the test group numbers so that `ls' lists them in # numerical order. @@ -613,11 +633,11 @@ at_help_all="1;firewall-cmd.at:5;basic options;offline cli/firewall-cmd.at:5 cli 21;firewall-cmd.at:1190;direct passthrough;offline cli/firewall-cmd.at:1190 cli/firewall-cmd.at firewall-cmd.at:1190 firewall-cmd.at firewall-cmd cli direct passthrough; 22;firewall-cmd.at:1228;direct ebtables;offline cli/firewall-cmd.at:1228 cli/firewall-cmd.at firewall-cmd.at:1228 firewall-cmd.at firewall-cmd cli direct ebtables; 23;firewall-cmd.at:1274;lockdown;offline cli/firewall-cmd.at:1274 cli/firewall-cmd.at firewall-cmd.at:1274 firewall-cmd.at firewall-cmd cli lockdown; -24;firewall-cmd.at:1341;rich rules good;offline cli/firewall-cmd.at:1341 cli/firewall-cmd.at firewall-cmd.at:1341 firewall-cmd.at firewall-cmd cli rich; -25;firewall-cmd.at:1375;rich rules audit;offline cli/firewall-cmd.at:1375 cli/firewall-cmd.at firewall-cmd.at:1375 firewall-cmd.at firewall-cmd cli rich; -26;firewall-cmd.at:1383;rich rules priority;offline cli/firewall-cmd.at:1383 cli/firewall-cmd.at firewall-cmd.at:1383 firewall-cmd.at firewall-cmd cli rich; -27;firewall-cmd.at:1938;rich rules bad;offline cli/firewall-cmd.at:1938 cli/firewall-cmd.at firewall-cmd.at:1938 firewall-cmd.at firewall-cmd cli rich; -28;firewall-cmd.at:1981;config validation;offline cli/firewall-cmd.at:1981 cli/firewall-cmd.at firewall-cmd.at:1981 firewall-cmd.at firewall-cmd cli check_config; +24;firewall-cmd.at:1369;rich rules good;offline cli/firewall-cmd.at:1369 cli/firewall-cmd.at firewall-cmd.at:1369 firewall-cmd.at firewall-cmd cli rich; +25;firewall-cmd.at:1403;rich rules audit;offline cli/firewall-cmd.at:1403 cli/firewall-cmd.at firewall-cmd.at:1403 firewall-cmd.at firewall-cmd cli rich; +26;firewall-cmd.at:1411;rich rules priority;offline cli/firewall-cmd.at:1411 cli/firewall-cmd.at firewall-cmd.at:1411 firewall-cmd.at firewall-cmd cli rich; +27;firewall-cmd.at:1966;rich rules bad;offline cli/firewall-cmd.at:1966 cli/firewall-cmd.at firewall-cmd.at:1966 firewall-cmd.at firewall-cmd cli rich; +28;firewall-cmd.at:2009;config validation;offline cli/firewall-cmd.at:2009 cli/firewall-cmd.at firewall-cmd.at:2009 firewall-cmd.at firewall-cmd cli check_config; 29;rfc3964_ipv4.at:1;RFC3964_IPv4;offline features/rfc3964_ipv4.at:1 features/rfc3964_ipv4.at rfc3964_ipv4.at:1 rfc3964_ipv4.at rfc3964_ipv4 features; 30;service_include.at:1;service include;offline features/service_include.at:1 features/service_include.at service_include.at:1 service_include.at service_include features service xml gh273 rhbz1720300 gh707 gh1075; 31;helpers_custom.at:1;customer helpers;offline features/helpers_custom.at:1 features/helpers_custom.at helpers_custom.at:1 helpers_custom.at helpers_custom features helpers rhbz1733066 gh514 rhbz1769520; @@ -629,11 +649,11 @@ at_help_all="1;firewall-cmd.at:5;basic options;offline cli/firewall-cmd.at:5 cli 37;policy.at:286;policy - priority;offline features/policy.at:286 features/policy.at policy.at:286 policy.at policy features; 38;policy.at:470;policy - zones;offline features/policy.at:470 features/policy.at policy.at:470 policy.at policy features; 39;policy.at:822;policy - dispatch;offline features/policy.at:822 features/policy.at policy.at:822 policy.at policy features; -40;policy.at:5351;policy - interfaces/sources;offline features/policy.at:5351 features/policy.at policy.at:5351 policy.at policy features; -41;policy.at:6072;policy - target;offline features/policy.at:6072 features/policy.at policy.at:6072 policy.at policy features; -42;policy.at:6121;policy - from file;offline features/policy.at:6121 features/policy.at policy.at:6121 policy.at policy features; -43;policy.at:6138;policy - zone drifting not allowed;offline features/policy.at:6138 features/policy.at policy.at:6138 policy.at policy features gh797; -44;policy.at:6300;policy - multiple using same zone source;offline features/policy.at:6300 features/policy.at policy.at:6300 policy.at policy features source; +40;policy.at:5352;policy - interfaces/sources;offline features/policy.at:5352 features/policy.at policy.at:5352 policy.at policy features; +41;policy.at:6073;policy - target;offline features/policy.at:6073 features/policy.at policy.at:6073 policy.at policy features; +42;policy.at:6122;policy - from file;offline features/policy.at:6122 features/policy.at policy.at:6122 policy.at policy features; +43;policy.at:6139;policy - zone drifting not allowed;offline features/policy.at:6139 features/policy.at policy.at:6139 policy.at policy features gh797; +44;policy.at:6301;policy - multiple using same zone source;offline features/policy.at:6301 features/policy.at policy.at:6301 policy.at policy features source; 45;services.at:1;services;offline features/services.at:1 features/services.at services.at:1 services.at services features policy service; 46;ports.at:1;ports;offline features/ports.at:1 features/ports.at ports.at:1 ports.at ports features policy port; 47;source_ports.at:1;source ports;offline features/source_ports.at:1 features/source_ports.at source_ports.at:1 source_ports.at source_ports features policy source_port; @@ -647,293 +667,317 @@ at_help_all="1;firewall-cmd.at:5;basic options;offline cli/firewall-cmd.at:5 cli 55;rich_tcp_mss_clamp.at:5;tcp-mss-clamp;offline features/rich_tcp_mss_clamp.at:5 features/rich_tcp_mss_clamp.at rich_tcp_mss_clamp.at:5 rich_tcp_mss_clamp.at rich_tcp_mss_clamp features tcp-mss-clamp gh1121; 56;rich_destination_ipset.at:1;rich destination ipset;offline features/rich_destination_ipset.at:1 features/rich_destination_ipset.at rich_destination_ipset.at:1 rich_destination_ipset.at rich_destination_ipset features rich ipset; 57;zone.at:1;zone - target;offline features/zone.at:1 features/zone.at zone.at:1 zone.at zone features; -58;rpfilter.at:1;rpfilter;offline features/rpfilter.at:1 features/rpfilter.at rpfilter.at:1 rpfilter.at rpfilter features; -59;zone_combine.at:1;zone - combine;offline features/zone_combine.at:1 features/zone_combine.at zone_combine.at:1 zone_combine.at zone_combine features zone; -60;ipset_defer_native_ipset_creation.at:1;ipset defer native creation;offline features/ipset_defer_native_ipset_creation.at:1 features/ipset_defer_native_ipset_creation.at ipset_defer_native_ipset_creation.at:1 ipset_defer_native_ipset_creation.at ipset_defer_native_ipset_creation features ipset direct rhbz2122678; -61;reset_defaults.at:1;reset defaults;offline features/reset_defaults.at:1 features/reset_defaults.at reset_defaults.at:1 reset_defaults.at reset_defaults features reset; -62;zone_priority.at:1;zone - priority;offline features/zone_priority.at:1 features/zone_priority.at zone_priority.at:1 zone_priority.at zone_priority features zone; -63;reloadpolicy.at:1;check ReloadPolicy;offline features/reloadpolicy.at:1 features/reloadpolicy.at reloadpolicy.at:1 reloadpolicy.at reloadpolicy features rhbz2149039; -64;firewall-offline-cmd.at:19;lokkit migration;offline cli/firewall-offline-cmd.at:19 cli/firewall-offline-cmd.at firewall-offline-cmd.at:19 firewall-offline-cmd.at firewall-offline-cmd cli lokkit; -65;firewalld.conf.at:1;firewalld.conf;nftables dbus/firewalld.conf.at:1 dbus/firewalld.conf.at firewalld.conf.at:1 firewalld.conf.at firewalld.conf dbus; -66;service.at:1;dbus api - services;nftables dbus/service.at:1 dbus/service.at service.at:1 service.at service dbus rhbz1721414 rhbz1737045 gh514; -67;zone_permanent_signatures.at:1;dbus api - zone permanent signatures;nftables dbus/zone_permanent_signatures.at:1 dbus/zone_permanent_signatures.at zone_permanent_signatures.at:1 zone_permanent_signatures.at zone_permanent_signatures dbus zone gh586 gh613; -68;zone_runtime_signatures.at:1;dbus api - zone runtime signatures;nftables dbus/zone_runtime_signatures.at:1 dbus/zone_runtime_signatures.at zone_runtime_signatures.at:1 zone_runtime_signatures.at zone_runtime_signatures dbus zone gh586 gh613; -69;zone_permanent_functional.at:1;dbus api - zone permanent functional;nftables dbus/zone_permanent_functional.at:1 dbus/zone_permanent_functional.at zone_permanent_functional.at:1 zone_permanent_functional.at zone_permanent_functional dbus zone gh586 gh613; -70;zone_runtime_functional.at:1;dbus api - zone runtime functional;nftables dbus/zone_runtime_functional.at:1 dbus/zone_runtime_functional.at zone_runtime_functional.at:1 zone_runtime_functional.at zone_runtime_functional dbus zone gh586 gh613; -71;policy_permanent_signatures.at:1;dbus api - policy permanent signatures;nftables dbus/policy_permanent_signatures.at:1 dbus/policy_permanent_signatures.at policy_permanent_signatures.at:1 policy_permanent_signatures.at policy_permanent_signatures dbus policy; -72;policy_runtime_signatures.at:1;dbus api - policy runtime signatures;nftables dbus/policy_runtime_signatures.at:1 dbus/policy_runtime_signatures.at policy_runtime_signatures.at:1 policy_runtime_signatures.at policy_runtime_signatures dbus policy; -73;policy_permanent_functional.at:1;dbus api - policy permanent functional;nftables dbus/policy_permanent_functional.at:1 dbus/policy_permanent_functional.at policy_permanent_functional.at:1 policy_permanent_functional.at policy_permanent_functional dbus policy; -74;policy_runtime_functional.at:1;dbus api - policy runtime functional;nftables dbus/policy_runtime_functional.at:1 dbus/policy_runtime_functional.at policy_runtime_functional.at:1 policy_runtime_functional.at policy_runtime_functional dbus policy; -75;direct.at:1;dbus api - direct signatures;nftables dbus/direct.at:1 dbus/direct.at direct.at:1 direct.at direct dbus; -76;firewall-cmd.at:5;basic options;nftables cli/firewall-cmd.at:5 cli/firewall-cmd.at firewall-cmd.at:5 firewall-cmd.at firewall-cmd cli panic reload gh808; -77;firewall-cmd.at:34;get/list options;nftables cli/firewall-cmd.at:34 cli/firewall-cmd.at firewall-cmd.at:34 firewall-cmd.at firewall-cmd cli zone service icmp; -78;firewall-cmd.at:50;default zone;nftables cli/firewall-cmd.at:50 cli/firewall-cmd.at firewall-cmd.at:50 firewall-cmd.at firewall-cmd cli zone; -79;firewall-cmd.at:62;user zone;nftables cli/firewall-cmd.at:62 cli/firewall-cmd.at firewall-cmd.at:62 firewall-cmd.at firewall-cmd cli zone; -80;firewall-cmd.at:82;zone interfaces;nftables cli/firewall-cmd.at:82 cli/firewall-cmd.at firewall-cmd.at:82 firewall-cmd.at firewall-cmd cli zone; -81;firewall-cmd.at:170;zone sources;nftables cli/firewall-cmd.at:170 cli/firewall-cmd.at firewall-cmd.at:170 firewall-cmd.at firewall-cmd cli zone; -82;firewall-cmd.at:223;services;nftables cli/firewall-cmd.at:223 cli/firewall-cmd.at firewall-cmd.at:223 firewall-cmd.at firewall-cmd cli service; -83;firewall-cmd.at:267;user services;nftables cli/firewall-cmd.at:267 cli/firewall-cmd.at firewall-cmd.at:267 firewall-cmd.at firewall-cmd cli service; -84;firewall-cmd.at:349;ports;nftables cli/firewall-cmd.at:349 cli/firewall-cmd.at firewall-cmd.at:349 firewall-cmd.at firewall-cmd cli port; -85;firewall-cmd.at:406;source ports;nftables cli/firewall-cmd.at:406 cli/firewall-cmd.at firewall-cmd.at:406 firewall-cmd.at firewall-cmd cli port; -86;firewall-cmd.at:443;protocols;nftables cli/firewall-cmd.at:443 cli/firewall-cmd.at firewall-cmd.at:443 firewall-cmd.at firewall-cmd cli protocol; -87;firewall-cmd.at:471;masquerade;nftables cli/firewall-cmd.at:471 cli/firewall-cmd.at firewall-cmd.at:471 firewall-cmd.at firewall-cmd cli masquerade nat; -88;firewall-cmd.at:498;forward;nftables cli/firewall-cmd.at:498 cli/firewall-cmd.at firewall-cmd.at:498 firewall-cmd.at firewall-cmd cli forward gh586 gh613; -89;firewall-cmd.at:686;forward ports;nftables cli/firewall-cmd.at:686 cli/firewall-cmd.at firewall-cmd.at:686 firewall-cmd.at firewall-cmd cli port forward_port; -90;firewall-cmd.at:785;ICMP block;nftables cli/firewall-cmd.at:785 cli/firewall-cmd.at firewall-cmd.at:785 firewall-cmd.at firewall-cmd cli icmp; -91;firewall-cmd.at:831;user ICMP types;nftables cli/firewall-cmd.at:831 cli/firewall-cmd.at firewall-cmd.at:831 firewall-cmd.at firewall-cmd cli icmp; -92;firewall-cmd.at:854;ipset;nftables cli/firewall-cmd.at:854 cli/firewall-cmd.at firewall-cmd.at:854 firewall-cmd.at firewall-cmd cli ipset rhbz1685256; -93;firewall-cmd.at:1063;user helpers;nftables cli/firewall-cmd.at:1063 cli/firewall-cmd.at firewall-cmd.at:1063 firewall-cmd.at firewall-cmd cli helper; -94;firewall-cmd.at:1091;direct;nftables cli/firewall-cmd.at:1091 cli/firewall-cmd.at firewall-cmd.at:1091 firewall-cmd.at firewall-cmd cli direct; -95;firewall-cmd.at:1165;direct nat;nftables cli/firewall-cmd.at:1165 cli/firewall-cmd.at firewall-cmd.at:1165 firewall-cmd.at firewall-cmd cli direct nat; -96;firewall-cmd.at:1190;direct passthrough;nftables cli/firewall-cmd.at:1190 cli/firewall-cmd.at firewall-cmd.at:1190 firewall-cmd.at firewall-cmd cli direct passthrough; -97;firewall-cmd.at:1228;direct ebtables;nftables cli/firewall-cmd.at:1228 cli/firewall-cmd.at firewall-cmd.at:1228 firewall-cmd.at firewall-cmd cli direct ebtables; -98;firewall-cmd.at:1274;lockdown;nftables cli/firewall-cmd.at:1274 cli/firewall-cmd.at firewall-cmd.at:1274 firewall-cmd.at firewall-cmd cli lockdown; -99;firewall-cmd.at:1341;rich rules good;nftables cli/firewall-cmd.at:1341 cli/firewall-cmd.at firewall-cmd.at:1341 firewall-cmd.at firewall-cmd cli rich; -100;firewall-cmd.at:1375;rich rules audit;nftables cli/firewall-cmd.at:1375 cli/firewall-cmd.at firewall-cmd.at:1375 firewall-cmd.at firewall-cmd cli rich; -101;firewall-cmd.at:1383;rich rules priority;nftables cli/firewall-cmd.at:1383 cli/firewall-cmd.at firewall-cmd.at:1383 firewall-cmd.at firewall-cmd cli rich; -102;firewall-cmd.at:1938;rich rules bad;nftables cli/firewall-cmd.at:1938 cli/firewall-cmd.at firewall-cmd.at:1938 firewall-cmd.at firewall-cmd cli rich; -103;firewall-cmd.at:1981;config validation;nftables cli/firewall-cmd.at:1981 cli/firewall-cmd.at firewall-cmd.at:1981 firewall-cmd.at firewall-cmd cli check_config; -104;rhbz1514043.at:1;--set-log-denied does not zero config;nftables regression/rhbz1514043.at:1 regression/rhbz1514043.at rhbz1514043.at:1 rhbz1514043.at rhbz1514043 regression log_denied; -105;rhbz1498923.at:1;invalid direct rule causes reload error;nftables regression/rhbz1498923.at:1 regression/rhbz1498923.at rhbz1498923.at:1 rhbz1498923.at rhbz1498923 regression direct reload; -106;pr181.at:1;combined zones name length check;nftables regression/pr181.at:1 regression/pr181.at pr181.at:1 pr181.at pr181 regression zone gh181; -107;gh287.at:1;ICMP block inversion;nftables regression/gh287.at:1 regression/gh287.at gh287.at:1 gh287.at gh287 regression icmp; -108;individual_calls.at:1;individual calls;nftables regression/individual_calls.at:1 regression/individual_calls.at individual_calls.at:1 individual_calls.at individual_calls regression; -109;rhbz1534571.at:3;rule deduplication;nftables regression/rhbz1534571.at:3 regression/rhbz1534571.at rhbz1534571.at:3 rhbz1534571.at rhbz1534571 regression; -110;gh290.at:1;invalid syntax in xml files;nftables regression/gh290.at:1 regression/gh290.at gh290.at:1 gh290.at gh290 regression xml direct; -111;gh290.at:19;invalid syntax in xml files;nftables regression/gh290.at:19 regression/gh290.at gh290.at:19 gh290.at gh290 regression xml zone; -112;icmp_block_in_forward_chain.at:1;ICMP block not present FORWARD chain;nftables regression/icmp_block_in_forward_chain.at:1 regression/icmp_block_in_forward_chain.at icmp_block_in_forward_chain.at:1 icmp_block_in_forward_chain.at icmp_block_in_forward_chain regression icmp; -113;pr323.at:1;GRE proto helper;nftables regression/pr323.at:1 regression/pr323.at pr323.at:1 pr323.at pr323 regression helper gh323; -114;rhbz1506742.at:1;ipset with timeout;nftables regression/rhbz1506742.at:1 regression/rhbz1506742.at rhbz1506742.at:1 rhbz1506742.at rhbz1506742 regression ipset rhbz2055330 gh699 gh908; -115;rhbz1594657.at:1;no log untracked passthrough queries;nftables regression/rhbz1594657.at:1 regression/rhbz1594657.at rhbz1594657.at:1 rhbz1594657.at rhbz1594657 regression direct passthrough; -116;rhbz1571957.at:1;set-log-denied w/ ICMP block inversion;nftables regression/rhbz1571957.at:1 regression/rhbz1571957.at rhbz1571957.at:1 rhbz1571957.at rhbz1571957 regression log_denied icmp; -117;rhbz1404076.at:1;query single port added with range;nftables regression/rhbz1404076.at:1 regression/rhbz1404076.at rhbz1404076.at:1 rhbz1404076.at rhbz1404076 regression port; -118;gh366.at:1;service destination multiple IP versions;nftables regression/gh366.at:1 regression/gh366.at gh366.at:1 gh366.at gh366 regression service; -119;rhbz1601610.at:1;ipset duplicate entries;nftables regression/rhbz1601610.at:1 regression/rhbz1601610.at rhbz1601610.at:1 rhbz1601610.at rhbz1601610 regression ipset; -120;gh303.at:1;unicode in XML;nftables regression/gh303.at:1 regression/gh303.at gh303.at:1 gh303.at gh303 regression xml unicode service; -121;gh335.at:1;forward-port toaddr enables IP forwarding;nftables regression/gh335.at:1 regression/gh335.at gh335.at:1 gh335.at gh335 regression port forward_port; -122;gh482.at:1;remove forward-port after reload;nftables regression/gh482.at:1 regression/gh482.at gh482.at:1 gh482.at gh482 regression rhbz1637675 rich forward_port; -123;gh478.at:1;rich rule marks every packet;nftables regression/gh478.at:1 regression/gh478.at gh478.at:1 gh478.at gh478 regression rich mark; -124;gh453.at:1;nftables helper objects;nftables regression/gh453.at:1 regression/gh453.at gh453.at:1 gh453.at gh453 regression helper; -125;gh258.at:1;zone dispatch layout;nftables regression/gh258.at:1 regression/gh258.at gh258.at:1 gh258.at gh258 regression zone gh441 rhbz1713823; -126;rhbz1715977.at:1;rich rule src/dst with service destination;nftables regression/rhbz1715977.at:1 regression/rhbz1715977.at rhbz1715977.at:1 rhbz1715977.at rhbz1715977 regression rich service rhbz1729097 rhbz1791783; -127;rhbz1723610.at:1;direct remove-rules per family;nftables regression/rhbz1723610.at:1 regression/rhbz1723610.at rhbz1723610.at:1 rhbz1723610.at rhbz1723610 regression direct gh385; -128;rhbz1734765.at:1;zone sources ordered by name;nftables regression/rhbz1734765.at:1 regression/rhbz1734765.at rhbz1734765.at:1 rhbz1734765.at rhbz1734765 regression zone rhbz1421222 gh166 rhbz1738545; -129;gh509.at:1;missing firewalld.conf file;nftables regression/gh509.at:1 regression/gh509.at gh509.at:1 gh509.at gh509 regression; -130;gh567.at:1;rich rule source w/ mark action;nftables regression/gh567.at:1 regression/gh567.at gh567.at:1 gh567.at gh567 regression rich ipset; -131;rhbz1779835.at:1;ipv6 address with brackets;nftables regression/rhbz1779835.at:1 regression/rhbz1779835.at rhbz1779835.at:1 rhbz1779835.at rhbz1779835 regression ipset; -132;rhbz1779835.at:16;ipv6 address with brackets;nftables regression/rhbz1779835.at:16 regression/rhbz1779835.at rhbz1779835.at:16 rhbz1779835.at rhbz1779835 regression zone forward_port rich; -133;gh330.at:1;ipset cleanup on reload/stop;nftables regression/gh330.at:1 regression/gh330.at gh330.at:1 gh330.at gh330 regression ipset reload rhbz1682913 rhbz1790948 rhbz1809225; -134;gh599.at:1;writing to log after copytruncate;nftables regression/gh599.at:1 regression/gh599.at gh599.at:1 gh599.at gh599 regression; -135;rhbz1843398.at:1;rich rule source mac;nftables regression/rhbz1843398.at:1 regression/rhbz1843398.at rhbz1843398.at:1 rhbz1843398.at rhbz1843398 regression rich gh643; -136;rhbz1839781.at:1;service RH-Satellite-6;nftables regression/rhbz1839781.at:1 regression/rhbz1839781.at rhbz1839781.at:1 rhbz1839781.at rhbz1839781 regression service; -137;rhbz1689429.at:1;rich rule invalid priority;nftables regression/rhbz1689429.at:1 regression/rhbz1689429.at rhbz1689429.at:1 rhbz1689429.at rhbz1689429 regression rich; -138;rhbz1483921.at:1;direct and zone mutually exclusive;nftables regression/rhbz1483921.at:1 regression/rhbz1483921.at rhbz1483921.at:1 rhbz1483921.at rhbz1483921 regression direct; -139;rhbz1541077.at:1;hash:mac and family mutually exclusive;nftables regression/rhbz1541077.at:1 regression/rhbz1541077.at rhbz1541077.at:1 rhbz1541077.at rhbz1541077 regression ipset; -140;rhbz1855140.at:1;rich rule icmptypes with one family;nftables regression/rhbz1855140.at:1 regression/rhbz1855140.at rhbz1855140.at:1 rhbz1855140.at rhbz1855140 regression rich icmp; -141;rhbz1871298.at:1;rich rule parsing bottleneck;nftables regression/rhbz1871298.at:1 regression/rhbz1871298.at rhbz1871298.at:1 rhbz1871298.at rhbz1871298 regression rich offline; -142;rhbz1596304.at:1;rich rules strip non-printable characters;nftables regression/rhbz1596304.at:1 regression/rhbz1596304.at rhbz1596304.at:1 rhbz1596304.at rhbz1596304 regression rich; -143;gh703.at:1;add source with mac address;nftables regression/gh703.at:1 regression/gh703.at gh703.at:1 gh703.at gh703 regression; -144;ipset_netmask_allowed.at:1;ipset netmask allowed type hash:ip;nftables regression/ipset_netmask_allowed.at:1 regression/ipset_netmask_allowed.at ipset_netmask_allowed.at:1 ipset_netmask_allowed.at ipset_netmask_allowed regression ipset reload; -145;rhbz1940928.at:1;direct -s/-d multiple addresses;nftables regression/rhbz1940928.at:1 regression/rhbz1940928.at rhbz1940928.at:1 rhbz1940928.at rhbz1940928 regression direct rhbz1949552; -146;rhbz1936896.at:1;ipset type hash:net,net;nftables regression/rhbz1936896.at:1 regression/rhbz1936896.at rhbz1936896.at:1 rhbz1936896.at rhbz1936896 regression; -147;gh795.at:1;ipset entry delete w/ timeout=0;nftables regression/gh795.at:1 regression/gh795.at gh795.at:1 gh795.at gh795 regression ipset gh794; -148;rhbz1914935.at:1;zone overlapping ports;nftables regression/rhbz1914935.at:1 regression/rhbz1914935.at rhbz1914935.at:1 rhbz1914935.at rhbz1914935 regression zone port; -149;gh696.at:1;icmp-block-inversion no log blocked;nftables regression/gh696.at:1 regression/gh696.at gh696.at:1 gh696.at gh696 regression icmp rhbz1945833; -150;rhbz1917766.at:1;rich rule source with netmask;nftables regression/rhbz1917766.at:1 regression/rhbz1917766.at rhbz1917766.at:1 rhbz1917766.at rhbz1917766 regression rich; -151;rhbz2014383.at:1;same source in two zone xml;nftables regression/rhbz2014383.at:1 regression/rhbz2014383.at rhbz2014383.at:1 rhbz2014383.at rhbz2014383 regression zone; -152;gh874.at:1;policy masquerade w/ ingress interface;nftables regression/gh874.at:1 regression/gh874.at gh874.at:1 gh874.at gh874 regression policy zone masquerade gh926; -153;gh881.at:1;ipset entry overlap detect perf;nftables regression/gh881.at:1 regression/gh881.at gh881.at:1 gh881.at gh881 regression ipset; -154;service_includes_for_builtin.at:1;service include for built-in;nftables regression/service_includes_for_builtin.at:1 regression/service_includes_for_builtin.at service_includes_for_builtin.at:1 service_includes_for_builtin.at service_includes_for_builtin regression dbus service service_includes_for_built-in; -155;gh940.at:1;log prefix;nftables regression/gh940.at:1 regression/gh940.at gh940.at:1 gh940.at gh940 regression policy; -156;build_policy_split_wildcard.at:1;build policy split wildcards;nftables regression/build_policy_split_wildcard.at:1 regression/build_policy_split_wildcard.at build_policy_split_wildcard.at:1 build_policy_split_wildcard.at build_policy_split_wildcard regression gh892 policy; -157;gh1011.at:1;remove entries results in empty;nftables regression/gh1011.at:1 regression/gh1011.at gh1011.at:1 gh1011.at gh1011 regression ipset rhbz2121985; -158;rhbz2181406.at:1;rich rule limit;nftables regression/rhbz2181406.at:1 regression/rhbz2181406.at rhbz2181406.at:1 rhbz2181406.at rhbz2181406 regression rich; -159;ipset_scale.at:1;ipset scale;nftables regression/ipset_scale.at:1 regression/ipset_scale.at ipset_scale.at:1 ipset_scale.at ipset_scale regression ipset gh738; -160;gh1129.at:1;switch backend to iptables and reload;nftables regression/gh1129.at:1 regression/gh1129.at gh1129.at:1 gh1129.at gh1129 regression; -161;gh1146.at:1;policy with mixed family zone source;nftables regression/gh1146.at:1 regression/gh1146.at gh1146.at:1 gh1146.at gh1146 regression policy; -162;gh1152.at:1;list-all identical content;nftables regression/gh1152.at:1 regression/gh1152.at gh1152.at:1 gh1152.at gh1152 regression cli; -163;rhbz2222044.at:1;duplicate rules after restart;nftables regression/rhbz2222044.at:1 regression/rhbz2222044.at rhbz2222044.at:1 rhbz2222044.at rhbz2222044 regression; -164;gh1229.at:1;policy dispatch with egress-zone=ANY;nftables regression/gh1229.at:1 regression/gh1229.at gh1229.at:1 gh1229.at gh1229 regression policy gh1234; -165;gh1278.at:1;policy dispatch update if active;nftables regression/gh1278.at:1 regression/gh1278.at gh1278.at:1 gh1278.at gh1278 regression source policy; -166;python.at:3;firewalld_misc.py;nftables python/python.at:3 python/python.at python.at:3 python.at python; -167;python.at:8;firewalld_config.py;nftables python/python.at:8 python/python.at python.at:8 python.at python; -168;python.at:13;firewalld_rich.py;nftables python/python.at:13 python/python.at python.at:13 python.at python; -169;python.at:18;firewalld_direct.py;nftables python/python.at:18 python/python.at python.at:18 python.at python; -170;rfc3964_ipv4.at:1;RFC3964_IPv4;nftables features/rfc3964_ipv4.at:1 features/rfc3964_ipv4.at rfc3964_ipv4.at:1 rfc3964_ipv4.at rfc3964_ipv4 features; -171;service_include.at:1;service include;nftables features/service_include.at:1 features/service_include.at service_include.at:1 service_include.at service_include features service xml gh273 rhbz1720300 gh707 gh1075; -172;helpers_custom.at:1;customer helpers;nftables features/helpers_custom.at:1 features/helpers_custom.at helpers_custom.at:1 helpers_custom.at helpers_custom features helpers rhbz1733066 gh514 rhbz1769520; -173;policy.at:5;policy - xml;nftables features/policy.at:5 features/policy.at policy.at:5 policy.at policy features xml; -174;policy.at:79;policy - create;nftables features/policy.at:79 features/policy.at policy.at:79 policy.at policy features; -175;policy.at:96;policy - name;nftables features/policy.at:96 features/policy.at policy.at:96 policy.at policy features; -176;policy.at:109;policy - list;nftables features/policy.at:109 features/policy.at policy.at:109 policy.at policy features; -177;policy.at:231;policy - options;nftables features/policy.at:231 features/policy.at policy.at:231 policy.at policy features; -178;policy.at:286;policy - priority;nftables features/policy.at:286 features/policy.at policy.at:286 policy.at policy features; -179;policy.at:470;policy - zones;nftables features/policy.at:470 features/policy.at policy.at:470 policy.at policy features; -180;policy.at:822;policy - dispatch;nftables features/policy.at:822 features/policy.at policy.at:822 policy.at policy features; -181;policy.at:5351;policy - interfaces/sources;nftables features/policy.at:5351 features/policy.at policy.at:5351 policy.at policy features; -182;policy.at:6072;policy - target;nftables features/policy.at:6072 features/policy.at policy.at:6072 policy.at policy features; -183;policy.at:6121;policy - from file;nftables features/policy.at:6121 features/policy.at policy.at:6121 policy.at policy features; -184;policy.at:6138;policy - zone drifting not allowed;nftables features/policy.at:6138 features/policy.at policy.at:6138 policy.at policy features gh797; -185;policy.at:6300;policy - multiple using same zone source;nftables features/policy.at:6300 features/policy.at policy.at:6300 policy.at policy features source; -186;services.at:1;services;nftables features/services.at:1 features/services.at services.at:1 services.at services features policy service; -187;ports.at:1;ports;nftables features/ports.at:1 features/ports.at ports.at:1 ports.at ports features policy port; -188;source_ports.at:1;source ports;nftables features/source_ports.at:1 features/source_ports.at source_ports.at:1 source_ports.at source_ports features policy source_port; -189;forward_ports.at:1;forward ports;nftables features/forward_ports.at:1 features/forward_ports.at forward_ports.at:1 forward_ports.at forward_ports features policy forward_port; -190;forward_ports.at:207;forward ports (OUTPUT);nftables features/forward_ports.at:207 features/forward_ports.at forward_ports.at:207 forward_ports.at forward_ports features policy forward_port rhbz2039542; -191;forward_ports.at:287;forward ports - logging and limiting;nftables features/forward_ports.at:287 features/forward_ports.at forward_ports.at:287 forward_ports.at forward_ports features forward_port rich logging limit; -192;masquerade.at:1;masquerade;nftables features/masquerade.at:1 features/masquerade.at masquerade.at:1 masquerade.at masquerade features policy gh926; -193;protocols.at:1;protocols;nftables features/protocols.at:1 features/protocols.at protocols.at:1 protocols.at protocols features policy protocol; -194;rich_rules.at:1;rich rules;nftables features/rich_rules.at:1 features/rich_rules.at rich_rules.at:1 rich_rules.at rich_rules features policy rich; -195;icmp_blocks.at:1;ICMP blocks;nftables features/icmp_blocks.at:1 features/icmp_blocks.at icmp_blocks.at:1 icmp_blocks.at icmp_blocks features policy icmp_block; -196;rich_tcp_mss_clamp.at:5;tcp-mss-clamp;nftables features/rich_tcp_mss_clamp.at:5 features/rich_tcp_mss_clamp.at rich_tcp_mss_clamp.at:5 rich_tcp_mss_clamp.at rich_tcp_mss_clamp features tcp-mss-clamp gh1121; -197;rich_destination_ipset.at:1;rich destination ipset;nftables features/rich_destination_ipset.at:1 features/rich_destination_ipset.at rich_destination_ipset.at:1 rich_destination_ipset.at rich_destination_ipset features rich ipset; -198;zone.at:1;zone - target;nftables features/zone.at:1 features/zone.at zone.at:1 zone.at zone features; -199;rpfilter.at:1;rpfilter;nftables features/rpfilter.at:1 features/rpfilter.at rpfilter.at:1 rpfilter.at rpfilter features; -200;zone_combine.at:1;zone - combine;nftables features/zone_combine.at:1 features/zone_combine.at zone_combine.at:1 zone_combine.at zone_combine features zone; -201;startup_failsafe.at:1;startup failsafe - invalid xml;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; -202;startup_failsafe.at:1;startup failsafe - bad zone;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; -203;startup_failsafe.at:1;startup failsafe - bad policy;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; -204;startup_failsafe.at:1;startup failsafe - non-existent service;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; -205;startup_failsafe.at:1;startup failsafe - non-existent icmptype;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; -206;startup_failsafe.at:1;startup failsafe - bad direct;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; -207;startup_failsafe.at:1;startup failsafe - broken stock config;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features; -208;ipset_defer_native_ipset_creation.at:1;ipset defer native creation;nftables features/ipset_defer_native_ipset_creation.at:1 features/ipset_defer_native_ipset_creation.at ipset_defer_native_ipset_creation.at:1 ipset_defer_native_ipset_creation.at ipset_defer_native_ipset_creation features ipset direct rhbz2122678; -209;reset_defaults.at:1;reset defaults;nftables features/reset_defaults.at:1 features/reset_defaults.at reset_defaults.at:1 reset_defaults.at reset_defaults features reset; -210;iptables_no_flush_on_shutdown.at:1;avoid iptables flush if using nftables;nftables features/iptables_no_flush_on_shutdown.at:1 features/iptables_no_flush_on_shutdown.at iptables_no_flush_on_shutdown.at:1 iptables_no_flush_on_shutdown.at iptables_no_flush_on_shutdown features direct gh863; -211;zone_priority.at:1;zone - priority;nftables features/zone_priority.at:1 features/zone_priority.at zone_priority.at:1 zone_priority.at zone_priority features zone; -212;nftables_flowtable.at:1;nftables flowtable;nftables features/nftables_flowtable.at:1 features/nftables_flowtable.at nftables_flowtable.at:1 nftables_flowtable.at nftables_flowtable features flowtable; -213;nftables_counters.at:1;nftables counters;nftables features/nftables_counters.at:1 features/nftables_counters.at nftables_counters.at:1 nftables_counters.at nftables_counters features counters; -214;reloadpolicy.at:1;check ReloadPolicy;nftables features/reloadpolicy.at:1 features/reloadpolicy.at reloadpolicy.at:1 reloadpolicy.at reloadpolicy features rhbz2149039; -215;firewall-cmd.at:5;basic options;iptables cli/firewall-cmd.at:5 cli/firewall-cmd.at firewall-cmd.at:5 firewall-cmd.at firewall-cmd cli panic reload gh808; -216;firewall-cmd.at:34;get/list options;iptables cli/firewall-cmd.at:34 cli/firewall-cmd.at firewall-cmd.at:34 firewall-cmd.at firewall-cmd cli zone service icmp; -217;firewall-cmd.at:50;default zone;iptables cli/firewall-cmd.at:50 cli/firewall-cmd.at firewall-cmd.at:50 firewall-cmd.at firewall-cmd cli zone; -218;firewall-cmd.at:62;user zone;iptables cli/firewall-cmd.at:62 cli/firewall-cmd.at firewall-cmd.at:62 firewall-cmd.at firewall-cmd cli zone; -219;firewall-cmd.at:82;zone interfaces;iptables cli/firewall-cmd.at:82 cli/firewall-cmd.at firewall-cmd.at:82 firewall-cmd.at firewall-cmd cli zone; -220;firewall-cmd.at:170;zone sources;iptables cli/firewall-cmd.at:170 cli/firewall-cmd.at firewall-cmd.at:170 firewall-cmd.at firewall-cmd cli zone; -221;firewall-cmd.at:223;services;iptables cli/firewall-cmd.at:223 cli/firewall-cmd.at firewall-cmd.at:223 firewall-cmd.at firewall-cmd cli service; -222;firewall-cmd.at:267;user services;iptables cli/firewall-cmd.at:267 cli/firewall-cmd.at firewall-cmd.at:267 firewall-cmd.at firewall-cmd cli service; -223;firewall-cmd.at:349;ports;iptables cli/firewall-cmd.at:349 cli/firewall-cmd.at firewall-cmd.at:349 firewall-cmd.at firewall-cmd cli port; -224;firewall-cmd.at:406;source ports;iptables cli/firewall-cmd.at:406 cli/firewall-cmd.at firewall-cmd.at:406 firewall-cmd.at firewall-cmd cli port; -225;firewall-cmd.at:443;protocols;iptables cli/firewall-cmd.at:443 cli/firewall-cmd.at firewall-cmd.at:443 firewall-cmd.at firewall-cmd cli protocol; -226;firewall-cmd.at:471;masquerade;iptables cli/firewall-cmd.at:471 cli/firewall-cmd.at firewall-cmd.at:471 firewall-cmd.at firewall-cmd cli masquerade nat; -227;firewall-cmd.at:498;forward;iptables cli/firewall-cmd.at:498 cli/firewall-cmd.at firewall-cmd.at:498 firewall-cmd.at firewall-cmd cli forward gh586 gh613; -228;firewall-cmd.at:686;forward ports;iptables cli/firewall-cmd.at:686 cli/firewall-cmd.at firewall-cmd.at:686 firewall-cmd.at firewall-cmd cli port forward_port; -229;firewall-cmd.at:785;ICMP block;iptables cli/firewall-cmd.at:785 cli/firewall-cmd.at firewall-cmd.at:785 firewall-cmd.at firewall-cmd cli icmp; -230;firewall-cmd.at:831;user ICMP types;iptables cli/firewall-cmd.at:831 cli/firewall-cmd.at firewall-cmd.at:831 firewall-cmd.at firewall-cmd cli icmp; -231;firewall-cmd.at:854;ipset;iptables cli/firewall-cmd.at:854 cli/firewall-cmd.at firewall-cmd.at:854 firewall-cmd.at firewall-cmd cli ipset rhbz1685256; -232;firewall-cmd.at:1063;user helpers;iptables cli/firewall-cmd.at:1063 cli/firewall-cmd.at firewall-cmd.at:1063 firewall-cmd.at firewall-cmd cli helper; -233;firewall-cmd.at:1091;direct;iptables cli/firewall-cmd.at:1091 cli/firewall-cmd.at firewall-cmd.at:1091 firewall-cmd.at firewall-cmd cli direct; -234;firewall-cmd.at:1165;direct nat;iptables cli/firewall-cmd.at:1165 cli/firewall-cmd.at firewall-cmd.at:1165 firewall-cmd.at firewall-cmd cli direct nat; -235;firewall-cmd.at:1190;direct passthrough;iptables cli/firewall-cmd.at:1190 cli/firewall-cmd.at firewall-cmd.at:1190 firewall-cmd.at firewall-cmd cli direct passthrough; -236;firewall-cmd.at:1228;direct ebtables;iptables cli/firewall-cmd.at:1228 cli/firewall-cmd.at firewall-cmd.at:1228 firewall-cmd.at firewall-cmd cli direct ebtables; -237;firewall-cmd.at:1274;lockdown;iptables cli/firewall-cmd.at:1274 cli/firewall-cmd.at firewall-cmd.at:1274 firewall-cmd.at firewall-cmd cli lockdown; -238;firewall-cmd.at:1341;rich rules good;iptables cli/firewall-cmd.at:1341 cli/firewall-cmd.at firewall-cmd.at:1341 firewall-cmd.at firewall-cmd cli rich; -239;firewall-cmd.at:1375;rich rules audit;iptables cli/firewall-cmd.at:1375 cli/firewall-cmd.at firewall-cmd.at:1375 firewall-cmd.at firewall-cmd cli rich; -240;firewall-cmd.at:1383;rich rules priority;iptables cli/firewall-cmd.at:1383 cli/firewall-cmd.at firewall-cmd.at:1383 firewall-cmd.at firewall-cmd cli rich; -241;firewall-cmd.at:1938;rich rules bad;iptables cli/firewall-cmd.at:1938 cli/firewall-cmd.at firewall-cmd.at:1938 firewall-cmd.at firewall-cmd cli rich; -242;firewall-cmd.at:1981;config validation;iptables cli/firewall-cmd.at:1981 cli/firewall-cmd.at firewall-cmd.at:1981 firewall-cmd.at firewall-cmd cli check_config; -243;rhbz1514043.at:1;--set-log-denied does not zero config;iptables regression/rhbz1514043.at:1 regression/rhbz1514043.at rhbz1514043.at:1 rhbz1514043.at rhbz1514043 regression log_denied; -244;rhbz1498923.at:1;invalid direct rule causes reload error;iptables regression/rhbz1498923.at:1 regression/rhbz1498923.at rhbz1498923.at:1 rhbz1498923.at rhbz1498923 regression direct reload; -245;pr181.at:1;combined zones name length check;iptables regression/pr181.at:1 regression/pr181.at pr181.at:1 pr181.at pr181 regression zone gh181; -246;gh287.at:1;ICMP block inversion;iptables regression/gh287.at:1 regression/gh287.at gh287.at:1 gh287.at gh287 regression icmp; -247;individual_calls.at:1;individual calls;iptables regression/individual_calls.at:1 regression/individual_calls.at individual_calls.at:1 individual_calls.at individual_calls regression; -248;rhbz1534571.at:3;rule deduplication;iptables regression/rhbz1534571.at:3 regression/rhbz1534571.at rhbz1534571.at:3 rhbz1534571.at rhbz1534571 regression; -249;gh290.at:1;invalid syntax in xml files;iptables regression/gh290.at:1 regression/gh290.at gh290.at:1 gh290.at gh290 regression xml direct; -250;gh290.at:19;invalid syntax in xml files;iptables regression/gh290.at:19 regression/gh290.at gh290.at:19 gh290.at gh290 regression xml zone; -251;icmp_block_in_forward_chain.at:1;ICMP block not present FORWARD chain;iptables regression/icmp_block_in_forward_chain.at:1 regression/icmp_block_in_forward_chain.at icmp_block_in_forward_chain.at:1 icmp_block_in_forward_chain.at icmp_block_in_forward_chain regression icmp; -252;pr323.at:1;GRE proto helper;iptables regression/pr323.at:1 regression/pr323.at pr323.at:1 pr323.at pr323 regression helper gh323; -253;rhbz1506742.at:1;ipset with timeout;iptables regression/rhbz1506742.at:1 regression/rhbz1506742.at rhbz1506742.at:1 rhbz1506742.at rhbz1506742 regression ipset rhbz2055330 gh699 gh908; -254;rhbz1594657.at:1;no log untracked passthrough queries;iptables regression/rhbz1594657.at:1 regression/rhbz1594657.at rhbz1594657.at:1 rhbz1594657.at rhbz1594657 regression direct passthrough; -255;rhbz1571957.at:1;set-log-denied w/ ICMP block inversion;iptables regression/rhbz1571957.at:1 regression/rhbz1571957.at rhbz1571957.at:1 rhbz1571957.at rhbz1571957 regression log_denied icmp; -256;rhbz1404076.at:1;query single port added with range;iptables regression/rhbz1404076.at:1 regression/rhbz1404076.at rhbz1404076.at:1 rhbz1404076.at rhbz1404076 regression port; -257;gh366.at:1;service destination multiple IP versions;iptables regression/gh366.at:1 regression/gh366.at gh366.at:1 gh366.at gh366 regression service; -258;rhbz1601610.at:1;ipset duplicate entries;iptables regression/rhbz1601610.at:1 regression/rhbz1601610.at rhbz1601610.at:1 rhbz1601610.at rhbz1601610 regression ipset; -259;gh303.at:1;unicode in XML;iptables regression/gh303.at:1 regression/gh303.at gh303.at:1 gh303.at gh303 regression xml unicode service; -260;gh335.at:1;forward-port toaddr enables IP forwarding;iptables regression/gh335.at:1 regression/gh335.at gh335.at:1 gh335.at gh335 regression port forward_port; -261;gh482.at:1;remove forward-port after reload;iptables regression/gh482.at:1 regression/gh482.at gh482.at:1 gh482.at gh482 regression rhbz1637675 rich forward_port; -262;gh478.at:1;rich rule marks every packet;iptables regression/gh478.at:1 regression/gh478.at gh478.at:1 gh478.at gh478 regression rich mark; -263;gh258.at:1;zone dispatch layout;iptables regression/gh258.at:1 regression/gh258.at gh258.at:1 gh258.at gh258 regression zone gh441 rhbz1713823; -264;rhbz1715977.at:1;rich rule src/dst with service destination;iptables regression/rhbz1715977.at:1 regression/rhbz1715977.at rhbz1715977.at:1 rhbz1715977.at rhbz1715977 regression rich service rhbz1729097 rhbz1791783; -265;rhbz1723610.at:1;direct remove-rules per family;iptables regression/rhbz1723610.at:1 regression/rhbz1723610.at rhbz1723610.at:1 rhbz1723610.at rhbz1723610 regression direct gh385; -266;rhbz1734765.at:1;zone sources ordered by name;iptables regression/rhbz1734765.at:1 regression/rhbz1734765.at rhbz1734765.at:1 rhbz1734765.at rhbz1734765 regression zone rhbz1421222 gh166 rhbz1738545; -267;gh567.at:1;rich rule source w/ mark action;iptables regression/gh567.at:1 regression/gh567.at gh567.at:1 gh567.at gh567 regression rich ipset; -268;rhbz1779835.at:1;ipv6 address with brackets;iptables regression/rhbz1779835.at:1 regression/rhbz1779835.at rhbz1779835.at:1 rhbz1779835.at rhbz1779835 regression ipset; -269;rhbz1779835.at:16;ipv6 address with brackets;iptables regression/rhbz1779835.at:16 regression/rhbz1779835.at rhbz1779835.at:16 rhbz1779835.at rhbz1779835 regression zone forward_port rich; -270;gh330.at:1;ipset cleanup on reload/stop;iptables regression/gh330.at:1 regression/gh330.at gh330.at:1 gh330.at gh330 regression ipset reload rhbz1682913 rhbz1790948 rhbz1809225; -271;gh599.at:1;writing to log after copytruncate;iptables regression/gh599.at:1 regression/gh599.at gh599.at:1 gh599.at gh599 regression; -272;rhbz1829104.at:1;direct rule in zone chain;iptables regression/rhbz1829104.at:1 regression/rhbz1829104.at rhbz1829104.at:1 rhbz1829104.at rhbz1829104 regression direct; -273;rhbz1843398.at:1;rich rule source mac;iptables regression/rhbz1843398.at:1 regression/rhbz1843398.at rhbz1843398.at:1 rhbz1843398.at rhbz1843398 regression rich gh643; -274;rhbz1839781.at:1;service RH-Satellite-6;iptables regression/rhbz1839781.at:1 regression/rhbz1839781.at rhbz1839781.at:1 rhbz1839781.at rhbz1839781 regression service; -275;rhbz1689429.at:1;rich rule invalid priority;iptables regression/rhbz1689429.at:1 regression/rhbz1689429.at rhbz1689429.at:1 rhbz1689429.at rhbz1689429 regression rich; -276;rhbz1483921.at:1;direct and zone mutually exclusive;iptables regression/rhbz1483921.at:1 regression/rhbz1483921.at rhbz1483921.at:1 rhbz1483921.at rhbz1483921 regression direct; -277;rhbz1541077.at:1;hash:mac and family mutually exclusive;iptables regression/rhbz1541077.at:1 regression/rhbz1541077.at rhbz1541077.at:1 rhbz1541077.at rhbz1541077 regression ipset; -278;rhbz1855140.at:1;rich rule icmptypes with one family;iptables regression/rhbz1855140.at:1 regression/rhbz1855140.at rhbz1855140.at:1 rhbz1855140.at rhbz1855140 regression rich icmp; -279;rhbz1871298.at:1;rich rule parsing bottleneck;iptables regression/rhbz1871298.at:1 regression/rhbz1871298.at rhbz1871298.at:1 rhbz1871298.at rhbz1871298 regression rich offline; -280;rhbz1596304.at:1;rich rules strip non-printable characters;iptables regression/rhbz1596304.at:1 regression/rhbz1596304.at rhbz1596304.at:1 rhbz1596304.at rhbz1596304 regression rich; -281;gh703.at:1;add source with mac address;iptables regression/gh703.at:1 regression/gh703.at gh703.at:1 gh703.at gh703 regression; -282;ipset_netmask_allowed.at:1;ipset netmask allowed type hash:ip;iptables regression/ipset_netmask_allowed.at:1 regression/ipset_netmask_allowed.at ipset_netmask_allowed.at:1 ipset_netmask_allowed.at ipset_netmask_allowed regression ipset reload; -283;rhbz1940928.at:1;direct -s/-d multiple addresses;iptables regression/rhbz1940928.at:1 regression/rhbz1940928.at rhbz1940928.at:1 rhbz1940928.at rhbz1940928 regression direct rhbz1949552; -284;rhbz1936896.at:1;ipset type hash:net,net;iptables regression/rhbz1936896.at:1 regression/rhbz1936896.at rhbz1936896.at:1 rhbz1936896.at rhbz1936896 regression; -285;gh795.at:1;ipset entry delete w/ timeout=0;iptables regression/gh795.at:1 regression/gh795.at gh795.at:1 gh795.at gh795 regression ipset gh794; -286;rhbz1914935.at:1;zone overlapping ports;iptables regression/rhbz1914935.at:1 regression/rhbz1914935.at rhbz1914935.at:1 rhbz1914935.at rhbz1914935 regression zone port; -287;gh696.at:1;icmp-block-inversion no log blocked;iptables regression/gh696.at:1 regression/gh696.at gh696.at:1 gh696.at gh696 regression icmp rhbz1945833; -288;rhbz1917766.at:1;rich rule source with netmask;iptables regression/rhbz1917766.at:1 regression/rhbz1917766.at rhbz1917766.at:1 rhbz1917766.at rhbz1917766 regression rich; -289;rhbz2014383.at:1;same source in two zone xml;iptables regression/rhbz2014383.at:1 regression/rhbz2014383.at rhbz2014383.at:1 rhbz2014383.at rhbz2014383 regression zone; -290;gh874.at:1;policy masquerade w/ ingress interface;iptables regression/gh874.at:1 regression/gh874.at gh874.at:1 gh874.at gh874 regression policy zone masquerade gh926; -291;gh881.at:1;ipset entry overlap detect perf;iptables regression/gh881.at:1 regression/gh881.at gh881.at:1 gh881.at gh881 regression ipset; -292;service_includes_for_builtin.at:1;service include for built-in;iptables regression/service_includes_for_builtin.at:1 regression/service_includes_for_builtin.at service_includes_for_builtin.at:1 service_includes_for_builtin.at service_includes_for_builtin regression dbus service service_includes_for_built-in; -293;gh940.at:1;log prefix;iptables regression/gh940.at:1 regression/gh940.at gh940.at:1 gh940.at gh940 regression policy; -294;build_policy_split_wildcard.at:1;build policy split wildcards;iptables regression/build_policy_split_wildcard.at:1 regression/build_policy_split_wildcard.at build_policy_split_wildcard.at:1 build_policy_split_wildcard.at build_policy_split_wildcard regression gh892 policy; -295;gh1011.at:1;remove entries results in empty;iptables regression/gh1011.at:1 regression/gh1011.at gh1011.at:1 gh1011.at gh1011 regression ipset rhbz2121985; -296;rhbz2181406.at:1;rich rule limit;iptables regression/rhbz2181406.at:1 regression/rhbz2181406.at rhbz2181406.at:1 rhbz2181406.at rhbz2181406 regression rich; -297;ipset_scale.at:1;ipset scale;iptables regression/ipset_scale.at:1 regression/ipset_scale.at ipset_scale.at:1 ipset_scale.at ipset_scale regression ipset gh738; -298;gh1129.at:16;switch backend to nftables and reload;iptables regression/gh1129.at:16 regression/gh1129.at gh1129.at:16 gh1129.at gh1129 regression; -299;gh1146.at:1;policy with mixed family zone source;iptables regression/gh1146.at:1 regression/gh1146.at gh1146.at:1 gh1146.at gh1146 regression policy; -300;gh1152.at:1;list-all identical content;iptables regression/gh1152.at:1 regression/gh1152.at gh1152.at:1 gh1152.at gh1152 regression cli; -301;rhbz2222044.at:1;duplicate rules after restart;iptables regression/rhbz2222044.at:1 regression/rhbz2222044.at rhbz2222044.at:1 rhbz2222044.at rhbz2222044 regression; -302;gh1229.at:1;policy dispatch with egress-zone=ANY;iptables regression/gh1229.at:1 regression/gh1229.at gh1229.at:1 gh1229.at gh1229 regression policy gh1234; -303;gh1278.at:1;policy dispatch update if active;iptables regression/gh1278.at:1 regression/gh1278.at gh1278.at:1 gh1278.at gh1278 regression source policy; -304;python.at:3;firewalld_misc.py;iptables python/python.at:3 python/python.at python.at:3 python.at python; -305;python.at:8;firewalld_config.py;iptables python/python.at:8 python/python.at python.at:8 python.at python; -306;python.at:13;firewalld_rich.py;iptables python/python.at:13 python/python.at python.at:13 python.at python; -307;python.at:18;firewalld_direct.py;iptables python/python.at:18 python/python.at python.at:18 python.at python; -308;rfc3964_ipv4.at:1;RFC3964_IPv4;iptables features/rfc3964_ipv4.at:1 features/rfc3964_ipv4.at rfc3964_ipv4.at:1 rfc3964_ipv4.at rfc3964_ipv4 features; -309;service_include.at:1;service include;iptables features/service_include.at:1 features/service_include.at service_include.at:1 service_include.at service_include features service xml gh273 rhbz1720300 gh707 gh1075; -310;helpers_custom.at:1;customer helpers;iptables features/helpers_custom.at:1 features/helpers_custom.at helpers_custom.at:1 helpers_custom.at helpers_custom features helpers rhbz1733066 gh514 rhbz1769520; -311;policy.at:5;policy - xml;iptables features/policy.at:5 features/policy.at policy.at:5 policy.at policy features xml; -312;policy.at:79;policy - create;iptables features/policy.at:79 features/policy.at policy.at:79 policy.at policy features; -313;policy.at:96;policy - name;iptables features/policy.at:96 features/policy.at policy.at:96 policy.at policy features; -314;policy.at:109;policy - list;iptables features/policy.at:109 features/policy.at policy.at:109 policy.at policy features; -315;policy.at:231;policy - options;iptables features/policy.at:231 features/policy.at policy.at:231 policy.at policy features; -316;policy.at:286;policy - priority;iptables features/policy.at:286 features/policy.at policy.at:286 policy.at policy features; -317;policy.at:470;policy - zones;iptables features/policy.at:470 features/policy.at policy.at:470 policy.at policy features; -318;policy.at:822;policy - dispatch;iptables features/policy.at:822 features/policy.at policy.at:822 policy.at policy features; -319;policy.at:5351;policy - interfaces/sources;iptables features/policy.at:5351 features/policy.at policy.at:5351 policy.at policy features; -320;policy.at:6072;policy - target;iptables features/policy.at:6072 features/policy.at policy.at:6072 policy.at policy features; -321;policy.at:6121;policy - from file;iptables features/policy.at:6121 features/policy.at policy.at:6121 policy.at policy features; -322;policy.at:6138;policy - zone drifting not allowed;iptables features/policy.at:6138 features/policy.at policy.at:6138 policy.at policy features gh797; -323;policy.at:6300;policy - multiple using same zone source;iptables features/policy.at:6300 features/policy.at policy.at:6300 policy.at policy features source; -324;services.at:1;services;iptables features/services.at:1 features/services.at services.at:1 services.at services features policy service; -325;ports.at:1;ports;iptables features/ports.at:1 features/ports.at ports.at:1 ports.at ports features policy port; -326;source_ports.at:1;source ports;iptables features/source_ports.at:1 features/source_ports.at source_ports.at:1 source_ports.at source_ports features policy source_port; -327;forward_ports.at:1;forward ports;iptables features/forward_ports.at:1 features/forward_ports.at forward_ports.at:1 forward_ports.at forward_ports features policy forward_port; -328;forward_ports.at:207;forward ports (OUTPUT);iptables features/forward_ports.at:207 features/forward_ports.at forward_ports.at:207 forward_ports.at forward_ports features policy forward_port rhbz2039542; -329;forward_ports.at:287;forward ports - logging and limiting;iptables features/forward_ports.at:287 features/forward_ports.at forward_ports.at:287 forward_ports.at forward_ports features forward_port rich logging limit; -330;masquerade.at:1;masquerade;iptables features/masquerade.at:1 features/masquerade.at masquerade.at:1 masquerade.at masquerade features policy gh926; -331;protocols.at:1;protocols;iptables features/protocols.at:1 features/protocols.at protocols.at:1 protocols.at protocols features policy protocol; -332;rich_rules.at:1;rich rules;iptables features/rich_rules.at:1 features/rich_rules.at rich_rules.at:1 rich_rules.at rich_rules features policy rich; -333;icmp_blocks.at:1;ICMP blocks;iptables features/icmp_blocks.at:1 features/icmp_blocks.at icmp_blocks.at:1 icmp_blocks.at icmp_blocks features policy icmp_block; -334;rich_tcp_mss_clamp.at:5;tcp-mss-clamp;iptables features/rich_tcp_mss_clamp.at:5 features/rich_tcp_mss_clamp.at rich_tcp_mss_clamp.at:5 rich_tcp_mss_clamp.at rich_tcp_mss_clamp features tcp-mss-clamp gh1121; -335;rich_destination_ipset.at:1;rich destination ipset;iptables features/rich_destination_ipset.at:1 features/rich_destination_ipset.at rich_destination_ipset.at:1 rich_destination_ipset.at rich_destination_ipset features rich ipset; -336;zone.at:1;zone - target;iptables features/zone.at:1 features/zone.at zone.at:1 zone.at zone features; -337;rpfilter.at:1;rpfilter;iptables features/rpfilter.at:1 features/rpfilter.at rpfilter.at:1 rpfilter.at rpfilter features; -338;zone_combine.at:1;zone - combine;iptables features/zone_combine.at:1 features/zone_combine.at zone_combine.at:1 zone_combine.at zone_combine features zone; -339;reset_defaults.at:1;reset defaults;iptables features/reset_defaults.at:1 features/reset_defaults.at reset_defaults.at:1 reset_defaults.at reset_defaults features reset; -340;zone_priority.at:1;zone - priority;iptables features/zone_priority.at:1 features/zone_priority.at zone_priority.at:1 zone_priority.at zone_priority features zone; -341;reloadpolicy.at:1;check ReloadPolicy;iptables features/reloadpolicy.at:1 features/reloadpolicy.at reloadpolicy.at:1 reloadpolicy.at reloadpolicy features rhbz2149039; +58;rpfilter.at:1;rpfilter - strict;offline features/rpfilter.at:1 features/rpfilter.at rpfilter.at:1 rpfilter.at rpfilter features; +59;rpfilter.at:27;rpfilter - loose;offline features/rpfilter.at:27 features/rpfilter.at rpfilter.at:27 rpfilter.at rpfilter features; +60;rpfilter.at:53;rpfilter - strict-forward;offline features/rpfilter.at:53 features/rpfilter.at rpfilter.at:53 rpfilter.at rpfilter features; +61;rpfilter.at:89;rpfilter - loose-forward;offline features/rpfilter.at:89 features/rpfilter.at rpfilter.at:89 rpfilter.at rpfilter features; +62;rpfilter.at:125;rpfilter - config values;offline features/rpfilter.at:125 features/rpfilter.at rpfilter.at:125 rpfilter.at rpfilter features rhel-72937; +63;rpfilter.at:147;rpfilter - config values, -forward;offline features/rpfilter.at:147 features/rpfilter.at rpfilter.at:147 rpfilter.at rpfilter features rhel-72937; +64;zone_combine.at:1;zone - combine;offline features/zone_combine.at:1 features/zone_combine.at zone_combine.at:1 zone_combine.at zone_combine features zone; +65;ipset_defer_native_ipset_creation.at:1;ipset defer native creation;offline features/ipset_defer_native_ipset_creation.at:1 features/ipset_defer_native_ipset_creation.at ipset_defer_native_ipset_creation.at:1 ipset_defer_native_ipset_creation.at ipset_defer_native_ipset_creation features ipset direct rhbz2122678; +66;reset_defaults.at:1;reset defaults;offline features/reset_defaults.at:1 features/reset_defaults.at reset_defaults.at:1 reset_defaults.at reset_defaults features reset; +67;zone_priority.at:1;zone - priority;offline features/zone_priority.at:1 features/zone_priority.at zone_priority.at:1 zone_priority.at zone_priority features zone; +68;reloadpolicy.at:1;check ReloadPolicy;offline features/reloadpolicy.at:1 features/reloadpolicy.at reloadpolicy.at:1 reloadpolicy.at reloadpolicy features rhbz2149039; +69;strict_forward_ports.at:1;strict forward ports;offline features/strict_forward_ports.at:1 features/strict_forward_ports.at strict_forward_ports.at:1 strict_forward_ports.at strict_forward_ports features forward_port gh869 gh1380; +70;firewall-offline-cmd.at:19;lokkit migration;offline cli/firewall-offline-cmd.at:19 cli/firewall-offline-cmd.at firewall-offline-cmd.at:19 firewall-offline-cmd.at firewall-offline-cmd cli lokkit; +71;firewalld.conf.at:1;firewalld.conf;nftables dbus/firewalld.conf.at:1 dbus/firewalld.conf.at firewalld.conf.at:1 firewalld.conf.at firewalld.conf dbus; +72;service.at:1;dbus api - services;nftables dbus/service.at:1 dbus/service.at service.at:1 service.at service dbus rhbz1721414 rhbz1737045 gh514; +73;zone_permanent_signatures.at:1;dbus api - zone permanent signatures;nftables dbus/zone_permanent_signatures.at:1 dbus/zone_permanent_signatures.at zone_permanent_signatures.at:1 zone_permanent_signatures.at zone_permanent_signatures dbus zone gh586 gh613; +74;zone_runtime_signatures.at:1;dbus api - zone runtime signatures;nftables dbus/zone_runtime_signatures.at:1 dbus/zone_runtime_signatures.at zone_runtime_signatures.at:1 zone_runtime_signatures.at zone_runtime_signatures dbus zone gh586 gh613; +75;zone_permanent_functional.at:1;dbus api - zone permanent functional;nftables dbus/zone_permanent_functional.at:1 dbus/zone_permanent_functional.at zone_permanent_functional.at:1 zone_permanent_functional.at zone_permanent_functional dbus zone gh586 gh613; +76;zone_runtime_functional.at:1;dbus api - zone runtime functional;nftables dbus/zone_runtime_functional.at:1 dbus/zone_runtime_functional.at zone_runtime_functional.at:1 zone_runtime_functional.at zone_runtime_functional dbus zone gh586 gh613; +77;policy_permanent_signatures.at:1;dbus api - policy permanent signatures;nftables dbus/policy_permanent_signatures.at:1 dbus/policy_permanent_signatures.at policy_permanent_signatures.at:1 policy_permanent_signatures.at policy_permanent_signatures dbus policy; +78;policy_runtime_signatures.at:1;dbus api - policy runtime signatures;nftables dbus/policy_runtime_signatures.at:1 dbus/policy_runtime_signatures.at policy_runtime_signatures.at:1 policy_runtime_signatures.at policy_runtime_signatures dbus policy; +79;policy_permanent_functional.at:1;dbus api - policy permanent functional;nftables dbus/policy_permanent_functional.at:1 dbus/policy_permanent_functional.at policy_permanent_functional.at:1 policy_permanent_functional.at policy_permanent_functional dbus policy; +80;policy_runtime_functional.at:1;dbus api - policy runtime functional;nftables dbus/policy_runtime_functional.at:1 dbus/policy_runtime_functional.at policy_runtime_functional.at:1 policy_runtime_functional.at policy_runtime_functional dbus policy; +81;direct.at:1;dbus api - direct signatures;nftables dbus/direct.at:1 dbus/direct.at direct.at:1 direct.at direct dbus; +82;lockdown.at:1;dbus api - lockdown signatures;nftables dbus/lockdown.at:1 dbus/lockdown.at lockdown.at:1 lockdown.at lockdown dbus; +83;firewall-cmd.at:5;basic options;nftables cli/firewall-cmd.at:5 cli/firewall-cmd.at firewall-cmd.at:5 firewall-cmd.at firewall-cmd cli panic reload gh808; +84;firewall-cmd.at:34;get/list options;nftables cli/firewall-cmd.at:34 cli/firewall-cmd.at firewall-cmd.at:34 firewall-cmd.at firewall-cmd cli zone service icmp; +85;firewall-cmd.at:50;default zone;nftables cli/firewall-cmd.at:50 cli/firewall-cmd.at firewall-cmd.at:50 firewall-cmd.at firewall-cmd cli zone; +86;firewall-cmd.at:62;user zone;nftables cli/firewall-cmd.at:62 cli/firewall-cmd.at firewall-cmd.at:62 firewall-cmd.at firewall-cmd cli zone; +87;firewall-cmd.at:82;zone interfaces;nftables cli/firewall-cmd.at:82 cli/firewall-cmd.at firewall-cmd.at:82 firewall-cmd.at firewall-cmd cli zone; +88;firewall-cmd.at:170;zone sources;nftables cli/firewall-cmd.at:170 cli/firewall-cmd.at firewall-cmd.at:170 firewall-cmd.at firewall-cmd cli zone; +89;firewall-cmd.at:223;services;nftables cli/firewall-cmd.at:223 cli/firewall-cmd.at firewall-cmd.at:223 firewall-cmd.at firewall-cmd cli service; +90;firewall-cmd.at:267;user services;nftables cli/firewall-cmd.at:267 cli/firewall-cmd.at firewall-cmd.at:267 firewall-cmd.at firewall-cmd cli service; +91;firewall-cmd.at:349;ports;nftables cli/firewall-cmd.at:349 cli/firewall-cmd.at firewall-cmd.at:349 firewall-cmd.at firewall-cmd cli port; +92;firewall-cmd.at:406;source ports;nftables cli/firewall-cmd.at:406 cli/firewall-cmd.at firewall-cmd.at:406 firewall-cmd.at firewall-cmd cli port; +93;firewall-cmd.at:443;protocols;nftables cli/firewall-cmd.at:443 cli/firewall-cmd.at firewall-cmd.at:443 firewall-cmd.at firewall-cmd cli protocol; +94;firewall-cmd.at:471;masquerade;nftables cli/firewall-cmd.at:471 cli/firewall-cmd.at firewall-cmd.at:471 firewall-cmd.at firewall-cmd cli masquerade nat; +95;firewall-cmd.at:498;forward;nftables cli/firewall-cmd.at:498 cli/firewall-cmd.at firewall-cmd.at:498 firewall-cmd.at firewall-cmd cli forward gh586 gh613; +96;firewall-cmd.at:686;forward ports;nftables cli/firewall-cmd.at:686 cli/firewall-cmd.at firewall-cmd.at:686 firewall-cmd.at firewall-cmd cli port forward_port; +97;firewall-cmd.at:785;ICMP block;nftables cli/firewall-cmd.at:785 cli/firewall-cmd.at firewall-cmd.at:785 firewall-cmd.at firewall-cmd cli icmp; +98;firewall-cmd.at:831;user ICMP types;nftables cli/firewall-cmd.at:831 cli/firewall-cmd.at firewall-cmd.at:831 firewall-cmd.at firewall-cmd cli icmp; +99;firewall-cmd.at:854;ipset;nftables cli/firewall-cmd.at:854 cli/firewall-cmd.at firewall-cmd.at:854 firewall-cmd.at firewall-cmd cli ipset rhbz1685256; +100;firewall-cmd.at:1063;user helpers;nftables cli/firewall-cmd.at:1063 cli/firewall-cmd.at firewall-cmd.at:1063 firewall-cmd.at firewall-cmd cli helper; +101;firewall-cmd.at:1091;direct;nftables cli/firewall-cmd.at:1091 cli/firewall-cmd.at firewall-cmd.at:1091 firewall-cmd.at firewall-cmd cli direct; +102;firewall-cmd.at:1165;direct nat;nftables cli/firewall-cmd.at:1165 cli/firewall-cmd.at firewall-cmd.at:1165 firewall-cmd.at firewall-cmd cli direct nat; +103;firewall-cmd.at:1190;direct passthrough;nftables cli/firewall-cmd.at:1190 cli/firewall-cmd.at firewall-cmd.at:1190 firewall-cmd.at firewall-cmd cli direct passthrough; +104;firewall-cmd.at:1228;direct ebtables;nftables cli/firewall-cmd.at:1228 cli/firewall-cmd.at firewall-cmd.at:1228 firewall-cmd.at firewall-cmd cli direct ebtables; +105;firewall-cmd.at:1274;lockdown;nftables cli/firewall-cmd.at:1274 cli/firewall-cmd.at firewall-cmd.at:1274 firewall-cmd.at firewall-cmd cli lockdown; +106;firewall-cmd.at:1369;rich rules good;nftables cli/firewall-cmd.at:1369 cli/firewall-cmd.at firewall-cmd.at:1369 firewall-cmd.at firewall-cmd cli rich; +107;firewall-cmd.at:1403;rich rules audit;nftables cli/firewall-cmd.at:1403 cli/firewall-cmd.at firewall-cmd.at:1403 firewall-cmd.at firewall-cmd cli rich; +108;firewall-cmd.at:1411;rich rules priority;nftables cli/firewall-cmd.at:1411 cli/firewall-cmd.at firewall-cmd.at:1411 firewall-cmd.at firewall-cmd cli rich; +109;firewall-cmd.at:1966;rich rules bad;nftables cli/firewall-cmd.at:1966 cli/firewall-cmd.at firewall-cmd.at:1966 firewall-cmd.at firewall-cmd cli rich; +110;firewall-cmd.at:2009;config validation;nftables cli/firewall-cmd.at:2009 cli/firewall-cmd.at firewall-cmd.at:2009 firewall-cmd.at firewall-cmd cli check_config; +111;rhbz1514043.at:1;--set-log-denied does not zero config;nftables regression/rhbz1514043.at:1 regression/rhbz1514043.at rhbz1514043.at:1 rhbz1514043.at rhbz1514043 regression log_denied; +112;rhbz1498923.at:1;invalid direct rule causes reload error;nftables regression/rhbz1498923.at:1 regression/rhbz1498923.at rhbz1498923.at:1 rhbz1498923.at rhbz1498923 regression direct reload; +113;pr181.at:1;combined zones name length check;nftables regression/pr181.at:1 regression/pr181.at pr181.at:1 pr181.at pr181 regression zone gh181; +114;gh287.at:1;ICMP block inversion;nftables regression/gh287.at:1 regression/gh287.at gh287.at:1 gh287.at gh287 regression icmp; +115;individual_calls.at:1;individual calls;nftables regression/individual_calls.at:1 regression/individual_calls.at individual_calls.at:1 individual_calls.at individual_calls regression; +116;rhbz1534571.at:3;rule deduplication;nftables regression/rhbz1534571.at:3 regression/rhbz1534571.at rhbz1534571.at:3 rhbz1534571.at rhbz1534571 regression; +117;gh290.at:1;invalid syntax in xml files;nftables regression/gh290.at:1 regression/gh290.at gh290.at:1 gh290.at gh290 regression xml direct; +118;gh290.at:19;invalid syntax in xml files;nftables regression/gh290.at:19 regression/gh290.at gh290.at:19 gh290.at gh290 regression xml zone; +119;icmp_block_in_forward_chain.at:1;ICMP block not present FORWARD chain;nftables regression/icmp_block_in_forward_chain.at:1 regression/icmp_block_in_forward_chain.at icmp_block_in_forward_chain.at:1 icmp_block_in_forward_chain.at icmp_block_in_forward_chain regression icmp; +120;pr323.at:1;GRE proto helper;nftables regression/pr323.at:1 regression/pr323.at pr323.at:1 pr323.at pr323 regression helper gh323; +121;rhbz1506742.at:1;ipset with timeout;nftables regression/rhbz1506742.at:1 regression/rhbz1506742.at rhbz1506742.at:1 rhbz1506742.at rhbz1506742 regression ipset rhbz2055330 gh699 gh908; +122;rhbz1594657.at:1;no log untracked passthrough queries;nftables regression/rhbz1594657.at:1 regression/rhbz1594657.at rhbz1594657.at:1 rhbz1594657.at rhbz1594657 regression direct passthrough; +123;rhbz1571957.at:1;set-log-denied w/ ICMP block inversion;nftables regression/rhbz1571957.at:1 regression/rhbz1571957.at rhbz1571957.at:1 rhbz1571957.at rhbz1571957 regression log_denied icmp; +124;rhbz1404076.at:1;query single port added with range;nftables regression/rhbz1404076.at:1 regression/rhbz1404076.at rhbz1404076.at:1 rhbz1404076.at rhbz1404076 regression port; +125;gh366.at:1;service destination multiple IP versions;nftables regression/gh366.at:1 regression/gh366.at gh366.at:1 gh366.at gh366 regression service; +126;rhbz1601610.at:1;ipset duplicate entries;nftables regression/rhbz1601610.at:1 regression/rhbz1601610.at rhbz1601610.at:1 rhbz1601610.at rhbz1601610 regression ipset; +127;gh303.at:1;unicode in XML;nftables regression/gh303.at:1 regression/gh303.at gh303.at:1 gh303.at gh303 regression xml unicode service; +128;gh335.at:1;forward-port toaddr enables IP forwarding;nftables regression/gh335.at:1 regression/gh335.at gh335.at:1 gh335.at gh335 regression port forward_port; +129;gh482.at:1;remove forward-port after reload;nftables regression/gh482.at:1 regression/gh482.at gh482.at:1 gh482.at gh482 regression rhbz1637675 rich forward_port; +130;gh478.at:1;rich rule marks every packet;nftables regression/gh478.at:1 regression/gh478.at gh478.at:1 gh478.at gh478 regression rich mark; +131;gh453.at:1;nftables helper objects;nftables regression/gh453.at:1 regression/gh453.at gh453.at:1 gh453.at gh453 regression helper; +132;gh258.at:1;zone dispatch layout;nftables regression/gh258.at:1 regression/gh258.at gh258.at:1 gh258.at gh258 regression zone gh441 rhbz1713823; +133;rhbz1715977.at:1;rich rule src/dst with service destination;nftables regression/rhbz1715977.at:1 regression/rhbz1715977.at rhbz1715977.at:1 rhbz1715977.at rhbz1715977 regression rich service rhbz1729097 rhbz1791783; +134;rhbz1723610.at:1;direct remove-rules per family;nftables regression/rhbz1723610.at:1 regression/rhbz1723610.at rhbz1723610.at:1 rhbz1723610.at rhbz1723610 regression direct gh385; +135;rhbz1734765.at:1;zone sources ordered by name;nftables regression/rhbz1734765.at:1 regression/rhbz1734765.at rhbz1734765.at:1 rhbz1734765.at rhbz1734765 regression zone rhbz1421222 gh166 rhbz1738545; +136;gh509.at:1;missing firewalld.conf file;nftables regression/gh509.at:1 regression/gh509.at gh509.at:1 gh509.at gh509 regression; +137;gh567.at:1;rich rule source w/ mark action;nftables regression/gh567.at:1 regression/gh567.at gh567.at:1 gh567.at gh567 regression rich ipset; +138;rhbz1779835.at:1;ipv6 address with brackets;nftables regression/rhbz1779835.at:1 regression/rhbz1779835.at rhbz1779835.at:1 rhbz1779835.at rhbz1779835 regression ipset; +139;rhbz1779835.at:16;ipv6 address with brackets;nftables regression/rhbz1779835.at:16 regression/rhbz1779835.at rhbz1779835.at:16 rhbz1779835.at rhbz1779835 regression zone forward_port rich; +140;gh330.at:1;ipset cleanup on reload/stop;nftables regression/gh330.at:1 regression/gh330.at gh330.at:1 gh330.at gh330 regression ipset reload rhbz1682913 rhbz1790948 rhbz1809225; +141;gh599.at:1;writing to log after copytruncate;nftables regression/gh599.at:1 regression/gh599.at gh599.at:1 gh599.at gh599 regression; +142;rhbz1843398.at:1;rich rule source mac;nftables regression/rhbz1843398.at:1 regression/rhbz1843398.at rhbz1843398.at:1 rhbz1843398.at rhbz1843398 regression rich gh643; +143;rhbz1839781.at:1;service RH-Satellite-6;nftables regression/rhbz1839781.at:1 regression/rhbz1839781.at rhbz1839781.at:1 rhbz1839781.at rhbz1839781 regression service; +144;rhbz1689429.at:1;rich rule invalid priority;nftables regression/rhbz1689429.at:1 regression/rhbz1689429.at rhbz1689429.at:1 rhbz1689429.at rhbz1689429 regression rich; +145;rhbz1483921.at:1;direct and zone mutually exclusive;nftables regression/rhbz1483921.at:1 regression/rhbz1483921.at rhbz1483921.at:1 rhbz1483921.at rhbz1483921 regression direct; +146;rhbz1541077.at:1;hash:mac and family mutually exclusive;nftables regression/rhbz1541077.at:1 regression/rhbz1541077.at rhbz1541077.at:1 rhbz1541077.at rhbz1541077 regression ipset; +147;rhbz1855140.at:1;rich rule icmptypes with one family;nftables regression/rhbz1855140.at:1 regression/rhbz1855140.at rhbz1855140.at:1 rhbz1855140.at rhbz1855140 regression rich icmp; +148;rhbz1871298.at:1;rich rule parsing bottleneck;nftables regression/rhbz1871298.at:1 regression/rhbz1871298.at rhbz1871298.at:1 rhbz1871298.at rhbz1871298 regression rich offline scale; +149;rhbz1596304.at:1;rich rules strip non-printable characters;nftables regression/rhbz1596304.at:1 regression/rhbz1596304.at rhbz1596304.at:1 rhbz1596304.at rhbz1596304 regression rich; +150;gh703.at:1;add source with mac address;nftables regression/gh703.at:1 regression/gh703.at gh703.at:1 gh703.at gh703 regression; +151;ipset_netmask_allowed.at:1;ipset netmask allowed type hash:ip;nftables regression/ipset_netmask_allowed.at:1 regression/ipset_netmask_allowed.at ipset_netmask_allowed.at:1 ipset_netmask_allowed.at ipset_netmask_allowed regression ipset reload; +152;rhbz1940928.at:1;direct -s/-d multiple addresses;nftables regression/rhbz1940928.at:1 regression/rhbz1940928.at rhbz1940928.at:1 rhbz1940928.at rhbz1940928 regression direct rhbz1949552; +153;rhbz1936896.at:1;ipset type hash:net,net;nftables regression/rhbz1936896.at:1 regression/rhbz1936896.at rhbz1936896.at:1 rhbz1936896.at rhbz1936896 regression; +154;gh795.at:1;ipset entry delete w/ timeout=0;nftables regression/gh795.at:1 regression/gh795.at gh795.at:1 gh795.at gh795 regression ipset gh794; +155;rhbz1914935.at:1;zone overlapping ports;nftables regression/rhbz1914935.at:1 regression/rhbz1914935.at rhbz1914935.at:1 rhbz1914935.at rhbz1914935 regression zone port; +156;gh696.at:1;icmp-block-inversion no log blocked;nftables regression/gh696.at:1 regression/gh696.at gh696.at:1 gh696.at gh696 regression icmp rhbz1945833; +157;rhbz1917766.at:1;rich rule source with netmask;nftables regression/rhbz1917766.at:1 regression/rhbz1917766.at rhbz1917766.at:1 rhbz1917766.at rhbz1917766 regression rich; +158;rhbz2014383.at:1;same source in two zone xml;nftables regression/rhbz2014383.at:1 regression/rhbz2014383.at rhbz2014383.at:1 rhbz2014383.at rhbz2014383 regression zone; +159;gh874.at:1;policy masquerade w/ ingress interface;nftables regression/gh874.at:1 regression/gh874.at gh874.at:1 gh874.at gh874 regression policy zone masquerade gh926; +160;gh881.at:1;ipset entry overlap detect perf;nftables regression/gh881.at:1 regression/gh881.at gh881.at:1 gh881.at gh881 regression ipset; +161;service_includes_for_builtin.at:1;service include for built-in;nftables regression/service_includes_for_builtin.at:1 regression/service_includes_for_builtin.at service_includes_for_builtin.at:1 service_includes_for_builtin.at service_includes_for_builtin regression dbus service service_includes_for_built-in; +162;gh940.at:1;log prefix;nftables regression/gh940.at:1 regression/gh940.at gh940.at:1 gh940.at gh940 regression policy; +163;build_policy_split_wildcard.at:1;build policy split wildcards;nftables regression/build_policy_split_wildcard.at:1 regression/build_policy_split_wildcard.at build_policy_split_wildcard.at:1 build_policy_split_wildcard.at build_policy_split_wildcard regression gh892 policy; +164;gh1011.at:1;remove entries results in empty;nftables regression/gh1011.at:1 regression/gh1011.at gh1011.at:1 gh1011.at gh1011 regression ipset rhbz2121985; +165;rhbz2181406.at:1;rich rule limit;nftables regression/rhbz2181406.at:1 regression/rhbz2181406.at rhbz2181406.at:1 rhbz2181406.at rhbz2181406 regression rich; +166;ipset_scale.at:1;ipset scale;nftables regression/ipset_scale.at:1 regression/ipset_scale.at ipset_scale.at:1 ipset_scale.at ipset_scale regression ipset gh738 scale; +167;gh1129.at:1;switch backend to iptables and reload;nftables regression/gh1129.at:1 regression/gh1129.at gh1129.at:1 gh1129.at gh1129 regression; +168;gh1146.at:1;policy with mixed family zone source;nftables regression/gh1146.at:1 regression/gh1146.at gh1146.at:1 gh1146.at gh1146 regression policy; +169;gh1152.at:1;list-all identical content;nftables regression/gh1152.at:1 regression/gh1152.at gh1152.at:1 gh1152.at gh1152 regression cli; +170;rhbz2222044.at:1;duplicate rules after restart;nftables regression/rhbz2222044.at:1 regression/rhbz2222044.at rhbz2222044.at:1 rhbz2222044.at rhbz2222044 regression; +171;gh1229.at:1;policy dispatch with egress-zone=ANY;nftables regression/gh1229.at:1 regression/gh1229.at gh1229.at:1 gh1229.at gh1229 regression policy gh1234; +172;gh1278.at:1;policy dispatch update if active;nftables regression/gh1278.at:1 regression/gh1278.at gh1278.at:1 gh1278.at gh1278 regression source policy; +173;gh1406.at:1;ipset iface;nftables regression/gh1406.at:1 regression/gh1406.at gh1406.at:1 gh1406.at gh1406 regression ipset; +174;RHEL-67103.at:1;rich rule invalid ipset;nftables regression/rhel-67103.at:1 regression/rhel-67103.at rhel-67103.at:1 rhel-67103.at rhel-67103 regression rich ipset rhel-67331; +175;python.at:3;firewalld_misc.py;nftables python/python.at:3 python/python.at python.at:3 python.at python; +176;python.at:8;firewalld_config.py;nftables python/python.at:8 python/python.at python.at:8 python.at python; +177;python.at:13;firewalld_rich.py;nftables python/python.at:13 python/python.at python.at:13 python.at python; +178;python.at:18;firewalld_direct.py;nftables python/python.at:18 python/python.at python.at:18 python.at python; +179;rfc3964_ipv4.at:1;RFC3964_IPv4;nftables features/rfc3964_ipv4.at:1 features/rfc3964_ipv4.at rfc3964_ipv4.at:1 rfc3964_ipv4.at rfc3964_ipv4 features; +180;service_include.at:1;service include;nftables features/service_include.at:1 features/service_include.at service_include.at:1 service_include.at service_include features service xml gh273 rhbz1720300 gh707 gh1075; +181;helpers_custom.at:1;customer helpers;nftables features/helpers_custom.at:1 features/helpers_custom.at helpers_custom.at:1 helpers_custom.at helpers_custom features helpers rhbz1733066 gh514 rhbz1769520; +182;policy.at:5;policy - xml;nftables features/policy.at:5 features/policy.at policy.at:5 policy.at policy features xml; +183;policy.at:79;policy - create;nftables features/policy.at:79 features/policy.at policy.at:79 policy.at policy features; +184;policy.at:96;policy - name;nftables features/policy.at:96 features/policy.at policy.at:96 policy.at policy features; +185;policy.at:109;policy - list;nftables features/policy.at:109 features/policy.at policy.at:109 policy.at policy features; +186;policy.at:231;policy - options;nftables features/policy.at:231 features/policy.at policy.at:231 policy.at policy features; +187;policy.at:286;policy - priority;nftables features/policy.at:286 features/policy.at policy.at:286 policy.at policy features; +188;policy.at:470;policy - zones;nftables features/policy.at:470 features/policy.at policy.at:470 policy.at policy features; +189;policy.at:822;policy - dispatch;nftables features/policy.at:822 features/policy.at policy.at:822 policy.at policy features; +190;policy.at:5352;policy - interfaces/sources;nftables features/policy.at:5352 features/policy.at policy.at:5352 policy.at policy features; +191;policy.at:6073;policy - target;nftables features/policy.at:6073 features/policy.at policy.at:6073 policy.at policy features; +192;policy.at:6122;policy - from file;nftables features/policy.at:6122 features/policy.at policy.at:6122 policy.at policy features; +193;policy.at:6139;policy - zone drifting not allowed;nftables features/policy.at:6139 features/policy.at policy.at:6139 policy.at policy features gh797; +194;policy.at:6301;policy - multiple using same zone source;nftables features/policy.at:6301 features/policy.at policy.at:6301 policy.at policy features source; +195;services.at:1;services;nftables features/services.at:1 features/services.at services.at:1 services.at services features policy service; +196;ports.at:1;ports;nftables features/ports.at:1 features/ports.at ports.at:1 ports.at ports features policy port; +197;source_ports.at:1;source ports;nftables features/source_ports.at:1 features/source_ports.at source_ports.at:1 source_ports.at source_ports features policy source_port; +198;forward_ports.at:1;forward ports;nftables features/forward_ports.at:1 features/forward_ports.at forward_ports.at:1 forward_ports.at forward_ports features policy forward_port; +199;forward_ports.at:207;forward ports (OUTPUT);nftables features/forward_ports.at:207 features/forward_ports.at forward_ports.at:207 forward_ports.at forward_ports features policy forward_port rhbz2039542; +200;forward_ports.at:287;forward ports - logging and limiting;nftables features/forward_ports.at:287 features/forward_ports.at forward_ports.at:287 forward_ports.at forward_ports features forward_port rich logging limit; +201;masquerade.at:1;masquerade;nftables features/masquerade.at:1 features/masquerade.at masquerade.at:1 masquerade.at masquerade features policy gh926; +202;protocols.at:1;protocols;nftables features/protocols.at:1 features/protocols.at protocols.at:1 protocols.at protocols features policy protocol; +203;rich_rules.at:1;rich rules;nftables features/rich_rules.at:1 features/rich_rules.at rich_rules.at:1 rich_rules.at rich_rules features policy rich; +204;icmp_blocks.at:1;ICMP blocks;nftables features/icmp_blocks.at:1 features/icmp_blocks.at icmp_blocks.at:1 icmp_blocks.at icmp_blocks features policy icmp_block; +205;rich_tcp_mss_clamp.at:5;tcp-mss-clamp;nftables features/rich_tcp_mss_clamp.at:5 features/rich_tcp_mss_clamp.at rich_tcp_mss_clamp.at:5 rich_tcp_mss_clamp.at rich_tcp_mss_clamp features tcp-mss-clamp gh1121; +206;rich_destination_ipset.at:1;rich destination ipset;nftables features/rich_destination_ipset.at:1 features/rich_destination_ipset.at rich_destination_ipset.at:1 rich_destination_ipset.at rich_destination_ipset features rich ipset; +207;zone.at:1;zone - target;nftables features/zone.at:1 features/zone.at zone.at:1 zone.at zone features; +208;rpfilter.at:1;rpfilter - strict;nftables features/rpfilter.at:1 features/rpfilter.at rpfilter.at:1 rpfilter.at rpfilter features; +209;rpfilter.at:27;rpfilter - loose;nftables features/rpfilter.at:27 features/rpfilter.at rpfilter.at:27 rpfilter.at rpfilter features; +210;rpfilter.at:53;rpfilter - strict-forward;nftables features/rpfilter.at:53 features/rpfilter.at rpfilter.at:53 rpfilter.at rpfilter features; +211;rpfilter.at:89;rpfilter - loose-forward;nftables features/rpfilter.at:89 features/rpfilter.at rpfilter.at:89 rpfilter.at rpfilter features; +212;rpfilter.at:125;rpfilter - config values;nftables features/rpfilter.at:125 features/rpfilter.at rpfilter.at:125 rpfilter.at rpfilter features rhel-72937; +213;rpfilter.at:147;rpfilter - config values, -forward;nftables features/rpfilter.at:147 features/rpfilter.at rpfilter.at:147 rpfilter.at rpfilter features rhel-72937; +214;zone_combine.at:1;zone - combine;nftables features/zone_combine.at:1 features/zone_combine.at zone_combine.at:1 zone_combine.at zone_combine features zone; +215;startup_failsafe.at:1;startup failsafe - invalid xml;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; +216;startup_failsafe.at:1;startup failsafe - bad zone;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; +217;startup_failsafe.at:1;startup failsafe - bad policy;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; +218;startup_failsafe.at:1;startup failsafe - non-existent service;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; +219;startup_failsafe.at:1;startup failsafe - non-existent icmptype;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; +220;startup_failsafe.at:1;startup failsafe - bad direct;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features failsafe; +221;startup_failsafe.at:1;startup failsafe - broken stock config;nftables features/startup_failsafe.at:1 features/startup_failsafe.at startup_failsafe.at:1 startup_failsafe.at startup_failsafe features; +222;ipset_defer_native_ipset_creation.at:1;ipset defer native creation;nftables features/ipset_defer_native_ipset_creation.at:1 features/ipset_defer_native_ipset_creation.at ipset_defer_native_ipset_creation.at:1 ipset_defer_native_ipset_creation.at ipset_defer_native_ipset_creation features ipset direct rhbz2122678; +223;reset_defaults.at:1;reset defaults;nftables features/reset_defaults.at:1 features/reset_defaults.at reset_defaults.at:1 reset_defaults.at reset_defaults features reset; +224;iptables_no_flush_on_shutdown.at:1;avoid iptables flush if using nftables;nftables features/iptables_no_flush_on_shutdown.at:1 features/iptables_no_flush_on_shutdown.at iptables_no_flush_on_shutdown.at:1 iptables_no_flush_on_shutdown.at iptables_no_flush_on_shutdown features direct gh863; +225;zone_priority.at:1;zone - priority;nftables features/zone_priority.at:1 features/zone_priority.at zone_priority.at:1 zone_priority.at zone_priority features zone; +226;nftables_flowtable.at:1;nftables flowtable;nftables features/nftables_flowtable.at:1 features/nftables_flowtable.at nftables_flowtable.at:1 nftables_flowtable.at nftables_flowtable features flowtable; +227;nftables_counters.at:1;nftables counters;nftables features/nftables_counters.at:1 features/nftables_counters.at nftables_counters.at:1 nftables_counters.at nftables_counters features counters; +228;reloadpolicy.at:1;check ReloadPolicy;nftables features/reloadpolicy.at:1 features/reloadpolicy.at reloadpolicy.at:1 reloadpolicy.at reloadpolicy features rhbz2149039; +229;nftables_table_owner.at:1;nftables table owner;nftables features/nftables_table_owner.at:1 features/nftables_table_owner.at nftables_table_owner.at:1 nftables_table_owner.at nftables_table_owner features rhel-17002; +230;strict_forward_ports.at:1;strict forward ports;nftables features/strict_forward_ports.at:1 features/strict_forward_ports.at strict_forward_ports.at:1 strict_forward_ports.at strict_forward_ports features forward_port gh869 gh1380; +231;firewall-cmd.at:5;basic options;iptables cli/firewall-cmd.at:5 cli/firewall-cmd.at firewall-cmd.at:5 firewall-cmd.at firewall-cmd cli panic reload gh808; +232;firewall-cmd.at:34;get/list options;iptables cli/firewall-cmd.at:34 cli/firewall-cmd.at firewall-cmd.at:34 firewall-cmd.at firewall-cmd cli zone service icmp; +233;firewall-cmd.at:50;default zone;iptables cli/firewall-cmd.at:50 cli/firewall-cmd.at firewall-cmd.at:50 firewall-cmd.at firewall-cmd cli zone; +234;firewall-cmd.at:62;user zone;iptables cli/firewall-cmd.at:62 cli/firewall-cmd.at firewall-cmd.at:62 firewall-cmd.at firewall-cmd cli zone; +235;firewall-cmd.at:82;zone interfaces;iptables cli/firewall-cmd.at:82 cli/firewall-cmd.at firewall-cmd.at:82 firewall-cmd.at firewall-cmd cli zone; +236;firewall-cmd.at:170;zone sources;iptables cli/firewall-cmd.at:170 cli/firewall-cmd.at firewall-cmd.at:170 firewall-cmd.at firewall-cmd cli zone; +237;firewall-cmd.at:223;services;iptables cli/firewall-cmd.at:223 cli/firewall-cmd.at firewall-cmd.at:223 firewall-cmd.at firewall-cmd cli service; +238;firewall-cmd.at:267;user services;iptables cli/firewall-cmd.at:267 cli/firewall-cmd.at firewall-cmd.at:267 firewall-cmd.at firewall-cmd cli service; +239;firewall-cmd.at:349;ports;iptables cli/firewall-cmd.at:349 cli/firewall-cmd.at firewall-cmd.at:349 firewall-cmd.at firewall-cmd cli port; +240;firewall-cmd.at:406;source ports;iptables cli/firewall-cmd.at:406 cli/firewall-cmd.at firewall-cmd.at:406 firewall-cmd.at firewall-cmd cli port; +241;firewall-cmd.at:443;protocols;iptables cli/firewall-cmd.at:443 cli/firewall-cmd.at firewall-cmd.at:443 firewall-cmd.at firewall-cmd cli protocol; +242;firewall-cmd.at:471;masquerade;iptables cli/firewall-cmd.at:471 cli/firewall-cmd.at firewall-cmd.at:471 firewall-cmd.at firewall-cmd cli masquerade nat; +243;firewall-cmd.at:498;forward;iptables cli/firewall-cmd.at:498 cli/firewall-cmd.at firewall-cmd.at:498 firewall-cmd.at firewall-cmd cli forward gh586 gh613; +244;firewall-cmd.at:686;forward ports;iptables cli/firewall-cmd.at:686 cli/firewall-cmd.at firewall-cmd.at:686 firewall-cmd.at firewall-cmd cli port forward_port; +245;firewall-cmd.at:785;ICMP block;iptables cli/firewall-cmd.at:785 cli/firewall-cmd.at firewall-cmd.at:785 firewall-cmd.at firewall-cmd cli icmp; +246;firewall-cmd.at:831;user ICMP types;iptables cli/firewall-cmd.at:831 cli/firewall-cmd.at firewall-cmd.at:831 firewall-cmd.at firewall-cmd cli icmp; +247;firewall-cmd.at:854;ipset;iptables cli/firewall-cmd.at:854 cli/firewall-cmd.at firewall-cmd.at:854 firewall-cmd.at firewall-cmd cli ipset rhbz1685256; +248;firewall-cmd.at:1063;user helpers;iptables cli/firewall-cmd.at:1063 cli/firewall-cmd.at firewall-cmd.at:1063 firewall-cmd.at firewall-cmd cli helper; +249;firewall-cmd.at:1091;direct;iptables cli/firewall-cmd.at:1091 cli/firewall-cmd.at firewall-cmd.at:1091 firewall-cmd.at firewall-cmd cli direct; +250;firewall-cmd.at:1165;direct nat;iptables cli/firewall-cmd.at:1165 cli/firewall-cmd.at firewall-cmd.at:1165 firewall-cmd.at firewall-cmd cli direct nat; +251;firewall-cmd.at:1190;direct passthrough;iptables cli/firewall-cmd.at:1190 cli/firewall-cmd.at firewall-cmd.at:1190 firewall-cmd.at firewall-cmd cli direct passthrough; +252;firewall-cmd.at:1228;direct ebtables;iptables cli/firewall-cmd.at:1228 cli/firewall-cmd.at firewall-cmd.at:1228 firewall-cmd.at firewall-cmd cli direct ebtables; +253;firewall-cmd.at:1274;lockdown;iptables cli/firewall-cmd.at:1274 cli/firewall-cmd.at firewall-cmd.at:1274 firewall-cmd.at firewall-cmd cli lockdown; +254;firewall-cmd.at:1369;rich rules good;iptables cli/firewall-cmd.at:1369 cli/firewall-cmd.at firewall-cmd.at:1369 firewall-cmd.at firewall-cmd cli rich; +255;firewall-cmd.at:1403;rich rules audit;iptables cli/firewall-cmd.at:1403 cli/firewall-cmd.at firewall-cmd.at:1403 firewall-cmd.at firewall-cmd cli rich; +256;firewall-cmd.at:1411;rich rules priority;iptables cli/firewall-cmd.at:1411 cli/firewall-cmd.at firewall-cmd.at:1411 firewall-cmd.at firewall-cmd cli rich; +257;firewall-cmd.at:1966;rich rules bad;iptables cli/firewall-cmd.at:1966 cli/firewall-cmd.at firewall-cmd.at:1966 firewall-cmd.at firewall-cmd cli rich; +258;firewall-cmd.at:2009;config validation;iptables cli/firewall-cmd.at:2009 cli/firewall-cmd.at firewall-cmd.at:2009 firewall-cmd.at firewall-cmd cli check_config; +259;rhbz1514043.at:1;--set-log-denied does not zero config;iptables regression/rhbz1514043.at:1 regression/rhbz1514043.at rhbz1514043.at:1 rhbz1514043.at rhbz1514043 regression log_denied; +260;rhbz1498923.at:1;invalid direct rule causes reload error;iptables regression/rhbz1498923.at:1 regression/rhbz1498923.at rhbz1498923.at:1 rhbz1498923.at rhbz1498923 regression direct reload; +261;pr181.at:1;combined zones name length check;iptables regression/pr181.at:1 regression/pr181.at pr181.at:1 pr181.at pr181 regression zone gh181; +262;gh287.at:1;ICMP block inversion;iptables regression/gh287.at:1 regression/gh287.at gh287.at:1 gh287.at gh287 regression icmp; +263;individual_calls.at:1;individual calls;iptables regression/individual_calls.at:1 regression/individual_calls.at individual_calls.at:1 individual_calls.at individual_calls regression; +264;rhbz1534571.at:3;rule deduplication;iptables regression/rhbz1534571.at:3 regression/rhbz1534571.at rhbz1534571.at:3 rhbz1534571.at rhbz1534571 regression; +265;gh290.at:1;invalid syntax in xml files;iptables regression/gh290.at:1 regression/gh290.at gh290.at:1 gh290.at gh290 regression xml direct; +266;gh290.at:19;invalid syntax in xml files;iptables regression/gh290.at:19 regression/gh290.at gh290.at:19 gh290.at gh290 regression xml zone; +267;icmp_block_in_forward_chain.at:1;ICMP block not present FORWARD chain;iptables regression/icmp_block_in_forward_chain.at:1 regression/icmp_block_in_forward_chain.at icmp_block_in_forward_chain.at:1 icmp_block_in_forward_chain.at icmp_block_in_forward_chain regression icmp; +268;pr323.at:1;GRE proto helper;iptables regression/pr323.at:1 regression/pr323.at pr323.at:1 pr323.at pr323 regression helper gh323; +269;rhbz1506742.at:1;ipset with timeout;iptables regression/rhbz1506742.at:1 regression/rhbz1506742.at rhbz1506742.at:1 rhbz1506742.at rhbz1506742 regression ipset rhbz2055330 gh699 gh908; +270;rhbz1594657.at:1;no log untracked passthrough queries;iptables regression/rhbz1594657.at:1 regression/rhbz1594657.at rhbz1594657.at:1 rhbz1594657.at rhbz1594657 regression direct passthrough; +271;rhbz1571957.at:1;set-log-denied w/ ICMP block inversion;iptables regression/rhbz1571957.at:1 regression/rhbz1571957.at rhbz1571957.at:1 rhbz1571957.at rhbz1571957 regression log_denied icmp; +272;rhbz1404076.at:1;query single port added with range;iptables regression/rhbz1404076.at:1 regression/rhbz1404076.at rhbz1404076.at:1 rhbz1404076.at rhbz1404076 regression port; +273;gh366.at:1;service destination multiple IP versions;iptables regression/gh366.at:1 regression/gh366.at gh366.at:1 gh366.at gh366 regression service; +274;rhbz1601610.at:1;ipset duplicate entries;iptables regression/rhbz1601610.at:1 regression/rhbz1601610.at rhbz1601610.at:1 rhbz1601610.at rhbz1601610 regression ipset; +275;gh303.at:1;unicode in XML;iptables regression/gh303.at:1 regression/gh303.at gh303.at:1 gh303.at gh303 regression xml unicode service; +276;gh335.at:1;forward-port toaddr enables IP forwarding;iptables regression/gh335.at:1 regression/gh335.at gh335.at:1 gh335.at gh335 regression port forward_port; +277;gh482.at:1;remove forward-port after reload;iptables regression/gh482.at:1 regression/gh482.at gh482.at:1 gh482.at gh482 regression rhbz1637675 rich forward_port; +278;gh478.at:1;rich rule marks every packet;iptables regression/gh478.at:1 regression/gh478.at gh478.at:1 gh478.at gh478 regression rich mark; +279;gh258.at:1;zone dispatch layout;iptables regression/gh258.at:1 regression/gh258.at gh258.at:1 gh258.at gh258 regression zone gh441 rhbz1713823; +280;rhbz1715977.at:1;rich rule src/dst with service destination;iptables regression/rhbz1715977.at:1 regression/rhbz1715977.at rhbz1715977.at:1 rhbz1715977.at rhbz1715977 regression rich service rhbz1729097 rhbz1791783; +281;rhbz1723610.at:1;direct remove-rules per family;iptables regression/rhbz1723610.at:1 regression/rhbz1723610.at rhbz1723610.at:1 rhbz1723610.at rhbz1723610 regression direct gh385; +282;rhbz1734765.at:1;zone sources ordered by name;iptables regression/rhbz1734765.at:1 regression/rhbz1734765.at rhbz1734765.at:1 rhbz1734765.at rhbz1734765 regression zone rhbz1421222 gh166 rhbz1738545; +283;gh567.at:1;rich rule source w/ mark action;iptables regression/gh567.at:1 regression/gh567.at gh567.at:1 gh567.at gh567 regression rich ipset; +284;rhbz1779835.at:1;ipv6 address with brackets;iptables regression/rhbz1779835.at:1 regression/rhbz1779835.at rhbz1779835.at:1 rhbz1779835.at rhbz1779835 regression ipset; +285;rhbz1779835.at:16;ipv6 address with brackets;iptables regression/rhbz1779835.at:16 regression/rhbz1779835.at rhbz1779835.at:16 rhbz1779835.at rhbz1779835 regression zone forward_port rich; +286;gh330.at:1;ipset cleanup on reload/stop;iptables regression/gh330.at:1 regression/gh330.at gh330.at:1 gh330.at gh330 regression ipset reload rhbz1682913 rhbz1790948 rhbz1809225; +287;gh599.at:1;writing to log after copytruncate;iptables regression/gh599.at:1 regression/gh599.at gh599.at:1 gh599.at gh599 regression; +288;rhbz1829104.at:1;direct rule in zone chain;iptables regression/rhbz1829104.at:1 regression/rhbz1829104.at rhbz1829104.at:1 rhbz1829104.at rhbz1829104 regression direct; +289;rhbz1843398.at:1;rich rule source mac;iptables regression/rhbz1843398.at:1 regression/rhbz1843398.at rhbz1843398.at:1 rhbz1843398.at rhbz1843398 regression rich gh643; +290;rhbz1839781.at:1;service RH-Satellite-6;iptables regression/rhbz1839781.at:1 regression/rhbz1839781.at rhbz1839781.at:1 rhbz1839781.at rhbz1839781 regression service; +291;rhbz1689429.at:1;rich rule invalid priority;iptables regression/rhbz1689429.at:1 regression/rhbz1689429.at rhbz1689429.at:1 rhbz1689429.at rhbz1689429 regression rich; +292;rhbz1483921.at:1;direct and zone mutually exclusive;iptables regression/rhbz1483921.at:1 regression/rhbz1483921.at rhbz1483921.at:1 rhbz1483921.at rhbz1483921 regression direct; +293;rhbz1541077.at:1;hash:mac and family mutually exclusive;iptables regression/rhbz1541077.at:1 regression/rhbz1541077.at rhbz1541077.at:1 rhbz1541077.at rhbz1541077 regression ipset; +294;rhbz1855140.at:1;rich rule icmptypes with one family;iptables regression/rhbz1855140.at:1 regression/rhbz1855140.at rhbz1855140.at:1 rhbz1855140.at rhbz1855140 regression rich icmp; +295;rhbz1871298.at:1;rich rule parsing bottleneck;iptables regression/rhbz1871298.at:1 regression/rhbz1871298.at rhbz1871298.at:1 rhbz1871298.at rhbz1871298 regression rich offline scale; +296;rhbz1596304.at:1;rich rules strip non-printable characters;iptables regression/rhbz1596304.at:1 regression/rhbz1596304.at rhbz1596304.at:1 rhbz1596304.at rhbz1596304 regression rich; +297;gh703.at:1;add source with mac address;iptables regression/gh703.at:1 regression/gh703.at gh703.at:1 gh703.at gh703 regression; +298;ipset_netmask_allowed.at:1;ipset netmask allowed type hash:ip;iptables regression/ipset_netmask_allowed.at:1 regression/ipset_netmask_allowed.at ipset_netmask_allowed.at:1 ipset_netmask_allowed.at ipset_netmask_allowed regression ipset reload; +299;rhbz1940928.at:1;direct -s/-d multiple addresses;iptables regression/rhbz1940928.at:1 regression/rhbz1940928.at rhbz1940928.at:1 rhbz1940928.at rhbz1940928 regression direct rhbz1949552; +300;rhbz1936896.at:1;ipset type hash:net,net;iptables regression/rhbz1936896.at:1 regression/rhbz1936896.at rhbz1936896.at:1 rhbz1936896.at rhbz1936896 regression; +301;gh795.at:1;ipset entry delete w/ timeout=0;iptables regression/gh795.at:1 regression/gh795.at gh795.at:1 gh795.at gh795 regression ipset gh794; +302;rhbz1914935.at:1;zone overlapping ports;iptables regression/rhbz1914935.at:1 regression/rhbz1914935.at rhbz1914935.at:1 rhbz1914935.at rhbz1914935 regression zone port; +303;gh696.at:1;icmp-block-inversion no log blocked;iptables regression/gh696.at:1 regression/gh696.at gh696.at:1 gh696.at gh696 regression icmp rhbz1945833; +304;rhbz1917766.at:1;rich rule source with netmask;iptables regression/rhbz1917766.at:1 regression/rhbz1917766.at rhbz1917766.at:1 rhbz1917766.at rhbz1917766 regression rich; +305;rhbz2014383.at:1;same source in two zone xml;iptables regression/rhbz2014383.at:1 regression/rhbz2014383.at rhbz2014383.at:1 rhbz2014383.at rhbz2014383 regression zone; +306;gh874.at:1;policy masquerade w/ ingress interface;iptables regression/gh874.at:1 regression/gh874.at gh874.at:1 gh874.at gh874 regression policy zone masquerade gh926; +307;gh881.at:1;ipset entry overlap detect perf;iptables regression/gh881.at:1 regression/gh881.at gh881.at:1 gh881.at gh881 regression ipset; +308;service_includes_for_builtin.at:1;service include for built-in;iptables regression/service_includes_for_builtin.at:1 regression/service_includes_for_builtin.at service_includes_for_builtin.at:1 service_includes_for_builtin.at service_includes_for_builtin regression dbus service service_includes_for_built-in; +309;gh940.at:1;log prefix;iptables regression/gh940.at:1 regression/gh940.at gh940.at:1 gh940.at gh940 regression policy; +310;build_policy_split_wildcard.at:1;build policy split wildcards;iptables regression/build_policy_split_wildcard.at:1 regression/build_policy_split_wildcard.at build_policy_split_wildcard.at:1 build_policy_split_wildcard.at build_policy_split_wildcard regression gh892 policy; +311;gh1011.at:1;remove entries results in empty;iptables regression/gh1011.at:1 regression/gh1011.at gh1011.at:1 gh1011.at gh1011 regression ipset rhbz2121985; +312;rhbz2181406.at:1;rich rule limit;iptables regression/rhbz2181406.at:1 regression/rhbz2181406.at rhbz2181406.at:1 rhbz2181406.at rhbz2181406 regression rich; +313;ipset_scale.at:1;ipset scale;iptables regression/ipset_scale.at:1 regression/ipset_scale.at ipset_scale.at:1 ipset_scale.at ipset_scale regression ipset gh738 scale; +314;gh1129.at:16;switch backend to nftables and reload;iptables regression/gh1129.at:16 regression/gh1129.at gh1129.at:16 gh1129.at gh1129 regression; +315;gh1146.at:1;policy with mixed family zone source;iptables regression/gh1146.at:1 regression/gh1146.at gh1146.at:1 gh1146.at gh1146 regression policy; +316;gh1152.at:1;list-all identical content;iptables regression/gh1152.at:1 regression/gh1152.at gh1152.at:1 gh1152.at gh1152 regression cli; +317;rhbz2222044.at:1;duplicate rules after restart;iptables regression/rhbz2222044.at:1 regression/rhbz2222044.at rhbz2222044.at:1 rhbz2222044.at rhbz2222044 regression; +318;gh1229.at:1;policy dispatch with egress-zone=ANY;iptables regression/gh1229.at:1 regression/gh1229.at gh1229.at:1 gh1229.at gh1229 regression policy gh1234; +319;gh1278.at:1;policy dispatch update if active;iptables regression/gh1278.at:1 regression/gh1278.at gh1278.at:1 gh1278.at gh1278 regression source policy; +320;gh1406.at:1;ipset iface;iptables regression/gh1406.at:1 regression/gh1406.at gh1406.at:1 gh1406.at gh1406 regression ipset; +321;RHEL-67103.at:1;rich rule invalid ipset;iptables regression/rhel-67103.at:1 regression/rhel-67103.at rhel-67103.at:1 rhel-67103.at rhel-67103 regression rich ipset rhel-67331; +322;python.at:3;firewalld_misc.py;iptables python/python.at:3 python/python.at python.at:3 python.at python; +323;python.at:8;firewalld_config.py;iptables python/python.at:8 python/python.at python.at:8 python.at python; +324;python.at:13;firewalld_rich.py;iptables python/python.at:13 python/python.at python.at:13 python.at python; +325;python.at:18;firewalld_direct.py;iptables python/python.at:18 python/python.at python.at:18 python.at python; +326;rfc3964_ipv4.at:1;RFC3964_IPv4;iptables features/rfc3964_ipv4.at:1 features/rfc3964_ipv4.at rfc3964_ipv4.at:1 rfc3964_ipv4.at rfc3964_ipv4 features; +327;service_include.at:1;service include;iptables features/service_include.at:1 features/service_include.at service_include.at:1 service_include.at service_include features service xml gh273 rhbz1720300 gh707 gh1075; +328;helpers_custom.at:1;customer helpers;iptables features/helpers_custom.at:1 features/helpers_custom.at helpers_custom.at:1 helpers_custom.at helpers_custom features helpers rhbz1733066 gh514 rhbz1769520; +329;policy.at:5;policy - xml;iptables features/policy.at:5 features/policy.at policy.at:5 policy.at policy features xml; +330;policy.at:79;policy - create;iptables features/policy.at:79 features/policy.at policy.at:79 policy.at policy features; +331;policy.at:96;policy - name;iptables features/policy.at:96 features/policy.at policy.at:96 policy.at policy features; +332;policy.at:109;policy - list;iptables features/policy.at:109 features/policy.at policy.at:109 policy.at policy features; +333;policy.at:231;policy - options;iptables features/policy.at:231 features/policy.at policy.at:231 policy.at policy features; +334;policy.at:286;policy - priority;iptables features/policy.at:286 features/policy.at policy.at:286 policy.at policy features; +335;policy.at:470;policy - zones;iptables features/policy.at:470 features/policy.at policy.at:470 policy.at policy features; +336;policy.at:822;policy - dispatch;iptables features/policy.at:822 features/policy.at policy.at:822 policy.at policy features; +337;policy.at:5352;policy - interfaces/sources;iptables features/policy.at:5352 features/policy.at policy.at:5352 policy.at policy features; +338;policy.at:6073;policy - target;iptables features/policy.at:6073 features/policy.at policy.at:6073 policy.at policy features; +339;policy.at:6122;policy - from file;iptables features/policy.at:6122 features/policy.at policy.at:6122 policy.at policy features; +340;policy.at:6139;policy - zone drifting not allowed;iptables features/policy.at:6139 features/policy.at policy.at:6139 policy.at policy features gh797; +341;policy.at:6301;policy - multiple using same zone source;iptables features/policy.at:6301 features/policy.at policy.at:6301 policy.at policy features source; +342;services.at:1;services;iptables features/services.at:1 features/services.at services.at:1 services.at services features policy service; +343;ports.at:1;ports;iptables features/ports.at:1 features/ports.at ports.at:1 ports.at ports features policy port; +344;source_ports.at:1;source ports;iptables features/source_ports.at:1 features/source_ports.at source_ports.at:1 source_ports.at source_ports features policy source_port; +345;forward_ports.at:1;forward ports;iptables features/forward_ports.at:1 features/forward_ports.at forward_ports.at:1 forward_ports.at forward_ports features policy forward_port; +346;forward_ports.at:207;forward ports (OUTPUT);iptables features/forward_ports.at:207 features/forward_ports.at forward_ports.at:207 forward_ports.at forward_ports features policy forward_port rhbz2039542; +347;forward_ports.at:287;forward ports - logging and limiting;iptables features/forward_ports.at:287 features/forward_ports.at forward_ports.at:287 forward_ports.at forward_ports features forward_port rich logging limit; +348;masquerade.at:1;masquerade;iptables features/masquerade.at:1 features/masquerade.at masquerade.at:1 masquerade.at masquerade features policy gh926; +349;protocols.at:1;protocols;iptables features/protocols.at:1 features/protocols.at protocols.at:1 protocols.at protocols features policy protocol; +350;rich_rules.at:1;rich rules;iptables features/rich_rules.at:1 features/rich_rules.at rich_rules.at:1 rich_rules.at rich_rules features policy rich; +351;icmp_blocks.at:1;ICMP blocks;iptables features/icmp_blocks.at:1 features/icmp_blocks.at icmp_blocks.at:1 icmp_blocks.at icmp_blocks features policy icmp_block; +352;rich_tcp_mss_clamp.at:5;tcp-mss-clamp;iptables features/rich_tcp_mss_clamp.at:5 features/rich_tcp_mss_clamp.at rich_tcp_mss_clamp.at:5 rich_tcp_mss_clamp.at rich_tcp_mss_clamp features tcp-mss-clamp gh1121; +353;rich_destination_ipset.at:1;rich destination ipset;iptables features/rich_destination_ipset.at:1 features/rich_destination_ipset.at rich_destination_ipset.at:1 rich_destination_ipset.at rich_destination_ipset features rich ipset; +354;zone.at:1;zone - target;iptables features/zone.at:1 features/zone.at zone.at:1 zone.at zone features; +355;rpfilter.at:1;rpfilter - strict;iptables features/rpfilter.at:1 features/rpfilter.at rpfilter.at:1 rpfilter.at rpfilter features; +356;rpfilter.at:27;rpfilter - loose;iptables features/rpfilter.at:27 features/rpfilter.at rpfilter.at:27 rpfilter.at rpfilter features; +357;rpfilter.at:53;rpfilter - strict-forward;iptables features/rpfilter.at:53 features/rpfilter.at rpfilter.at:53 rpfilter.at rpfilter features; +358;rpfilter.at:89;rpfilter - loose-forward;iptables features/rpfilter.at:89 features/rpfilter.at rpfilter.at:89 rpfilter.at rpfilter features; +359;rpfilter.at:125;rpfilter - config values;iptables features/rpfilter.at:125 features/rpfilter.at rpfilter.at:125 rpfilter.at rpfilter features rhel-72937; +360;rpfilter.at:147;rpfilter - config values, -forward;iptables features/rpfilter.at:147 features/rpfilter.at rpfilter.at:147 rpfilter.at rpfilter features rhel-72937; +361;zone_combine.at:1;zone - combine;iptables features/zone_combine.at:1 features/zone_combine.at zone_combine.at:1 zone_combine.at zone_combine features zone; +362;reset_defaults.at:1;reset defaults;iptables features/reset_defaults.at:1 features/reset_defaults.at reset_defaults.at:1 reset_defaults.at reset_defaults features reset; +363;zone_priority.at:1;zone - priority;iptables features/zone_priority.at:1 features/zone_priority.at zone_priority.at:1 zone_priority.at zone_priority features zone; +364;reloadpolicy.at:1;check ReloadPolicy;iptables features/reloadpolicy.at:1 features/reloadpolicy.at reloadpolicy.at:1 reloadpolicy.at reloadpolicy features rhbz2149039; +365;strict_forward_ports.at:1;strict forward ports;iptables features/strict_forward_ports.at:1 features/strict_forward_ports.at strict_forward_ports.at:1 strict_forward_ports.at strict_forward_ports features forward_port gh869 gh1380; " # List of the all the test groups. -at_groups_all=`$as_echo "$at_help_all" | sed 's/;.*//'` +at_groups_all=`printf "%s\n" "$at_help_all" | sed 's/;.*//'` # at_fn_validate_ranges NAME... # ----------------------------- @@ -944,8 +988,8 @@ at_fn_validate_ranges () for at_grp do eval at_value=\$$at_grp - if test $at_value -lt 1 || test $at_value -gt 341; then - $as_echo "invalid test group: $at_value" >&2 + if test $at_value -lt 1 || test $at_value -gt 365; then + printf "%s\n" "invalid test group: $at_value" >&2 exit 1 fi case $at_value in @@ -973,8 +1017,6 @@ do *) at_optarg= ;; esac - # Accept the important Cygnus configure options, so we can diagnose typos. - case $at_option in --help | -h ) at_help_p=: @@ -1033,7 +1075,7 @@ do [0-9]- | [0-9][0-9]- | [0-9][0-9][0-9]- | [0-9][0-9][0-9][0-9]-) at_range_start=`echo $at_option |tr -d X-` at_fn_validate_ranges at_range_start - at_range=`$as_echo "$at_groups_all" | \ + at_range=`printf "%s\n" "$at_groups_all" | \ sed -ne '/^'$at_range_start'$/,$p'` as_fn_append at_groups "$at_range$as_nl" ;; @@ -1041,7 +1083,7 @@ do -[0-9] | -[0-9][0-9] | -[0-9][0-9][0-9] | -[0-9][0-9][0-9][0-9]) at_range_end=`echo $at_option |tr -d X-` at_fn_validate_ranges at_range_end - at_range=`$as_echo "$at_groups_all" | \ + at_range=`printf "%s\n" "$at_groups_all" | \ sed -ne '1,/^'$at_range_end'$/p'` as_fn_append at_groups "$at_range$as_nl" ;; @@ -1060,7 +1102,7 @@ do at_range_start=$at_tmp fi at_fn_validate_ranges at_range_start at_range_end - at_range=`$as_echo "$at_groups_all" | \ + at_range=`printf "%s\n" "$at_groups_all" | \ sed -ne '/^'$at_range_start'$/,/^'$at_range_end'$/p'` as_fn_append at_groups "$at_range$as_nl" ;; @@ -1114,11 +1156,11 @@ do ;; esac # It is on purpose that we match the test group titles too. - at_groups_selected=`$as_echo "$at_groups_selected" | + at_groups_selected=`printf "%s\n" "$at_groups_selected" | grep -i $at_invert "^[1-9][^;]*;.*[; ]$at_keyword[ ;]"` done # Smash the keywords. - at_groups_selected=`$as_echo "$at_groups_selected" | sed 's/;.*//'` + at_groups_selected=`printf "%s\n" "$at_groups_selected" | sed 's/;.*//'` as_fn_append at_groups "$at_groups_selected$as_nl" ;; --recheck) @@ -1132,21 +1174,22 @@ do '' | [0-9]* | *[!_$as_cr_alnum]* ) as_fn_error $? "invalid variable name: \`$at_envvar'" ;; esac - at_value=`$as_echo "$at_optarg" | sed "s/'/'\\\\\\\\''/g"` + at_value=`printf "%s\n" "$at_optarg" | sed "s/'/'\\\\\\\\''/g"` # Export now, but save eval for later and for debug scripts. export $at_envvar as_fn_append at_debug_args " $at_envvar='$at_value'" ;; - *) $as_echo "$as_me: invalid option: $at_option" >&2 - $as_echo "Try \`$0 --help' for more information." >&2 + *) printf "%s\n" "$as_me: invalid option: $at_option" >&2 + printf "%s\n" "Try \`$0 --help' for more information." >&2 exit 1 ;; esac done # Verify our last option didn't require an argument -if test -n "$at_prev"; then : +if test -n "$at_prev" +then : as_fn_error $? "\`$at_prev' requires an argument" fi @@ -1170,7 +1213,7 @@ else as_fn_append at_groups "$at_oldfails$as_nl" fi # Sort the tests, removing duplicates. - at_groups=`$as_echo "$at_groups" | sort -nu | sed '/^$/d'` + at_groups=`printf "%s\n" "$at_groups" | sort -nu | sed '/^$/d'` fi if test x"$at_color" = xalways \ @@ -1243,14 +1286,14 @@ fi # List of tests. if $at_list_p; then cat <<_ATEOF || at_write_fail=1 -firewalld 2.1.2 test suite test groups: +firewalld 2.3.1 test suite test groups: NUM: FILE-NAME:LINE TEST-GROUP-NAME KEYWORDS _ATEOF # Pass an empty line as separator between selected groups and help. - $as_echo "$at_groups$as_nl$as_nl$at_help_all" | + printf "%s\n" "$at_groups$as_nl$as_nl$at_help_all" | awk 'NF == 1 && FS != ";" { selected[$ 1] = 1 next @@ -1284,10 +1327,10 @@ _ATEOF exit $at_write_fail fi if $at_version_p; then - $as_echo "$as_me (firewalld 2.1.2)" && + printf "%s\n" "$as_me (firewalld 2.3.1)" && cat <<\_ATEOF || at_write_fail=1 -Copyright (C) 2012 Free Software Foundation, Inc. +Copyright (C) 2021 Free Software Foundation, Inc. This test suite is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it. _ATEOF @@ -1308,31 +1351,31 @@ at_banner_text_1="firewall-offline-cmd" # Category starts at test group 29. at_banner_text_2="features (offline)" # Banner 3. dbus.at:1 -# Category starts at test group 65. +# Category starts at test group 71. at_banner_text_3="dbus" # Banner 4. firewall-cmd.at:1 -# Category starts at test group 76. +# Category starts at test group 83. at_banner_text_4="firewall-cmd (nftables)" # Banner 5. regression.at:1 -# Category starts at test group 104. +# Category starts at test group 111. at_banner_text_5="regression (nftables)" # Banner 6. python.at:1 -# Category starts at test group 166. +# Category starts at test group 175. at_banner_text_6="python (nftables)" # Banner 7. features.at:1 -# Category starts at test group 170. +# Category starts at test group 179. at_banner_text_7="features (nftables)" # Banner 8. firewall-cmd.at:1 -# Category starts at test group 215. +# Category starts at test group 231. at_banner_text_8="firewall-cmd (iptables)" # Banner 9. regression.at:1 -# Category starts at test group 243. +# Category starts at test group 259. at_banner_text_9="regression (iptables)" # Banner 10. python.at:1 -# Category starts at test group 304. +# Category starts at test group 322. at_banner_text_10="python (iptables)" # Banner 11. features.at:1 -# Category starts at test group 308. +# Category starts at test group 326. at_banner_text_11="features (iptables)" # Take any -C into account. @@ -1427,13 +1470,17 @@ fi # For embedded test suites, AUTOTEST_PATH is relative to the top level # of the package. Then expand it into build/src parts, since users # may create executables in both places. -AUTOTEST_PATH=`$as_echo "$AUTOTEST_PATH" | sed "s|:|$PATH_SEPARATOR|g"` +AUTOTEST_PATH=`printf "%s\n" "$AUTOTEST_PATH" | sed "s|:|$PATH_SEPARATOR|g"` at_path= as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $AUTOTEST_PATH $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac test -n "$at_path" && as_fn_append at_path $PATH_SEPARATOR case $as_dir in [\\/]* | ?:[\\/]* ) @@ -1463,7 +1510,11 @@ as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $at_path do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac test -d "$as_dir" || continue case $as_dir in [\\/]* | ?:[\\/]* ) ;; @@ -1493,23 +1544,23 @@ fi exec 5>>"$at_suite_log" # Banners and logs. -$as_echo "## --------------------------- ## -## firewalld 2.1.2 test suite. ## +printf "%s\n" "## --------------------------- ## +## firewalld 2.3.1 test suite. ## ## --------------------------- ##" { - $as_echo "## --------------------------- ## -## firewalld 2.1.2 test suite. ## + printf "%s\n" "## --------------------------- ## +## firewalld 2.3.1 test suite. ## ## --------------------------- ##" echo - $as_echo "$as_me: command line was:" - $as_echo " \$ $0 $at_cli_args" + printf "%s\n" "$as_me: command line was:" + printf "%s\n" " \$ $0 $at_cli_args" echo # If ChangeLog exists, list a few lines in case it might help determining # the exact version. if test -n "$at_top_srcdir" && test -f "$at_top_srcdir/ChangeLog"; then - $as_echo "## ---------- ## + printf "%s\n" "## ---------- ## ## ChangeLog. ## ## ---------- ##" echo @@ -1546,8 +1597,12 @@ as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - $as_echo "PATH: $as_dir" + case $as_dir in #((( + '') as_dir=./ ;; + */) ;; + *) as_dir=$as_dir/ ;; + esac + printf "%s\n" "PATH: $as_dir" done IFS=$as_save_IFS @@ -1558,7 +1613,7 @@ IFS=$as_save_IFS for at_file in atconfig atlocal do test -r $at_file || continue - $as_echo "$as_me: $at_file:" + printf "%s\n" "$as_me: $at_file:" sed 's/^/| /' $at_file echo done @@ -1582,7 +1637,7 @@ at_fn_banner () if test -z "$at_banner_text"; then $at_first || echo else - $as_echo "$as_nl$at_banner_text$as_nl" + printf "%s\n" "$as_nl$at_banner_text$as_nl" fi } # at_fn_banner @@ -1593,7 +1648,7 @@ at_fn_banner () at_fn_check_prepare_notrace () { $at_trace_echo "Not enabling shell tracing (command contains $1)" - $as_echo "$2" >"$at_check_line_file" + printf "%s\n" "$2" >"$at_check_line_file" at_check_trace=: at_check_filter=: : >"$at_stdout"; : >"$at_stderr" } @@ -1604,7 +1659,7 @@ at_fn_check_prepare_notrace () # command. at_fn_check_prepare_trace () { - $as_echo "$1" >"$at_check_line_file" + printf "%s\n" "$1" >"$at_check_line_file" at_check_trace=$at_traceon at_check_filter=$at_check_filter_trace : >"$at_stdout"; : >"$at_stderr" } @@ -1641,7 +1696,7 @@ at_fn_filter_trace () at_fn_log_failure () { for file - do $as_echo "$file:"; sed 's/^/> /' "$file"; done + do printf "%s\n" "$file:"; sed 's/^/> /' "$file"; done echo 1 > "$at_status_file" exit 1 } @@ -1655,7 +1710,7 @@ at_fn_check_skip () { case $1 in 99) echo 99 > "$at_status_file"; at_failed=: - $as_echo "$2: hard failure"; exit 99;; + printf "%s\n" "$2: hard failure"; exit 99;; 77) echo 77 > "$at_status_file"; exit 77;; esac } @@ -1672,8 +1727,8 @@ at_fn_check_status () $1 ) ;; 77) echo 77 > "$at_status_file"; exit 77;; 99) echo 99 > "$at_status_file"; at_failed=: - $as_echo "$3: hard failure"; exit 99;; - *) $as_echo "$3: exit code was $2, expected $1" + printf "%s\n" "$3: hard failure"; exit 99;; + *) printf "%s\n" "$3: exit code was $2, expected $1" at_failed=:;; esac } @@ -1705,9 +1760,9 @@ at_fn_create_debugging_script () { { echo "#! /bin/sh" && - echo 'test "${ZSH_VERSION+set}" = set && alias -g '\''${1+"$@"}'\''='\''"$@"'\''' && - $as_echo "cd '$at_dir'" && - $as_echo "exec \${CONFIG_SHELL-$SHELL} \"$at_myself\" -v -d $at_debug_args $at_group \${1+\"\$@\"}" && + echo 'test ${ZSH_VERSION+y} && alias -g '\''${1+"$@"}'\''='\''"$@"'\''' && + printf "%s\n" "cd '$at_dir'" && + printf "%s\n" "exec \${CONFIG_SHELL-$SHELL} \"$at_myself\" -v -d $at_debug_args $at_group \${1+\"\$@\"}" && echo 'exit 1' } >"$at_group_dir/run" && chmod +x "$at_group_dir/run" @@ -1717,50 +1772,14 @@ at_fn_create_debugging_script () ## End of autotest shell functions. ## ## -------------------------------- ## { - $as_echo "## ---------------- ## -## Tested programs. ## -## ---------------- ##" - echo -} >&5 - -# Report what programs are being tested. -for at_program in : $at_tested -do - test "$at_program" = : && continue - case $at_program in - [\\/]* | ?:[\\/]* ) $at_program_=$at_program ;; - * ) - as_save_IFS=$IFS; IFS=$PATH_SEPARATOR -for as_dir in $PATH -do - IFS=$as_save_IFS - test -z "$as_dir" && as_dir=. - test -f "$as_dir/$at_program" && break - done -IFS=$as_save_IFS - - at_program_=$as_dir/$at_program ;; - esac - if test -f "$at_program_"; then - { - $as_echo "$at_srcdir/testsuite.at:1: $at_program_ --version" - "$at_program_" --version &5 2>&1 - else - as_fn_error $? "cannot find $at_program" "$LINENO" 5 - fi -done - -{ - $as_echo "## ------------------ ## + printf "%s\n" "## ------------------ ## ## Running the tests. ## ## ------------------ ##" } >&5 at_start_date=`date` at_start_time=`date +%s 2>/dev/null` -$as_echo "$as_me: starting at: $at_start_date" >&5 +printf "%s\n" "$as_me: starting at: $at_start_date" >&5 # Create the master directory if it doesn't already exist. as_dir="$at_suite_dir"; as_fn_mkdir_p || @@ -1871,12 +1890,13 @@ at_fn_group_prepare () # under the shell's notion of the current directory. at_group_dir=$at_suite_dir/$at_group_normalized at_group_log=$at_group_dir/$as_me.log - if test -d "$at_group_dir"; then + if test -d "$at_group_dir" +then find "$at_group_dir" -type d ! -perm -700 -exec chmod u+rwx {} \; rm -fr "$at_group_dir"/* "$at_group_dir"/.[!.] "$at_group_dir"/.??* fi || - { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: test directory for $at_group_normalized could not be cleaned" >&5 -$as_echo "$as_me: WARNING: test directory for $at_group_normalized could not be cleaned" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: test directory for $at_group_normalized could not be cleaned" >&5 +printf "%s\n" "$as_me: WARNING: test directory for $at_group_normalized could not be cleaned" >&2;} # Be tolerant if the above `rm' was not able to remove the directory. as_dir="$at_group_dir"; as_fn_mkdir_p @@ -1906,7 +1926,7 @@ at_fn_group_banner () *) at_desc_line="$1: " ;; esac as_fn_append at_desc_line "$3$4" - $at_quiet $as_echo_n "$at_desc_line" + $at_quiet printf %s "$at_desc_line" echo "# -*- compilation -*-" >> "$at_group_log" } @@ -1925,11 +1945,11 @@ at_fn_group_postprocess () run. This means that test suite is improperly designed. Please report this failure to . _ATEOF - $as_echo "$at_setup_line" >"$at_check_line_file" + printf "%s\n" "$at_setup_line" >"$at_check_line_file" at_status=99 fi - $at_verbose $as_echo_n "$at_group. $at_setup_line: " - $as_echo_n "$at_group. $at_setup_line: " >> "$at_group_log" + $at_verbose printf %s "$at_group. $at_setup_line: " + printf %s "$at_group. $at_setup_line: " >> "$at_group_log" case $at_xfail:$at_status in yes:0) at_msg="UNEXPECTED PASS" @@ -1965,10 +1985,10 @@ _ATEOF echo "$at_res" > "$at_job_dir/$at_res" # In parallel mode, output the summary line only afterwards. if test $at_jobs -ne 1 && test -n "$at_verbose"; then - $as_echo "$at_desc_line $at_color$at_msg$at_std" + printf "%s\n" "$at_desc_line $at_color$at_msg$at_std" else # Make sure there is a separator even with long titles. - $as_echo " $at_color$at_msg$at_std" + printf "%s\n" " $at_color$at_msg$at_std" fi at_log_msg="$at_group. $at_desc ($at_setup_line): $at_msg" case $at_status in @@ -1981,8 +2001,8 @@ _ATEOF at_log_msg="$at_log_msg ("`sed 1d "$at_times_file"`')' rm -f "$at_times_file" fi - $as_echo "$at_log_msg" >> "$at_group_log" - $as_echo "$at_log_msg" >&5 + printf "%s\n" "$at_log_msg" >> "$at_group_log" + printf "%s\n" "$at_log_msg" >&5 # Cleanup the group directory, unless the user wants the files # or the success was unexpected. @@ -2003,7 +2023,7 @@ _ATEOF # Upon failure, include the log into the testsuite's global # log. The failure message is written in the group log. It # is later included in the global log. - $as_echo "$at_log_msg" >> "$at_group_log" + printf "%s\n" "$at_log_msg" >> "$at_group_log" # Upon failure, keep the group directory for autopsy, and create # the debugging script. With -e, do not start any further tests. @@ -2046,8 +2066,8 @@ for at_signal in 1 2 15; do at_signame=`kill -l $at_signal 2>&1 || echo $at_signal` set x $at_signame test 0 -gt 2 && at_signame=$at_signal - { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: caught signal $at_signame, bailing out" >&5 -$as_echo "$as_me: WARNING: caught signal $at_signame, bailing out" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: caught signal $at_signame, bailing out" >&5 +printf "%s\n" "$as_me: WARNING: caught signal $at_signame, bailing out" >&2;} as_fn_arith 128 + $at_signal && exit_status=$as_val as_fn_exit $exit_status' $at_signal done @@ -2068,7 +2088,7 @@ then done if test -n "$at_pids"; then at_sig=TSTP - test "${TMOUT+set}" = set && at_sig=STOP + test ${TMOUT+y} && at_sig=STOP kill -$at_sig $at_pids 2>/dev/null fi kill -STOP $$ @@ -2076,7 +2096,7 @@ then echo # Turn jobs into a list of numbers, starting from 1. - at_joblist=`$as_echo "$at_groups" | sed -n 1,${at_jobs}p` + at_joblist=`printf "%s\n" "$at_groups" | sed -n 1,${at_jobs}p` set X $at_joblist shift @@ -2100,8 +2120,8 @@ then at_fn_test $at_group && . "$at_test_source" then :; else - { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unable to parse test group: $at_group" >&5 -$as_echo "$as_me: WARNING: unable to parse test group: $at_group" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: unable to parse test group: $at_group" >&5 +printf "%s\n" "$as_me: WARNING: unable to parse test group: $at_group" >&2;} at_failed=: fi at_fn_group_postprocess @@ -2139,8 +2159,8 @@ else if cd "$at_group_dir" && at_fn_test $at_group && . "$at_test_source"; then :; else - { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unable to parse test group: $at_group" >&5 -$as_echo "$as_me: WARNING: unable to parse test group: $at_group" >&2;} + { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: unable to parse test group: $at_group" >&5 +printf "%s\n" "$as_me: WARNING: unable to parse test group: $at_group" >&2;} at_failed=: fi at_fn_group_postprocess @@ -2179,7 +2199,7 @@ rm -rf "$at_helper_dir" # Compute the duration of the suite. at_stop_date=`date` at_stop_time=`date +%s 2>/dev/null` -$as_echo "$as_me: ending at: $at_stop_date" >&5 +printf "%s\n" "$as_me: ending at: $at_stop_date" >&5 case $at_start_time,$at_stop_time in [0-9]*,[0-9]*) as_fn_arith $at_stop_time - $at_start_time && at_duration_s=$as_val @@ -2188,18 +2208,18 @@ case $at_start_time,$at_stop_time in as_fn_arith $at_duration_s % 60 && at_duration_s=$as_val as_fn_arith $at_duration_m % 60 && at_duration_m=$as_val at_duration="${at_duration_h}h ${at_duration_m}m ${at_duration_s}s" - $as_echo "$as_me: test suite duration: $at_duration" >&5 + printf "%s\n" "$as_me: test suite duration: $at_duration" >&5 ;; esac echo -$as_echo "## ------------- ## +printf "%s\n" "## ------------- ## ## Test results. ## ## ------------- ##" echo { echo - $as_echo "## ------------- ## + printf "%s\n" "## ------------- ## ## Test results. ## ## ------------- ##" echo @@ -2279,7 +2299,7 @@ else echo "ERROR: $at_result" >&5 { echo - $as_echo "## ------------------------ ## + printf "%s\n" "## ------------------------ ## ## Summary of the failures. ## ## ------------------------ ##" @@ -2300,7 +2320,7 @@ else echo fi if test $at_fail_count != 0; then - $as_echo "## ---------------------- ## + printf "%s\n" "## ---------------------- ## ## Detailed failed tests. ## ## ---------------------- ##" echo @@ -2339,10 +2359,14 @@ _ASBOX else at_msg="\`${at_testdir+${at_testdir}/}$as_me.log'" fi - $as_echo "Please send $at_msg and all information you think might help: + at_msg1a=${at_xpass_list:+', '} + at_msg1=$at_fail_list${at_fail_list:+" failed$at_msg1a"} + at_msg2=$at_xpass_list${at_xpass_list:+" passed unexpectedly"} + + printf "%s\n" "Please send $at_msg and all information you think might help: To: - Subject: [firewalld 2.1.2] $as_me: $at_fail_list${at_fail_list:+ failed${at_xpass_list:+, }}$at_xpass_list${at_xpass_list:+ passed unexpectedly} + Subject: [firewalld 2.3.1] $as_me: $at_msg1$at_msg2 You may investigate any problem if you feel able to do so, in which case the test suite provides a good starting point. Its output may @@ -2361,7 +2385,7 @@ at_fn_group_banner 1 'firewall-cmd.at:5' \ "basic options" " " 1 at_xfail=no ( - $as_echo "1. $at_setup_line: testing $at_desc ..." + printf "%s\n" "1. $at_setup_line: testing $at_desc ..." $at_traceon @@ -2379,6 +2403,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -2395,7 +2420,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2409,7 +2434,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:5" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2514,7 +2539,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:23: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --complete-reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:23: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --complete-reload " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --complete-reload " "firewall-cmd.at:23" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --complete-reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2623,7 +2648,7 @@ at_fn_group_banner 2 'firewall-cmd.at:34' \ "get/list options" " " 1 at_xfail=no ( - $as_echo "2. $at_setup_line: testing $at_desc ..." + printf "%s\n" "2. $at_setup_line: testing $at_desc ..." $at_traceon @@ -2641,6 +2666,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -2657,7 +2683,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2671,7 +2697,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:34" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2750,7 +2776,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:40: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zones " +printf "%s\n" "$at_srcdir/firewall-cmd.at:40: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zones " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zones " "firewall-cmd.at:40" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2787,7 +2813,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:41: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-services " +printf "%s\n" "$at_srcdir/firewall-cmd.at:41: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-services " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-services " "firewall-cmd.at:41" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2824,7 +2850,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:42: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-icmptypes " +printf "%s\n" "$at_srcdir/firewall-cmd.at:42: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-icmptypes " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-icmptypes " "firewall-cmd.at:42" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-icmptypes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2888,7 +2914,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-zones " +printf "%s\n" "$at_srcdir/firewall-cmd.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-zones " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-all-zones " "firewall-cmd.at:46" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-all-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2925,7 +2951,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all " +printf "%s\n" "$at_srcdir/firewall-cmd.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-all " "firewall-cmd.at:47" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -2953,7 +2979,7 @@ at_fn_group_banner 3 'firewall-cmd.at:50' \ "default zone" " " 1 at_xfail=no ( - $as_echo "3. $at_setup_line: testing $at_desc ..." + printf "%s\n" "3. $at_setup_line: testing $at_desc ..." $at_traceon @@ -2971,6 +2997,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -2987,7 +3014,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3001,7 +3028,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:50" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3042,14 +3069,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:53: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-default-zone" +printf "%s\n" "$at_srcdir/firewall-cmd.at:53: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-default-zone" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-default-zone" "firewall-cmd.at:53" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:53" @@ -3082,7 +3109,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:55: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-default-zone=\"home\"" +printf "%s\n" "$at_srcdir/firewall-cmd.at:55: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-default-zone=\"home\"" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-default-zone=\"home\"" "firewall-cmd.at:55" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-default-zone="home" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3120,14 +3147,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:56: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-default-zone" +printf "%s\n" "$at_srcdir/firewall-cmd.at:56: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-default-zone" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-default-zone" "firewall-cmd.at:56" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "home +echo >>"$at_stdout"; printf "%s\n" "home " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:56" @@ -3160,7 +3187,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:58: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-default-zone=\"public\"" +printf "%s\n" "$at_srcdir/firewall-cmd.at:58: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-default-zone=\"public\"" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-default-zone=\"public\"" "firewall-cmd.at:58" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-default-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3198,7 +3225,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:59: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-default-zone" +printf "%s\n" "$at_srcdir/firewall-cmd.at:59: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-default-zone" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-default-zone" "firewall-cmd.at:59" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3226,7 +3253,7 @@ at_fn_group_banner 4 'firewall-cmd.at:62' \ "user zone" " " 1 at_xfail=no ( - $as_echo "4. $at_setup_line: testing $at_desc ..." + printf "%s\n" "4. $at_setup_line: testing $at_desc ..." $at_traceon @@ -3244,6 +3271,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -3260,7 +3288,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:62" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3274,7 +3302,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:62" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3326,7 +3354,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:66: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:66: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone=foobar " "firewall-cmd.at:66" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3363,7 +3391,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:67: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zones | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:67: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zones | grep foobar " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:67" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zones | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3400,7 +3428,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:68: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --get-target | grep default " +printf "%s\n" "$at_srcdir/firewall-cmd.at:68: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --get-target | grep default " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:68" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --get-target | grep default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3437,7 +3465,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:69: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=BAD " +printf "%s\n" "$at_srcdir/firewall-cmd.at:69: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=BAD " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=BAD " "firewall-cmd.at:69" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=BAD ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3474,7 +3502,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:70: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=%%REJECT%% " +printf "%s\n" "$at_srcdir/firewall-cmd.at:70: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=%%REJECT%% " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=%%REJECT%% " "firewall-cmd.at:70" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=%%REJECT%% ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3511,7 +3539,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:71: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DROP " +printf "%s\n" "$at_srcdir/firewall-cmd.at:71: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DROP " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DROP " "firewall-cmd.at:71" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3548,7 +3576,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:72: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:72: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT " "firewall-cmd.at:72" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3585,7 +3613,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:73: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --get-target | grep ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:73: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --get-target | grep ACCEPT " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:73" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --get-target | grep ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3622,7 +3650,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:74: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --add-service=ssh " +printf "%s\n" "$at_srcdir/firewall-cmd.at:74: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --add-service=ssh " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --add-service=ssh " "firewall-cmd.at:74" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --add-service=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3660,7 +3688,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:77: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --new-zone=123456789abcefghi " +printf "%s\n" "$at_srcdir/firewall-cmd.at:77: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --new-zone=123456789abcefghi " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --new-zone=123456789abcefghi " "firewall-cmd.at:77" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --new-zone=123456789abcefghi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3697,7 +3725,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:78: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --new-zone=123456789abcefghij " +printf "%s\n" "$at_srcdir/firewall-cmd.at:78: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --new-zone=123456789abcefghij " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --new-zone=123456789abcefghij " "firewall-cmd.at:78" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --new-zone=123456789abcefghij ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3725,7 +3753,7 @@ at_fn_group_banner 5 'firewall-cmd.at:82' \ "zone interfaces" " " 1 at_xfail=no ( - $as_echo "5. $at_setup_line: testing $at_desc ..." + printf "%s\n" "5. $at_setup_line: testing $at_desc ..." $at_traceon @@ -3743,6 +3771,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -3759,7 +3788,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:82" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -3773,7 +3802,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:82" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4090,7 +4119,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:114: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=dmz --get-default-zone" +printf "%s\n" "$at_srcdir/firewall-cmd.at:114: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=dmz --get-default-zone" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=dmz --get-default-zone" "firewall-cmd.at:114" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=dmz --get-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4128,7 +4157,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:115: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=dmz --set-default-zone" +printf "%s\n" "$at_srcdir/firewall-cmd.at:115: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=dmz --set-default-zone" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=dmz --set-default-zone" "firewall-cmd.at:115" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=dmz --set-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4179,7 +4208,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --add-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --add-interface=perm_dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --add-interface=perm_dummy " "firewall-cmd.at:118" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --add-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4216,7 +4245,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:119: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --add-interface=perm_dummy2 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:119: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --add-interface=perm_dummy2 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --add-interface=perm_dummy2 " "firewall-cmd.at:119" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --add-interface=perm_dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4281,14 +4310,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:121: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:121: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy " "firewall-cmd.at:121" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:121" @@ -4320,7 +4349,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:123: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:123: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-interface=perm_dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-interface=perm_dummy " "firewall-cmd.at:123" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4357,14 +4386,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:124: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --list-interfaces " +printf "%s\n" "$at_srcdir/firewall-cmd.at:124: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --list-interfaces " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --list-interfaces " "firewall-cmd.at:124" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --list-interfaces ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "perm_dummy +echo >>"$at_stdout"; printf "%s\n" "perm_dummy " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:124" @@ -4398,7 +4427,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:130: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --change-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:130: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --change-interface=perm_dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --change-interface=perm_dummy " "firewall-cmd.at:130" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --change-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4435,14 +4464,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:131: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:131: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy " "firewall-cmd.at:131" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:131" @@ -4474,7 +4503,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:133: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:133: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface=perm_dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface=perm_dummy " "firewall-cmd.at:133" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4511,7 +4540,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:134: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --query-interface perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:134: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --query-interface perm_dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --query-interface perm_dummy " "firewall-cmd.at:134" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --query-interface perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4548,7 +4577,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:135: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --change-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:135: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --change-interface=perm_dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --change-interface=perm_dummy " "firewall-cmd.at:135" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --change-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4585,14 +4614,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:136: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:136: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy " "firewall-cmd.at:136" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:136" @@ -4624,7 +4653,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:138: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:138: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface=perm_dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface=perm_dummy " "firewall-cmd.at:138" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4661,7 +4690,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:139: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --query-interface perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:139: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --query-interface perm_dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --query-interface perm_dummy " "firewall-cmd.at:139" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --query-interface perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4698,7 +4727,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:140: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --remove-interface=perm_dummy2 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:140: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --remove-interface=perm_dummy2 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --remove-interface=perm_dummy2 " "firewall-cmd.at:140" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --remove-interface=perm_dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4819,7 +4848,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:165: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-interface=foobar+ " +printf "%s\n" "$at_srcdir/firewall-cmd.at:165: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-interface=foobar+ " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-interface=foobar+ " "firewall-cmd.at:165" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-interface=foobar+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4856,7 +4885,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:166: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-interface=foobar+ " +printf "%s\n" "$at_srcdir/firewall-cmd.at:166: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-interface=foobar+ " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-interface=foobar+ " "firewall-cmd.at:166" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-interface=foobar+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4912,7 +4941,7 @@ at_fn_group_banner 6 'firewall-cmd.at:170' \ "zone sources" " " 1 at_xfail=no ( - $as_echo "6. $at_setup_line: testing $at_desc ..." + printf "%s\n" "6. $at_setup_line: testing $at_desc ..." $at_traceon @@ -4930,6 +4959,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -4946,7 +4976,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:170" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -4960,7 +4990,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:170" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5158,7 +5188,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=1.2.3.4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=1.2.3.4 " "firewall-cmd.at:211" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5195,14 +5225,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=1.2.3.4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=1.2.3.4 " "firewall-cmd.at:211" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -5234,14 +5264,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " "firewall-cmd.at:211" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1.2.3.4 +echo >>"$at_stdout"; printf "%s\n" "1.2.3.4 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -5273,14 +5303,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:211" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 1.2.3.4 +echo >>"$at_stdout"; printf "%s\n" "sources: 1.2.3.4 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -5312,7 +5342,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=1.2.3.4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=1.2.3.4 " "firewall-cmd.at:211" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5351,7 +5381,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=1.2.3.4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=1.2.3.4 " "firewall-cmd.at:211" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5388,14 +5418,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=1.2.3.4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=1.2.3.4 " "firewall-cmd.at:211" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -5427,7 +5457,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=1.2.3.4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=1.2.3.4 " "firewall-cmd.at:211" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5464,7 +5494,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=1.2.3.4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=1.2.3.4 " "firewall-cmd.at:211" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5658,7 +5688,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=192.168.1.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=192.168.1.0/24 " "firewall-cmd.at:212" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5695,14 +5725,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.0/24 " "firewall-cmd.at:212" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -5734,14 +5764,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " "firewall-cmd.at:212" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "192.168.1.0/24 +echo >>"$at_stdout"; printf "%s\n" "192.168.1.0/24 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -5773,14 +5803,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:212" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 192.168.1.0/24 +echo >>"$at_stdout"; printf "%s\n" "sources: 192.168.1.0/24 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -5812,7 +5842,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=192.168.1.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=192.168.1.0/24 " "firewall-cmd.at:212" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5851,7 +5881,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=192.168.1.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=192.168.1.0/24 " "firewall-cmd.at:212" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5888,14 +5918,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.0/24 " "firewall-cmd.at:212" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -5927,7 +5957,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=192.168.1.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=192.168.1.0/24 " "firewall-cmd.at:212" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -5964,7 +5994,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=192.168.1.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=192.168.1.0/24 " "firewall-cmd.at:212" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6158,7 +6188,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=192.168.1.1/255.255.255.0 " "firewall-cmd.at:213" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6195,14 +6225,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.1/255.255.255.0 " "firewall-cmd.at:213" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -6234,14 +6264,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " "firewall-cmd.at:213" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "192.168.1.1/255.255.255.0 +echo >>"$at_stdout"; printf "%s\n" "192.168.1.1/255.255.255.0 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -6273,14 +6303,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:213" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 192.168.1.1/255.255.255.0 +echo >>"$at_stdout"; printf "%s\n" "sources: 192.168.1.1/255.255.255.0 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -6312,7 +6342,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=192.168.1.1/255.255.255.0 " "firewall-cmd.at:213" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6351,7 +6381,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=192.168.1.1/255.255.255.0 " "firewall-cmd.at:213" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6388,14 +6418,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.1/255.255.255.0 " "firewall-cmd.at:213" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -6427,7 +6457,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=192.168.1.1/255.255.255.0 " "firewall-cmd.at:213" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6464,7 +6494,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=192.168.1.1/255.255.255.0 " "firewall-cmd.at:213" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6660,7 +6690,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=3ffe:501:ffff::/64 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=3ffe:501:ffff::/64 " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6697,14 +6727,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=3ffe:501:ffff::/64 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=3ffe:501:ffff::/64 " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -6736,14 +6766,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "3ffe:501:ffff::/64 +echo >>"$at_stdout"; printf "%s\n" "3ffe:501:ffff::/64 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -6775,14 +6805,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 3ffe:501:ffff::/64 +echo >>"$at_stdout"; printf "%s\n" "sources: 3ffe:501:ffff::/64 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -6814,7 +6844,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=3ffe:501:ffff::/64 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=3ffe:501:ffff::/64 " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6853,7 +6883,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=3ffe:501:ffff::/64 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=3ffe:501:ffff::/64 " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6890,14 +6920,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=3ffe:501:ffff::/64 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=3ffe:501:ffff::/64 " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -6929,7 +6959,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=3ffe:501:ffff::/64 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=3ffe:501:ffff::/64 " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -6966,7 +6996,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=3ffe:501:ffff::/64 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=3ffe:501:ffff::/64 " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7160,7 +7190,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=dead:beef::babe " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=dead:beef::babe " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7197,14 +7227,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=dead:beef::babe " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=dead:beef::babe " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -7236,14 +7266,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dead:beef::babe +echo >>"$at_stdout"; printf "%s\n" "dead:beef::babe " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -7275,14 +7305,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: dead:beef::babe +echo >>"$at_stdout"; printf "%s\n" "sources: dead:beef::babe " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -7314,7 +7344,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=dead:beef::babe " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=dead:beef::babe " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --query-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7353,7 +7383,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=dead:beef::babe " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=dead:beef::babe " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --change-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7390,14 +7420,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=dead:beef::babe " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=dead:beef::babe " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zone-of-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -7429,7 +7459,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=dead:beef::babe " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=dead:beef::babe " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=work --remove-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7466,7 +7496,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=dead:beef::babe " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=dead:beef::babe " "firewall-cmd.at:214" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone work --query-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7500,7 +7530,7 @@ at_fn_group_banner 7 'firewall-cmd.at:223' \ "services" " " 1 at_xfail=no ( - $as_echo "7. $at_setup_line: testing $at_desc ..." + printf "%s\n" "7. $at_setup_line: testing $at_desc ..." $at_traceon @@ -7518,6 +7548,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -7534,7 +7565,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:223" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7548,7 +7579,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:223" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7689,7 +7720,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:235: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service dns " +printf "%s\n" "$at_srcdir/firewall-cmd.at:235: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service dns " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service dns " "firewall-cmd.at:235" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7726,14 +7757,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:236: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --list-services " +printf "%s\n" "$at_srcdir/firewall-cmd.at:236: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --list-services " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --list-services " "firewall-cmd.at:236" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --list-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dns ssh +echo >>"$at_stdout"; printf "%s\n" "dns ssh " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:236" @@ -7765,7 +7796,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:238: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-service dns " +printf "%s\n" "$at_srcdir/firewall-cmd.at:238: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-service dns " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-service dns " "firewall-cmd.at:238" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-service dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7803,7 +7834,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:239: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-service-from-zone=dns " +printf "%s\n" "$at_srcdir/firewall-cmd.at:239: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-service-from-zone=dns " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-service-from-zone=dns " "firewall-cmd.at:239" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-service-from-zone=dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7841,7 +7872,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:244: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-service=dns " +printf "%s\n" "$at_srcdir/firewall-cmd.at:244: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-service=dns " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-service=dns " "firewall-cmd.at:244" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-service=dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7878,7 +7909,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:245: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service=smtpssssssss " +printf "%s\n" "$at_srcdir/firewall-cmd.at:245: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service=smtpssssssss " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service=smtpssssssss " "firewall-cmd.at:245" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service=smtpssssssss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -7915,7 +7946,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:246: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service=dns --add-interface=dummy0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:246: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service=dns --add-interface=dummy0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service=dns --add-interface=dummy0 " "firewall-cmd.at:246" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-service=dns --add-interface=dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8031,7 +8062,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:255: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-service=http --add-service=nfs " +printf "%s\n" "$at_srcdir/firewall-cmd.at:255: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-service=http --add-service=nfs " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-service=http --add-service=nfs " "firewall-cmd.at:255" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-service=http --add-service=nfs ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8068,7 +8099,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:256: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service http " +printf "%s\n" "$at_srcdir/firewall-cmd.at:256: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service http " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service http " "firewall-cmd.at:256" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8105,7 +8136,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:257: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service=nfs --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:257: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service=nfs --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service=nfs --zone=public " "firewall-cmd.at:257" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service=nfs --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8143,7 +8174,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:258: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-service-from-zone=nfs --remove-service-from-zone=http " +printf "%s\n" "$at_srcdir/firewall-cmd.at:258: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-service-from-zone=nfs --remove-service-from-zone=http " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-service-from-zone=nfs --remove-service-from-zone=http " "firewall-cmd.at:258" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-service-from-zone=nfs --remove-service-from-zone=http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8181,7 +8212,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:263: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service http " +printf "%s\n" "$at_srcdir/firewall-cmd.at:263: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service http " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service http " "firewall-cmd.at:263" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8218,7 +8249,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:264: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service nfs " +printf "%s\n" "$at_srcdir/firewall-cmd.at:264: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service nfs " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service nfs " "firewall-cmd.at:264" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service nfs ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8246,7 +8277,7 @@ at_fn_group_banner 8 'firewall-cmd.at:267' \ "user services" " " 1 at_xfail=no ( - $as_echo "8. $at_setup_line: testing $at_desc ..." + printf "%s\n" "8. $at_setup_line: testing $at_desc ..." $at_traceon @@ -8264,6 +8295,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -8280,7 +8312,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:267" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8294,7 +8326,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:267" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8334,7 +8366,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:270: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-service=ssh " +printf "%s\n" "$at_srcdir/firewall-cmd.at:270: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-service=ssh " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-service=ssh " "firewall-cmd.at:270" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-service=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8371,7 +8403,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:272: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-service=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:272: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-service=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-service=foobar " "firewall-cmd.at:272" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-service=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8408,7 +8440,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:273: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-services | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:273: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-services | grep foobar " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:273" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-services | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8446,7 +8478,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:275: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:275: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666 " "firewall-cmd.at:275" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8482,7 +8514,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:276: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:276: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/dummy " "firewall-cmd.at:276" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8518,7 +8550,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:277: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:277: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/tcp " "firewall-cmd.at:277" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8555,7 +8587,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:278: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=666/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:278: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=666/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=666/tcp " "firewall-cmd.at:278" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8592,7 +8624,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:279: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:279: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=111-222/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=111-222/udp " "firewall-cmd.at:279" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8629,7 +8661,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:280: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:280: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=111-222/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=111-222/udp " "firewall-cmd.at:280" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8666,7 +8698,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:281: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:281: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 111-222/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 111-222/udp " "firewall-cmd.at:281" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8703,7 +8735,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:282: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:282: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=111-222/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=111-222/udp " "firewall-cmd.at:282" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8740,7 +8772,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:283: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:283: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/sctp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/sctp " "firewall-cmd.at:283" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8777,7 +8809,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:284: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=666/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:284: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=666/sctp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=666/sctp " "firewall-cmd.at:284" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8814,7 +8846,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:285: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 666/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:285: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 666/sctp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 666/sctp " "firewall-cmd.at:285" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8851,7 +8883,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:286: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=666/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:286: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=666/sctp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=666/sctp " "firewall-cmd.at:286" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8888,7 +8920,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:287: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=999/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:287: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=999/dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=999/dccp " "firewall-cmd.at:287" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8925,7 +8957,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:288: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=999/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:288: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=999/dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=999/dccp " "firewall-cmd.at:288" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8962,7 +8994,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:289: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 999/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:289: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 999/dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 999/dccp " "firewall-cmd.at:289" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-port 999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -8999,7 +9031,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:290: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=999/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:290: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=999/dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=999/dccp " "firewall-cmd.at:290" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9036,7 +9068,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:291: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:291: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/sctp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/sctp " "firewall-cmd.at:291" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9073,7 +9105,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:292: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=999/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:292: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=999/dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=999/dccp " "firewall-cmd.at:292" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9111,7 +9143,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:294: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-protocol=ddp --add-protocol gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:294: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-protocol=ddp --add-protocol gre " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-protocol=ddp --add-protocol gre " "firewall-cmd.at:294" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-protocol=ddp --add-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9148,7 +9180,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:295: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=ddp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:295: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=ddp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=ddp " "firewall-cmd.at:295" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9185,7 +9217,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:296: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:296: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=gre " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=gre " "firewall-cmd.at:296" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9222,7 +9254,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:297: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-protocol ddp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:297: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-protocol ddp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-protocol ddp " "firewall-cmd.at:297" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-protocol ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9259,7 +9291,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:298: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-protocol gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:298: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-protocol gre " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-protocol gre " "firewall-cmd.at:298" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9296,7 +9328,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:299: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=ddp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:299: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=ddp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=ddp " "firewall-cmd.at:299" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9333,7 +9365,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:300: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:300: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=gre " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=gre " "firewall-cmd.at:300" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9371,7 +9403,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:302: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-module=sip " +printf "%s\n" "$at_srcdir/firewall-cmd.at:302: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-module=sip " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-module=sip " "firewall-cmd.at:302" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-module=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9408,7 +9440,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:303: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-module=sip " +printf "%s\n" "$at_srcdir/firewall-cmd.at:303: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-module=sip " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-module=sip " "firewall-cmd.at:303" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-module=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9445,7 +9477,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:304: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-module=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:304: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-module=ftp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-module=ftp " "firewall-cmd.at:304" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9482,7 +9514,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:305: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-module=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:305: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-module=ftp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-module=ftp " "firewall-cmd.at:305" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9519,7 +9551,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:306: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-module=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:306: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-module=ftp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-module=ftp " "firewall-cmd.at:306" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9556,7 +9588,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:307: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-module=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:307: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-module=ftp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-module=ftp " "firewall-cmd.at:307" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9594,7 +9626,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:309: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-helper=sip " +printf "%s\n" "$at_srcdir/firewall-cmd.at:309: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-helper=sip " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-helper=sip " "firewall-cmd.at:309" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-helper=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9631,7 +9663,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:310: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-helper=sip " +printf "%s\n" "$at_srcdir/firewall-cmd.at:310: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-helper=sip " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-helper=sip " "firewall-cmd.at:310" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-helper=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9668,7 +9700,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:311: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-helper=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:311: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-helper=ftp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-helper=ftp " "firewall-cmd.at:311" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --add-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9705,7 +9737,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:312: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-helper=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:312: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-helper=ftp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-helper=ftp " "firewall-cmd.at:312" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9742,14 +9774,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:313: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --get-service-helpers " +printf "%s\n" "$at_srcdir/firewall-cmd.at:313: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --get-service-helpers " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --get-service-helpers " "firewall-cmd.at:313" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --get-service-helpers ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftp +echo >>"$at_stdout"; printf "%s\n" "ftp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:313" @@ -9781,7 +9813,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:316: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-helper=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:316: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-helper=ftp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-helper=ftp " "firewall-cmd.at:316" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9818,7 +9850,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:317: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-helper=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:317: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-helper=ftp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-helper=ftp " "firewall-cmd.at:317" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9856,7 +9888,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:319: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:319: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4 " "firewall-cmd.at:319" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9892,7 +9924,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:320: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4:foo " +printf "%s\n" "$at_srcdir/firewall-cmd.at:320: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4:foo " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4:foo " "firewall-cmd.at:320" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4:foo ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9928,7 +9960,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:321: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4:1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:321: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4:1.2.3.4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4:1.2.3.4 " "firewall-cmd.at:321" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv4:1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -9965,7 +9997,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:322: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:322: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-destination=ipv4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-destination=ipv4 " "firewall-cmd.at:322" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10004,7 +10036,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv6:fd00:dead:beef:ff0::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv6:fd00:dead:beef:ff0::/64 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv6:fd00:dead:beef:ff0::/64 " "firewall-cmd.at:323" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --set-destination=ipv6:fd00:dead:beef:ff0::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10041,7 +10073,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " "firewall-cmd.at:323" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10078,7 +10110,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-destination=ipv6 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-destination=ipv6 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-destination=ipv6 " "firewall-cmd.at:323" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --remove-destination=ipv6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10115,7 +10147,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " "firewall-cmd.at:323" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10155,7 +10187,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:330: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-service=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:330: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-service=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-service=foobar " "firewall-cmd.at:330" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-service=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10192,7 +10224,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:331: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-services | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:331: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-services | grep foobar " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:331" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-services | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10229,7 +10261,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:332: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-service=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:332: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-service=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-service=foobar " "firewall-cmd.at:332" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-service=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10266,7 +10298,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:333: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-services | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:333: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-services | grep foobar " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:333" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-services | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10311,7 +10343,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:335: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-service-from-file=\"./foobar-to-be-renamed\" --name=\"foobar-from-file\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:335: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-service-from-file=\"./foobar-to-be-renamed\" --name=\"foobar-from-file\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-service-from-file=\"./foobar-to-be-renamed\" --name=\"foobar-from-file\" " "firewall-cmd.at:335" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-service-from-file="./foobar-to-be-renamed" --name="foobar-from-file" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10348,7 +10380,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:335: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-services | grep foobar-from-file " +printf "%s\n" "$at_srcdir/firewall-cmd.at:335: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-services | grep foobar-from-file " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:335" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-services | grep foobar-from-file ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10379,7 +10411,7 @@ at_fn_group_banner 9 'firewall-cmd.at:349' \ "ports" " " 1 at_xfail=no ( - $as_echo "9. $at_setup_line: testing $at_desc ..." + printf "%s\n" "9. $at_setup_line: testing $at_desc ..." $at_traceon @@ -10397,6 +10429,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -10413,7 +10446,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:349" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10427,7 +10460,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:349" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10714,7 +10747,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:373: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=666 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:373: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=666 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=666 " "firewall-cmd.at:373" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10750,7 +10783,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:374: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=666/dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:374: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=666/dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=666/dummy " "firewall-cmd.at:374" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10786,7 +10819,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:375: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=666/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:375: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=666/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=666/tcp " "firewall-cmd.at:375" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10823,7 +10856,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:376: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-port=666/tcp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:376: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-port=666/tcp --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-port=666/tcp --zone=public " "firewall-cmd.at:376" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-port=666/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10860,7 +10893,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:377: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=111-222/udp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:377: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=111-222/udp --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=111-222/udp --zone=public " "firewall-cmd.at:377" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=111-222/udp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10897,7 +10930,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:378: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:378: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=111-222/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=111-222/udp " "firewall-cmd.at:378" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10934,7 +10967,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-port 111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-port 111-222/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-port 111-222/udp " "firewall-cmd.at:379" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -10971,7 +11004,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:380: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:380: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=111-222/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=111-222/udp " "firewall-cmd.at:380" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11009,7 +11042,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=5000/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=5000/sctp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=5000/sctp " "firewall-cmd.at:382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11046,7 +11079,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:383: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=5000/sctp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:383: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=5000/sctp --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=5000/sctp --zone=public " "firewall-cmd.at:383" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=5000/sctp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11083,7 +11116,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:384: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-port 5000/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:384: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-port 5000/sctp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-port 5000/sctp " "firewall-cmd.at:384" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-port 5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11120,7 +11153,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:385: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=5000/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:385: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=5000/sctp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=5000/sctp " "firewall-cmd.at:385" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11157,7 +11190,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:386: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=222/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:386: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=222/dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=222/dccp " "firewall-cmd.at:386" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11194,7 +11227,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:387: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=222/dccp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:387: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=222/dccp --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=222/dccp --zone=public " "firewall-cmd.at:387" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=222/dccp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11231,7 +11264,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:388: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-port 222/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:388: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-port 222/dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-port 222/dccp " "firewall-cmd.at:388" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-port 222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11268,7 +11301,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:389: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=222/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:389: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=222/dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=222/dccp " "firewall-cmd.at:389" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11385,7 +11418,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:398: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=80/tcp --add-port 443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:398: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-port=80/tcp --add-port 443-444/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=80/tcp --add-port 443-444/udp " "firewall-cmd.at:398" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-port=80/tcp --add-port 443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11422,7 +11455,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:399: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=80/tcp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:399: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=80/tcp --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=80/tcp --zone=public " "firewall-cmd.at:399" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=80/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11459,7 +11492,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:400: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:400: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=443-444/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=443-444/udp " "firewall-cmd.at:400" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11496,7 +11529,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:401: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-port 80/tcp --remove-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:401: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-port 80/tcp --remove-port=443-444/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-port 80/tcp --remove-port=443-444/udp " "firewall-cmd.at:401" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-port 80/tcp --remove-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11533,7 +11566,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:402: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=80/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:402: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=80/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=80/tcp " "firewall-cmd.at:402" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=80/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11570,7 +11603,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:403: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:403: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-port=443-444/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=443-444/udp " "firewall-cmd.at:403" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11598,7 +11631,7 @@ at_fn_group_banner 10 'firewall-cmd.at:406' \ "source ports" " " 1 at_xfail=no ( - $as_echo "10. $at_setup_line: testing $at_desc ..." + printf "%s\n" "10. $at_setup_line: testing $at_desc ..." $at_traceon @@ -11616,6 +11649,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -11632,7 +11666,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:406" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11646,7 +11680,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:406" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11802,7 +11836,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:419: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:419: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666 " "firewall-cmd.at:419" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11838,7 +11872,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:420: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666/dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:420: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666/dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666/dummy " "firewall-cmd.at:420" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11874,7 +11908,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:421: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:421: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666/tcp " "firewall-cmd.at:421" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-source-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11911,7 +11945,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:422: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-source-port=666/tcp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:422: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-source-port=666/tcp --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-source-port=666/tcp --zone=public " "firewall-cmd.at:422" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-source-port=666/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11948,7 +11982,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:423: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-source-port=111-222/udp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:423: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-source-port=111-222/udp --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-source-port=111-222/udp --zone=public " "firewall-cmd.at:423" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-source-port=111-222/udp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -11985,7 +12019,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:424: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:424: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=111-222/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=111-222/udp " "firewall-cmd.at:424" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12022,7 +12056,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:425: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-source-port 111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:425: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-source-port 111-222/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-source-port 111-222/udp " "firewall-cmd.at:425" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-source-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12059,7 +12093,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:426: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:426: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=111-222/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=111-222/udp " "firewall-cmd.at:426" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12176,7 +12210,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:435: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-source-port=80/tcp --add-source-port 443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:435: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-source-port=80/tcp --add-source-port 443-444/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-source-port=80/tcp --add-source-port 443-444/udp " "firewall-cmd.at:435" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-source-port=80/tcp --add-source-port 443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12213,7 +12247,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:436: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=80/tcp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:436: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=80/tcp --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=80/tcp --zone=public " "firewall-cmd.at:436" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=80/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12250,7 +12284,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:437: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:437: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=443-444/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=443-444/udp " "firewall-cmd.at:437" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12287,7 +12321,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:438: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-source-port 80/tcp --remove-source-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:438: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-source-port 80/tcp --remove-source-port=443-444/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-source-port 80/tcp --remove-source-port=443-444/udp " "firewall-cmd.at:438" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-source-port 80/tcp --remove-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12324,7 +12358,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:439: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=80/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:439: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=80/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=80/tcp " "firewall-cmd.at:439" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=80/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12361,7 +12395,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:440: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:440: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-source-port=443-444/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=443-444/udp " "firewall-cmd.at:440" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12389,7 +12423,7 @@ at_fn_group_banner 11 'firewall-cmd.at:443' \ "protocols" " " 1 at_xfail=no ( - $as_echo "11. $at_setup_line: testing $at_desc ..." + printf "%s\n" "11. $at_setup_line: testing $at_desc ..." $at_traceon @@ -12407,6 +12441,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -12423,7 +12458,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:443" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12437,7 +12472,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:443" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12542,7 +12577,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:451: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-protocol=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:451: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-protocol=dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-protocol=dummy " "firewall-cmd.at:451" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-protocol=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12579,7 +12614,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:452: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-protocol=dccp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:452: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-protocol=dccp --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-protocol=dccp --zone=public " "firewall-cmd.at:452" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-protocol=dccp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12616,7 +12651,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:453: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:453: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=dccp " "firewall-cmd.at:453" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12653,7 +12688,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:454: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-protocol dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:454: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-protocol dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-protocol dccp " "firewall-cmd.at:454" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12690,7 +12725,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:455: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:455: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=dccp " "firewall-cmd.at:455" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12806,7 +12841,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:463: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-protocol=ddp --add-protocol gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:463: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-protocol=ddp --add-protocol gre " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-protocol=ddp --add-protocol gre " "firewall-cmd.at:463" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-protocol=ddp --add-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12843,7 +12878,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:464: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=ddp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:464: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=ddp --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=ddp --zone=public " "firewall-cmd.at:464" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=ddp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12880,7 +12915,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:465: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:465: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=gre " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=gre " "firewall-cmd.at:465" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12917,7 +12952,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:466: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-protocol ddp --remove-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:466: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-protocol ddp --remove-protocol=gre " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-protocol ddp --remove-protocol=gre " "firewall-cmd.at:466" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-protocol ddp --remove-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12954,7 +12989,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:467: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=ddp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:467: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=ddp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=ddp " "firewall-cmd.at:467" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -12991,7 +13026,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:468: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:468: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-protocol=gre " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=gre " "firewall-cmd.at:468" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13019,7 +13054,7 @@ at_fn_group_banner 12 'firewall-cmd.at:471' \ "masquerade" " " 1 at_xfail=no ( - $as_echo "12. $at_setup_line: testing $at_desc ..." + printf "%s\n" "12. $at_setup_line: testing $at_desc ..." $at_traceon @@ -13037,6 +13072,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -13053,7 +13089,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:471" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13067,7 +13103,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:471" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13169,7 +13205,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:492: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-masquerade --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:492: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-masquerade --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-masquerade --zone=public " "firewall-cmd.at:492" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-masquerade --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13206,7 +13242,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:493: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-masquerade " +printf "%s\n" "$at_srcdir/firewall-cmd.at:493: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-masquerade " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-masquerade " "firewall-cmd.at:493" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13243,7 +13279,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:494: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-masquerade " +printf "%s\n" "$at_srcdir/firewall-cmd.at:494: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-masquerade " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-masquerade " "firewall-cmd.at:494" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13280,7 +13316,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:495: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-masquerade " +printf "%s\n" "$at_srcdir/firewall-cmd.at:495: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-masquerade " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-masquerade " "firewall-cmd.at:495" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13308,7 +13344,7 @@ at_fn_group_banner 13 'firewall-cmd.at:498' \ "forward" " " 1 at_xfail=no ( - $as_echo "13. $at_setup_line: testing $at_desc ..." + printf "%s\n" "13. $at_setup_line: testing $at_desc ..." $at_traceon @@ -13326,6 +13362,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -13342,7 +13379,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:498" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13356,7 +13393,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:498" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13537,7 +13574,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:571: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=home --add-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:571: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=home --add-forward " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=home --add-forward " "firewall-cmd.at:571" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=home --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13574,7 +13611,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:572: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --add-interface=dummy --add-interface=dummy3 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:572: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --add-interface=dummy --add-interface=dummy3 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --add-interface=dummy --add-interface=dummy3 " "firewall-cmd.at:572" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --add-interface=dummy --add-interface=dummy3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13611,7 +13648,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:573: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --add-source=10.10.10.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:573: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --add-source=10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --add-source=10.10.10.0/24 " "firewall-cmd.at:573" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13676,7 +13713,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:575: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=home --query-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:575: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=home --query-forward " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=home --query-forward " "firewall-cmd.at:575" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=home --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13722,7 +13759,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:594: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=home --remove-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:594: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=home --remove-forward " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=home --remove-forward " "firewall-cmd.at:594" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=home --remove-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13759,7 +13796,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:595: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=home --query-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:595: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=home --query-forward " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=home --query-forward " "firewall-cmd.at:595" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=home --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13796,7 +13833,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:596: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --remove-interface=dummy --remove-interface=dummy3 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:596: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --remove-interface=dummy --remove-interface=dummy3 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --remove-interface=dummy --remove-interface=dummy3 " "firewall-cmd.at:596" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --remove-interface=dummy --remove-interface=dummy3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13833,7 +13870,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:597: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --remove-source=10.10.10.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:597: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --remove-source=10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --remove-source=10.10.10.0/24 " "firewall-cmd.at:597" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --zone=home --remove-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -13900,7 +13937,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:601: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-default-zone |grep public" +printf "%s\n" "$at_srcdir/firewall-cmd.at:601: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-default-zone |grep public" at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:601" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-default-zone |grep public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14103,7 +14140,7 @@ at_fn_group_banner 14 'firewall-cmd.at:686' \ "forward ports" " " 1 at_xfail=no ( - $as_echo "14. $at_setup_line: testing $at_desc ..." + printf "%s\n" "14. $at_setup_line: testing $at_desc ..." $at_traceon @@ -14121,6 +14158,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -14137,7 +14175,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:686" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14151,7 +14189,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:686" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14547,7 +14585,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:756: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=666 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:756: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=666 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=666 " "firewall-cmd.at:756" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14584,7 +14622,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:757: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=11:proto=tcp:toport=22 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:757: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=11:proto=tcp:toport=22 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=11:proto=tcp:toport=22 " "firewall-cmd.at:757" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=11:proto=tcp:toport=22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14621,7 +14659,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:758: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:758: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public " "firewall-cmd.at:758" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14658,7 +14696,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:759: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=33:proto=tcp:toaddr=4444 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:759: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=33:proto=tcp:toaddr=4444 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=33:proto=tcp:toaddr=4444 " "firewall-cmd.at:759" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=33:proto=tcp:toaddr=4444 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14694,7 +14732,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:760: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:760: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public " "firewall-cmd.at:760" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14731,7 +14769,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:761: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:761: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 " "firewall-cmd.at:761" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14768,7 +14806,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:762: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:762: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " "firewall-cmd.at:762" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14805,7 +14843,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:763: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:763: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public " "firewall-cmd.at:763" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14842,7 +14880,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:764: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:764: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " "firewall-cmd.at:764" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14879,7 +14917,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:765: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:765: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " "firewall-cmd.at:765" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14916,7 +14954,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:766: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:766: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " "firewall-cmd.at:766" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14953,7 +14991,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:767: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:767: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public " "firewall-cmd.at:767" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -14990,7 +15028,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:768: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:768: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " "firewall-cmd.at:768" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15027,7 +15065,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:769: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:769: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " "firewall-cmd.at:769" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15066,7 +15104,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " "firewall-cmd.at:770" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15103,7 +15141,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public " "firewall-cmd.at:770" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15140,7 +15178,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " "firewall-cmd.at:770" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15177,7 +15215,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " "firewall-cmd.at:770" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15216,7 +15254,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:776: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:776: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 " "firewall-cmd.at:776" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15253,7 +15291,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:777: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=100:proto=tcp:toport=200 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:777: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=100:proto=tcp:toport=200 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=100:proto=tcp:toport=200 " "firewall-cmd.at:777" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15290,7 +15328,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:778: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=88:proto=udp:toport=99 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:778: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=88:proto=udp:toport=99 --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=88:proto=udp:toport=99 --zone=public " "firewall-cmd.at:778" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=88:proto=udp:toport=99 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15327,7 +15365,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:779: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:779: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 " "firewall-cmd.at:779" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15364,7 +15402,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:780: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=100:proto=tcp:toport=200 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:780: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=100:proto=tcp:toport=200 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=100:proto=tcp:toport=200 " "firewall-cmd.at:780" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15401,7 +15439,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:781: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=88:proto=udp:toport=99 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:781: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=88:proto=udp:toport=99 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=88:proto=udp:toport=99 " "firewall-cmd.at:781" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port=port=88:proto=udp:toport=99 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15438,7 +15476,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:782: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-forward-ports " +printf "%s\n" "$at_srcdir/firewall-cmd.at:782: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-forward-ports " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-forward-ports " "firewall-cmd.at:782" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-forward-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15466,7 +15504,7 @@ at_fn_group_banner 15 'firewall-cmd.at:785' \ "ICMP block" " " 1 at_xfail=no ( - $as_echo "15. $at_setup_line: testing $at_desc ..." + printf "%s\n" "15. $at_setup_line: testing $at_desc ..." $at_traceon @@ -15484,6 +15522,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -15500,7 +15539,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:785" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15514,7 +15553,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:785" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15633,7 +15672,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:795: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=dummyblock " +printf "%s\n" "$at_srcdir/firewall-cmd.at:795: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=dummyblock " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=dummyblock " "firewall-cmd.at:795" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=dummyblock ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15670,7 +15709,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:796: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:796: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=redirect " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=redirect " "firewall-cmd.at:796" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15707,7 +15746,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:797: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:797: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=redirect " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=redirect " "firewall-cmd.at:797" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15744,7 +15783,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:798: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-icmp-block redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:798: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-icmp-block redirect " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-icmp-block redirect " "firewall-cmd.at:798" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15781,7 +15820,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:799: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:799: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=redirect " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=redirect " "firewall-cmd.at:799" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15871,7 +15910,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:805: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-icmp-block-inversion --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:805: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-icmp-block-inversion --zone=public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-icmp-block-inversion --zone=public " "firewall-cmd.at:805" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-icmp-block-inversion --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15908,7 +15947,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:806: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block-inversion " +printf "%s\n" "$at_srcdir/firewall-cmd.at:806: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block-inversion " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block-inversion " "firewall-cmd.at:806" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15945,7 +15984,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:807: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-icmp-block-inversion " +printf "%s\n" "$at_srcdir/firewall-cmd.at:807: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-icmp-block-inversion " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-icmp-block-inversion " "firewall-cmd.at:807" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -15982,7 +16021,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:808: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block-inversion " +printf "%s\n" "$at_srcdir/firewall-cmd.at:808: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block-inversion " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block-inversion " "firewall-cmd.at:808" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16177,7 +16216,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:823: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:823: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation " "firewall-cmd.at:823" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16214,7 +16253,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:824: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=echo-reply " +printf "%s\n" "$at_srcdir/firewall-cmd.at:824: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=echo-reply " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=echo-reply " "firewall-cmd.at:824" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16251,7 +16290,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:825: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:825: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=router-solicitation " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=router-solicitation " "firewall-cmd.at:825" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16288,7 +16327,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:826: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:826: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation " "firewall-cmd.at:826" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16325,7 +16364,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:827: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=echo-reply " +printf "%s\n" "$at_srcdir/firewall-cmd.at:827: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=echo-reply " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=echo-reply " "firewall-cmd.at:827" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16362,7 +16401,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:828: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:828: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=router-solicitation " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=router-solicitation " "firewall-cmd.at:828" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=external --query-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16390,7 +16429,7 @@ at_fn_group_banner 16 'firewall-cmd.at:831' \ "user ICMP types" " " 1 at_xfail=no ( - $as_echo "16. $at_setup_line: testing $at_desc ..." + printf "%s\n" "16. $at_setup_line: testing $at_desc ..." $at_traceon @@ -16408,6 +16447,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -16424,7 +16464,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:831" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16438,7 +16478,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:831" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16478,7 +16518,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:834: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-icmptype=redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:834: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-icmptype=redirect " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-icmptype=redirect " "firewall-cmd.at:834" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-icmptype=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16515,7 +16555,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:836: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-icmptype=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:836: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-icmptype=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-icmptype=foobar " "firewall-cmd.at:836" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-icmptype=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16552,7 +16592,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:837: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-icmptypes | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:837: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-icmptypes | grep foobar " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:837" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-icmptypes | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16590,7 +16630,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:839: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv5 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:839: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv5 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv5 " "firewall-cmd.at:839" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv5 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16627,7 +16667,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:840: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:840: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv4 " "firewall-cmd.at:840" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16664,7 +16704,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:841: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --remove-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:841: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --remove-destination=ipv4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --remove-destination=ipv4 " "firewall-cmd.at:841" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --remove-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16701,7 +16741,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:842: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:842: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv4 " "firewall-cmd.at:842" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --add-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16738,7 +16778,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:843: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --query-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:843: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --query-destination=ipv4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --query-destination=ipv4 " "firewall-cmd.at:843" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --query-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16775,7 +16815,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:844: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --remove-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:844: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --remove-destination=ipv4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --remove-destination=ipv4 " "firewall-cmd.at:844" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --remove-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16812,7 +16852,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:845: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --query-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:845: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --query-destination=ipv4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --query-destination=ipv4 " "firewall-cmd.at:845" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --icmptype=foobar --query-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16850,7 +16890,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:847: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-icmp-block=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:847: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-icmp-block=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-icmp-block=foobar " "firewall-cmd.at:847" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-icmp-block=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16887,7 +16927,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:848: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-icmp-blocks | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:848: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-icmp-blocks | grep foobar " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:848" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-icmp-blocks | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16925,7 +16965,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:850: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-icmptype=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:850: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-icmptype=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-icmptype=foobar " "firewall-cmd.at:850" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-icmptype=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16962,7 +17002,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:851: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-icmp-blocks | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:851: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-icmp-blocks | grep foobar " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:851" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --list-icmp-blocks | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -16990,7 +17030,7 @@ at_fn_group_banner 17 'firewall-cmd.at:854' \ "ipset" " " 1 at_xfail=no ( - $as_echo "17. $at_setup_line: testing $at_desc ..." + printf "%s\n" "17. $at_setup_line: testing $at_desc ..." $at_traceon @@ -17008,6 +17048,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -17024,7 +17065,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:854" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17038,7 +17079,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:854" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17085,7 +17126,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:860: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip " +printf "%s\n" "$at_srcdir/firewall-cmd.at:860: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip " "firewall-cmd.at:860" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17293,7 +17334,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:878: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:878: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " "firewall-cmd.at:878" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17344,7 +17385,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:882: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port " +printf "%s\n" "$at_srcdir/firewall-cmd.at:882: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port " "firewall-cmd.at:882" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17381,7 +17422,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:883: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10-10.10.10.12,1234 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:883: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10-10.10.10.12,1234 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10-10.10.10.12,1234 " "firewall-cmd.at:883" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10-10.10.10.12,1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17418,7 +17459,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:884: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,2000-2100 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:884: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,2000-2100 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,2000-2100 " "firewall-cmd.at:884" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,2000-2100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17499,7 +17540,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:897: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:897: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " "firewall-cmd.at:897" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17565,7 +17606,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:901: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port " +printf "%s\n" "$at_srcdir/firewall-cmd.at:901: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port " "firewall-cmd.at:901" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17602,7 +17643,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:902: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,sctp:1234 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:902: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,sctp:1234 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,sctp:1234 " "firewall-cmd.at:902" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,sctp:1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17639,7 +17680,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:903: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,udp:1000-1002 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:903: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,udp:1000-1002 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,udp:1000-1002 " "firewall-cmd.at:903" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,udp:1000-1002 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17752,7 +17793,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:941: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:941: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " "firewall-cmd.at:941" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17818,7 +17859,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:945: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,mark " +printf "%s\n" "$at_srcdir/firewall-cmd.at:945: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,mark " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,mark " "firewall-cmd.at:945" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,mark ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17855,7 +17896,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:946: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,0x100 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:946: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,0x100 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,0x100 " "firewall-cmd.at:946" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,0x100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -17955,7 +17996,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:979: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:979: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " "firewall-cmd.at:979" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18021,7 +18062,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:983: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:net,port " +printf "%s\n" "$at_srcdir/firewall-cmd.at:983: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:net,port " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:net,port " "firewall-cmd.at:983" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:net,port ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18058,7 +18099,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:984: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.0/24,sctp:1234 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:984: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.0/24,sctp:1234 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.0/24,sctp:1234 " "firewall-cmd.at:984" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.0/24,sctp:1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18136,7 +18177,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:987: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:987: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " "firewall-cmd.at:987" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18202,7 +18243,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:991: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port,net " +printf "%s\n" "$at_srcdir/firewall-cmd.at:991: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port,net " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port,net " "firewall-cmd.at:991" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip,port,net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18239,7 +18280,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:992: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,sctp:1234,10.10.10.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:992: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,sctp:1234,10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,sctp:1234,10.10.10.0/24 " "firewall-cmd.at:992" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.10,sctp:1234,10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18323,7 +18364,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1012: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1012: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " "firewall-cmd.at:1012" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18389,7 +18430,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1016: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:net,iface " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1016: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:net,iface " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:net,iface " "firewall-cmd.at:1016" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:net,iface ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18426,7 +18467,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1017: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.0/24,foobar0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1017: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.0/24,foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.0/24,foobar0 " "firewall-cmd.at:1017" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=10.10.10.0/24,foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18526,7 +18567,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1050: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1050: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " "firewall-cmd.at:1050" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18594,7 +18635,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:mac " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:mac " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:mac " "firewall-cmd.at:1053" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:mac ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18631,7 +18672,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=12:34:56:78:90:ab " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=12:34:56:78:90:ab " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=12:34:56:78:90:ab " "firewall-cmd.at:1053" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset=foobar --add-entry=12:34:56:78:90:ab ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18709,7 +18750,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar " "firewall-cmd.at:1053" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18767,7 +18808,7 @@ at_fn_group_banner 18 'firewall-cmd.at:1063' \ "user helpers" " " 1 at_xfail=no ( - $as_echo "18. $at_setup_line: testing $at_desc ..." + printf "%s\n" "18. $at_setup_line: testing $at_desc ..." $at_traceon @@ -18785,6 +18826,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -18801,7 +18843,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1063" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18815,7 +18857,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1063" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18855,7 +18897,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1066: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-helper=foobar --module=foo " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1066: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-helper=foobar --module=foo " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-helper=foobar --module=foo " "firewall-cmd.at:1066" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-helper=foobar --module=foo ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18892,7 +18934,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1067: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-helper=foobar --module=nf_conntrack_foo " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1067: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-helper=foobar --module=nf_conntrack_foo " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-helper=foobar --module=nf_conntrack_foo " "firewall-cmd.at:1067" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-helper=foobar --module=nf_conntrack_foo ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18929,7 +18971,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1068: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-helpers | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1068: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-helpers | grep foobar " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1068" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-helpers | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -18966,7 +19008,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1069: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-family | grep ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1069: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-family | grep ipv4 " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1069" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-family | grep ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19003,7 +19045,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1070: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family=ipv5 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1070: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family=ipv5 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family=ipv5 " "firewall-cmd.at:1070" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family=ipv5 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19040,7 +19082,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1071: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1071: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family=ipv4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family=ipv4 " "firewall-cmd.at:1071" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19077,7 +19119,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1072: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-family | grep ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1072: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-family | grep ipv4 " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1072" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-family | grep ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19114,7 +19156,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1073: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family= " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1073: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family= " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family= " "firewall-cmd.at:1073" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --set-family= ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19152,14 +19194,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1075: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-family " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1075: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-family " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-family " "firewall-cmd.at:1075" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-family ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1075" @@ -19191,14 +19233,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1077: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-ports " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1077: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-ports " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-ports " "firewall-cmd.at:1077" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1077" @@ -19231,7 +19273,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1080: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --add-port=44/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1080: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --add-port=44/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --add-port=44/tcp " "firewall-cmd.at:1080" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --add-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19268,7 +19310,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1081: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-ports | grep 44 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1081: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-ports | grep 44 " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1081" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-ports | grep 44 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19305,7 +19347,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1082: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --query-port=44/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1082: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --query-port=44/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --query-port=44/tcp " "firewall-cmd.at:1082" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --query-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19342,7 +19384,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1083: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --remove-port=44/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1083: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --remove-port=44/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --remove-port=44/tcp " "firewall-cmd.at:1083" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --remove-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19379,7 +19421,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1084: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --query-port=44/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1084: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --query-port=44/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --query-port=44/tcp " "firewall-cmd.at:1084" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --query-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19416,14 +19458,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1085: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-ports " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1085: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-ports " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-ports " "firewall-cmd.at:1085" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper=foobar --get-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1085" @@ -19455,7 +19497,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1087: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-helper=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1087: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-helper=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-helper=foobar " "firewall-cmd.at:1087" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-helper=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19492,7 +19534,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1088: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-helpers | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1088: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-helpers | grep foobar " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1088" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-helpers | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19520,7 +19562,7 @@ at_fn_group_banner 19 'firewall-cmd.at:1091' \ "direct" " " 1 at_xfail=no ( - $as_echo "19. $at_setup_line: testing $at_desc ..." + printf "%s\n" "19. $at_setup_line: testing $at_desc ..." $at_traceon @@ -19538,6 +19580,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -19554,7 +19597,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1091" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -19568,7 +19611,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1091" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20071,7 +20114,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1135: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-default-zone" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1135: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-default-zone" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --get-default-zone" "firewall-cmd.at:1135" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --get-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20121,7 +20164,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1137: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --list-all " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1137: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --list-all " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --list-all " "firewall-cmd.at:1137" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20159,7 +20202,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1140: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-chain ipv4 filter žluťoučký " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1140: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-chain ipv4 filter žluťoučký " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-chain ipv4 filter žluťoučký " "firewall-cmd.at:1140" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20196,7 +20239,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-chains ipv4 filter |grep \"žluťoučký\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-chains ipv4 filter |grep \"žluťoučký\" " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1141" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --get-chains ipv4 filter |grep "žluťoučký" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20233,7 +20276,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1142: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-chains | grep \"ipv4 filter žluťoučký\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1142: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-chains | grep \"ipv4 filter žluťoučký\" " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1142" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-chains | grep "ipv4 filter žluťoučký" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20270,7 +20313,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1143: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-chain ipv4 filter žluťoučký " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1143: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-chain ipv4 filter žluťoučký " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-chain ipv4 filter žluťoučký " "firewall-cmd.at:1143" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20307,7 +20350,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1144: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 filter žluťoučký 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1144: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 filter žluťoučký 3 -j ACCEPT " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 filter žluťoučký 3 -j ACCEPT " "firewall-cmd.at:1144" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20344,7 +20387,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1145: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-rules ipv4 filter žluťoučký | grep ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1145: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-rules ipv4 filter žluťoučký | grep ACCEPT " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1145" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --get-rules ipv4 filter žluťoučký | grep ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20381,7 +20424,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1146: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-rules | grep \"ipv4 filter žluťoučký 3 -j ACCEPT\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1146: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-rules | grep \"ipv4 filter žluťoučký 3 -j ACCEPT\" " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1146" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-rules | grep "ipv4 filter žluťoučký 3 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20418,7 +20461,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1147: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1147: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " "firewall-cmd.at:1147" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20455,7 +20498,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1148: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter žluťoučký 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1148: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter žluťoučký 3 -j ACCEPT " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter žluťoučký 3 -j ACCEPT " "firewall-cmd.at:1148" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20492,7 +20535,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1149: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1149: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " "firewall-cmd.at:1149" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20529,7 +20572,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1150: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-chain ipv4 filter žluťoučký " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1150: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-chain ipv4 filter žluťoučký " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-chain ipv4 filter žluťoučký " "firewall-cmd.at:1150" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20566,7 +20609,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1151: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-chain ipv4 filter žluťoučký " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1151: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-chain ipv4 filter žluťoučký " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-chain ipv4 filter žluťoučký " "firewall-cmd.at:1151" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20682,7 +20725,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1160: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1160: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT " "firewall-cmd.at:1160" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20738,7 +20781,7 @@ at_fn_group_banner 20 'firewall-cmd.at:1165' \ "direct nat" " " 1 at_xfail=no ( - $as_echo "20. $at_setup_line: testing $at_desc ..." + printf "%s\n" "20. $at_setup_line: testing $at_desc ..." $at_traceon @@ -20756,6 +20799,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -20772,7 +20816,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1165" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20786,7 +20830,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1165" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20835,7 +20879,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1173: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1173: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " "firewall-cmd.at:1173" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20872,7 +20916,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1174: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1174: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1174" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20935,7 +20979,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1177: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1177: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " "firewall-cmd.at:1177" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -20972,7 +21016,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1178: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1178: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " "firewall-cmd.at:1178" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21009,7 +21053,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1179: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1179: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1179" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21085,7 +21129,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1183: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1183: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " "firewall-cmd.at:1183" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21141,7 +21185,7 @@ at_fn_group_banner 21 'firewall-cmd.at:1190' \ "direct passthrough" " " 1 at_xfail=no ( - $as_echo "21. $at_setup_line: testing $at_desc ..." + printf "%s\n" "21. $at_setup_line: testing $at_desc ..." $at_traceon @@ -21159,6 +21203,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -21175,7 +21220,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1190" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21189,7 +21234,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1190" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21468,7 +21513,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1218: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1218: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv4 " "firewall-cmd.at:1218" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21505,7 +21550,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1219: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv5 -nvL " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1219: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv5 -nvL " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv5 -nvL " "firewall-cmd.at:1219" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv5 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21542,7 +21587,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1220: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv4 -nvL " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1220: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv4 -nvL " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv4 -nvL " "firewall-cmd.at:1220" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21579,7 +21624,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1221: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-passthroughs ipv4 | grep \"[-]nvL\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1221: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-passthroughs ipv4 | grep \"[-]nvL\" " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1221" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --get-passthroughs ipv4 | grep "[-]nvL" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21616,7 +21661,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1222: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-passthroughs | grep \"ipv4 [-]nvL\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1222: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-passthroughs | grep \"ipv4 [-]nvL\" " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1222" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --get-all-passthroughs | grep "ipv4 [-]nvL" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21653,7 +21698,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1223: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-passthrough ipv4 -nvL " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1223: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-passthrough ipv4 -nvL " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-passthrough ipv4 -nvL " "firewall-cmd.at:1223" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21690,7 +21735,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1224: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-passthrough ipv4 -nvL " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1224: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-passthrough ipv4 -nvL " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-passthrough ipv4 -nvL " "firewall-cmd.at:1224" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21727,7 +21772,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1225: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-passthrough ipv4 -nvL " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1225: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --query-passthrough ipv4 -nvL " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-passthrough ipv4 -nvL " "firewall-cmd.at:1225" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --query-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21755,7 +21800,7 @@ at_fn_group_banner 22 'firewall-cmd.at:1228' \ "direct ebtables" " " 1 at_xfail=no ( - $as_echo "22. $at_setup_line: testing $at_desc ..." + printf "%s\n" "22. $at_setup_line: testing $at_desc ..." $at_traceon @@ -21773,6 +21818,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -21789,7 +21835,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1228" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21803,7 +21849,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1228" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -21976,7 +22022,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1264: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-chain eb filter mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1264: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-chain eb filter mychain " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-chain eb filter mychain " "firewall-cmd.at:1264" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-chain eb filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -22013,7 +22059,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1265: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-chains eb filter | grep mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1265: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --get-chains eb filter | grep mychain " at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1265" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --get-chains eb filter | grep mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -22050,7 +22096,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1266: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1266: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP " "firewall-cmd.at:1266" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -22109,7 +22155,7 @@ at_fn_group_banner 23 'firewall-cmd.at:1274' \ "lockdown" " " 1 at_xfail=no ( - $as_echo "23. $at_setup_line: testing $at_desc ..." + printf "%s\n" "23. $at_setup_line: testing $at_desc ..." $at_traceon @@ -22127,6 +22173,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -22143,7 +22190,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1274" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -22157,7 +22204,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1274" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -22229,19 +22276,6 @@ $at_traceon; } - - - - - - - - - - - - - @@ -22262,15 +22296,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1282: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-command /usr/bin/command " "firewall-cmd.at:1282" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1285: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-command /usr/bin/command " "firewall-cmd.at:1285" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1282" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1285" $at_failed && at_fn_log_failure $at_traceon; } @@ -22299,52 +22335,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1283: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-command /usr/bin/command " "firewall-cmd.at:1283" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1287: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-command /usr/bin/command " "firewall-cmd.at:1287" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1283" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - - - - - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1284: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-lockdown-whitelist-commands | grep \"/usr/bin/command\" " -at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1284" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-lockdown-whitelist-commands | grep "/usr/bin/command" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1284" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1287" $at_failed && at_fn_log_failure $at_traceon; } @@ -22373,15 +22374,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1285: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-command /usr/bin/command " "firewall-cmd.at:1285" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1289: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-command /usr/bin/command " "firewall-cmd.at:1289" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1285" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1289" $at_failed && at_fn_log_failure $at_traceon; } @@ -22410,15 +22413,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1286: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-command /usr/bin/command " "firewall-cmd.at:1286" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1291: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-command /usr/bin/command " "firewall-cmd.at:1291" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1286" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1291" $at_failed && at_fn_log_failure $at_traceon; } @@ -22480,19 +22485,6 @@ $at_traceon; } - - - - - - - - - - - - - @@ -22513,15 +22505,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1293: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " "firewall-cmd.at:1293" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1302: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " "firewall-cmd.at:1302" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1293" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1302" $at_failed && at_fn_log_failure $at_traceon; } @@ -22550,15 +22544,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1294: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " "firewall-cmd.at:1294" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1304: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " "firewall-cmd.at:1304" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1294" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1304" $at_failed && at_fn_log_failure $at_traceon; } @@ -22587,15 +22583,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1295: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-lockdown-whitelist-contexts | grep \"system_u:system_r:MadDaemon_t:s0\" " -at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1295" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-lockdown-whitelist-contexts | grep "system_u:system_r:MadDaemon_t:s0" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1306: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " "firewall-cmd.at:1306" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1295" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1306" $at_failed && at_fn_log_failure $at_traceon; } @@ -22624,15 +22622,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1296: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " "firewall-cmd.at:1296" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1308: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " "firewall-cmd.at:1308" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1296" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1308" $at_failed && at_fn_log_failure $at_traceon; } @@ -22655,23 +22655,7 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1297: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " "firewall-cmd.at:1297" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1297" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -22730,6 +22714,32 @@ $at_traceon; } + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1320: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666 " "firewall-cmd.at:1320" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1320" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -22750,7 +22760,25 @@ $at_traceon; } + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1322: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-uid 6666 " "firewall-cmd.at:1322" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-uid 6666 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1322" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -22777,15 +22805,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1305: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666 " "firewall-cmd.at:1305" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1324: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-uid 6666 " "firewall-cmd.at:1324" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1305" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1324" $at_failed && at_fn_log_failure $at_traceon; } @@ -22814,15 +22844,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1306: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-uid 6666 " "firewall-cmd.at:1306" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1326: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-uid 6666 " "firewall-cmd.at:1326" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1306" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1326" $at_failed && at_fn_log_failure $at_traceon; } @@ -22851,143 +22883,18 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1307: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-lockdown-whitelist-uids | grep \"6666\" " -at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1307" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-lockdown-whitelist-uids | grep "6666" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1328: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666x " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666x " "firewall-cmd.at:1328" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666x ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1307" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1328" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - - - - - - - - - - - - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1308: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-uid 6666 " "firewall-cmd.at:1308" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-uid 6666 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1308" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - - - - - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1309: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-uid 6666 " "firewall-cmd.at:1309" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-uid 6666 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1309" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - - - - - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1310: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666x " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666x " "firewall-cmd.at:1310" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-uid 6666x -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1310" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - + @@ -23065,15 +22972,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1317: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-user theboss " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-user theboss " "firewall-cmd.at:1317" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1337: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-user theboss " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-user theboss " "firewall-cmd.at:1337" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1317" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1337" $at_failed && at_fn_log_failure $at_traceon; } @@ -23102,52 +23011,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1318: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-user theboss " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-user theboss " "firewall-cmd.at:1318" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1339: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-user theboss " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-user theboss " "firewall-cmd.at:1339" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1318" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - - - - - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1319: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-lockdown-whitelist-users | grep \"theboss\" " -at_fn_check_prepare_notrace 'a shell pipeline' "firewall-cmd.at:1319" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-lockdown-whitelist-users | grep "theboss" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1319" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1339" $at_failed && at_fn_log_failure $at_traceon; } @@ -23176,15 +23050,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1320: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-user theboss " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-user theboss " "firewall-cmd.at:1320" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1341: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-user theboss " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-user theboss " "firewall-cmd.at:1341" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1320" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" $at_failed && at_fn_log_failure $at_traceon; } @@ -23213,15 +23089,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1321: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-user theboss " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-user theboss " "firewall-cmd.at:1321" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1343: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-user theboss " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-user theboss " "firewall-cmd.at:1343" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1321" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1343" $at_failed && at_fn_log_failure $at_traceon; } @@ -23230,9 +23108,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1323" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1346" >"$at_check_line_file" (test `whoami` != 'root') \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1323" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1346" @@ -23306,11 +23184,11 @@ $at_traceon; } read at_status <"$at_status_file" #AT_STOP_23 #AT_START_24 -at_fn_group_banner 24 'firewall-cmd.at:1341' \ +at_fn_group_banner 24 'firewall-cmd.at:1369' \ "rich rules good" " " 1 at_xfail=no ( - $as_echo "24. $at_setup_line: testing $at_desc ..." + printf "%s\n" "24. $at_setup_line: testing $at_desc ..." $at_traceon @@ -23328,6 +23206,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -23344,29 +23223,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1369" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } @@ -23451,15 +23330,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" reject' " "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" reject' " "firewall-cmd.at:1372" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -23488,15 +23367,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"ah\" reject' " "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"ah\" reject' " "firewall-cmd.at:1372" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -23525,15 +23404,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"ah\" reject' " "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"ah\" reject' " "firewall-cmd.at:1372" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -23562,15 +23441,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"ah\" reject' " "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"ah\" reject' " "firewall-cmd.at:1372" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -23653,15 +23532,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"esp\" accept' " "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"esp\" accept' " "firewall-cmd.at:1373" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -23690,15 +23569,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"esp\" accept' " "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"esp\" accept' " "firewall-cmd.at:1373" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -23727,15 +23606,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"esp\" accept' " "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"esp\" accept' " "firewall-cmd.at:1373" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -23764,15 +23643,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"esp\" accept' " "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"esp\" accept' " "firewall-cmd.at:1373" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -23855,15 +23734,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"sctp\" log' " "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"sctp\" log' " "firewall-cmd.at:1374" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -23892,15 +23771,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"sctp\" log' " "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"sctp\" log' " "firewall-cmd.at:1374" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -23929,15 +23808,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"sctp\" log' " "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"sctp\" log' " "firewall-cmd.at:1374" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -23966,15 +23845,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"sctp\" log' " "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"sctp\" log' " "firewall-cmd.at:1374" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -24057,15 +23936,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"igmp\" log' " "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"igmp\" log' " "firewall-cmd.at:1375" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -24094,15 +23973,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"igmp\" log' " "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"igmp\" log' " "firewall-cmd.at:1375" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -24131,15 +24010,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"igmp\" log' " "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value=\"igmp\" log' " "firewall-cmd.at:1375" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -24168,15 +24047,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"igmp\" log' " "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value=\"igmp\" log' " "firewall-cmd.at:1375" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -24259,15 +24138,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " "firewall-cmd.at:1348" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " "firewall-cmd.at:1376" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -24296,15 +24175,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " "firewall-cmd.at:1348" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " "firewall-cmd.at:1376" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -24333,15 +24212,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " "firewall-cmd.at:1348" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " "firewall-cmd.at:1376" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -24370,15 +24249,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " "firewall-cmd.at:1348" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " "firewall-cmd.at:1376" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -24461,15 +24340,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " "firewall-cmd.at:1377" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -24498,15 +24377,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " "firewall-cmd.at:1377" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -24535,15 +24414,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " "firewall-cmd.at:1377" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -24572,15 +24451,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " "firewall-cmd.at:1377" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -24663,15 +24542,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " "firewall-cmd.at:1350" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " "firewall-cmd.at:1378" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -24700,15 +24579,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " "firewall-cmd.at:1350" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " "firewall-cmd.at:1378" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -24737,15 +24616,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " "firewall-cmd.at:1350" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " "firewall-cmd.at:1378" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -24774,15 +24653,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " "firewall-cmd.at:1350" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " "firewall-cmd.at:1378" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -24865,15 +24744,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " "firewall-cmd.at:1379" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -24902,15 +24781,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " "firewall-cmd.at:1379" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -24939,15 +24818,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " "firewall-cmd.at:1379" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -24976,15 +24855,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " "firewall-cmd.at:1379" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -25067,15 +24946,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " "firewall-cmd.at:1380" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -25104,15 +24983,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " "firewall-cmd.at:1380" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -25141,15 +25020,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " "firewall-cmd.at:1380" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -25178,15 +25057,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " "firewall-cmd.at:1380" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -25269,15 +25148,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " "firewall-cmd.at:1381" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -25306,15 +25185,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " "firewall-cmd.at:1381" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -25343,15 +25222,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " "firewall-cmd.at:1381" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -25380,15 +25259,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " "firewall-cmd.at:1381" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -25473,15 +25352,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -25510,15 +25389,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -25547,15 +25426,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -25584,15 +25463,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -25675,15 +25554,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -25712,15 +25591,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -25749,15 +25628,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -25786,15 +25665,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -25877,15 +25756,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -25914,15 +25793,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -25951,15 +25830,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -25988,15 +25867,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26079,15 +25958,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26116,15 +25995,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26153,15 +26032,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26190,15 +26069,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26281,15 +26160,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26318,15 +26197,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26355,15 +26234,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26392,15 +26271,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26483,15 +26362,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" masquerade' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" masquerade' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26520,15 +26399,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" masquerade' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" masquerade' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26557,15 +26436,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" masquerade' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv6\" masquerade' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26594,15 +26473,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" masquerade' " "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv6\" masquerade' " "firewall-cmd.at:1382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -26687,15 +26566,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " "firewall-cmd.at:1390" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -26724,15 +26603,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " "firewall-cmd.at:1390" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -26761,15 +26640,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " "firewall-cmd.at:1390" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -26798,15 +26677,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " "firewall-cmd.at:1390" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -26889,15 +26768,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1391" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -26926,15 +26805,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1391" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -26963,15 +26842,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1391" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -27000,15 +26879,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " "firewall-cmd.at:1391" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -27091,15 +26970,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1392" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -27128,15 +27007,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1392" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -27165,15 +27044,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1392" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -27202,15 +27081,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1392" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -27293,15 +27172,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " "firewall-cmd.at:1393" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -27330,15 +27209,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " "firewall-cmd.at:1393" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -27367,15 +27246,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " "firewall-cmd.at:1393" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -27404,15 +27283,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " "firewall-cmd.at:1393" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -27495,15 +27374,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1394" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -27532,15 +27411,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1394" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -27569,15 +27448,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1394" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -27606,15 +27485,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " "firewall-cmd.at:1394" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -27697,15 +27576,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1395" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -27734,15 +27613,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1395" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -27771,15 +27650,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1395" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -27808,15 +27687,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1395" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -27899,15 +27778,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1396" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -27936,15 +27815,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1396" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -27973,15 +27852,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1396" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -28010,15 +27889,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " "firewall-cmd.at:1396" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -28103,15 +27982,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1397" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -28140,15 +28019,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1397" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -28177,15 +28056,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1397" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -28214,15 +28093,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1397" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -28305,15 +28184,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1397" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -28342,15 +28221,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1397" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -28379,15 +28258,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1397" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -28416,15 +28295,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " "firewall-cmd.at:1397" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -28509,15 +28388,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " "firewall-cmd.at:1401" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -28546,15 +28425,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " "firewall-cmd.at:1401" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -28583,15 +28462,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " "firewall-cmd.at:1401" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -28620,15 +28499,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " "firewall-cmd.at:1401" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -28645,11 +28524,11 @@ $at_traceon; } read at_status <"$at_status_file" #AT_STOP_24 #AT_START_25 -at_fn_group_banner 25 'firewall-cmd.at:1375' \ +at_fn_group_banner 25 'firewall-cmd.at:1403' \ "rich rules audit" " " 1 at_xfail=no ( - $as_echo "25. $at_setup_line: testing $at_desc ..." + printf "%s\n" "25. $at_setup_line: testing $at_desc ..." $at_traceon @@ -28667,6 +28546,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -28683,29 +28563,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1403" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1375" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1403" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } @@ -28793,15 +28673,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " "firewall-cmd.at:1407" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -28830,15 +28710,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " "firewall-cmd.at:1407" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -28867,15 +28747,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " "firewall-cmd.at:1407" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -28904,15 +28784,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " "firewall-cmd.at:1407" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -28929,11 +28809,11 @@ $at_traceon; } read at_status <"$at_status_file" #AT_STOP_25 #AT_START_26 -at_fn_group_banner 26 'firewall-cmd.at:1383' \ +at_fn_group_banner 26 'firewall-cmd.at:1411' \ "rich rules priority" " " 1 at_xfail=no ( - $as_echo "26. $at_setup_line: testing $at_desc ..." + printf "%s\n" "26. $at_setup_line: testing $at_desc ..." $at_traceon @@ -28951,6 +28831,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -28967,29 +28848,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1411" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1411" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } @@ -29308,15 +29189,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1534: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule priority=127 drop' " "firewall-cmd.at:1534" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1562: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule priority=127 drop' " "firewall-cmd.at:1562" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1534" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1562" $at_failed && at_fn_log_failure $at_traceon; } @@ -29345,15 +29226,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1535: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule priority=127 drop' " "firewall-cmd.at:1535" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1563: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule priority=127 drop' " "firewall-cmd.at:1563" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1535" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1563" $at_failed && at_fn_log_failure $at_traceon; } @@ -29382,15 +29263,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1536: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule priority=127 drop' " "firewall-cmd.at:1536" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1564: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule priority=127 drop' " "firewall-cmd.at:1564" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1536" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1564" $at_failed && at_fn_log_failure $at_traceon; } @@ -29419,15 +29300,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1537: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule priority=127 drop' " "firewall-cmd.at:1537" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1565: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule priority=127 drop' " "firewall-cmd.at:1565" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1537" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1565" $at_failed && at_fn_log_failure $at_traceon; } @@ -30323,11 +30204,11 @@ $at_traceon; } read at_status <"$at_status_file" #AT_STOP_26 #AT_START_27 -at_fn_group_banner 27 'firewall-cmd.at:1938' \ +at_fn_group_banner 27 'firewall-cmd.at:1966' \ "rich rules bad" " " 1 at_xfail=no ( - $as_echo "27. $at_setup_line: testing $at_desc ..." + printf "%s\n" "27. $at_setup_line: testing $at_desc ..." $at_traceon @@ -30345,6 +30226,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -30361,29 +30243,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1938" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1938" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1966" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" $at_failed && at_fn_log_failure $at_traceon; } @@ -30430,15 +30312,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1945: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='' " "firewall-cmd.at:1945" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1973: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='' " "firewall-cmd.at:1973" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1945" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1973" $at_failed && at_fn_log_failure $at_traceon; } @@ -30481,15 +30363,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1946: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='name=\"dns\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='name=\"dns\" accept' " "firewall-cmd.at:1946" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1974: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='name=\"dns\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='name=\"dns\" accept' " "firewall-cmd.at:1974" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='name="dns" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1946" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1974" $at_failed && at_fn_log_failure $at_traceon; } @@ -30532,15 +30414,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1947: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='protocol value=\"ah\" reject' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='protocol value=\"ah\" reject' " "firewall-cmd.at:1947" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1975: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='protocol value=\"ah\" reject' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='protocol value=\"ah\" reject' " "firewall-cmd.at:1975" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1947" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1975" $at_failed && at_fn_log_failure $at_traceon; } @@ -30583,15 +30465,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1948: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " "firewall-cmd.at:1948" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1976: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " "firewall-cmd.at:1976" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value="ah" reject type="icmp-host-prohibited"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1948" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1976" $at_failed && at_fn_log_failure $at_traceon; } @@ -30634,15 +30516,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1949: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " "firewall-cmd.at:1949" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1977: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " "firewall-cmd.at:1977" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" protocol value="ah" reject type="dummy"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1949" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1977" $at_failed && at_fn_log_failure $at_traceon; } @@ -30685,15 +30567,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1950: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule' " "firewall-cmd.at:1950" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1978: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule' " "firewall-cmd.at:1978" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1950" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1978" $at_failed && at_fn_log_failure $at_traceon; } @@ -30736,15 +30618,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1951: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule bad_element' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule bad_element' " "firewall-cmd.at:1951" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1979: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule bad_element' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule bad_element' " "firewall-cmd.at:1979" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule bad_element' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1951" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1979" $at_failed && at_fn_log_failure $at_traceon; } @@ -30787,15 +30669,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1952: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv5\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv5\"' " "firewall-cmd.at:1952" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1980: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv5\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv5\"' " "firewall-cmd.at:1980" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv5"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1952" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1980" $at_failed && at_fn_log_failure $at_traceon; } @@ -30838,15 +30720,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1953: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule name=\"dns\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule name=\"dns\" accept' " "firewall-cmd.at:1953" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1981: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule name=\"dns\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule name=\"dns\" accept' " "firewall-cmd.at:1981" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule name="dns" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1953" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1981" $at_failed && at_fn_log_failure $at_traceon; } @@ -30889,15 +30771,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1954: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol=\"ah\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol=\"ah\" accept' " "firewall-cmd.at:1954" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1982: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol=\"ah\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol=\"ah\" accept' " "firewall-cmd.at:1982" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol="ah" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1954" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1982" $at_failed && at_fn_log_failure $at_traceon; } @@ -30940,15 +30822,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1955: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" accept drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" accept drop' " "firewall-cmd.at:1955" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1983: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" accept drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"ah\" accept drop' " "firewall-cmd.at:1983" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value="ah" accept drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1955" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1983" $at_failed && at_fn_log_failure $at_traceon; } @@ -30991,15 +30873,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1956: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " "firewall-cmd.at:1956" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1984: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " "firewall-cmd.at:1984" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name="radius" port port="4011" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1956" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1984" $at_failed && at_fn_log_failure $at_traceon; } @@ -31042,15 +30924,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1957: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service bad_attribute=\"dns\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service bad_attribute=\"dns\"' " "firewall-cmd.at:1957" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1985: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service bad_attribute=\"dns\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service bad_attribute=\"dns\"' " "firewall-cmd.at:1985" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service bad_attribute="dns"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1957" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1985" $at_failed && at_fn_log_failure $at_traceon; } @@ -31093,15 +30975,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1958: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " "firewall-cmd.at:1958" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1986: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " "firewall-cmd.at:1986" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value="igmp" log level="eror"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:1958" +at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:1986" $at_failed && at_fn_log_failure $at_traceon; } @@ -31146,15 +31028,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='family=\"ipv6\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='family=\"ipv6\" accept' " "firewall-cmd.at:1959" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='family=\"ipv6\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='family=\"ipv6\" accept' " "firewall-cmd.at:1987" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='family="ipv6" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1987" $at_failed && at_fn_log_failure $at_traceon; } @@ -31197,15 +31079,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " "firewall-cmd.at:1959" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/m\"' " "firewall-cmd.at:1987" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 207 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 207 $at_status "$at_srcdir/firewall-cmd.at:1987" $at_failed && at_fn_log_failure $at_traceon; } @@ -31248,15 +31130,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " "firewall-cmd.at:1959" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " "firewall-cmd.at:1987" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:1987" $at_failed && at_fn_log_failure $at_traceon; } @@ -31301,15 +31183,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1964: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"esp\"' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"esp\"' " "firewall-cmd.at:1964" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1992: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"esp\"' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"esp\"' " "firewall-cmd.at:1992" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value="esp"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1964" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1992" $at_failed && at_fn_log_failure $at_traceon; } @@ -31352,15 +31234,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1965: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" masquerade drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" masquerade drop' " "firewall-cmd.at:1965" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1993: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" masquerade drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" masquerade drop' " "firewall-cmd.at:1993" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" masquerade drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1965" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1993" $at_failed && at_fn_log_failure $at_traceon; } @@ -31403,15 +31285,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1966: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " "firewall-cmd.at:1966" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1994: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " "firewall-cmd.at:1994" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" icmp-block name="redirect" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1966" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1994" $at_failed && at_fn_log_failure $at_traceon; } @@ -31454,15 +31336,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1967: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " "firewall-cmd.at:1967" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1995: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " "firewall-cmd.at:1995" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule forward-port port="2222" to-port="22" protocol="tcp" family="ipv4" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1967" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1995" $at_failed && at_fn_log_failure $at_traceon; } @@ -31505,15 +31387,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1968: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " "firewall-cmd.at:1968" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1996: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " "firewall-cmd.at:1996" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule service name="ssh" log prefix="RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:1968" +at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:1996" $at_failed && at_fn_log_failure $at_traceon; } @@ -31556,15 +31438,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1969: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " "firewall-cmd.at:1969" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1997: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " "firewall-cmd.at:1997" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule protocol value="sctp" nflog group=-1 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:1969" +at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:1997" $at_failed && at_fn_log_failure $at_traceon; } @@ -31607,15 +31489,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1970: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " "firewall-cmd.at:1970" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1998: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " "firewall-cmd.at:1998" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv4" service name="https" nflog queue-size=-1 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1970" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1998" $at_failed && at_fn_log_failure $at_traceon; } @@ -31658,15 +31540,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1971: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " "firewall-cmd.at:1971" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1999: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " "firewall-cmd.at:1999" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family="ipv6" service name="https" nflog queue-size=65536 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1971" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1999" $at_failed && at_fn_log_failure $at_traceon; } @@ -31683,11 +31565,11 @@ $at_traceon; } read at_status <"$at_status_file" #AT_STOP_27 #AT_START_28 -at_fn_group_banner 28 'firewall-cmd.at:1981' \ +at_fn_group_banner 28 'firewall-cmd.at:2009' \ "config validation" " " 1 at_xfail=no ( - $as_echo "28. $at_setup_line: testing $at_desc ..." + printf "%s\n" "28. $at_setup_line: testing $at_desc ..." $at_traceon @@ -31705,6 +31587,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -31721,29 +31604,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2009" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:2009" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" $at_failed && at_fn_log_failure $at_traceon; } @@ -31776,15 +31659,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1985: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:1985" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2013: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2013" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1985" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2013" $at_failed && at_fn_log_failure $at_traceon; } @@ -31860,15 +31743,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2004: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2004" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2032: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2032" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2004" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2032" $at_failed && at_fn_log_failure $at_traceon; } @@ -31879,28 +31762,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2009: cp ./firewalld.conf ./firewalld.conf.orig" -at_fn_check_prepare_trace "firewall-cmd.at:2009" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2037: cp ./firewalld.conf ./firewalld.conf.orig" +at_fn_check_prepare_trace "firewall-cmd.at:2037" ( $at_check_trace; cp ./firewalld.conf ./firewalld.conf.orig ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2037" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2010: echo \"SomeBogusField=yes\" >> ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:2010" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2038: echo \"SomeBogusField=yes\" >> ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:2038" ( $at_check_trace; echo "SomeBogusField=yes" >> ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2010" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2038" $at_failed && at_fn_log_failure $at_traceon; } @@ -31926,18 +31809,18 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2011: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2011" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2039: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2039" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "ERROR: Invalid option: 'SomeBogusField=yes' +echo >>"$at_stderr"; printf "%s\n" "ERROR: Invalid option: 'SomeBogusField=yes' ERROR: Invalid option: 'SomeBogusField=yes' " | \ $at_diff - "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2011" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2039" $at_failed && at_fn_log_failure $at_traceon; } @@ -31946,15 +31829,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2016: cp ./firewalld.conf.orig ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:2016" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2044: cp ./firewalld.conf.orig ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:2044" ( $at_check_trace; cp ./firewalld.conf.orig ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2016" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2044" $at_failed && at_fn_log_failure $at_traceon; } @@ -31988,15 +31871,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2025: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2025" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2053: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2053" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2025" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2053" $at_failed && at_fn_log_failure $at_traceon; } @@ -32034,15 +31917,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2033: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2033" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2061: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2061" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2033" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2061" $at_failed && at_fn_log_failure $at_traceon; } @@ -32051,15 +31934,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2034: rm ./direct.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2034" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2062: rm ./direct.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2062" ( $at_check_trace; rm ./direct.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2034" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2062" $at_failed && at_fn_log_failure $at_traceon; } @@ -32093,15 +31976,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2043: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2043" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2071: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2071" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2043" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2071" $at_failed && at_fn_log_failure $at_traceon; } @@ -32139,15 +32022,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2051: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2051" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2079: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2079" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2051" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2079" $at_failed && at_fn_log_failure $at_traceon; } @@ -32185,15 +32068,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2059: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2059" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2087: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2087" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2059" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2087" $at_failed && at_fn_log_failure $at_traceon; } @@ -32202,29 +32085,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2060: rm ./lockdown-whitelist.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2060" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2088: rm ./lockdown-whitelist.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2088" ( $at_check_trace; rm ./lockdown-whitelist.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2060" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2088" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2063: mkdir -p ./ipsets" -at_fn_check_prepare_trace "firewall-cmd.at:2063" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2091: mkdir -p ./ipsets" +at_fn_check_prepare_trace "firewall-cmd.at:2091" ( $at_check_trace; mkdir -p ./ipsets ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2063" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2091" $at_failed && at_fn_log_failure $at_traceon; } @@ -32257,18 +32140,18 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2070: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2070" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2098: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2098" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "WARNING: INVALID_ENTRY: invalid mac address '12:34:56:78:90' in '12:34:56:78:90', ignoring. +echo >>"$at_stderr"; printf "%s\n" "WARNING: INVALID_ENTRY: invalid mac address '12:34:56:78:90' in '12:34:56:78:90', ignoring. WARNING: INVALID_ENTRY: invalid mac address '12:34:56:78:90' in '12:34:56:78:90', ignoring. " | \ $at_diff - "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2070" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2098" $at_failed && at_fn_log_failure $at_traceon; } @@ -32306,15 +32189,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2082: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2082" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2110: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2110" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2082" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2110" $at_failed && at_fn_log_failure $at_traceon; } @@ -32351,15 +32234,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2089: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2089" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2117: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2117" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 119 $at_status "$at_srcdir/firewall-cmd.at:2089" +at_fn_check_status 119 $at_status "$at_srcdir/firewall-cmd.at:2117" $at_failed && at_fn_log_failure $at_traceon; } @@ -32368,15 +32251,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2090: rm ./ipsets/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2090" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2118: rm ./ipsets/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2118" ( $at_check_trace; rm ./ipsets/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2090" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2118" $at_failed && at_fn_log_failure $at_traceon; } @@ -32413,15 +32296,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2101: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2101" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2129: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2129" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 135 $at_status "$at_srcdir/firewall-cmd.at:2101" +at_fn_check_status 135 $at_status "$at_srcdir/firewall-cmd.at:2129" $at_failed && at_fn_log_failure $at_traceon; } @@ -32430,29 +32313,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2102: rm ./ipsets/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2102" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2130: rm ./ipsets/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2130" ( $at_check_trace; rm ./ipsets/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2102" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2130" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2105: mkdir -p ./helpers" -at_fn_check_prepare_trace "firewall-cmd.at:2105" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2133: mkdir -p ./helpers" +at_fn_check_prepare_trace "firewall-cmd.at:2133" ( $at_check_trace; mkdir -p ./helpers ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2105" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2133" $at_failed && at_fn_log_failure $at_traceon; } @@ -32484,15 +32367,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2111: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2111" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2139: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2139" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2111" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2139" $at_failed && at_fn_log_failure $at_traceon; } @@ -32529,15 +32412,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2118" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2146: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2146" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2118" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2146" $at_failed && at_fn_log_failure $at_traceon; } @@ -32577,15 +32460,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2120: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2120" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2148: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2148" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2120" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2148" $at_failed && at_fn_log_failure $at_traceon; } @@ -32596,29 +32479,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2129: rm ./helpers/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2129" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2157: rm ./helpers/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2157" ( $at_check_trace; rm ./helpers/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2129" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2157" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2132: mkdir -p ./icmptypes" -at_fn_check_prepare_trace "firewall-cmd.at:2132" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2160: mkdir -p ./icmptypes" +at_fn_check_prepare_trace "firewall-cmd.at:2160" ( $at_check_trace; mkdir -p ./icmptypes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2132" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2160" $at_failed && at_fn_log_failure $at_traceon; } @@ -32651,15 +32534,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2139: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2139" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2167: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2167" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2139" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2167" $at_failed && at_fn_log_failure $at_traceon; } @@ -32697,15 +32580,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2147: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2147" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2175: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2175" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2147" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2175" $at_failed && at_fn_log_failure $at_traceon; } @@ -32714,29 +32597,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2148: rm ./icmptypes/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2148" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2176: rm ./icmptypes/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2176" ( $at_check_trace; rm ./icmptypes/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2148" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2176" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2151: mkdir -p ./services" -at_fn_check_prepare_trace "firewall-cmd.at:2151" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2179: mkdir -p ./services" +at_fn_check_prepare_trace "firewall-cmd.at:2179" ( $at_check_trace; mkdir -p ./services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2151" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2179" $at_failed && at_fn_log_failure $at_traceon; } @@ -32769,15 +32652,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2158: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2158" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2186: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2186" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2158" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2186" $at_failed && at_fn_log_failure $at_traceon; } @@ -32815,15 +32698,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2166: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2166" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2194: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2194" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2166" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2194" $at_failed && at_fn_log_failure $at_traceon; } @@ -32861,15 +32744,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2174: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2174" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2202: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2202" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2174" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2202" $at_failed && at_fn_log_failure $at_traceon; } @@ -32907,15 +32790,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2182: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2182" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2210: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2210" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2182" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2210" $at_failed && at_fn_log_failure $at_traceon; } @@ -32953,15 +32836,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2190: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2190" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2218: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2218" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2190" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2218" $at_failed && at_fn_log_failure $at_traceon; } @@ -32999,15 +32882,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2198: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2198" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2226: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2226" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2198" +at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2226" $at_failed && at_fn_log_failure $at_traceon; } @@ -33046,15 +32929,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2207: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2207" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2235: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2235" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2207" +at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2235" $at_failed && at_fn_log_failure $at_traceon; } @@ -33092,15 +32975,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2215: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2215" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2243: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2243" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2215" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2243" $at_failed && at_fn_log_failure $at_traceon; } @@ -33109,29 +32992,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2216: rm ./services/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2216" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2244: rm ./services/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2244" ( $at_check_trace; rm ./services/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2216" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2244" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2219: mkdir -p ./zones" -at_fn_check_prepare_trace "firewall-cmd.at:2219" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2247: mkdir -p ./zones" +at_fn_check_prepare_trace "firewall-cmd.at:2247" ( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2219" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2247" $at_failed && at_fn_log_failure $at_traceon; } @@ -33161,15 +33044,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2223: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2223" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2251: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2251" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/firewall-cmd.at:2223" +at_fn_check_status 112 $at_status "$at_srcdir/firewall-cmd.at:2251" $at_failed && at_fn_log_failure $at_traceon; } @@ -33207,15 +33090,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2231: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2231" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2259: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2259" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/firewall-cmd.at:2231" +at_fn_check_status 101 $at_status "$at_srcdir/firewall-cmd.at:2259" $at_failed && at_fn_log_failure $at_traceon; } @@ -33253,15 +33136,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2239: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2239" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2267: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2267" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2239" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2267" $at_failed && at_fn_log_failure $at_traceon; } @@ -33299,15 +33182,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2247: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2247" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2275: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2275" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2247" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2275" $at_failed && at_fn_log_failure $at_traceon; } @@ -33345,15 +33228,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2255: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2255" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2283: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2283" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2255" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2283" $at_failed && at_fn_log_failure $at_traceon; } @@ -33391,15 +33274,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2263: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2263" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2291: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2291" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2263" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2291" $at_failed && at_fn_log_failure $at_traceon; } @@ -33437,15 +33320,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2271: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2271" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2299: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2299" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2271" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2299" $at_failed && at_fn_log_failure $at_traceon; } @@ -33483,15 +33366,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2279: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2279" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2307: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2307" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2279" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2307" $at_failed && at_fn_log_failure $at_traceon; } @@ -33529,15 +33412,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2287: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2287" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2315: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2315" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2287" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2315" $at_failed && at_fn_log_failure $at_traceon; } @@ -33575,15 +33458,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2295: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2295" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2323: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2323" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2295" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2323" $at_failed && at_fn_log_failure $at_traceon; } @@ -33621,15 +33504,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2303: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2303" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2331: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2331" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2303" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2331" $at_failed && at_fn_log_failure $at_traceon; } @@ -33667,18 +33550,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2311: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2311" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2339: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2339" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "WARNING: Invalid source: No address no ipset. -WARNING: Invalid source: No address no ipset. -" | \ - $at_diff - "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2311" +at_fn_check_status 144 $at_status "$at_srcdir/firewall-cmd.at:2339" $at_failed && at_fn_log_failure $at_traceon; } @@ -33719,15 +33599,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2326: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2326" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2350: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2350" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2326" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2350" $at_failed && at_fn_log_failure $at_traceon; } @@ -33770,18 +33650,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2339: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2339" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2363: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2363" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "WARNING: INVALID_LIMIT: none: rule family=\"ipv4\" source address=\"10.0.0.1/24\" accept limit value=\"none\" -WARNING: INVALID_LIMIT: none: rule family=\"ipv4\" source address=\"10.0.0.1/24\" accept limit value=\"none\" -" | \ - $at_diff - "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2339" +at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:2363" $at_failed && at_fn_log_failure $at_traceon; } @@ -33822,18 +33699,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2374: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2374" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "WARNING: Invalid rule: Invalid log prefix -WARNING: Invalid rule: Invalid log prefix -" | \ - $at_diff - "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2354" +at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:2374" $at_failed && at_fn_log_failure $at_traceon; } @@ -33874,18 +33748,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2369: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2385: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2385" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "WARNING: Invalid rule: Invalid log level -WARNING: Invalid rule: Invalid log level -" | \ - $at_diff - "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2369" +at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:2385" $at_failed && at_fn_log_failure $at_traceon; } @@ -33926,18 +33797,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2384: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2384" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2396: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2396" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "WARNING: Invalid rule: Invalid nflog group value -WARNING: Invalid rule: Invalid nflog group value -" | \ - $at_diff - "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2384" +at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:2396" $at_failed && at_fn_log_failure $at_traceon; } @@ -33978,18 +33846,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2399: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2399" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2407: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2407" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "WARNING: Invalid rule: Invalid nflog queue-size -WARNING: Invalid rule: Invalid nflog queue-size -" | \ - $at_diff - "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2399" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:2407" $at_failed && at_fn_log_failure $at_traceon; } @@ -34030,15 +33895,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2414: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2414" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2418: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2418" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2414" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2418" $at_failed && at_fn_log_failure $at_traceon; } @@ -34081,18 +33946,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2416: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2416" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2420: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "firewall-cmd.at:2420" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "WARNING: INVALID_ADDR: 10.0.0.1/24: rule family=\"ipv6\" source address=\"10.0.0.1/24\" accept -WARNING: INVALID_ADDR: 10.0.0.1/24: rule family=\"ipv6\" source address=\"10.0.0.1/24\" accept -" | \ - $at_diff - "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2416" +at_fn_check_status 105 $at_status "$at_srcdir/firewall-cmd.at:2420" $at_failed && at_fn_log_failure $at_traceon; } @@ -34103,7 +33965,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2432: rm ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2432: rm ./zones/foobar.xml" at_fn_check_prepare_trace "firewall-cmd.at:2432" ( $at_check_trace; rm ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34128,7 +33990,7 @@ at_fn_group_banner 29 'rfc3964_ipv4.at:1' \ "RFC3964_IPv4" " " 2 at_xfail=no ( - $as_echo "29. $at_setup_line: testing $at_desc ..." + printf "%s\n" "29. $at_setup_line: testing $at_desc ..." $at_traceon @@ -34146,6 +34008,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -34162,7 +34025,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34176,7 +34039,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rfc3964_ipv4.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34196,7 +34059,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:4: sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:4: sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf" at_fn_check_prepare_trace "rfc3964_ipv4.at:4" ( $at_check_trace; sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34209,7 +34072,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:5: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:5: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rfc3964_ipv4.at:5" ( $at_check_trace; sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34267,15 +34130,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:72: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=no/' ./firewalld.conf" -at_fn_check_prepare_trace "rfc3964_ipv4.at:72" +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:73: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rfc3964_ipv4.at:73" ( $at_check_trace; sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=no/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -34337,7 +34200,7 @@ at_fn_group_banner 30 'service_include.at:1' \ "service include" " " 2 at_xfail=no ( - $as_echo "30. $at_setup_line: testing $at_desc ..." + printf "%s\n" "30. $at_setup_line: testing $at_desc ..." $at_traceon @@ -34355,6 +34218,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -34371,7 +34235,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/service_include.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/service_include.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34385,7 +34249,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/service_include.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/service_include.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "service_include.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34405,7 +34269,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:4: mkdir -p ./services" +printf "%s\n" "$at_srcdir/service_include.at:4: mkdir -p ./services" at_fn_check_prepare_trace "service_include.at:4" ( $at_check_trace; mkdir -p ./services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34418,7 +34282,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:5: cat < ./services/my-service-with-include.xml +printf "%s\n" "$at_srcdir/service_include.at:5: cat < ./services/my-service-with-include.xml my-service-with-include @@ -34453,7 +34317,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:17: cat < ./services/recursive-service.xml +printf "%s\n" "$at_srcdir/service_include.at:17: cat < ./services/recursive-service.xml recursive-service @@ -34643,7 +34507,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:86: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service " +printf "%s\n" "$at_srcdir/service_include.at:86: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service " "service_include.at:86" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34680,7 +34544,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:87: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh " +printf "%s\n" "$at_srcdir/service_include.at:87: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh " "service_include.at:87" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34717,7 +34581,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:88: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh " +printf "%s\n" "$at_srcdir/service_include.at:88: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh " "service_include.at:88" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34734,7 +34598,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:89: grep '' ./services/my-service-with-include.xml " +printf "%s\n" "$at_srcdir/service_include.at:89: grep '' ./services/my-service-with-include.xml " at_fn_check_prepare_trace "service_include.at:89" ( $at_check_trace; grep '' ./services/my-service-with-include.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34767,7 +34631,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:90: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh " +printf "%s\n" "$at_srcdir/service_include.at:90: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh " "service_include.at:90" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34804,7 +34668,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:91: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh " +printf "%s\n" "$at_srcdir/service_include.at:91: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh " "service_include.at:91" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34821,7 +34685,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:92: grep '' ./services/my-service-with-include.xml " +printf "%s\n" "$at_srcdir/service_include.at:92: grep '' ./services/my-service-with-include.xml " at_fn_check_prepare_trace "service_include.at:92" ( $at_check_trace; grep '' ./services/my-service-with-include.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34854,14 +34718,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:93: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes " +printf "%s\n" "$at_srcdir/service_include.at:93: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes " "service_include.at:93" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "mdns recursive-service ssdp +echo >>"$at_stdout"; printf "%s\n" "mdns recursive-service ssdp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:93" @@ -34893,14 +34757,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:96: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/service_include.at:96: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:96" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "my-service-with-include +echo >>"$at_stdout"; printf "%s\n" "my-service-with-include ports: 12345/tcp protocols: source-ports: @@ -34939,7 +34803,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service" +printf "%s\n" "$at_srcdir/service_include.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service" "service_include.at:118" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34959,7 +34823,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:119: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh" +printf "%s\n" "$at_srcdir/service_include.at:119: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh" "service_include.at:119" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34979,7 +34843,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:120: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" +printf "%s\n" "$at_srcdir/service_include.at:120: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" "service_include.at:120" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -34993,7 +34857,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:121: grep '' ./services/my-service-with-include.xml " +printf "%s\n" "$at_srcdir/service_include.at:121: grep '' ./services/my-service-with-include.xml " at_fn_check_prepare_trace "service_include.at:121" ( $at_check_trace; grep '' ./services/my-service-with-include.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35012,7 +34876,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:122: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh" +printf "%s\n" "$at_srcdir/service_include.at:122: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh" "service_include.at:122" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35032,7 +34896,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:123: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" +printf "%s\n" "$at_srcdir/service_include.at:123: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" "service_include.at:123" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35046,7 +34910,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:124: grep '' ./services/my-service-with-include.xml " +printf "%s\n" "$at_srcdir/service_include.at:124: grep '' ./services/my-service-with-include.xml " at_fn_check_prepare_trace "service_include.at:124" ( $at_check_trace; grep '' ./services/my-service-with-include.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35065,14 +34929,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:125: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes" +printf "%s\n" "$at_srcdir/service_include.at:125: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes" "service_include.at:125" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "mdns recursive-service ssdp +echo >>"$at_stdout"; printf "%s\n" "mdns recursive-service ssdp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:125" @@ -35087,14 +34951,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:128: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" +printf "%s\n" "$at_srcdir/service_include.at:128: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:128" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "my-service-with-include +echo >>"$at_stdout"; printf "%s\n" "my-service-with-include ports: 12345/tcp protocols: source-ports: @@ -35131,7 +34995,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:140: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist " +printf "%s\n" "$at_srcdir/service_include.at:140: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist " "service_include.at:140" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35154,7 +35018,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist" +printf "%s\n" "$at_srcdir/service_include.at:141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist" "service_include.at:141" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35180,7 +35044,7 @@ at_fn_group_banner 31 'helpers_custom.at:1' \ "customer helpers" " " 2 at_xfail=no ( - $as_echo "31. $at_setup_line: testing $at_desc ..." + printf "%s\n" "31. $at_setup_line: testing $at_desc ..." $at_traceon @@ -35198,6 +35062,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -35214,7 +35079,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/helpers_custom.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35228,7 +35093,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/helpers_custom.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "helpers_custom.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35268,7 +35133,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --new-helper=\"ftptest\" --module=\"nf_conntrack_ftp\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --new-helper=\"ftptest\" --module=\"nf_conntrack_ftp\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --new-helper=\"ftptest\" --module=\"nf_conntrack_ftp\" " "helpers_custom.at:4" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --new-helper="ftptest" --module="nf_conntrack_ftp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35305,7 +35170,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --helper=ftptest --add-port=\"2121/tcp\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --helper=ftptest --add-port=\"2121/tcp\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --helper=ftptest --add-port=\"2121/tcp\" " "helpers_custom.at:5" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --helper=ftptest --add-port="2121/tcp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35343,7 +35208,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --new-service=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --new-service=\"ftptest\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --new-service=\"ftptest\" " "helpers_custom.at:7" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --new-service="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35380,7 +35245,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-module=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-module=\"ftptest\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-module=\"ftptest\" " "helpers_custom.at:8" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35417,7 +35282,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --query-module=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --query-module=\"ftptest\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --query-module=\"ftptest\" " "helpers_custom.at:9" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --query-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35454,7 +35319,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-port=\"2121/tcp\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-port=\"2121/tcp\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-port=\"2121/tcp\" " "helpers_custom.at:10" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-port="2121/tcp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35491,14 +35356,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/helpers_custom.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:11" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftptest +echo >>"$at_stdout"; printf "%s\n" "ftptest ports: 2121/tcp protocols: source-ports: @@ -35609,7 +35474,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:62: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --remove-module=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:62: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --remove-module=\"ftptest\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --remove-module=\"ftptest\" " "helpers_custom.at:62" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --remove-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35646,7 +35511,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:63: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --query-module=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:63: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --query-module=\"ftptest\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --query-module=\"ftptest\" " "helpers_custom.at:63" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --query-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35683,7 +35548,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:64: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-helper=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:64: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-helper=\"ftptest\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-helper=\"ftptest\" " "helpers_custom.at:64" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-helper="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35720,14 +35585,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:65: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/helpers_custom.at:65: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:65" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftptest +echo >>"$at_stdout"; printf "%s\n" "ftptest ports: 2121/tcp protocols: source-ports: @@ -35838,7 +35703,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:116: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-module=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:116: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-module=\"ftptest\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-module=\"ftptest\" " "helpers_custom.at:116" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35875,7 +35740,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:117: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --remove-helper=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:117: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --remove-helper=\"ftptest\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --remove-helper=\"ftptest\" " "helpers_custom.at:117" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --remove-helper="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35912,7 +35777,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-helper=\"ftp\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-helper=\"ftp\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-helper=\"ftp\" " "helpers_custom.at:118" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-helper="ftp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -35949,7 +35814,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/helpers_custom.at:119: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-port=\"21/tcp\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:119: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-port=\"21/tcp\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-port=\"21/tcp\" " "helpers_custom.at:119" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=ftptest --add-port="21/tcp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36036,7 +35901,7 @@ at_fn_group_banner 32 'policy.at:5' \ "policy - xml" " " 2 at_xfail=no ( - $as_echo "32. $at_setup_line: testing $at_desc ..." + printf "%s\n" "32. $at_setup_line: testing $at_desc ..." $at_traceon @@ -36054,6 +35919,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -36070,7 +35936,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36084,7 +35950,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:5" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36104,7 +35970,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:8: mkdir -p ./policies" +printf "%s\n" "$at_srcdir/policy.at:8: mkdir -p ./policies" at_fn_check_prepare_trace "policy.at:8" ( $at_check_trace; mkdir -p ./policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36199,7 +36065,7 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/policy.at:70: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +printf "%s\n" "$at_srcdir/policy.at:70: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "policy.at:70" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36256,7 +36122,7 @@ at_fn_group_banner 33 'policy.at:79' \ "policy - create" " " 2 at_xfail=no ( - $as_echo "33. $at_setup_line: testing $at_desc ..." + printf "%s\n" "33. $at_setup_line: testing $at_desc ..." $at_traceon @@ -36274,6 +36140,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -36290,7 +36157,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:79: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:79: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:79" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36304,7 +36171,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:79: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:79: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:79" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36344,7 +36211,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:83: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy worldToHost " +printf "%s\n" "$at_srcdir/policy.at:83: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy worldToHost " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy worldToHost " "policy.at:83" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy worldToHost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36381,7 +36248,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:84: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy hostToWorld " +printf "%s\n" "$at_srcdir/policy.at:84: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy hostToWorld " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy hostToWorld " "policy.at:84" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy hostToWorld ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36418,7 +36285,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:85: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy zoneToZone " +printf "%s\n" "$at_srcdir/policy.at:85: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy zoneToZone " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy zoneToZone " "policy.at:85" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy zoneToZone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36455,14 +36322,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:86: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-policies " +printf "%s\n" "$at_srcdir/policy.at:86: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-policies " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-policies " "policy.at:86" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 hostToWorld worldToHost zoneToZone +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 hostToWorld worldToHost zoneToZone " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:86" @@ -36527,7 +36394,7 @@ at_fn_group_banner 34 'policy.at:96' \ "policy - name" " " 2 at_xfail=no ( - $as_echo "34. $at_setup_line: testing $at_desc ..." + printf "%s\n" "34. $at_setup_line: testing $at_desc ..." $at_traceon @@ -36545,6 +36412,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -36561,7 +36429,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:96: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:96: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:96" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36575,7 +36443,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:96: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:96: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:96" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36615,7 +36483,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:100: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy 123456789012345678 " +printf "%s\n" "$at_srcdir/policy.at:100: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy 123456789012345678 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy 123456789012345678 " "policy.at:100" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy 123456789012345678 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36652,7 +36520,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:101: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy 1234567890123456789 " +printf "%s\n" "$at_srcdir/policy.at:101: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy 1234567890123456789 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy 1234567890123456789 " "policy.at:101" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy 1234567890123456789 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36690,7 +36558,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:104: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy public " +printf "%s\n" "$at_srcdir/policy.at:104: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy public " "policy.at:104" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36727,7 +36595,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:105: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone allow-host-ipv6 " +printf "%s\n" "$at_srcdir/policy.at:105: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone allow-host-ipv6 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone allow-host-ipv6 " "policy.at:105" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone allow-host-ipv6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36756,7 +36624,7 @@ at_fn_group_banner 35 'policy.at:109' \ "policy - list" " " 2 at_xfail=no ( - $as_echo "35. $at_setup_line: testing $at_desc ..." + printf "%s\n" "35. $at_setup_line: testing $at_desc ..." $at_traceon @@ -36774,6 +36642,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -36790,7 +36659,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:109: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:109: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:109" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36804,7 +36673,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:109: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:109: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:109" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -36857,14 +36726,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:131: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-policy allow-host-ipv6 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/policy.at:131: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-policy allow-host-ipv6 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:131" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-policy allow-host-ipv6 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 priority: -15000 target: CONTINUE ingress-zones: ANY @@ -36879,8 +36748,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:131" @@ -36926,14 +36795,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:170: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/policy.at:170: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:170" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 priority: -15000 target: CONTINUE ingress-zones: ANY @@ -36948,8 +36817,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:170" @@ -36995,14 +36864,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:209: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/policy.at:209: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:209" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 priority: -15000 target: CONTINUE ingress-zones: ANY @@ -37017,8 +36886,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:209" @@ -37042,7 +36911,7 @@ at_fn_group_banner 36 'policy.at:231' \ "policy - options" " " 2 at_xfail=no ( - $as_echo "36. $at_setup_line: testing $at_desc ..." + printf "%s\n" "36. $at_setup_line: testing $at_desc ..." $at_traceon @@ -37060,6 +36929,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -37076,7 +36946,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:231: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:231: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:231" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37090,7 +36960,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:231: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:231: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:231" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37143,7 +37013,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:236: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --zone public " +printf "%s\n" "$at_srcdir/policy.at:236: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --zone public " "policy.at:236" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37194,7 +37064,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:240: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-interface foobar0 " +printf "%s\n" "$at_srcdir/policy.at:240: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-interface foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-interface foobar0 " "policy.at:240" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37244,7 +37114,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:242: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-interface foobar0 " +printf "%s\n" "$at_srcdir/policy.at:242: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-interface foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-interface foobar0 " "policy.at:242" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37294,7 +37164,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:244: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-interface foobar0 " +printf "%s\n" "$at_srcdir/policy.at:244: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-interface foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-interface foobar0 " "policy.at:244" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37344,7 +37214,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:246: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --list-interfaces " +printf "%s\n" "$at_srcdir/policy.at:246: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --list-interfaces " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --list-interfaces " "policy.at:246" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --list-interfaces ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37395,7 +37265,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:250: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/policy.at:250: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-source 10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-source 10.10.10.0/24 " "policy.at:250" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37445,7 +37315,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:252: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/policy.at:252: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-source 10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-source 10.10.10.0/24 " "policy.at:252" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37495,7 +37365,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:254: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/policy.at:254: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-source 10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-source 10.10.10.0/24 " "policy.at:254" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37545,7 +37415,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:256: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --list-sources " +printf "%s\n" "$at_srcdir/policy.at:256: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --list-sources " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --list-sources " "policy.at:256" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37596,7 +37466,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:260: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-forward " +printf "%s\n" "$at_srcdir/policy.at:260: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-forward " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-forward " "policy.at:260" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37646,7 +37516,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:262: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-forward " +printf "%s\n" "$at_srcdir/policy.at:262: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-forward " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-forward " "policy.at:262" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --remove-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37696,7 +37566,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:264: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-forward " +printf "%s\n" "$at_srcdir/policy.at:264: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-forward " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-forward " "policy.at:264" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37786,7 +37656,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:271: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-egress-zone public " +printf "%s\n" "$at_srcdir/policy.at:271: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-egress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-egress-zone public " "policy.at:271" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37823,7 +37693,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:272: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-egress-zone public " +printf "%s\n" "$at_srcdir/policy.at:272: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-egress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-egress-zone public " "policy.at:272" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37860,7 +37730,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:273: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-egress-zone public " +printf "%s\n" "$at_srcdir/policy.at:273: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-egress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-egress-zone public " "policy.at:273" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37897,7 +37767,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:274: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-egress-zones " +printf "%s\n" "$at_srcdir/policy.at:274: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-egress-zones " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-egress-zones " "policy.at:274" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-egress-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -37986,7 +37856,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:279: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-ingress-zone public " +printf "%s\n" "$at_srcdir/policy.at:279: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-ingress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-ingress-zone public " "policy.at:279" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38023,7 +37893,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:280: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-ingress-zone public " +printf "%s\n" "$at_srcdir/policy.at:280: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-ingress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-ingress-zone public " "policy.at:280" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38060,7 +37930,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:281: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-ingress-zone public " +printf "%s\n" "$at_srcdir/policy.at:281: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-ingress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-ingress-zone public " "policy.at:281" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38097,7 +37967,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:282: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-ingress-zones " +printf "%s\n" "$at_srcdir/policy.at:282: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-ingress-zones " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-ingress-zones " "policy.at:282" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-ingress-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38126,7 +37996,7 @@ at_fn_group_banner 37 'policy.at:286' \ "policy - priority" " " 2 at_xfail=no ( - $as_echo "37. $at_setup_line: testing $at_desc ..." + printf "%s\n" "37. $at_setup_line: testing $at_desc ..." $at_traceon @@ -38144,6 +38014,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -38160,7 +38031,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:286: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:286: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:286" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38174,7 +38045,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:286: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:286: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:286" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38214,7 +38085,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:289: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --add-interface dummy0 " +printf "%s\n" "$at_srcdir/policy.at:289: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --add-interface dummy0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --add-interface dummy0 " "policy.at:289" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38252,7 +38123,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:292: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy worldToHost " +printf "%s\n" "$at_srcdir/policy.at:292: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy worldToHost " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy worldToHost " "policy.at:292" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy worldToHost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38289,7 +38160,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:293: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:293: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --add-ingress-zone ANY " "policy.at:293" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38326,7 +38197,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:294: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:294: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --add-egress-zone HOST " "policy.at:294" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38363,7 +38234,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:295: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -1 " +printf "%s\n" "$at_srcdir/policy.at:295: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -1 " "policy.at:295" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38400,14 +38271,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:296: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --get-priority " +printf "%s\n" "$at_srcdir/policy.at:296: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --get-priority " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --get-priority " "policy.at:296" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-1 +echo >>"$at_stdout"; printf "%s\n" "-1 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:296" @@ -38477,7 +38348,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:336: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 1 " +printf "%s\n" "$at_srcdir/policy.at:336: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 1 " "policy.at:336" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38552,7 +38423,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:374: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy first " +printf "%s\n" "$at_srcdir/policy.at:374: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy first " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy first " "policy.at:374" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy first ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38589,7 +38460,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:375: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy first --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:375: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy first --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy first --add-ingress-zone ANY " "policy.at:375" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy first --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38626,7 +38497,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:376: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy first --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:376: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy first --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy first --add-egress-zone HOST " "policy.at:376" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy first --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38663,7 +38534,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:377: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy second " +printf "%s\n" "$at_srcdir/policy.at:377: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy second " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy second " "policy.at:377" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy second ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38700,7 +38571,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:378: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy second --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:378: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy second --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy second --add-ingress-zone ANY " "policy.at:378" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy second --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38737,7 +38608,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy second --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:379: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy second --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy second --add-egress-zone HOST " "policy.at:379" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy second --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38774,7 +38645,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:380: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy third " +printf "%s\n" "$at_srcdir/policy.at:380: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy third " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy third " "policy.at:380" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy third ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38811,7 +38682,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:381: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy third --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:381: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy third --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy third --add-ingress-zone ANY " "policy.at:381" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy third --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38848,7 +38719,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy third --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:382: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy third --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy third --add-egress-zone HOST " "policy.at:382" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy third --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38885,7 +38756,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:383: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy fourth " +printf "%s\n" "$at_srcdir/policy.at:383: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy fourth " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy fourth " "policy.at:383" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy fourth ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38922,7 +38793,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:384: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fourth --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:384: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fourth --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fourth --add-ingress-zone ANY " "policy.at:384" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fourth --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38959,7 +38830,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:385: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fourth --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:385: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fourth --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fourth --add-egress-zone HOST " "policy.at:385" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fourth --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -38996,7 +38867,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:386: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy fifth " +printf "%s\n" "$at_srcdir/policy.at:386: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy fifth " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy fifth " "policy.at:386" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy fifth ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39033,7 +38904,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:387: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fifth --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:387: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fifth --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fifth --add-ingress-zone ANY " "policy.at:387" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fifth --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39070,7 +38941,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:388: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fifth --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:388: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fifth --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fifth --add-egress-zone HOST " "policy.at:388" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fifth --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39107,7 +38978,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:390: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fourth --set-priority -100 " +printf "%s\n" "$at_srcdir/policy.at:390: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fourth --set-priority -100 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fourth --set-priority -100 " "policy.at:390" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fourth --set-priority -100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39144,7 +39015,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:391: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy second --set-priority -5000 " +printf "%s\n" "$at_srcdir/policy.at:391: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy second --set-priority -5000 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy second --set-priority -5000 " "policy.at:391" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy second --set-priority -5000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39181,7 +39052,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:392: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy first --set-priority -10000 " +printf "%s\n" "$at_srcdir/policy.at:392: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy first --set-priority -10000 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy first --set-priority -10000 " "policy.at:392" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy first --set-priority -10000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39218,7 +39089,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:393: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy third --set-priority -1000 " +printf "%s\n" "$at_srcdir/policy.at:393: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy third --set-priority -1000 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy third --set-priority -1000 " "policy.at:393" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy third --set-priority -1000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39255,7 +39126,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:394: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fifth --set-priority -10 " +printf "%s\n" "$at_srcdir/policy.at:394: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy fifth --set-priority -10 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fifth --set-priority -10 " "policy.at:394" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy fifth --set-priority -10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39330,7 +39201,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:462: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 0 " +printf "%s\n" "$at_srcdir/policy.at:462: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 0 " "policy.at:462" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39366,7 +39237,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:463: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -32769 " +printf "%s\n" "$at_srcdir/policy.at:463: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -32769 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -32769 " "policy.at:463" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -32769 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39403,7 +39274,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:464: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -32768 " +printf "%s\n" "$at_srcdir/policy.at:464: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -32768 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -32768 " "policy.at:464" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority -32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39440,7 +39311,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:465: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 32768 " +printf "%s\n" "$at_srcdir/policy.at:465: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 32768 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 32768 " "policy.at:465" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39477,7 +39348,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:466: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 32767 " +printf "%s\n" "$at_srcdir/policy.at:466: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 32767 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 32767 " "policy.at:466" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy worldToHost --set-priority 32767 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39506,7 +39377,7 @@ at_fn_group_banner 38 'policy.at:470' \ "policy - zones" " " 2 at_xfail=no ( - $as_echo "38. $at_setup_line: testing $at_desc ..." + printf "%s\n" "38. $at_setup_line: testing $at_desc ..." $at_traceon @@ -39524,6 +39395,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -39540,7 +39412,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:470: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:470: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:470" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39554,7 +39426,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:470: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:470: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:470" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39594,7 +39466,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:473: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface=foobar0 " +printf "%s\n" "$at_srcdir/policy.at:473: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface=foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface=foobar0 " "policy.at:473" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39631,7 +39503,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:474: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface=foobar1 " +printf "%s\n" "$at_srcdir/policy.at:474: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface=foobar1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface=foobar1 " "policy.at:474" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39669,7 +39541,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:476: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +printf "%s\n" "$at_srcdir/policy.at:476: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "policy.at:476" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39706,7 +39578,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:477: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-priority -1 " +printf "%s\n" "$at_srcdir/policy.at:477: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-priority -1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-priority -1 " "policy.at:477" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39772,7 +39644,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:481: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:481: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " "policy.at:481" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39809,7 +39681,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:482: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:482: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"HOST\" " "policy.at:482" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39846,7 +39718,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:483: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:483: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " "policy.at:483" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39883,7 +39755,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:484: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:484: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " "policy.at:484" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39920,7 +39792,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:485: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:485: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"HOST\" " "policy.at:485" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39957,7 +39829,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:486: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:486: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " "policy.at:486" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -39994,7 +39866,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:487: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:487: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"ANY\" " "policy.at:487" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40031,7 +39903,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:488: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:488: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " "policy.at:488" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40068,7 +39940,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:489: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:489: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " "policy.at:489" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40105,7 +39977,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:490: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:490: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"ANY\" " "policy.at:490" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40142,7 +40014,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:491: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:491: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " "policy.at:491" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40179,7 +40051,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:492: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:492: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"public\" " "policy.at:492" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40216,7 +40088,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:493: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:493: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"internal\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"internal\" " "policy.at:493" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40253,7 +40125,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:494: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:494: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"internal\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"internal\" " "policy.at:494" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40290,7 +40162,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:495: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:495: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " "policy.at:495" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40327,7 +40199,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:496: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:496: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " "policy.at:496" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40364,7 +40236,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:497: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:497: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"ANY\" " "policy.at:497" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40401,7 +40273,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:498: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:498: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone=\"HOST\" " "policy.at:498" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40438,7 +40310,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:499: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:499: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"public\" " "policy.at:499" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40475,7 +40347,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:500: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:500: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"internal\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"internal\" " "policy.at:500" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40773,7 +40645,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:523: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:523: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " "policy.at:523" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40810,7 +40682,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:524: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:524: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " "policy.at:524" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40847,7 +40719,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:525: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:525: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " "policy.at:525" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40884,7 +40756,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:526: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:526: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"HOST\" " "policy.at:526" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40921,7 +40793,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:527: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:527: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " "policy.at:527" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40958,7 +40830,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:528: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:528: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " "policy.at:528" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -40995,7 +40867,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:529: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:529: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " "policy.at:529" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41032,7 +40904,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:530: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:530: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"ANY\" " "policy.at:530" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41069,7 +40941,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:531: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:531: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " "policy.at:531" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41106,7 +40978,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:532: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:532: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"internal\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"internal\" " "policy.at:532" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41143,7 +41015,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:533: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:533: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " "policy.at:533" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41180,7 +41052,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:534: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:534: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " "policy.at:534" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41217,7 +41089,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:535: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:535: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"public\" " "policy.at:535" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41254,7 +41126,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:536: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:536: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"internal\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"internal\" " "policy.at:536" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41474,7 +41346,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:553: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:553: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"ANY\" " "policy.at:553" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41511,7 +41383,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:554: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:554: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"ANY\" " "policy.at:554" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41548,7 +41420,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:555: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:555: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"ANY\" " "policy.at:555" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41585,7 +41457,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:556: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:556: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"ANY\" " "policy.at:556" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41622,7 +41494,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:557: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:557: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"ANY\" " "policy.at:557" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41659,7 +41531,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:558: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:558: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"ANY\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"ANY\" " "policy.at:558" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41775,7 +41647,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:567: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:567: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " "policy.at:567" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41812,7 +41684,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:568: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:568: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"public\" " "policy.at:568" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41849,7 +41721,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:569: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:569: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"public\" " "policy.at:569" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41886,7 +41758,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:570: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:570: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone=\"public\" " "policy.at:570" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41923,7 +41795,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:571: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:571: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"public\" " "policy.at:571" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -41960,7 +41832,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:572: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:572: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone=\"public\" " "policy.at:572" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42076,7 +41948,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:581: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:581: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"HOST\" " "policy.at:581" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42113,7 +41985,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:582: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:582: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"HOST\" " "policy.at:582" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42150,7 +42022,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:583: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:583: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"HOST\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"HOST\" " "policy.at:583" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42227,7 +42099,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:589: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"does_not_exist\" " +printf "%s\n" "$at_srcdir/policy.at:589: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"does_not_exist\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"does_not_exist\" " "policy.at:589" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="does_not_exist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42264,7 +42136,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:590: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"does_not_exist\" " +printf "%s\n" "$at_srcdir/policy.at:590: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"does_not_exist\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"does_not_exist\" " "policy.at:590" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="does_not_exist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42328,7 +42200,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:597: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:597: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone=\"public\" " "policy.at:597" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42415,7 +42287,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:668: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:668: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"internal\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone=\"internal\" " "policy.at:668" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42502,7 +42374,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:748: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:748: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"public\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone=\"public\" " "policy.at:748" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42581,7 +42453,7 @@ at_fn_group_banner 39 'policy.at:822' \ "policy - dispatch" " " 2 at_xfail=no ( - $as_echo "39. $at_setup_line: testing $at_desc ..." + printf "%s\n" "39. $at_setup_line: testing $at_desc ..." $at_traceon @@ -42599,6 +42471,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -42615,7 +42488,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:822: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:822: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:822" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42629,7 +42502,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:822: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:822: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:822" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42669,7 +42542,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:825: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface=foobar0 " +printf "%s\n" "$at_srcdir/policy.at:825: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface=foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface=foobar0 " "policy.at:825" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42706,7 +42579,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:826: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface=foobar1 " +printf "%s\n" "$at_srcdir/policy.at:826: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface=foobar1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface=foobar1 " "policy.at:826" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42744,7 +42617,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:828: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +printf "%s\n" "$at_srcdir/policy.at:828: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "policy.at:828" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -42781,7 +42654,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:829: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-priority -1 " +printf "%s\n" "$at_srcdir/policy.at:829: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-priority -1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-priority -1 " "policy.at:829" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -44803,11 +44676,11 @@ $at_traceon; } read at_status <"$at_status_file" #AT_STOP_39 #AT_START_40 -at_fn_group_banner 40 'policy.at:5351' \ +at_fn_group_banner 40 'policy.at:5352' \ "policy - interfaces/sources" " " 2 at_xfail=no ( - $as_echo "40. $at_setup_line: testing $at_desc ..." + printf "%s\n" "40. $at_setup_line: testing $at_desc ..." $at_traceon @@ -44825,6 +44698,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -44841,29 +44715,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:5351: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:5352: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5352" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:5351: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:5352: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:5352" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } @@ -44895,15 +44769,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:5354: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "policy.at:5354" +printf "%s\n" "$at_srcdir/policy.at:5355: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "policy.at:5355" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5354" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5355" $at_failed && at_fn_log_failure $at_traceon; } @@ -44932,15 +44806,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:5355: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone internal " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone internal " "policy.at:5355" +printf "%s\n" "$at_srcdir/policy.at:5356: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone internal " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone internal " "policy.at:5356" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5355" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5356" $at_failed && at_fn_log_failure $at_traceon; } @@ -44969,15 +44843,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:5356: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 " "policy.at:5356" +printf "%s\n" "$at_srcdir/policy.at:5357: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 " "policy.at:5357" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5356" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5357" $at_failed && at_fn_log_failure $at_traceon; } @@ -45006,15 +44880,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:5357: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone public " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone public " "policy.at:5357" +printf "%s\n" "$at_srcdir/policy.at:5358: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone public " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone public " "policy.at:5358" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5357" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5358" $at_failed && at_fn_log_failure $at_traceon; } @@ -45297,11 +45171,11 @@ $at_traceon; } read at_status <"$at_status_file" #AT_STOP_40 #AT_START_41 -at_fn_group_banner 41 'policy.at:6072' \ +at_fn_group_banner 41 'policy.at:6073' \ "policy - target" " " 2 at_xfail=no ( - $as_echo "41. $at_setup_line: testing $at_desc ..." + printf "%s\n" "41. $at_setup_line: testing $at_desc ..." $at_traceon @@ -45319,6 +45193,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -45335,29 +45210,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:6072: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6072" +printf "%s\n" "$at_srcdir/policy.at:6073: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6073" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:6072: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6072" +printf "%s\n" "$at_srcdir/policy.at:6073: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6073" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } @@ -45389,15 +45264,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6075: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "policy.at:6075" +printf "%s\n" "$at_srcdir/policy.at:6076: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "policy.at:6076" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6075" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6076" $at_failed && at_fn_log_failure $at_traceon; } @@ -45427,15 +45302,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6077: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=CONTINUE " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=CONTINUE " "policy.at:6077" +printf "%s\n" "$at_srcdir/policy.at:6078: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=CONTINUE " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=CONTINUE " "policy.at:6078" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=CONTINUE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6077" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6078" $at_failed && at_fn_log_failure $at_traceon; } @@ -45464,15 +45339,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6078: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=ACCEPT " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=ACCEPT " "policy.at:6078" +printf "%s\n" "$at_srcdir/policy.at:6079: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=ACCEPT " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=ACCEPT " "policy.at:6079" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6078" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6079" $at_failed && at_fn_log_failure $at_traceon; } @@ -45501,15 +45376,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6079: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=DROP " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=DROP " "policy.at:6079" +printf "%s\n" "$at_srcdir/policy.at:6080: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=DROP " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=DROP " "policy.at:6080" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6079" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6080" $at_failed && at_fn_log_failure $at_traceon; } @@ -45538,15 +45413,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6080: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=REJECT " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=REJECT " "policy.at:6080" +printf "%s\n" "$at_srcdir/policy.at:6081: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=REJECT " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=REJECT " "policy.at:6081" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=REJECT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6080" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6081" $at_failed && at_fn_log_failure $at_traceon; } @@ -45575,15 +45450,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6081: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=DENY " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=DENY " "policy.at:6081" +printf "%s\n" "$at_srcdir/policy.at:6082: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=DENY " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=DENY " "policy.at:6082" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=DENY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6081" +at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6082" $at_failed && at_fn_log_failure $at_traceon; } @@ -45612,15 +45487,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6082: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=default " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=default " "policy.at:6082" +printf "%s\n" "$at_srcdir/policy.at:6083: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=default " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=default " "policy.at:6083" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6082" +at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6083" $at_failed && at_fn_log_failure $at_traceon; } @@ -45650,15 +45525,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6085: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=ACCEPT " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=ACCEPT " "policy.at:6085" +printf "%s\n" "$at_srcdir/policy.at:6086: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=ACCEPT " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=ACCEPT " "policy.at:6086" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6085" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6086" $at_failed && at_fn_log_failure $at_traceon; } @@ -45687,15 +45562,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6086: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone internal " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone internal " "policy.at:6086" +printf "%s\n" "$at_srcdir/policy.at:6087: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone internal " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone internal " "policy.at:6087" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6086" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6087" $at_failed && at_fn_log_failure $at_traceon; } @@ -45724,15 +45599,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6087: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 " "policy.at:6087" +printf "%s\n" "$at_srcdir/policy.at:6088: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 " "policy.at:6088" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6087" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6088" $at_failed && at_fn_log_failure $at_traceon; } @@ -45761,15 +45636,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6088: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone HOST " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone HOST " "policy.at:6088" +printf "%s\n" "$at_srcdir/policy.at:6089: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone HOST " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone HOST " "policy.at:6089" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6088" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6089" $at_failed && at_fn_log_failure $at_traceon; } @@ -45823,11 +45698,11 @@ $at_traceon; } read at_status <"$at_status_file" #AT_STOP_41 #AT_START_42 -at_fn_group_banner 42 'policy.at:6121' \ +at_fn_group_banner 42 'policy.at:6122' \ "policy - from file" " " 2 at_xfail=no ( - $as_echo "42. $at_setup_line: testing $at_desc ..." + printf "%s\n" "42. $at_setup_line: testing $at_desc ..." $at_traceon @@ -45845,6 +45720,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -45861,29 +45737,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:6121: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6121" +printf "%s\n" "$at_srcdir/policy.at:6122: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6122" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:6121: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6121" +printf "%s\n" "$at_srcdir/policy.at:6122: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6122" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } @@ -45915,15 +45791,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6124: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-protocol ipv6-icmp " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-protocol ipv6-icmp " "policy.at:6124" +printf "%s\n" "$at_srcdir/policy.at:6125: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-protocol ipv6-icmp " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-protocol ipv6-icmp " "policy.at:6125" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --add-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6124" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6125" $at_failed && at_fn_log_failure $at_traceon; } @@ -45932,15 +45808,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6125: ls \"./policies/allow-host-ipv6.xml\"" -at_fn_check_prepare_trace "policy.at:6125" +printf "%s\n" "$at_srcdir/policy.at:6126: ls \"./policies/allow-host-ipv6.xml\"" +at_fn_check_prepare_trace "policy.at:6126" ( $at_check_trace; ls "./policies/allow-host-ipv6.xml" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6125" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6126" $at_failed && at_fn_log_failure $at_traceon; } @@ -45965,15 +45841,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6126: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy-from-file \"./policies/allow-host-ipv6.xml\" --name my-allow-host-ipv6 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy-from-file \"./policies/allow-host-ipv6.xml\" --name my-allow-host-ipv6 " "policy.at:6126" +printf "%s\n" "$at_srcdir/policy.at:6127: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy-from-file \"./policies/allow-host-ipv6.xml\" --name my-allow-host-ipv6 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy-from-file \"./policies/allow-host-ipv6.xml\" --name my-allow-host-ipv6 " "policy.at:6127" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy-from-file "./policies/allow-host-ipv6.xml" --name my-allow-host-ipv6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6126" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6127" $at_failed && at_fn_log_failure $at_traceon; } @@ -45982,15 +45858,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6127: ls \"./policies/my-allow-host-ipv6.xml\"" -at_fn_check_prepare_trace "policy.at:6127" +printf "%s\n" "$at_srcdir/policy.at:6128: ls \"./policies/my-allow-host-ipv6.xml\"" +at_fn_check_prepare_trace "policy.at:6128" ( $at_check_trace; ls "./policies/my-allow-host-ipv6.xml" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6127" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6128" $at_failed && at_fn_log_failure $at_traceon; } @@ -46015,17 +45891,17 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6128: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-policies " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-policies " "policy.at:6128" +printf "%s\n" "$at_srcdir/policy.at:6129: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-policies " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-policies " "policy.at:6129" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 my-allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 my-allow-host-ipv6 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6128" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6129" $at_failed && at_fn_log_failure $at_traceon; } @@ -46083,11 +45959,11 @@ $at_traceon; } read at_status <"$at_status_file" #AT_STOP_42 #AT_START_43 -at_fn_group_banner 43 'policy.at:6138' \ +at_fn_group_banner 43 'policy.at:6139' \ "policy - zone drifting not allowed" " " 2 at_xfail=no ( - $as_echo "43. $at_setup_line: testing $at_desc ..." + printf "%s\n" "43. $at_setup_line: testing $at_desc ..." $at_traceon @@ -46105,6 +45981,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -46121,29 +45998,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:6138: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6138" +printf "%s\n" "$at_srcdir/policy.at:6139: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6139" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:6138: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6138" +printf "%s\n" "$at_srcdir/policy.at:6139: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6139" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } @@ -46175,15 +46052,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone external --add-interface dummy0 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone external --add-interface dummy0 " "policy.at:6141" +printf "%s\n" "$at_srcdir/policy.at:6142: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone external --add-interface dummy0 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone external --add-interface dummy0 " "policy.at:6142" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone external --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6141" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6142" $at_failed && at_fn_log_failure $at_traceon; } @@ -46212,15 +46089,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6142: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-source 10.0.0.0/8 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-source 10.0.0.0/8 " "policy.at:6142" +printf "%s\n" "$at_srcdir/policy.at:6143: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-source 10.0.0.0/8 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-source 10.0.0.0/8 " "policy.at:6143" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-source 10.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6142" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6143" $at_failed && at_fn_log_failure $at_traceon; } @@ -46249,15 +46126,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6143: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --add-source 10.10.0.0/16 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --add-source 10.10.0.0/16 " "policy.at:6143" +printf "%s\n" "$at_srcdir/policy.at:6144: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone public --add-source 10.10.0.0/16 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --add-source 10.10.0.0/16 " "policy.at:6144" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone public --add-source 10.10.0.0/16 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6143" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6144" $at_failed && at_fn_log_failure $at_traceon; } @@ -46286,15 +46163,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6144: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone trusted --add-source 10.10.10.0/24 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone trusted --add-source 10.10.10.0/24 " "policy.at:6144" +printf "%s\n" "$at_srcdir/policy.at:6145: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone trusted --add-source 10.10.10.0/24 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone trusted --add-source 10.10.10.0/24 " "policy.at:6145" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone trusted --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6144" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6145" $at_failed && at_fn_log_failure $at_traceon; } @@ -46324,15 +46201,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6147: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-1 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-1 " "policy.at:6147" +printf "%s\n" "$at_srcdir/policy.at:6148: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-1 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-1 " "policy.at:6148" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6147" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6148" $at_failed && at_fn_log_failure $at_traceon; } @@ -46361,15 +46238,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6148: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-ingress-zone internal " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-ingress-zone internal " "policy.at:6148" +printf "%s\n" "$at_srcdir/policy.at:6149: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-ingress-zone internal " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-ingress-zone internal " "policy.at:6149" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6148" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6149" $at_failed && at_fn_log_failure $at_traceon; } @@ -46398,15 +46275,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6149: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-ingress-zone trusted " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-ingress-zone trusted " "policy.at:6149" +printf "%s\n" "$at_srcdir/policy.at:6150: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-ingress-zone trusted " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-ingress-zone trusted " "policy.at:6150" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-ingress-zone trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6149" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6150" $at_failed && at_fn_log_failure $at_traceon; } @@ -46435,15 +46312,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6150: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-egress-zone external " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-egress-zone external " "policy.at:6150" +printf "%s\n" "$at_srcdir/policy.at:6151: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-egress-zone external " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-egress-zone external " "policy.at:6151" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-1 --add-egress-zone external ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6150" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6151" $at_failed && at_fn_log_failure $at_traceon; } @@ -46473,15 +46350,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6152: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-2 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-2 " "policy.at:6152" +printf "%s\n" "$at_srcdir/policy.at:6153: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-2 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-2 " "policy.at:6153" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6152" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6153" $at_failed && at_fn_log_failure $at_traceon; } @@ -46510,15 +46387,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6153: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-2 --add-ingress-zone public " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-2 --add-ingress-zone public " "policy.at:6153" +printf "%s\n" "$at_srcdir/policy.at:6154: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-2 --add-ingress-zone public " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-2 --add-ingress-zone public " "policy.at:6154" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-2 --add-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6153" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6154" $at_failed && at_fn_log_failure $at_traceon; } @@ -46547,15 +46424,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6154: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-2 --add-egress-zone external " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-2 --add-egress-zone external " "policy.at:6154" +printf "%s\n" "$at_srcdir/policy.at:6155: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-2 --add-egress-zone external " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-2 --add-egress-zone external " "policy.at:6155" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-2 --add-egress-zone external ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6154" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6155" $at_failed && at_fn_log_failure $at_traceon; } @@ -46585,15 +46462,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6156: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-3 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-3 " "policy.at:6156" +printf "%s\n" "$at_srcdir/policy.at:6157: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-3 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-3 " "policy.at:6157" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy policy-3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6156" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6157" $at_failed && at_fn_log_failure $at_traceon; } @@ -46622,15 +46499,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6157: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --set-priority 10 " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --set-priority 10 " "policy.at:6157" +printf "%s\n" "$at_srcdir/policy.at:6158: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --set-priority 10 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --set-priority 10 " "policy.at:6158" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --set-priority 10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6157" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6158" $at_failed && at_fn_log_failure $at_traceon; } @@ -46659,15 +46536,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6158: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --add-ingress-zone trusted " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --add-ingress-zone trusted " "policy.at:6158" +printf "%s\n" "$at_srcdir/policy.at:6159: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --add-ingress-zone trusted " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --add-ingress-zone trusted " "policy.at:6159" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --add-ingress-zone trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6158" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6159" $at_failed && at_fn_log_failure $at_traceon; } @@ -46696,15 +46573,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6159: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --add-egress-zone external " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --add-egress-zone external " "policy.at:6159" +printf "%s\n" "$at_srcdir/policy.at:6160: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --add-egress-zone external " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --add-egress-zone external " "policy.at:6160" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy policy-3 --add-egress-zone external ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6159" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6160" $at_failed && at_fn_log_failure $at_traceon; } @@ -46760,11 +46637,11 @@ $at_traceon; } read at_status <"$at_status_file" #AT_STOP_43 #AT_START_44 -at_fn_group_banner 44 'policy.at:6300' \ +at_fn_group_banner 44 'policy.at:6301' \ "policy - multiple using same zone source" " " 2 at_xfail=no ( - $as_echo "44. $at_setup_line: testing $at_desc ..." + printf "%s\n" "44. $at_setup_line: testing $at_desc ..." $at_traceon @@ -46782,6 +46659,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -46798,29 +46676,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:6300: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6300" +printf "%s\n" "$at_srcdir/policy.at:6301: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6301" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:6300: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6300" +printf "%s\n" "$at_srcdir/policy.at:6301: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6301" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } @@ -46852,15 +46730,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6303: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy foobar " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy foobar " "policy.at:6303" +printf "%s\n" "$at_srcdir/policy.at:6304: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy foobar " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy foobar " "policy.at:6304" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6303" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6304" $at_failed && at_fn_log_failure $at_traceon; } @@ -46889,15 +46767,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6304: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone ANY " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone ANY " "policy.at:6304" +printf "%s\n" "$at_srcdir/policy.at:6305: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone ANY " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone ANY " "policy.at:6305" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6304" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6305" $at_failed && at_fn_log_failure $at_traceon; } @@ -46926,15 +46804,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6305: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone internal " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone internal " "policy.at:6305" +printf "%s\n" "$at_srcdir/policy.at:6306: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone internal " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone internal " "policy.at:6306" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6305" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6306" $at_failed && at_fn_log_failure $at_traceon; } @@ -46963,15 +46841,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6306: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy raboof " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy raboof " "policy.at:6306" +printf "%s\n" "$at_srcdir/policy.at:6307: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy raboof " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy raboof " "policy.at:6307" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy raboof ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6306" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6307" $at_failed && at_fn_log_failure $at_traceon; } @@ -47000,15 +46878,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6307: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy raboof --add-ingress-zone internal " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy raboof --add-ingress-zone internal " "policy.at:6307" +printf "%s\n" "$at_srcdir/policy.at:6308: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy raboof --add-ingress-zone internal " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy raboof --add-ingress-zone internal " "policy.at:6308" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy raboof --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6307" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6308" $at_failed && at_fn_log_failure $at_traceon; } @@ -47037,15 +46915,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/policy.at:6308: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy raboof --add-egress-zone ANY " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy raboof --add-egress-zone ANY " "policy.at:6308" +printf "%s\n" "$at_srcdir/policy.at:6309: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy raboof --add-egress-zone ANY " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy raboof --add-egress-zone ANY " "policy.at:6309" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy raboof --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6308" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6309" $at_failed && at_fn_log_failure $at_traceon; } @@ -47121,7 +46999,7 @@ at_fn_group_banner 45 'services.at:1' \ "services" " " 2 at_xfail=no ( - $as_echo "45. $at_setup_line: testing $at_desc ..." + printf "%s\n" "45. $at_setup_line: testing $at_desc ..." $at_traceon @@ -47139,6 +47017,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -47155,7 +47034,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/services.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/services.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47169,7 +47048,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/services.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/services.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "services.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47209,7 +47088,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +printf "%s\n" "$at_srcdir/services.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "services.at:4" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47246,7 +47125,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/services.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " "services.at:5" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47283,7 +47162,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/services.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " "services.at:6" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47321,7 +47200,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-service ssh " +printf "%s\n" "$at_srcdir/services.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-service ssh " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-service ssh " "services.at:10" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47358,7 +47237,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +printf "%s\n" "$at_srcdir/services.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " "services.at:11" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47395,7 +47274,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-service ssh " +printf "%s\n" "$at_srcdir/services.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-service ssh " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-service ssh " "services.at:12" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47432,7 +47311,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +printf "%s\n" "$at_srcdir/services.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " "services.at:13" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47533,7 +47412,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:32: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-service-from-policy ssh " +printf "%s\n" "$at_srcdir/services.at:32: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-service-from-policy ssh " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-service-from-policy ssh " "services.at:32" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-service-from-policy ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47571,7 +47450,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:37: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +printf "%s\n" "$at_srcdir/services.at:37: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " "services.at:37" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47608,7 +47487,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:38: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-service ssh " +printf "%s\n" "$at_srcdir/services.at:38: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-service ssh " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-service ssh " "services.at:38" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47645,7 +47524,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +printf "%s\n" "$at_srcdir/services.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " "services.at:39" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47737,7 +47616,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:90: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-service does-not-exist " +printf "%s\n" "$at_srcdir/services.at:90: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-service does-not-exist " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-service does-not-exist " "services.at:90" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-service does-not-exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47788,7 +47667,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/services.at:94: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-interface raboof0 --add-service ssh " +printf "%s\n" "$at_srcdir/services.at:94: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-interface raboof0 --add-service ssh " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-interface raboof0 --add-service ssh " "services.at:94" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-interface raboof0 --add-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47830,7 +47709,7 @@ at_fn_group_banner 46 'ports.at:1' \ "ports" " " 2 at_xfail=no ( - $as_echo "46. $at_setup_line: testing $at_desc ..." + printf "%s\n" "46. $at_setup_line: testing $at_desc ..." $at_traceon @@ -47848,6 +47727,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -47864,7 +47744,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47878,7 +47758,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "ports.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47918,7 +47798,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +printf "%s\n" "$at_srcdir/ports.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "ports.at:4" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47955,7 +47835,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/ports.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " "ports.at:5" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -47992,7 +47872,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/ports.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " "ports.at:6" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48030,7 +47910,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/tcp " +printf "%s\n" "$at_srcdir/ports.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/tcp " "ports.at:9" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48067,7 +47947,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/udp " "ports.at:10" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48104,7 +47984,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 4321/udp " +printf "%s\n" "$at_srcdir/ports.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 4321/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 4321/udp " "ports.at:11" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48141,7 +48021,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/ports.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 protocol=udp accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 protocol=udp accept' " "ports.at:12" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48178,7 +48058,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/tcp " +printf "%s\n" "$at_srcdir/ports.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/tcp " "ports.at:13" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48215,7 +48095,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/udp " "ports.at:14" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48252,7 +48132,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 4321/udp " +printf "%s\n" "$at_srcdir/ports.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 4321/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 4321/udp " "ports.at:15" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48289,7 +48169,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/ports.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' " "ports.at:16" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48415,7 +48295,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 1234/tcp " +printf "%s\n" "$at_srcdir/ports.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 1234/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 1234/tcp " "ports.at:44" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48452,7 +48332,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:45: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/tcp " +printf "%s\n" "$at_srcdir/ports.at:45: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/tcp " "ports.at:45" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48489,7 +48369,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/udp " "ports.at:46" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48526,7 +48406,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 1234/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 1234/udp " "ports.at:47" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48563,7 +48443,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:48: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 4321/udp " +printf "%s\n" "$at_srcdir/ports.at:48: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 4321/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 4321/udp " "ports.at:48" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48600,7 +48480,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:49: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/ports.at:49: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' " "ports.at:49" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48718,7 +48598,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:93: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234 " +printf "%s\n" "$at_srcdir/ports.at:93: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234 " "ports.at:93" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48768,7 +48648,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:95: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 123443/tcp " +printf "%s\n" "$at_srcdir/ports.at:95: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 123443/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 123443/tcp " "ports.at:95" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 123443/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48818,7 +48698,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:97: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/bogus " +printf "%s\n" "$at_srcdir/ports.at:97: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/bogus " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/bogus " "ports.at:97" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-port 1234/bogus ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48869,7 +48749,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:100: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 accept' " +printf "%s\n" "$at_srcdir/ports.at:100: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 accept' " "ports.at:100" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48919,7 +48799,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:102: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' " +printf "%s\n" "$at_srcdir/ports.at:102: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' " "ports.at:102" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -48969,7 +48849,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ports.at:104: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' " +printf "%s\n" "$at_srcdir/ports.at:104: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' " "ports.at:104" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49011,7 +48891,7 @@ at_fn_group_banner 47 'source_ports.at:1' \ "source ports" " " 2 at_xfail=no ( - $as_echo "47. $at_setup_line: testing $at_desc ..." + printf "%s\n" "47. $at_setup_line: testing $at_desc ..." $at_traceon @@ -49029,6 +48909,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -49045,7 +48926,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/source_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/source_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49059,7 +48940,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/source_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/source_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "source_ports.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49099,7 +48980,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +printf "%s\n" "$at_srcdir/source_ports.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "source_ports.at:4" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49136,7 +49017,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/source_ports.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " "source_ports.at:5" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49173,7 +49054,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/source_ports.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " "source_ports.at:6" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49211,7 +49092,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/tcp " "source_ports.at:9" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49248,7 +49129,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/udp " "source_ports.at:10" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49285,7 +49166,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 4321/udp " +printf "%s\n" "$at_srcdir/source_ports.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 4321/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 4321/udp " "source_ports.at:11" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49322,7 +49203,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=udp accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=udp accept' " "source_ports.at:12" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49359,7 +49240,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/tcp " "source_ports.at:13" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49396,7 +49277,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/udp " "source_ports.at:14" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49433,7 +49314,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 4321/udp " +printf "%s\n" "$at_srcdir/source_ports.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 4321/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 4321/udp " "source_ports.at:15" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49470,7 +49351,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' " "source_ports.at:16" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49596,7 +49477,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 1234/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 1234/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 1234/tcp " "source_ports.at:44" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49633,7 +49514,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:45: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:45: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/tcp " "source_ports.at:45" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49670,7 +49551,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/udp " "source_ports.at:46" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49707,7 +49588,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 1234/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 1234/udp " "source_ports.at:47" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49744,7 +49625,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:48: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 4321/udp " +printf "%s\n" "$at_srcdir/source_ports.at:48: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 4321/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 4321/udp " "source_ports.at:48" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-source-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49781,7 +49662,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:49: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:49: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' " "source_ports.at:49" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49899,7 +49780,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:93: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234 " +printf "%s\n" "$at_srcdir/source_ports.at:93: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234 " "source_ports.at:93" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49949,7 +49830,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:95: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 123443/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:95: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 123443/tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 123443/tcp " "source_ports.at:95" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 123443/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -49999,7 +49880,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:97: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/bogus " +printf "%s\n" "$at_srcdir/source_ports.at:97: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/bogus " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/bogus " "source_ports.at:97" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-source-port 1234/bogus ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50050,7 +49931,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:100: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 accept' " +printf "%s\n" "$at_srcdir/source_ports.at:100: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 accept' " "source_ports.at:100" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50100,7 +49981,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:102: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:102: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' " "source_ports.at:102" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50150,7 +50031,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/source_ports.at:104: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' " +printf "%s\n" "$at_srcdir/source_ports.at:104: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' " "source_ports.at:104" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50192,7 +50073,7 @@ at_fn_group_banner 48 'forward_ports.at:1' \ "forward ports" " " 2 at_xfail=no ( - $as_echo "48. $at_setup_line: testing $at_desc ..." + printf "%s\n" "48. $at_setup_line: testing $at_desc ..." $at_traceon @@ -50210,6 +50091,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -50226,7 +50108,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/forward_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50240,7 +50122,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/forward_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "forward_ports.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50280,7 +50162,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +printf "%s\n" "$at_srcdir/forward_ports.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "forward_ports.at:4" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50317,7 +50199,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " "forward_ports.at:5" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50354,7 +50236,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY " "forward_ports.at:6" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50392,7 +50274,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " "forward_ports.at:9" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50431,7 +50313,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +printf "%s\n" "$at_srcdir/forward_ports.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " "forward_ports.at:10" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50470,7 +50352,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " "forward_ports.at:13" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50507,7 +50389,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " "forward_ports.at:14" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50546,7 +50428,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +printf "%s\n" "$at_srcdir/forward_ports.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " "forward_ports.at:15" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50585,7 +50467,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:18: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:18: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " "forward_ports.at:18" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50702,7 +50584,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:41: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:41: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " "forward_ports.at:41" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50739,7 +50621,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:42: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:42: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " "forward_ports.at:42" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50778,7 +50660,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:43: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +printf "%s\n" "$at_srcdir/forward_ports.at:43: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " "forward_ports.at:43" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50817,7 +50699,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " "forward_ports.at:46" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50913,7 +50795,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:88: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port 1234 " +printf "%s\n" "$at_srcdir/forward_ports.at:88: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port 1234 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port 1234 " "forward_ports.at:88" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -50963,7 +50845,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:90: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcp " +printf "%s\n" "$at_srcdir/forward_ports.at:90: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcp " "forward_ports.at:90" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51013,7 +50895,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:92: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 " +printf "%s\n" "$at_srcdir/forward_ports.at:92: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 " "forward_ports.at:92" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51063,7 +50945,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:94: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:94: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 " "forward_ports.at:94" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51114,7 +50996,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:97: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' " +printf "%s\n" "$at_srcdir/forward_ports.at:97: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' " "forward_ports.at:97" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51164,7 +51046,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:99: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' " +printf "%s\n" "$at_srcdir/forward_ports.at:99: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' " "forward_ports.at:99" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51214,7 +51096,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:101: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' " +printf "%s\n" "$at_srcdir/forward_ports.at:101: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' " "forward_ports.at:101" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51264,7 +51146,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:103: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' " +printf "%s\n" "$at_srcdir/forward_ports.at:103: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' " "forward_ports.at:103" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51315,7 +51197,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:106: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:106: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY " "forward_ports.at:106" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51366,7 +51248,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:110: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:110: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " "forward_ports.at:110" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51403,7 +51285,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:111: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:111: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " "forward_ports.at:111" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51440,7 +51322,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:112: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:112: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " "forward_ports.at:112" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51477,7 +51359,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:113: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:113: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " "forward_ports.at:113" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51514,7 +51396,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:114: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:114: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " "forward_ports.at:114" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51625,7 +51507,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:138: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:138: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " "forward_ports.at:138" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51662,7 +51544,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:139: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:139: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " "forward_ports.at:139" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51699,7 +51581,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:140: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:140: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 " "forward_ports.at:140" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51736,7 +51618,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " "forward_ports.at:141" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51773,7 +51655,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:142: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:142: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST " "forward_ports.at:142" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51876,7 +51758,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:150: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:150: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY " "forward_ports.at:150" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51913,7 +51795,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:151: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:151: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " "forward_ports.at:151" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -51950,7 +51832,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:152: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:152: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " "forward_ports.at:152" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52027,7 +51909,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:157: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:157: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " "forward_ports.at:157" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52064,7 +51946,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:158: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:158: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY " "forward_ports.at:158" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52128,7 +52010,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:163: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 " +printf "%s\n" "$at_srcdir/forward_ports.at:163: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 " "forward_ports.at:163" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52165,7 +52047,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:164: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone internal " +printf "%s\n" "$at_srcdir/forward_ports.at:164: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone internal " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone internal " "forward_ports.at:164" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52202,7 +52084,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:165: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:165: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " "forward_ports.at:165" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52239,7 +52121,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:166: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:166: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " "forward_ports.at:166" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52276,7 +52158,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:167: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:167: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " "forward_ports.at:167" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52313,7 +52195,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:168: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:168: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " "forward_ports.at:168" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52429,7 +52311,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:176: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --remove-interface foobar0 " +printf "%s\n" "$at_srcdir/forward_ports.at:176: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --remove-interface foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --remove-interface foobar0 " "forward_ports.at:176" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52480,7 +52362,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:181: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/forward_ports.at:181: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-source 10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-source 10.10.10.0/24 " "forward_ports.at:181" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52517,7 +52399,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:182: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:182: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " "forward_ports.at:182" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52554,7 +52436,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:183: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:183: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " "forward_ports.at:183" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52591,7 +52473,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:184: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:184: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " "forward_ports.at:184" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52628,7 +52510,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:185: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:185: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " "forward_ports.at:185" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52728,7 +52610,7 @@ at_fn_group_banner 49 'forward_ports.at:207' \ "forward ports (OUTPUT)" " " 2 at_xfail=no ( - $as_echo "49. $at_setup_line: testing $at_desc ..." + printf "%s\n" "49. $at_setup_line: testing $at_desc ..." $at_traceon @@ -52746,6 +52628,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -52762,7 +52645,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/forward_ports.at:207: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:207: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:207" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52776,7 +52659,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/forward_ports.at:207: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:207: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "forward_ports.at:207" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52816,7 +52699,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:210: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +printf "%s\n" "$at_srcdir/forward_ports.at:210: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "forward_ports.at:210" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52853,7 +52736,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone localhost " +printf "%s\n" "$at_srcdir/forward_ports.at:211: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone localhost " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone localhost " "forward_ports.at:211" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52919,7 +52802,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:217: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:217: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone HOST " "forward_ports.at:217" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52956,7 +52839,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:218: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:218: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone ANY " "forward_ports.at:218" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -52993,7 +52876,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:219: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:219: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " "forward_ports.at:219" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53030,7 +52913,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:220: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:220: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " "forward_ports.at:220" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53067,7 +52950,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:221: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:221: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " "forward_ports.at:221" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53104,7 +52987,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:222: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:222: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " "forward_ports.at:222" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53226,7 +53109,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:242: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:242: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-ingress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-ingress-zone HOST " "forward_ports.at:242" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53263,7 +53146,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:243: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:243: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-egress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-egress-zone ANY " "forward_ports.at:243" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53327,7 +53210,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:250: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone localhost --add-source 127.0.0.0/8 " +printf "%s\n" "$at_srcdir/forward_ports.at:250: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone localhost --add-source 127.0.0.0/8 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone localhost --add-source 127.0.0.0/8 " "forward_ports.at:250" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone localhost --add-source 127.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53364,7 +53247,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:251: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:251: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone HOST " "forward_ports.at:251" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53401,7 +53284,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:252: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone localhost " +printf "%s\n" "$at_srcdir/forward_ports.at:252: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone localhost " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone localhost " "forward_ports.at:252" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-egress-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53438,7 +53321,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:253: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:253: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " "forward_ports.at:253" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53475,7 +53358,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:254: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:254: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " "forward_ports.at:254" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53512,7 +53395,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:255: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:255: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " "forward_ports.at:255" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53549,7 +53432,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:256: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:256: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " "forward_ports.at:256" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53684,7 +53567,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:277: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone localhost --remove-source 127.0.0.0/8 " +printf "%s\n" "$at_srcdir/forward_ports.at:277: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone localhost --remove-source 127.0.0.0/8 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone localhost --remove-source 127.0.0.0/8 " "forward_ports.at:277" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone localhost --remove-source 127.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53721,7 +53604,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:278: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:278: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-ingress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-ingress-zone HOST " "forward_ports.at:278" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53758,7 +53641,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/forward_ports.at:279: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-egress-zone localhost " +printf "%s\n" "$at_srcdir/forward_ports.at:279: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-egress-zone localhost " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-egress-zone localhost " "forward_ports.at:279" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-egress-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53826,7 +53709,7 @@ at_fn_group_banner 50 'forward_ports.at:287' \ "forward ports - logging and limiting" " " 2 at_xfail=no ( - $as_echo "50. $at_setup_line: testing $at_desc ..." + printf "%s\n" "50. $at_setup_line: testing $at_desc ..." $at_traceon @@ -53844,6 +53727,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -53860,7 +53744,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/forward_ports.at:287: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:287: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:287" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53874,7 +53758,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/forward_ports.at:287: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:287: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "forward_ports.at:287" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -53985,7 +53869,7 @@ at_fn_group_banner 51 'masquerade.at:1' \ "masquerade" " " 2 at_xfail=no ( - $as_echo "51. $at_setup_line: testing $at_desc ..." + printf "%s\n" "51. $at_setup_line: testing $at_desc ..." $at_traceon @@ -54003,6 +53887,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -54019,7 +53904,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/masquerade.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/masquerade.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54033,7 +53918,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/masquerade.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/masquerade.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "masquerade.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54073,7 +53958,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface foobar0 " +printf "%s\n" "$at_srcdir/masquerade.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface foobar0 " "masquerade.at:4" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54111,7 +53996,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +printf "%s\n" "$at_srcdir/masquerade.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "masquerade.at:6" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54148,7 +54033,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/masquerade.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " "masquerade.at:7" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54185,7 +54070,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public " +printf "%s\n" "$at_srcdir/masquerade.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public " "masquerade.at:8" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54223,7 +54108,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-masquerade " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-masquerade " "masquerade.at:11" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54260,7 +54145,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " "masquerade.at:12" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54297,7 +54182,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-masquerade " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-masquerade " "masquerade.at:13" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54334,7 +54219,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " "masquerade.at:14" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54434,7 +54319,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:32: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:32: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-masquerade " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-masquerade " "masquerade.at:32" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54471,7 +54356,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:33: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:33: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " "masquerade.at:33" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54508,7 +54393,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:34: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:34: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-masquerade " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-masquerade " "masquerade.at:34" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54545,7 +54430,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:35: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:35: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " "masquerade.at:35" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54637,7 +54522,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:71: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar_host " +printf "%s\n" "$at_srcdir/masquerade.at:71: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar_host " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar_host " "masquerade.at:71" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar_host ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54674,7 +54559,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:72: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-ingress-zone internal " +printf "%s\n" "$at_srcdir/masquerade.at:72: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-ingress-zone internal " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-ingress-zone internal " "masquerade.at:72" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54711,7 +54596,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:73: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/masquerade.at:73: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-egress-zone HOST " "masquerade.at:73" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54776,7 +54661,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:75: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:75: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-masquerade " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-masquerade " "masquerade.at:75" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54813,7 +54698,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:76: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:76: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " "masquerade.at:76" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54876,7 +54761,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:79: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --remove-ingress-zone internal " +printf "%s\n" "$at_srcdir/masquerade.at:79: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --remove-ingress-zone internal " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --remove-ingress-zone internal " "masquerade.at:79" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --remove-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54913,7 +54798,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:80: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --remove-egress-zone HOST " +printf "%s\n" "$at_srcdir/masquerade.at:80: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --remove-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --remove-egress-zone HOST " "masquerade.at:80" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_host --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54951,7 +54836,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar_int_to_pub " +printf "%s\n" "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar_int_to_pub " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar_int_to_pub " "masquerade.at:82" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar_int_to_pub ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -54988,7 +54873,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface foobar1 " +printf "%s\n" "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface foobar1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface foobar1 " "masquerade.at:82" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55025,7 +54910,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-ingress-zone internal " +printf "%s\n" "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-ingress-zone internal " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-ingress-zone internal " "masquerade.at:82" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55062,7 +54947,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-egress-zone public " +printf "%s\n" "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-egress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-egress-zone public " "masquerade.at:82" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55127,7 +55012,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade " "masquerade.at:82" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55164,7 +55049,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " "masquerade.at:82" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55227,7 +55112,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-interface foobar1 " +printf "%s\n" "$at_srcdir/masquerade.at:82: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-interface foobar1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-interface foobar1 " "masquerade.at:82" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55266,7 +55151,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:112: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/masquerade.at:112: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-source 10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-source 10.10.10.0/24 " "masquerade.at:112" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55331,7 +55216,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:114: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:114: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade " "masquerade.at:114" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55368,7 +55253,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:115: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:115: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " "masquerade.at:115" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55405,7 +55290,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:116: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/masquerade.at:116: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-source 10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-source 10.10.10.0/24 " "masquerade.at:116" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55443,7 +55328,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-source 10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-source 10.10.10.0/24 " "masquerade.at:118" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55480,7 +55365,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface foobar1 " +printf "%s\n" "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface foobar1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface foobar1 " "masquerade.at:118" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --add-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55545,7 +55430,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade " "masquerade.at:118" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55582,7 +55467,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " "masquerade.at:118" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55645,7 +55530,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-source 10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-source 10.10.10.0/24 " "masquerade.at:118" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55682,7 +55567,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-interface foobar1 " +printf "%s\n" "$at_srcdir/masquerade.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-interface foobar1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-interface foobar1 " "masquerade.at:118" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=internal --remove-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55712,7 +55597,7 @@ at_fn_group_banner 52 'protocols.at:1' \ "protocols" " " 2 at_xfail=no ( - $as_echo "52. $at_setup_line: testing $at_desc ..." + printf "%s\n" "52. $at_setup_line: testing $at_desc ..." $at_traceon @@ -55730,6 +55615,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -55746,7 +55632,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/protocols.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/protocols.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55760,7 +55646,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/protocols.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/protocols.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "protocols.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55800,7 +55686,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +printf "%s\n" "$at_srcdir/protocols.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "protocols.at:4" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55837,7 +55723,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/protocols.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " "protocols.at:5" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55874,7 +55760,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/protocols.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " "protocols.at:6" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55912,7 +55798,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol ipv6-icmp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol ipv6-icmp " "protocols.at:9" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55949,7 +55835,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol dccp " +printf "%s\n" "$at_srcdir/protocols.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol dccp " "protocols.at:10" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -55986,7 +55872,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol gre " +printf "%s\n" "$at_srcdir/protocols.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol gre " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol gre " "protocols.at:11" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56023,7 +55909,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule protocol value=\"sctp\" accept' " "protocols.at:12" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56060,7 +55946,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol ipv6-icmp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol ipv6-icmp " "protocols.at:13" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56097,7 +55983,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol dccp " +printf "%s\n" "$at_srcdir/protocols.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol dccp " "protocols.at:14" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56134,7 +56020,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol gre " +printf "%s\n" "$at_srcdir/protocols.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol gre " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol gre " "protocols.at:15" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56171,7 +56057,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " "protocols.at:16" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56297,7 +56183,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol ipv6-icmp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol ipv6-icmp " "protocols.at:44" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56334,7 +56220,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:45: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:45: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol ipv6-icmp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol ipv6-icmp " "protocols.at:45" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56371,7 +56257,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol dccp " +printf "%s\n" "$at_srcdir/protocols.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol dccp " "protocols.at:46" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56408,7 +56294,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol dccp " +printf "%s\n" "$at_srcdir/protocols.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol dccp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol dccp " "protocols.at:47" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56445,7 +56331,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:48: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol gre " +printf "%s\n" "$at_srcdir/protocols.at:48: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol gre " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol gre " "protocols.at:48" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56482,7 +56368,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:49: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:49: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " "protocols.at:49" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56600,7 +56486,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:93: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol dummy " +printf "%s\n" "$at_srcdir/protocols.at:93: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol dummy " "protocols.at:93" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-protocol dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56650,7 +56536,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/protocols.at:95: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule protocol value=\"dummy\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:95: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule protocol value=\"dummy\" accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule protocol value=\"dummy\" accept' " "protocols.at:95" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule protocol value="dummy" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56692,7 +56578,7 @@ at_fn_group_banner 53 'rich_rules.at:1' \ "rich rules" " " 2 at_xfail=no ( - $as_echo "53. $at_setup_line: testing $at_desc ..." + printf "%s\n" "53. $at_setup_line: testing $at_desc ..." $at_traceon @@ -56710,6 +56596,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -56726,7 +56613,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rich_rules.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_rules.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56740,7 +56627,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rich_rules.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_rules.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rich_rules.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56780,7 +56667,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +printf "%s\n" "$at_srcdir/rich_rules.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "rich_rules.at:7" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56817,7 +56704,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/rich_rules.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " "rich_rules.at:8" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56854,7 +56741,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_rules.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " "rich_rules.at:9" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56930,7 +56817,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:42: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.10 accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:42: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.10 accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.10 accept' " "rich_rules.at:42" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.10 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -56967,7 +56854,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:43: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 log accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:43: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 log accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 log accept' " "rich_rules.at:43" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 log accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57004,7 +56891,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 audit accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 audit accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 audit accept' " "rich_rules.at:44" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57041,7 +56928,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:45: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.12 reject' " +printf "%s\n" "$at_srcdir/rich_rules.at:45: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.12 reject' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.12 reject' " "rich_rules.at:45" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.12 reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57078,7 +56965,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.13 drop' " +printf "%s\n" "$at_srcdir/rich_rules.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.13 drop' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.13 drop' " "rich_rules.at:46" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.13 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57115,7 +57002,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.10.10.14 accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.10.10.14 accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.10.10.14 accept' " "rich_rules.at:47" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.10.10.14 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57152,7 +57039,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:48: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=1 source address=10.10.10.15 accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:48: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=1 source address=10.10.10.15 accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=1 source address=10.10.10.15 accept' " "rich_rules.at:48" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=1 source address=10.10.10.15 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57190,7 +57077,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:51: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=\"-100\" family=\"ipv4\" source address=\"10.0.0.10\" service name=\"bogusservice\" accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:51: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=\"-100\" family=\"ipv4\" source address=\"10.0.0.10\" service name=\"bogusservice\" accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=\"-100\" family=\"ipv4\" source address=\"10.0.0.10\" service name=\"bogusservice\" accept' " "rich_rules.at:51" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority="-100" family="ipv4" source address="10.0.0.10" service name="bogusservice" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57287,7 +57174,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:114: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.20.20.20 accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:114: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.20.20.20 accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.20.20.20 accept' " "rich_rules.at:114" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.20.20.20 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57324,7 +57211,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:115: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-2 destination address=10.20.20.21 accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:115: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-2 destination address=10.20.20.21 accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-2 destination address=10.20.20.21 accept' " "rich_rules.at:115" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-2 destination address=10.20.20.21 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57361,7 +57248,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:116: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-3 source address=10.20.20.22 destination address=10.20.20.23 drop' " +printf "%s\n" "$at_srcdir/rich_rules.at:116: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-3 source address=10.20.20.22 destination address=10.20.20.23 drop' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-3 source address=10.20.20.22 destination address=10.20.20.23 drop' " "rich_rules.at:116" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv4 priority=-3 source address=10.20.20.22 destination address=10.20.20.23 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57398,7 +57285,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:117: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv6 priority=-4 source address=1234::4321 destination address=1234::4444 drop' " +printf "%s\n" "$at_srcdir/rich_rules.at:117: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv6 priority=-4 source address=1234::4321 destination address=1234::4444 drop' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv6 priority=-4 source address=1234::4321 destination address=1234::4444 drop' " "rich_rules.at:117" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule family=ipv6 priority=-4 source address=1234::4321 destination address=1234::4444 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57473,7 +57360,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:142: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 icmp-type name=\"neighbour-advertisement\" accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:142: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 icmp-type name=\"neighbour-advertisement\" accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 icmp-type name=\"neighbour-advertisement\" accept' " "rich_rules.at:142" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 icmp-type name="neighbour-advertisement" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57510,7 +57397,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:143: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-2 icmp-type name=\"echo-request\" accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:143: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-2 icmp-type name=\"echo-request\" accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-2 icmp-type name=\"echo-request\" accept' " "rich_rules.at:143" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-2 icmp-type name="echo-request" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57585,7 +57472,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:172: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_rules.at:172: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST " "rich_rules.at:172" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57623,7 +57510,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:177: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_rules.at:177: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " "rich_rules.at:177" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57660,7 +57547,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:178: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " +printf "%s\n" "$at_srcdir/rich_rules.at:178: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " "rich_rules.at:178" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57697,7 +57584,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:179: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " +printf "%s\n" "$at_srcdir/rich_rules.at:179: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " "rich_rules.at:179" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57771,7 +57658,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:197: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_rules.at:197: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST " "rich_rules.at:197" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57809,7 +57696,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:202: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/rich_rules.at:202: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY " "rich_rules.at:202" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57883,7 +57770,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:220: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY " +printf "%s\n" "$at_srcdir/rich_rules.at:220: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY " "rich_rules.at:220" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57921,7 +57808,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:225: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/rich_rules.at:225: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source 10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source 10.10.10.0/24 " "rich_rules.at:225" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -57958,7 +57845,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:226: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public " +printf "%s\n" "$at_srcdir/rich_rules.at:226: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public " "rich_rules.at:226" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58032,7 +57919,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:244: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone public " +printf "%s\n" "$at_srcdir/rich_rules.at:244: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone public " "rich_rules.at:244" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58069,7 +57956,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:245: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/rich_rules.at:245: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-source 10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-source 10.10.10.0/24 " "rich_rules.at:245" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58132,7 +58019,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:248: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' " +printf "%s\n" "$at_srcdir/rich_rules.at:248: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' " "rich_rules.at:248" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58182,7 +58069,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:250: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " +printf "%s\n" "$at_srcdir/rich_rules.at:250: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " "rich_rules.at:250" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58233,7 +58120,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:256: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface foobar0 " +printf "%s\n" "$at_srcdir/rich_rules.at:256: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface foobar0 " "rich_rules.at:256" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58270,7 +58157,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:257: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public " +printf "%s\n" "$at_srcdir/rich_rules.at:257: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public " "rich_rules.at:257" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58307,7 +58194,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:258: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " +printf "%s\n" "$at_srcdir/rich_rules.at:258: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " "rich_rules.at:258" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58344,7 +58231,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:259: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface foobar0 " +printf "%s\n" "$at_srcdir/rich_rules.at:259: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface foobar0 " "rich_rules.at:259" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=public --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58381,7 +58268,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:260: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone public " +printf "%s\n" "$at_srcdir/rich_rules.at:260: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone public " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone public " "rich_rules.at:260" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58484,7 +58371,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:267: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_rules.at:267: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " "rich_rules.at:267" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58522,7 +58409,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:271: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " +printf "%s\n" "$at_srcdir/rich_rules.at:271: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " "rich_rules.at:271" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32000 log prefix="LOG: " level="warning"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58559,7 +58446,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:272: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32001 audit accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:272: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32001 audit accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32001 audit accept' " "rich_rules.at:272" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32001 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58633,7 +58520,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:295: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " +printf "%s\n" "$at_srcdir/rich_rules.at:295: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " "rich_rules.at:295" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=32000 log prefix="LOG: " level="warning"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58670,7 +58557,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:296: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=32001 audit accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:296: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=32001 audit accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=32001 audit accept' " "rich_rules.at:296" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --remove-rich-rule='rule priority=32001 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58736,7 +58623,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:301: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32000 nflog prefix=\"NFLOG: \" queue-size=10' " +printf "%s\n" "$at_srcdir/rich_rules.at:301: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32000 nflog prefix=\"NFLOG: \" queue-size=10' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32000 nflog prefix=\"NFLOG: \" queue-size=10' " "rich_rules.at:301" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32000 nflog prefix="NFLOG: " queue-size=10' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58773,7 +58660,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_rules.at:302: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32001 audit accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:302: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32001 audit accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32001 audit accept' " "rich_rules.at:302" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --add-rich-rule='rule priority=32001 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58839,7 +58726,7 @@ at_fn_group_banner 54 'icmp_blocks.at:1' \ "ICMP blocks" " " 2 at_xfail=no ( - $as_echo "54. $at_setup_line: testing $at_desc ..." + printf "%s\n" "54. $at_setup_line: testing $at_desc ..." $at_traceon @@ -58857,6 +58744,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -58873,7 +58761,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58887,7 +58775,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "icmp_blocks.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58927,7 +58815,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " +printf "%s\n" "$at_srcdir/icmp_blocks.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar " "icmp_blocks.at:4" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -58964,7 +58852,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/icmp_blocks.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY " "icmp_blocks.at:5" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59001,7 +58889,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/icmp_blocks.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST " "icmp_blocks.at:6" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59039,7 +58927,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block echo-request " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block echo-request " "icmp_blocks.at:9" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59076,7 +58964,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block echo-reply " +printf "%s\n" "$at_srcdir/icmp_blocks.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block echo-reply " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block echo-reply " "icmp_blocks.at:10" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59113,7 +59001,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block redirect " +printf "%s\n" "$at_srcdir/icmp_blocks.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block redirect " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block redirect " "icmp_blocks.at:11" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59152,7 +59040,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " "icmp_blocks.at:12" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59191,7 +59079,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-request " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-request " "icmp_blocks.at:15" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59228,7 +59116,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-reply " +printf "%s\n" "$at_srcdir/icmp_blocks.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-reply " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-reply " "icmp_blocks.at:16" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59265,7 +59153,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:17: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block redirect " +printf "%s\n" "$at_srcdir/icmp_blocks.at:17: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block redirect " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block redirect " "icmp_blocks.at:17" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59304,7 +59192,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:18: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:18: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " "icmp_blocks.at:18" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59445,7 +59333,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:62: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:62: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block echo-request " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block echo-request " "icmp_blocks.at:62" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59482,7 +59370,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:63: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:63: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-request " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-request " "icmp_blocks.at:63" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59519,7 +59407,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:64: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-reply " +printf "%s\n" "$at_srcdir/icmp_blocks.at:64: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-reply " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-reply " "icmp_blocks.at:64" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy foobar --query-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59556,7 +59444,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:65: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block echo-reply " +printf "%s\n" "$at_srcdir/icmp_blocks.at:65: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block echo-reply " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block echo-reply " "icmp_blocks.at:65" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59593,7 +59481,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:66: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block redirect " +printf "%s\n" "$at_srcdir/icmp_blocks.at:66: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block redirect " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block redirect " "icmp_blocks.at:66" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59632,7 +59520,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:67: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:67: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " "icmp_blocks.at:67" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59669,7 +59557,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:67: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:67: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " "icmp_blocks.at:67" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59806,7 +59694,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block dummy " +printf "%s\n" "$at_srcdir/icmp_blocks.at:141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block dummy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block dummy " "icmp_blocks.at:141" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-icmp-block dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59858,7 +59746,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/icmp_blocks.at:143: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"dummy\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:143: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"dummy\"' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"dummy\"' " "icmp_blocks.at:143" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="dummy"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59902,7 +59790,7 @@ at_fn_group_banner 55 'rich_tcp_mss_clamp.at:5' \ "tcp-mss-clamp" " " 2 at_xfail=no ( - $as_echo "55. $at_setup_line: testing $at_desc ..." + printf "%s\n" "55. $at_setup_line: testing $at_desc ..." $at_traceon @@ -59920,6 +59808,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -59936,7 +59825,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:5" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59950,7 +59839,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:5" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -59970,7 +59859,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:8: mkdir -p ./zones" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:8: mkdir -p ./zones" at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:8" ( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -60016,7 +59905,7 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:20: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:20: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "rich_tcp_mss_clamp.at:20" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -60066,7 +59955,7 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:32: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:32: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "rich_tcp_mss_clamp.at:32" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -60116,18 +60005,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "rich_tcp_mss_clamp.at:44" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "WARNING: INVALID_RULE: thisdoesnotexist: rule tcp-mss-clamp value=\"thisdoesnotexist\" -WARNING: INVALID_RULE: thisdoesnotexist: rule tcp-mss-clamp value=\"thisdoesnotexist\" -" | \ - $at_diff - "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:44" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -60169,15 +60055,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:62: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "rich_tcp_mss_clamp.at:62" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:56: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "rich_tcp_mss_clamp.at:56" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:62" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:56" $at_failed && at_fn_log_failure $at_traceon; } @@ -60218,15 +60104,15 @@ _ATEOF fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:75: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "rich_tcp_mss_clamp.at:75" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:69: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --check-config" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config" "rich_tcp_mss_clamp.at:69" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:75" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:69" $at_failed && at_fn_log_failure $at_traceon; } @@ -60241,28 +60127,28 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:76: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" "rich_tcp_mss_clamp.at:76" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:70: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" "rich_tcp_mss_clamp.at:70" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:76" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:70" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:77: cat ./zones/tcp.xml" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:77" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:71: cat ./zones/tcp.xml" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:71" ( $at_check_trace; cat ./zones/tcp.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -60272,21 +60158,21 @@ echo >>"$at_stdout"; $as_echo " " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:77" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:71" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:89: rm ./zones/tcp.xml" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:89" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:83: rm ./zones/tcp.xml" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:83" ( $at_check_trace; rm ./zones/tcp.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:89" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:83" $at_failed && at_fn_log_failure $at_traceon; } @@ -60311,15 +60197,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:90: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " "rich_tcp_mss_clamp.at:90" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:84: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " "rich_tcp_mss_clamp.at:84" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:90" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:84" $at_failed && at_fn_log_failure $at_traceon; } @@ -60348,15 +60234,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:91: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp' " "rich_tcp_mss_clamp.at:91" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:85: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp' " "rich_tcp_mss_clamp.at:85" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:91" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:85" $at_failed && at_fn_log_failure $at_traceon; } @@ -60365,14 +60251,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:94: cat ./zones/public.xml" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:94" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:88: cat ./zones/public.xml" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:88" ( $at_check_trace; cat ./zones/public.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " Public For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted. @@ -60385,7 +60271,7 @@ echo >>"$at_stdout"; $as_echo " " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:94" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:88" $at_failed && at_fn_log_failure $at_traceon; } @@ -60410,15 +60296,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:107: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule tcp-mss-clamp' " "rich_tcp_mss_clamp.at:107" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:101: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule tcp-mss-clamp' " "rich_tcp_mss_clamp.at:101" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --remove-rich-rule='rule tcp-mss-clamp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:107" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:101" $at_failed && at_fn_log_failure $at_traceon; } @@ -60447,15 +60333,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:108: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=0' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=0' " "rich_tcp_mss_clamp.at:108" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:102: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=0' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=0' " "rich_tcp_mss_clamp.at:102" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=0' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:108" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:102" $at_failed && at_fn_log_failure $at_traceon; } @@ -60484,15 +60370,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:109: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=536' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=536' " "rich_tcp_mss_clamp.at:109" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:103: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=536' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=536' " "rich_tcp_mss_clamp.at:103" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=536' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:109" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:103" $at_failed && at_fn_log_failure $at_traceon; } @@ -60521,15 +60407,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:110: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=pmtu' " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=pmtu' " "rich_tcp_mss_clamp.at:110" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:104: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=pmtu' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=pmtu' " "rich_tcp_mss_clamp.at:104" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule tcp-mss-clamp value=pmtu' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:110" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:104" $at_failed && at_fn_log_failure $at_traceon; } @@ -60667,7 +60553,7 @@ at_fn_group_banner 56 'rich_destination_ipset.at:1' \ "rich destination ipset" " " 2 at_xfail=no ( - $as_echo "56. $at_setup_line: testing $at_desc ..." + printf "%s\n" "56. $at_setup_line: testing $at_desc ..." $at_traceon @@ -60685,6 +60571,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -60701,7 +60588,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -60715,7 +60602,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rich_destination_ipset.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -60755,7 +60642,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=mypolicy " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy=mypolicy " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=mypolicy " "rich_destination_ipset.at:4" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy=mypolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -60792,7 +60679,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=mypolicy --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=mypolicy --add-ingress-zone ANY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=mypolicy --add-ingress-zone ANY " "rich_destination_ipset.at:5" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=mypolicy --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -60829,7 +60716,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=mypolicy --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy=mypolicy --add-egress-zone HOST " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=mypolicy --add-egress-zone HOST " "rich_destination_ipset.at:6" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy=mypolicy --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -60867,7 +60754,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip " "rich_destination_ipset.at:8" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset=foobar --type=hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -60933,7 +60820,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " "rich_destination_ipset.at:12" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -60990,7 +60877,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:29: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:29: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " "rich_destination_ipset.at:29" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61047,7 +60934,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:43: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:43: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " "rich_destination_ipset.at:43" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61097,7 +60984,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:45: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:45: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " "rich_destination_ipset.at:45" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61147,7 +61034,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " "rich_destination_ipset.at:47" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61197,7 +61084,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:49: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:49: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " "rich_destination_ipset.at:49" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61239,7 +61126,7 @@ at_fn_group_banner 57 'zone.at:1' \ "zone - target" " " 2 at_xfail=no ( - $as_echo "57. $at_setup_line: testing $at_desc ..." + printf "%s\n" "57. $at_setup_line: testing $at_desc ..." $at_traceon @@ -61257,6 +61144,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -61273,7 +61161,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/zone.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61287,7 +61175,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/zone.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "zone.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61327,7 +61215,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone=foobar " +printf "%s\n" "$at_srcdir/zone.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone=foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone=foobar " "zone.at:4" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61365,7 +61253,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=default " +printf "%s\n" "$at_srcdir/zone.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=default " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=default " "zone.at:6" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61402,7 +61290,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT " +printf "%s\n" "$at_srcdir/zone.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT " "zone.at:7" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61439,7 +61327,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DROP " +printf "%s\n" "$at_srcdir/zone.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DROP " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DROP " "zone.at:8" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61476,7 +61364,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=%%REJECT%% " +printf "%s\n" "$at_srcdir/zone.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=%%REJECT%% " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=%%REJECT%% " "zone.at:9" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=%%REJECT%% ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61513,7 +61401,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=CONTINUE " +printf "%s\n" "$at_srcdir/zone.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=CONTINUE " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=CONTINUE " "zone.at:10" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=CONTINUE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61550,7 +61438,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DENY " +printf "%s\n" "$at_srcdir/zone.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DENY " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DENY " "zone.at:11" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=DENY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61588,7 +61476,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT " +printf "%s\n" "$at_srcdir/zone.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT " "zone.at:13" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61625,7 +61513,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --add-interface foobar0 " +printf "%s\n" "$at_srcdir/zone.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --add-interface foobar0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --add-interface foobar0 " "zone.at:14" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61728,7 +61616,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone.at:133: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=default " +printf "%s\n" "$at_srcdir/zone.at:133: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=default " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=default " "zone.at:133" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=foobar --set-target=default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61819,10 +61707,10 @@ read at_status <"$at_status_file" #AT_STOP_57 #AT_START_58 at_fn_group_banner 58 'rpfilter.at:1' \ - "rpfilter" " " 2 + "rpfilter - strict" " " 2 at_xfail=no ( - $as_echo "58. $at_setup_line: testing $at_desc ..." + printf "%s\n" "58. $at_setup_line: testing $at_desc ..." $at_traceon @@ -61840,6 +61728,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -61856,7 +61745,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rpfilter.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rpfilter.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61870,7 +61759,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rpfilter.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rpfilter.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rpfilter.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -61890,23 +61779,52 @@ $at_traceon; } - KERNEL_MAJOR=`uname -r | cut -d. -f1` - KERNEL_MINOR=`uname -r | cut -d. -f2` - if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then - : + + +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:5: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:5" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + - else - : - fi @@ -61921,11 +61839,11 @@ $at_traceon; } read at_status <"$at_status_file" #AT_STOP_58 #AT_START_59 -at_fn_group_banner 59 'zone_combine.at:1' \ - "zone - combine" " " 2 +at_fn_group_banner 59 'rpfilter.at:27' \ + "rpfilter - loose" " " 2 at_xfail=no ( - $as_echo "59. $at_setup_line: testing $at_desc ..." + printf "%s\n" "59. $at_setup_line: testing $at_desc ..." $at_traceon @@ -61943,6 +61861,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -61959,29 +61878,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/zone_combine.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:27: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:27" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/zone_combine.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "zone_combine.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:27: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:27" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -61993,61 +61912,21 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/zone_combine.at:8: mkdir -p ./zones/combined" -at_fn_check_prepare_trace "zone_combine.at:8" -( $at_check_trace; mkdir -p ./zones/combined +printf "%s\n" "$at_srcdir/rpfilter.at:31: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:31" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:31" $at_failed && at_fn_log_failure $at_traceon; } -cat >./zones/combined/zone1.xml <<'_ATEOF' - - - - -_ATEOF - -cat >./zones/combined/zone2.xml <<'_ATEOF' - - - - -_ATEOF - -cat >./zones/combined/zone3.xml <<'_ATEOF' - - - - -_ATEOF - - - - - - - - - - - - - - - - - - - - - - @@ -62087,6 +61966,18 @@ _ATEOF + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_59 +#AT_START_60 +at_fn_group_banner 60 'rpfilter.at:53' \ + "rpfilter - strict-forward" " " 2 +at_xfail=no +( + printf "%s\n" "60. $at_setup_line: testing $at_desc ..." + $at_traceon @@ -62096,82 +61987,57 @@ _ATEOF + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" fi - { set +x -$as_echo "$at_srcdir/zone_combine.at:51: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zones " -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zones " "zone_combine.at:51" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zones + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:53: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:53" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block combined/zone1 combined/zone2 combined/zone3 dmz drop external home internal public trusted work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:51" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - - - - - - - - - - - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/zone_combine.at:54: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:54" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone1 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } + else + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:53: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:53" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone1 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: ssh -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:54" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } + fi @@ -62184,45 +62050,16 @@ $at_traceon; } - - - - - - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/zone_combine.at:72: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:72" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone2 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:58: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:58" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone2 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: https -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:72" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -62245,20 +62082,1074 @@ $at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_60 +#AT_START_61 +at_fn_group_banner 61 'rpfilter.at:89' \ + "rpfilter - loose-forward" " " 2 +at_xfail=no +( + printf "%s\n" "61. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:89: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:89" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:89: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:89" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + + + + + + + + + + +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:94: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:94" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:94" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_61 +#AT_START_62 +at_fn_group_banner 62 'rpfilter.at:125' \ + "rpfilter - config values" " " 2 +at_xfail=no +( + printf "%s\n" "62. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:125: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:125" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:125: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:125" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=false/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=false/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=true/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=true/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:142: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=bogus/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:142" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=bogus/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:142" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_62 +#AT_START_63 +at_fn_group_banner 63 'rpfilter.at:147' \ + "rpfilter - config values, -forward" " " 2 +at_xfail=no +( + printf "%s\n" "63. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:147: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:147" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:147: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:147" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:154: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:154" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:154: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:154" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_63 +#AT_START_64 +at_fn_group_banner 64 'zone_combine.at:1' \ + "zone - combine" " " 2 +at_xfail=no +( + printf "%s\n" "64. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "zone_combine.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + + + + + +{ set +x +printf "%s\n" "$at_srcdir/zone_combine.at:8: mkdir -p ./zones/combined" +at_fn_check_prepare_trace "zone_combine.at:8" +( $at_check_trace; mkdir -p ./zones/combined +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + +cat >./zones/combined/zone1.xml <<'_ATEOF' + + + + +_ATEOF + +cat >./zones/combined/zone2.xml <<'_ATEOF' + + + + +_ATEOF + +cat >./zones/combined/zone3.xml <<'_ATEOF' + + + + +_ATEOF + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" fi { set +x -$as_echo "$at_srcdir/zone_combine.at:90: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/zone_combine.at:51: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --get-zones " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zones " "zone_combine.at:51" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --get-zones +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "block combined/zone1 combined/zone2 combined/zone3 dmz drop external home internal public trusted work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:51" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:54: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:54" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone1 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "combined/zone1 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: ssh +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:54" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:72: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:72" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone2 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "combined/zone2 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: https +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:90: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:90" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone3 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone3 +echo >>"$at_stdout"; printf "%s\n" "combined/zone3 target: default ingress-priority: 0 egress-priority: 0 @@ -62333,7 +63224,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_combine.at:133: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone2 --add-protocol icmp " +printf "%s\n" "$at_srcdir/zone_combine.at:133: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone2 --add-protocol icmp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone2 --add-protocol icmp " "zone_combine.at:133" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone2 --add-protocol icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -62370,14 +63261,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_combine.at:134: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/zone_combine.at:134: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:134" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone1 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone1 +echo >>"$at_stdout"; printf "%s\n" "combined/zone1 target: default ingress-priority: 0 egress-priority: 0 @@ -62424,14 +63315,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_combine.at:152: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/zone_combine.at:152: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:152" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone2 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone2 +echo >>"$at_stdout"; printf "%s\n" "combined/zone2 target: default ingress-priority: 0 egress-priority: 0 @@ -62478,14 +63369,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_combine.at:170: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/zone_combine.at:170: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:170" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone combined/zone3 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone3 +echo >>"$at_stdout"; printf "%s\n" "combined/zone3 target: default ingress-priority: 0 egress-priority: 0 @@ -62518,13 +63409,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_59 -#AT_START_60 -at_fn_group_banner 60 'ipset_defer_native_ipset_creation.at:1' \ +#AT_STOP_64 +#AT_START_65 +at_fn_group_banner 65 'ipset_defer_native_ipset_creation.at:1' \ "ipset defer native creation" " " 2 at_xfail=no ( - $as_echo "60. $at_setup_line: testing $at_desc ..." + printf "%s\n" "65. $at_setup_line: testing $at_desc ..." $at_traceon @@ -62542,6 +63433,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -62558,7 +63450,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -62572,7 +63464,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -62615,7 +63507,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -62652,7 +63544,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -62689,7 +63581,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -62726,7 +63618,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -62931,7 +63823,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -62968,7 +63860,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar6 " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar6 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar6 " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63046,7 +63938,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63083,7 +63975,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63120,7 +64012,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63157,7 +64049,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63271,7 +64163,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63308,7 +64200,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar6 " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar6 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar6 " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --delete-ipset foobar6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63386,7 +64278,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar --type hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63423,7 +64315,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset foobar6 --type hash:net --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63460,7 +64352,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar --add-entry 10.0.0.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63497,7 +64389,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' " +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' " "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --ipset foobar6 --add-entry='1234::4321' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63596,13 +64488,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_60 -#AT_START_61 -at_fn_group_banner 61 'reset_defaults.at:1' \ +#AT_STOP_65 +#AT_START_66 +at_fn_group_banner 66 'reset_defaults.at:1' \ "reset defaults" " " 2 at_xfail=no ( - $as_echo "61. $at_setup_line: testing $at_desc ..." + printf "%s\n" "66. $at_setup_line: testing $at_desc ..." $at_traceon @@ -63620,6 +64512,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -63636,7 +64529,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63650,7 +64543,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "reset_defaults.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63691,7 +64584,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults" +printf "%s\n" "$at_srcdir/reset_defaults.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults" "reset_defaults.at:4" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63730,7 +64623,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults" +printf "%s\n" "$at_srcdir/reset_defaults.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults" "reset_defaults.at:6" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63768,7 +64661,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-service zzzzzzzzzzzz " +printf "%s\n" "$at_srcdir/reset_defaults.at:8: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-service zzzzzzzzzzzz " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-service zzzzzzzzzzzz " "reset_defaults.at:8" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63805,7 +64698,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service ftp --add-port 22/udp " +printf "%s\n" "$at_srcdir/reset_defaults.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service ftp --add-port 22/udp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service ftp --add-port 22/udp " "reset_defaults.at:9" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service ftp --add-port 22/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63843,7 +64736,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-service zzzzzzzzzzzz " +printf "%s\n" "$at_srcdir/reset_defaults.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --add-service zzzzzzzzzzzz " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-service zzzzzzzzzzzz " "reset_defaults.at:11" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --add-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63880,7 +64773,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-service ftp " +printf "%s\n" "$at_srcdir/reset_defaults.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-service ftp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-service ftp " "reset_defaults.at:12" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --add-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63917,7 +64810,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper ftp --set-short \"FTP HELPER\" " +printf "%s\n" "$at_srcdir/reset_defaults.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper ftp --set-short \"FTP HELPER\" " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper ftp --set-short \"FTP HELPER\" " "reset_defaults.at:13" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper ftp --set-short "FTP HELPER" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63954,7 +64847,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-short test_short " +printf "%s\n" "$at_srcdir/reset_defaults.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-short test_short " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-short test_short " "reset_defaults.at:14" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-short test_short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -63991,7 +64884,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset test-ipset --type hash:ip " +printf "%s\n" "$at_srcdir/reset_defaults.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset test-ipset --type hash:ip " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset test-ipset --type hash:ip " "reset_defaults.at:15" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset test-ipset --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64028,7 +64921,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-icmptype test-icmptype " +printf "%s\n" "$at_srcdir/reset_defaults.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-icmptype test-icmptype " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-icmptype test-icmptype " "reset_defaults.at:16" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64066,7 +64959,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:18: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service zzzzzzzzzzzz " +printf "%s\n" "$at_srcdir/reset_defaults.at:18: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service zzzzzzzzzzzz " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service zzzzzzzzzzzz " "reset_defaults.at:18" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64103,7 +64996,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:19: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --query-service ftp " +printf "%s\n" "$at_srcdir/reset_defaults.at:19: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --query-service ftp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --query-service ftp " "reset_defaults.at:19" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64140,14 +65033,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:20: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper ftp --get-short " +printf "%s\n" "$at_srcdir/reset_defaults.at:20: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper ftp --get-short " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper ftp --get-short " "reset_defaults.at:20" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper ftp --get-short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo "FTP HELPER +echo >>"$at_stdout"; printf "%s\n" "FTP HELPER " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:20" @@ -64179,14 +65072,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:22: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-short " +printf "%s\n" "$at_srcdir/reset_defaults.at:22: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-short " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-short " "reset_defaults.at:22" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo "test_short +echo >>"$at_stdout"; printf "%s\n" "test_short " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:22" @@ -64218,7 +65111,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:24: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-ipset test-ipset " +printf "%s\n" "$at_srcdir/reset_defaults.at:24: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-ipset test-ipset " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-ipset test-ipset " "reset_defaults.at:24" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-ipset test-ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64255,7 +65148,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:25: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-icmptype test-icmptype " +printf "%s\n" "$at_srcdir/reset_defaults.at:25: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-icmptype test-icmptype " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-icmptype test-icmptype " "reset_defaults.at:25" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64376,7 +65269,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:35: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults" +printf "%s\n" "$at_srcdir/reset_defaults.at:35: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults" "reset_defaults.at:35" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --reset-to-defaults ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64414,7 +65307,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:37: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service zzzzzzzzzzzz " +printf "%s\n" "$at_srcdir/reset_defaults.at:37: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service zzzzzzzzzzzz " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service zzzzzzzzzzzz " "reset_defaults.at:37" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64451,7 +65344,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:38: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --query-service ftp " +printf "%s\n" "$at_srcdir/reset_defaults.at:38: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone internal --query-service ftp " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --query-service ftp " "reset_defaults.at:38" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone internal --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64488,14 +65381,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper ftp --get-short " +printf "%s\n" "$at_srcdir/reset_defaults.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --helper ftp --get-short " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper ftp --get-short " "reset_defaults.at:39" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --helper ftp --get-short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:39" @@ -64527,14 +65420,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:41: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-short " +printf "%s\n" "$at_srcdir/reset_defaults.at:41: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-short " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-short " "reset_defaults.at:41" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo "Allow host IPv6 +echo >>"$at_stdout"; printf "%s\n" "Allow host IPv6 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:41" @@ -64566,7 +65459,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:43: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-ipset test-ipset " +printf "%s\n" "$at_srcdir/reset_defaults.at:43: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-ipset test-ipset " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-ipset test-ipset " "reset_defaults.at:43" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-ipset test-ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64603,7 +65496,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-icmptype test-icmptype " +printf "%s\n" "$at_srcdir/reset_defaults.at:44: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-icmptype test-icmptype " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-icmptype test-icmptype " "reset_defaults.at:44" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64679,13 +65572,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_61 -#AT_START_62 -at_fn_group_banner 62 'zone_priority.at:1' \ +#AT_STOP_66 +#AT_START_67 +at_fn_group_banner 67 'zone_priority.at:1' \ "zone - priority" " " 2 at_xfail=no ( - $as_echo "62. $at_setup_line: testing $at_desc ..." + printf "%s\n" "67. $at_setup_line: testing $at_desc ..." $at_traceon @@ -64703,6 +65596,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -64719,7 +65613,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/zone_priority.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone_priority.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64733,7 +65627,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/zone_priority.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone_priority.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "zone_priority.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64777,7 +65671,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone foobar " +printf "%s\n" "$at_srcdir/zone_priority.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone foobar " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone foobar " "zone_priority.at:6" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64815,7 +65709,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -32769 " +printf "%s\n" "$at_srcdir/zone_priority.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -32769 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -32769 " "zone_priority.at:9" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -32769 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64852,7 +65746,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -32768 " +printf "%s\n" "$at_srcdir/zone_priority.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -32768 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -32768 " "zone_priority.at:10" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64889,7 +65783,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 32768 " +printf "%s\n" "$at_srcdir/zone_priority.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 32768 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 32768 " "zone_priority.at:11" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64926,7 +65820,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 32767 " +printf "%s\n" "$at_srcdir/zone_priority.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 32767 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 32767 " "zone_priority.at:12" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 32767 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -64963,7 +65857,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -32769 " +printf "%s\n" "$at_srcdir/zone_priority.at:13: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -32769 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -32769 " "zone_priority.at:13" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -32769 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65000,7 +65894,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -32768 " +printf "%s\n" "$at_srcdir/zone_priority.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -32768 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -32768 " "zone_priority.at:14" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65037,7 +65931,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 32768 " +printf "%s\n" "$at_srcdir/zone_priority.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 32768 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 32768 " "zone_priority.at:15" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65074,7 +65968,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 32767 " +printf "%s\n" "$at_srcdir/zone_priority.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 32767 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 32767 " "zone_priority.at:16" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 32767 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65111,7 +66005,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:17: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -32769 " +printf "%s\n" "$at_srcdir/zone_priority.at:17: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -32769 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -32769 " "zone_priority.at:17" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -32769 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65148,7 +66042,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:18: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -32768 " +printf "%s\n" "$at_srcdir/zone_priority.at:18: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -32768 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -32768 " "zone_priority.at:18" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65185,7 +66079,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:19: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 32768 " +printf "%s\n" "$at_srcdir/zone_priority.at:19: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 32768 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 32768 " "zone_priority.at:19" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65222,7 +66116,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:20: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 32767 " +printf "%s\n" "$at_srcdir/zone_priority.at:20: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 32767 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 32767 " "zone_priority.at:20" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 32767 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65259,7 +66153,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:21: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 0 " +printf "%s\n" "$at_srcdir/zone_priority.at:21: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 0 " "zone_priority.at:21" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65296,7 +66190,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:22: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 0 " +printf "%s\n" "$at_srcdir/zone_priority.at:22: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 0 " "zone_priority.at:22" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65333,7 +66227,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:23: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 0 " +printf "%s\n" "$at_srcdir/zone_priority.at:23: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 0 " "zone_priority.at:23" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65371,7 +66265,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:26: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-ingress-priority " +printf "%s\n" "$at_srcdir/zone_priority.at:26: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-ingress-priority " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-ingress-priority " "zone_priority.at:26" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-ingress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65408,7 +66302,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:27: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-ingress-priority 0 " +printf "%s\n" "$at_srcdir/zone_priority.at:27: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-ingress-priority 0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-ingress-priority 0 " "zone_priority.at:27" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-ingress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65445,7 +66339,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:28: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-egress-priority " +printf "%s\n" "$at_srcdir/zone_priority.at:28: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-egress-priority " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-egress-priority " "zone_priority.at:28" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --get-egress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65482,7 +66376,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:29: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-egress-priority 0 " +printf "%s\n" "$at_srcdir/zone_priority.at:29: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-egress-priority 0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-egress-priority 0 " "zone_priority.at:29" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy allow-host-ipv6 --set-egress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65520,7 +66414,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:32: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-priority -1 " +printf "%s\n" "$at_srcdir/zone_priority.at:32: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-priority -1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-priority -1 " "zone_priority.at:32" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65557,7 +66451,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:33: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-ingress-priority -2 " +printf "%s\n" "$at_srcdir/zone_priority.at:33: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-ingress-priority -2 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-ingress-priority -2 " "zone_priority.at:33" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-ingress-priority -2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65594,7 +66488,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:34: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-egress-priority -3 " +printf "%s\n" "$at_srcdir/zone_priority.at:34: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-egress-priority -3 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-egress-priority -3 " "zone_priority.at:34" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-egress-priority -3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65631,7 +66525,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:35: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-priority 0 " +printf "%s\n" "$at_srcdir/zone_priority.at:35: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --set-priority 0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-priority 0 " "zone_priority.at:35" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --set-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65669,7 +66563,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:38: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 123 " +printf "%s\n" "$at_srcdir/zone_priority.at:38: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 123 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 123 " "zone_priority.at:38" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority 123 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65706,14 +66600,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority " +printf "%s\n" "$at_srcdir/zone_priority.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority " "zone_priority.at:39" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "123 +echo >>"$at_stdout"; printf "%s\n" "123 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:39" @@ -65745,7 +66639,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:42: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 456 " +printf "%s\n" "$at_srcdir/zone_priority.at:42: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 456 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 456 " "zone_priority.at:42" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 456 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65782,14 +66676,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:43: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-ingress-priority " +printf "%s\n" "$at_srcdir/zone_priority.at:43: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-ingress-priority " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-ingress-priority " "zone_priority.at:43" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-ingress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "456 +echo >>"$at_stdout"; printf "%s\n" "456 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:43" @@ -65821,7 +66715,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 789 " +printf "%s\n" "$at_srcdir/zone_priority.at:46: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 789 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 789 " "zone_priority.at:46" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 789 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65858,14 +66752,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-egress-priority " +printf "%s\n" "$at_srcdir/zone_priority.at:47: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-egress-priority " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-egress-priority " "zone_priority.at:47" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-egress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "789 +echo >>"$at_stdout"; printf "%s\n" "789 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:47" @@ -65898,7 +66792,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:52: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 666 " +printf "%s\n" "$at_srcdir/zone_priority.at:52: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 666 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 666 " "zone_priority.at:52" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority 666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65935,7 +66829,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:53: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 666 " +printf "%s\n" "$at_srcdir/zone_priority.at:53: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 666 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 666 " "zone_priority.at:53" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority 666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -65972,7 +66866,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:54: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -1 " +printf "%s\n" "$at_srcdir/zone_priority.at:54: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -1 " "zone_priority.at:54" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66009,14 +66903,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:55: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority " +printf "%s\n" "$at_srcdir/zone_priority.at:55: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority " "zone_priority.at:55" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-1 +echo >>"$at_stdout"; printf "%s\n" "-1 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:55" @@ -66049,7 +66943,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:60: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -2 " +printf "%s\n" "$at_srcdir/zone_priority.at:60: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -2 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -2 " "zone_priority.at:60" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-ingress-priority -2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66086,7 +66980,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:61: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -3 " +printf "%s\n" "$at_srcdir/zone_priority.at:61: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -3 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -3 " "zone_priority.at:61" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --set-egress-priority -3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66123,7 +67017,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:62: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority " +printf "%s\n" "$at_srcdir/zone_priority.at:62: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority " "zone_priority.at:62" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone foobar --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66161,14 +67055,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:65: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-zone foobar | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/zone_priority.at:65: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-zone foobar | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:65" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-zone foobar | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "foobar +echo >>"$at_stdout"; printf "%s\n" "foobar target: default ingress-priority: -2 egress-priority: -3 @@ -66216,7 +67110,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:85: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-1 " +printf "%s\n" "$at_srcdir/zone_priority.at:85: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-1 " "zone_priority.at:85" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66253,7 +67147,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:86: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-1 --set-priority -30000 " +printf "%s\n" "$at_srcdir/zone_priority.at:86: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-1 --set-priority -30000 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-1 --set-priority -30000 " "zone_priority.at:86" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-1 --set-priority -30000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66290,7 +67184,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:87: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-1 --add-interface dummy-1 " +printf "%s\n" "$at_srcdir/zone_priority.at:87: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-1 --add-interface dummy-1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-1 --add-interface dummy-1 " "zone_priority.at:87" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-1 --add-interface dummy-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66327,7 +67221,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:88: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-2 " +printf "%s\n" "$at_srcdir/zone_priority.at:88: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-2 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-2 " "zone_priority.at:88" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66364,7 +67258,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:89: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-2 --set-priority -10000 " +printf "%s\n" "$at_srcdir/zone_priority.at:89: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-2 --set-priority -10000 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-2 --set-priority -10000 " "zone_priority.at:89" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-2 --set-priority -10000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66401,7 +67295,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:90: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-2 --add-interface dummy-2 " +printf "%s\n" "$at_srcdir/zone_priority.at:90: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-2 --add-interface dummy-2 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-2 --add-interface dummy-2 " "zone_priority.at:90" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-2 --add-interface dummy-2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66438,7 +67332,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:91: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-3 " +printf "%s\n" "$at_srcdir/zone_priority.at:91: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-3 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-3 " "zone_priority.at:91" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66475,7 +67369,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:92: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --set-ingress-priority -5000 " +printf "%s\n" "$at_srcdir/zone_priority.at:92: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --set-ingress-priority -5000 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --set-ingress-priority -5000 " "zone_priority.at:92" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --set-ingress-priority -5000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66512,7 +67406,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:93: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --set-egress-priority -2000 " +printf "%s\n" "$at_srcdir/zone_priority.at:93: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --set-egress-priority -2000 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --set-egress-priority -2000 " "zone_priority.at:93" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --set-egress-priority -2000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66549,7 +67443,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:94: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --add-interface dummy-3 " +printf "%s\n" "$at_srcdir/zone_priority.at:94: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --add-interface dummy-3 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --add-interface dummy-3 " "zone_priority.at:94" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-3 --add-interface dummy-3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66586,7 +67480,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:95: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-4 " +printf "%s\n" "$at_srcdir/zone_priority.at:95: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-4 " "zone_priority.at:95" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66623,7 +67517,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:96: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --set-ingress-priority -100 " +printf "%s\n" "$at_srcdir/zone_priority.at:96: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --set-ingress-priority -100 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --set-ingress-priority -100 " "zone_priority.at:96" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --set-ingress-priority -100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66660,7 +67554,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:97: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --set-egress-priority 1 " +printf "%s\n" "$at_srcdir/zone_priority.at:97: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --set-egress-priority 1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --set-egress-priority 1 " "zone_priority.at:97" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --set-egress-priority 1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66697,7 +67591,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:98: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --add-interface dummy-4 " +printf "%s\n" "$at_srcdir/zone_priority.at:98: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --add-interface dummy-4 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --add-interface dummy-4 " "zone_priority.at:98" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-4 --add-interface dummy-4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66734,7 +67628,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:99: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-5 " +printf "%s\n" "$at_srcdir/zone_priority.at:99: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-5 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-5 " "zone_priority.at:99" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-5 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66771,7 +67665,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:100: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --set-ingress-priority -1 " +printf "%s\n" "$at_srcdir/zone_priority.at:100: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --set-ingress-priority -1 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --set-ingress-priority -1 " "zone_priority.at:100" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --set-ingress-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66808,7 +67702,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:101: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --set-egress-priority 100 " +printf "%s\n" "$at_srcdir/zone_priority.at:101: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --set-egress-priority 100 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --set-egress-priority 100 " "zone_priority.at:101" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --set-egress-priority 100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66845,7 +67739,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:102: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --add-interface dummy-5 " +printf "%s\n" "$at_srcdir/zone_priority.at:102: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --add-interface dummy-5 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --add-interface dummy-5 " "zone_priority.at:102" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-5 --add-interface dummy-5 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66882,7 +67776,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:103: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-6 " +printf "%s\n" "$at_srcdir/zone_priority.at:103: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-6 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-6 " "zone_priority.at:103" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66919,7 +67813,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:104: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-6 --set-priority 500 " +printf "%s\n" "$at_srcdir/zone_priority.at:104: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-6 --set-priority 500 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-6 --set-priority 500 " "zone_priority.at:104" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-6 --set-priority 500 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66956,7 +67850,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:105: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-6 --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/zone_priority.at:105: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-6 --add-source 10.10.10.0/24 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-6 --add-source 10.10.10.0/24 " "zone_priority.at:105" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-6 --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -66993,7 +67887,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:106: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-7 " +printf "%s\n" "$at_srcdir/zone_priority.at:106: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-7 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-7 " "zone_priority.at:106" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67030,7 +67924,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:107: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-7 --set-priority 1000 " +printf "%s\n" "$at_srcdir/zone_priority.at:107: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-7 --set-priority 1000 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-7 --set-priority 1000 " "zone_priority.at:107" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-7 --set-priority 1000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67067,7 +67961,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:108: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-7 --add-interface dummy-7 " +printf "%s\n" "$at_srcdir/zone_priority.at:108: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-7 --add-interface dummy-7 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-7 --add-interface dummy-7 " "zone_priority.at:108" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-7 --add-interface dummy-7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67104,7 +67998,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:109: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-8 " +printf "%s\n" "$at_srcdir/zone_priority.at:109: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-8 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-8 " "zone_priority.at:109" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67141,7 +68035,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:110: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-8 --set-priority 30000 " +printf "%s\n" "$at_srcdir/zone_priority.at:110: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-8 --set-priority 30000 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-8 --set-priority 30000 " "zone_priority.at:110" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-8 --set-priority 30000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67178,7 +68072,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:111: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-8 --add-source 10.0.0.0/8 " +printf "%s\n" "$at_srcdir/zone_priority.at:111: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-8 --add-source 10.0.0.0/8 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-8 --add-source 10.0.0.0/8 " "zone_priority.at:111" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-8 --add-source 10.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67215,7 +68109,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:112: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-0andlast " +printf "%s\n" "$at_srcdir/zone_priority.at:112: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-0andlast " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-0andlast " "zone_priority.at:112" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-zone zone-0andlast ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67252,7 +68146,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:113: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --set-ingress-priority 0 " +printf "%s\n" "$at_srcdir/zone_priority.at:113: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --set-ingress-priority 0 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --set-ingress-priority 0 " "zone_priority.at:113" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --set-ingress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67289,7 +68183,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:114: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --set-egress-priority 32000 " +printf "%s\n" "$at_srcdir/zone_priority.at:114: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --set-egress-priority 32000 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --set-egress-priority 32000 " "zone_priority.at:114" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --set-egress-priority 32000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67326,7 +68220,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/zone_priority.at:115: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --add-interface dummy-9 " +printf "%s\n" "$at_srcdir/zone_priority.at:115: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --add-interface dummy-9 " at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --add-interface dummy-9 " "zone_priority.at:115" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone zone-0andlast --add-interface dummy-9 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67420,14 +68314,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:793: cat ./zones/zone-5.xml" +printf "%s\n" "$at_srcdir/zone_priority.at:793: cat ./zones/zone-5.xml" at_fn_check_prepare_trace "zone_priority.at:793" ( $at_check_trace; cat ./zones/zone-5.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -67523,13 +68417,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_62 -#AT_START_63 -at_fn_group_banner 63 'reloadpolicy.at:1' \ +#AT_STOP_67 +#AT_START_68 +at_fn_group_banner 68 'reloadpolicy.at:1' \ "check ReloadPolicy" " " 2 at_xfail=no ( - $as_echo "63. $at_setup_line: testing $at_desc ..." + printf "%s\n" "68. $at_setup_line: testing $at_desc ..." $at_traceon @@ -67547,6 +68441,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -67563,7 +68458,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67577,7 +68472,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "reloadpolicy.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67597,7 +68492,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reloadpolicy.at:4: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=INPUT:REJECT,FORWARD:ACCEPT/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/reloadpolicy.at:4: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=INPUT:REJECT,FORWARD:ACCEPT/' ./firewalld.conf" at_fn_check_prepare_trace "reloadpolicy.at:4" ( $at_check_trace; sed -i 's/^ReloadPolicy=.*/ReloadPolicy=INPUT:REJECT,FORWARD:ACCEPT/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67667,7 +68562,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reloadpolicy.at:9: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=REJECT/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/reloadpolicy.at:9: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=REJECT/' ./firewalld.conf" at_fn_check_prepare_trace "reloadpolicy.at:9" ( $at_check_trace; sed -i 's/^ReloadPolicy=.*/ReloadPolicy=REJECT/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -67714,13 +68609,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_63 -#AT_START_64 -at_fn_group_banner 64 'firewall-offline-cmd.at:19' \ - "lokkit migration" " " 2 +#AT_STOP_68 +#AT_START_69 +at_fn_group_banner 69 'strict_forward_ports.at:1' \ + "strict forward ports" " " 2 at_xfail=no ( - $as_echo "64. $at_setup_line: testing $at_desc ..." + printf "%s\n" "69. $at_setup_line: testing $at_desc ..." $at_traceon @@ -67738,6 +68633,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -67754,29 +68650,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:19: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-offline-cmd.at:19" +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:19: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-offline-cmd.at:19" +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "strict_forward_ports.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -67796,6 +68692,11 @@ $at_traceon; } + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then @@ -67803,15 +68704,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:23: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --addmodule=abc --addmodule=efg --removemodule=xyz --trust=eth+ --trust=em0 --masq=tun+ --masq=tap+ --port=7:tcp --port=666:udp --custom-rules=ipv4:mangle:/etc/sysconfig/ebtables-config --service=dns --service=ftp --remove-service=dhcpv6-client --block-icmp=router-advertisement --block-icmp=router-solicitation --forward-port=if=ippp+:port=13:proto=tcp:toport=15:toaddr=1.2.3.4 --forward-port=if=ippp+:port=333:proto=udp:toport=444" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --addmodule=abc --addmodule=efg --removemodule=xyz --trust=eth+ --trust=em0 --masq=tun+ --masq=tap+ --port=7:tcp --port=666:udp --custom-rules=ipv4:mangle:/etc/sysconfig/ebtables-config --service=dns --service=ftp --remove-service=dhcpv6-client --block-icmp=router-advertisement --block-icmp=router-solicitation --forward-port=if=ippp+:port=13:proto=tcp:toport=15:toaddr=1.2.3.4 --forward-port=if=ippp+:port=333:proto=udp:toport=444" "firewall-offline-cmd.at:23" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --addmodule=abc --addmodule=efg --removemodule=xyz --trust=eth+ --trust=em0 --masq=tun+ --masq=tap+ --port=7:tcp --port=666:udp --custom-rules=ipv4:mangle:/etc/sysconfig/ebtables-config --service=dns --service=ftp --remove-service=dhcpv6-client --block-icmp=router-advertisement --block-icmp=router-solicitation --forward-port=if=ippp+:port=13:proto=tcp:toport=15:toaddr=1.2.3.4 --forward-port=if=ippp+:port=333:proto=udp:toport=444 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:4: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy inputPolicy " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy inputPolicy " "strict_forward_ports.at:4" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy inputPolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:23" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -67829,21 +68730,26 @@ $at_traceon; } + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:31: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+" "firewall-offline-cmd.at:31" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+ +printf "%s\n" "$at_srcdir/strict_forward_ports.at:5: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy inputPolicy --add-ingress-zone ANY " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy inputPolicy --add-ingress-zone ANY " "strict_forward_ports.at:5" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy inputPolicy --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:31" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -67861,21 +68767,26 @@ $at_traceon; } + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:32: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0" "firewall-offline-cmd.at:32" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:6: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy inputPolicy --add-egress-zone HOST " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy inputPolicy --add-egress-zone HOST " "strict_forward_ports.at:6" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy inputPolicy --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:32" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -67893,21 +68804,26 @@ $at_traceon; } + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:33: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service dns" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dns" "firewall-offline-cmd.at:33" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dns +printf "%s\n" "$at_srcdir/strict_forward_ports.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy inputPolicy --add-forward-port=port=12345:proto=tcp:toport=54321 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy inputPolicy --add-forward-port=port=12345:proto=tcp:toport=54321 " "strict_forward_ports.at:7" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy inputPolicy --add-forward-port=port=12345:proto=tcp:toport=54321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:33" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -67924,6 +68840,12 @@ $at_traceon; } + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then @@ -67931,15 +68853,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:34: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service ftp" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service ftp" "firewall-offline-cmd.at:34" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service ftp +printf "%s\n" "$at_srcdir/strict_forward_ports.at:9: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy forwardPolicy " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy forwardPolicy " "strict_forward_ports.at:9" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy forwardPolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:34" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -67957,21 +68879,26 @@ $at_traceon; } + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:35: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client" "firewall-offline-cmd.at:35" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client +printf "%s\n" "$at_srcdir/strict_forward_ports.at:10: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy forwardPolicy --add-ingress-zone ANY " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy forwardPolicy --add-ingress-zone ANY " "strict_forward_ports.at:10" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy forwardPolicy --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-offline-cmd.at:35" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -67989,21 +68916,26 @@ $at_traceon; } + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:36: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement" "firewall-offline-cmd.at:36" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement +printf "%s\n" "$at_srcdir/strict_forward_ports.at:11: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy forwardPolicy --add-egress-zone ANY " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy forwardPolicy --add-egress-zone ANY " "strict_forward_ports.at:11" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy forwardPolicy --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:36" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -68021,21 +68953,26 @@ $at_traceon; } + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:37: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation" "firewall-offline-cmd.at:37" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation +printf "%s\n" "$at_srcdir/strict_forward_ports.at:12: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy forwardPolicy --add-rich-rule='rule family=ipv4 priority=-1 source address=10.0.0.0/8 forward-port port=3333 protocol=tcp to-port=4444 to-addr=10.222.222.222' " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy forwardPolicy --add-rich-rule='rule family=ipv4 priority=-1 source address=10.0.0.0/8 forward-port port=3333 protocol=tcp to-port=4444 to-addr=10.222.222.222' " "strict_forward_ports.at:12" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy forwardPolicy --add-rich-rule='rule family=ipv4 priority=-1 source address=10.0.0.0/8 forward-port port=3333 protocol=tcp to-port=4444 to-addr=10.222.222.222' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:37" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -68052,6 +68989,12 @@ $at_traceon; } + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then @@ -68059,15 +69002,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:38: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4" "firewall-offline-cmd.at:38" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:14: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-policy outputPolicy " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy outputPolicy " "strict_forward_ports.at:14" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-policy outputPolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:38" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -68085,21 +69028,26 @@ $at_traceon; } + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444" "firewall-offline-cmd.at:39" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:15: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy outputPolicy --add-ingress-zone HOST " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy outputPolicy --add-ingress-zone HOST " "strict_forward_ports.at:15" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy outputPolicy --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:39" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -68108,56 +69056,9 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:42: cat << EOF > ./system-config-firewall - --addmodule=abc - --addmodule=efg - --removemodule=xyz - --trust=eth+ - --trust=em0 - --masq=tun+ - --masq=tap+ - --port=7:tcp - --port=666:udp - --custom-rules=ipv4:mangle:/etc/sysconfig/ebtables-config - --service=dns - --service=ftp - --remove-service=dhcpv6-client - --block-icmp=router-advertisement - --block-icmp=router-solicitation - --forward-port=if=ippp+:port=13:proto=tcp:toport=15:toaddr=1.2.3.4 - --forward-port=if=ippp+:port=333:proto=udp:toport=444 -EOF - " -at_fn_check_prepare_notrace 'an embedded newline' "firewall-offline-cmd.at:42" -( $at_check_trace; cat << EOF > ./system-config-firewall - --addmodule=abc - --addmodule=efg - --removemodule=xyz - --trust=eth+ - --trust=em0 - --masq=tun+ - --masq=tap+ - --port=7:tcp - --port=666:udp - --custom-rules=ipv4:mangle:/etc/sysconfig/ebtables-config - --service=dns - --service=ftp - --remove-service=dhcpv6-client - --block-icmp=router-advertisement - --block-icmp=router-solicitation - --forward-port=if=ippp+:port=13:proto=tcp:toport=15:toaddr=1.2.3.4 - --forward-port=if=ippp+:port=333:proto=udp:toport=444 -EOF -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:42" -$at_failed && at_fn_log_failure -$at_traceon; } + + @@ -68175,15 +69076,15 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:62: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --migrate-system-config-firewall=./system-config-firewall" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --migrate-system-config-firewall=./system-config-firewall" "firewall-offline-cmd.at:62" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --migrate-system-config-firewall=./system-config-firewall +printf "%s\n" "$at_srcdir/strict_forward_ports.at:16: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy outputPolicy --add-egress-zone ANY " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy outputPolicy --add-egress-zone ANY " "strict_forward_ports.at:16" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy outputPolicy --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:62" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -68201,21 +69102,26 @@ $at_traceon; } + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" fi { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:63: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+" "firewall-offline-cmd.at:63" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+ +printf "%s\n" "$at_srcdir/strict_forward_ports.at:17: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --policy outputPolicy --add-forward-port=port=11111:proto=tcp:toport=22222:toaddr=10.20.20.1 " +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy outputPolicy --add-forward-port=port=11111:proto=tcp:toport=22222:toaddr=10.20.20.1 " "strict_forward_ports.at:17" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --policy outputPolicy --add-forward-port=port=11111:proto=tcp:toport=22222:toaddr=10.20.20.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:63" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -68224,6 +69130,18 @@ $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:19: sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=no/' ./firewalld.conf" +at_fn_check_prepare_trace "strict_forward_ports.at:19" +( $at_check_trace; sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -68233,23 +69151,7 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:64: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0" "firewall-offline-cmd.at:64" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:64" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -68265,23 +69167,7 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:65: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service dns" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dns" "firewall-offline-cmd.at:65" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dns -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:65" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -68297,23 +69183,7 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:66: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service ftp" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service ftp" "firewall-offline-cmd.at:66" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service ftp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:66" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -68329,21 +69199,19 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:67: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client" "firewall-offline-cmd.at:67" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client + + +{ set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:107: sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "strict_forward_ports.at:107" +( $at_check_trace; sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-offline-cmd.at:67" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:107" $at_failed && at_fn_log_failure $at_traceon; } @@ -68361,23 +69229,7 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:68: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement" "firewall-offline-cmd.at:68" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:68" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -68393,23 +69245,7 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:69: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation" "firewall-offline-cmd.at:69" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:69" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -68425,23 +69261,7 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:70: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4" "firewall-offline-cmd.at:70" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -68457,23 +69277,25 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - { set +x -$as_echo "$at_srcdir/firewall-offline-cmd.at:71: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444" "firewall-offline-cmd.at:71" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + + + + + + + + + + + + @@ -68485,13 +69307,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_64 -#AT_START_65 -at_fn_group_banner 65 'firewalld.conf.at:1' \ - "firewalld.conf" " " 3 +#AT_STOP_69 +#AT_START_70 +at_fn_group_banner 70 'firewall-offline-cmd.at:19' \ + "lokkit migration" " " 2 at_xfail=no ( - $as_echo "65. $at_setup_line: testing $at_desc ..." + printf "%s\n" "70. $at_setup_line: testing $at_desc ..." $at_traceon @@ -68509,6 +69331,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -68525,7 +69348,779 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewalld.conf.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:19: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-offline-cmd.at:19" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:19: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-offline-cmd.at:19" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:23: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --addmodule=abc --addmodule=efg --removemodule=xyz --trust=eth+ --trust=em0 --masq=tun+ --masq=tap+ --port=7:tcp --port=666:udp --custom-rules=ipv4:mangle:/etc/sysconfig/ebtables-config --service=dns --service=ftp --remove-service=dhcpv6-client --block-icmp=router-advertisement --block-icmp=router-solicitation --forward-port=if=ippp+:port=13:proto=tcp:toport=15:toaddr=1.2.3.4 --forward-port=if=ippp+:port=333:proto=udp:toport=444" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --addmodule=abc --addmodule=efg --removemodule=xyz --trust=eth+ --trust=em0 --masq=tun+ --masq=tap+ --port=7:tcp --port=666:udp --custom-rules=ipv4:mangle:/etc/sysconfig/ebtables-config --service=dns --service=ftp --remove-service=dhcpv6-client --block-icmp=router-advertisement --block-icmp=router-solicitation --forward-port=if=ippp+:port=13:proto=tcp:toport=15:toaddr=1.2.3.4 --forward-port=if=ippp+:port=333:proto=udp:toport=444" "firewall-offline-cmd.at:23" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --addmodule=abc --addmodule=efg --removemodule=xyz --trust=eth+ --trust=em0 --masq=tun+ --masq=tap+ --port=7:tcp --port=666:udp --custom-rules=ipv4:mangle:/etc/sysconfig/ebtables-config --service=dns --service=ftp --remove-service=dhcpv6-client --block-icmp=router-advertisement --block-icmp=router-solicitation --forward-port=if=ippp+:port=13:proto=tcp:toport=15:toaddr=1.2.3.4 --forward-port=if=ippp+:port=333:proto=udp:toport=444 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:23" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:31: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+" "firewall-offline-cmd.at:31" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+ +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:31" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:32: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0" "firewall-offline-cmd.at:32" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:32" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:33: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service dns" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dns" "firewall-offline-cmd.at:33" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dns +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:33" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:34: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service ftp" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service ftp" "firewall-offline-cmd.at:34" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service ftp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:34" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:35: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client" "firewall-offline-cmd.at:35" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-offline-cmd.at:35" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:36: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement" "firewall-offline-cmd.at:36" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:36" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:37: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation" "firewall-offline-cmd.at:37" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:37" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:38: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4" "firewall-offline-cmd.at:38" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:38" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444" "firewall-offline-cmd.at:39" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:39" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:42: cat << EOF > ./system-config-firewall + --addmodule=abc + --addmodule=efg + --removemodule=xyz + --trust=eth+ + --trust=em0 + --masq=tun+ + --masq=tap+ + --port=7:tcp + --port=666:udp + --custom-rules=ipv4:mangle:/etc/sysconfig/ebtables-config + --service=dns + --service=ftp + --remove-service=dhcpv6-client + --block-icmp=router-advertisement + --block-icmp=router-solicitation + --forward-port=if=ippp+:port=13:proto=tcp:toport=15:toaddr=1.2.3.4 + --forward-port=if=ippp+:port=333:proto=udp:toport=444 +EOF + " +at_fn_check_prepare_notrace 'an embedded newline' "firewall-offline-cmd.at:42" +( $at_check_trace; cat << EOF > ./system-config-firewall + --addmodule=abc + --addmodule=efg + --removemodule=xyz + --trust=eth+ + --trust=em0 + --masq=tun+ + --masq=tap+ + --port=7:tcp + --port=666:udp + --custom-rules=ipv4:mangle:/etc/sysconfig/ebtables-config + --service=dns + --service=ftp + --remove-service=dhcpv6-client + --block-icmp=router-advertisement + --block-icmp=router-solicitation + --forward-port=if=ippp+:port=13:proto=tcp:toport=15:toaddr=1.2.3.4 + --forward-port=if=ippp+:port=333:proto=udp:toport=444 +EOF + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:42" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:62: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --migrate-system-config-firewall=./system-config-firewall" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --migrate-system-config-firewall=./system-config-firewall" "firewall-offline-cmd.at:62" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --migrate-system-config-firewall=./system-config-firewall +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:62" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:63: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+" "firewall-offline-cmd.at:63" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=eth+ +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:63" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:64: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0" "firewall-offline-cmd.at:64" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone=trusted --query-interface=em0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:64" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:65: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service dns" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dns" "firewall-offline-cmd.at:65" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dns +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:65" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:66: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service ftp" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service ftp" "firewall-offline-cmd.at:66" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service ftp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:66" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:67: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client" "firewall-offline-cmd.at:67" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-service dhcpv6-client +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-offline-cmd.at:67" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:68: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement" "firewall-offline-cmd.at:68" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-advertisement +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:69: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation" "firewall-offline-cmd.at:69" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-icmp-block router-solicitation +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:69" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:70: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4" "firewall-offline-cmd.at:70" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=13:proto=tcp:toport=15:toaddr=1.2.3.4 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-offline-cmd.at:71: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444" "firewall-offline-cmd.at:71" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --query-forward-port port=333:proto=udp:toport=444 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-offline-cmd.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_70 +#AT_START_71 +at_fn_group_banner 71 'firewalld.conf.at:1' \ + "firewalld.conf" " " 3 +at_xfail=no +( + printf "%s\n" "71. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewalld.conf.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -68539,7 +70134,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewalld.conf.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewalld.conf.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewalld.conf.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -68555,7 +70150,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewalld.conf.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewalld.conf.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -68619,7 +70214,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewalld.conf.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewalld.conf.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -68710,7 +70305,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewalld.conf.at:1" >"$at_check_line_file" + printf "%s\n" "firewalld.conf.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewalld.conf.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -68729,7 +70324,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewalld.conf.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewalld.conf.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -68750,7 +70345,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewalld.conf.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewalld.conf.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewalld.conf.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -68767,7 +70362,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewalld.conf.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -68782,7 +70377,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewalld.conf.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -68799,7 +70394,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -68807,7 +70402,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewalld.conf.at:1" >"$at_check_line_file" + printf "%s\n" "firewalld.conf.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewalld.conf.at:1" fi echo "$!" > firewalld.pid @@ -68824,7 +70419,7 @@ at_fn_check_skip 99 "$at_srcdir/firewalld.conf.at:1" fi sleep 1 done - $as_echo "firewalld.conf.at:1" >"$at_check_line_file" + printf "%s\n" "firewalld.conf.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewalld.conf.at:1" @@ -68839,11 +70434,13 @@ at_fn_check_skip 99 "$at_srcdir/firewalld.conf.at:1" : EXPECTED_IPV6_RPFILTER_VALUE=yes + EXPECTED_IPV6_RPFILTER2_VALUE=strict else : EXPECTED_IPV6_RPFILTER_VALUE=no + EXPECTED_IPV6_RPFILTER2_VALUE=no fi @@ -68861,15 +70458,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewalld.conf.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:10" +printf "%s\n" "$at_srcdir/firewalld.conf.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -68889,30 +70486,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:10" +printf "%s\n" "$at_srcdir/firewalld.conf.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:12" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:10" +printf "%s\n" "$at_srcdir/firewalld.conf.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -68923,14 +70520,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.GetAll string:\"org.fedoraproject.FirewallD1.config\" | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | awk 'BEGIN{line_mark=-99; line=0} {line++; if (line == line_mark + 1) {buffer = $0}; if (line == line_mark + 2) {print buffer \" : \" $0} } /^dict entry/{line_mark=line}' | sort " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:17" +printf "%s\n" "$at_srcdir/firewalld.conf.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.GetAll string:\"org.fedoraproject.FirewallD1.config\" | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | awk 'BEGIN{line_mark=-99; line=0} {line++; if (line == line_mark + 1) {buffer = $0}; if (line == line_mark + 2) {print buffer \" : \" $0} } /^dict entry/{line_mark=line}' | sort " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.GetAll string:"org.fedoraproject.FirewallD1.config" | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | awk 'BEGIN{line_mark=-99; line=0} {line++; if (line == line_mark + 1) {buffer = $0}; if (line == line_mark + 2) {print buffer " : " $0} } /^dict entry/{line_mark=line}' | sort ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "string \"AllowZoneDrifting\" : variant string \"no\" +echo >>"$at_stdout"; printf "%s\n" "string \"AllowZoneDrifting\" : variant string \"no\" string \"AutomaticHelpers\" : variant string \"no\" string \"CleanupModulesOnExit\" : variant string \"no\" string \"CleanupOnExit\" : variant string \"yes\" @@ -68938,16 +70535,19 @@ string \"DefaultZone\" : variant string \"public\" string \"FirewallBackend\" : variant string \"nftables\" string \"FlushAllOnReload\" : variant string \"yes\" string \"IPv6_rpfilter\" : variant string \"${EXPECTED_IPV6_RPFILTER_VALUE}\" +string \"IPv6_rpfilter2\" : variant string \"${EXPECTED_IPV6_RPFILTER2_VALUE}\" string \"IndividualCalls\" : variant string \"${EXPECTED_INDIVIDUAL_CALLS_VALUE}\" string \"Lockdown\" : variant string \"no\" string \"LogDenied\" : variant string \"off\" string \"MinimalMark\" : variant int32 100 string \"NftablesCounters\" : variant string \"no\" string \"NftablesFlowtable\" : variant string \"off\" +string \"NftablesTableOwner\" : variant string \"yes\" string \"RFC3964_IPv4\" : variant string \"yes\" +string \"StrictForwardPorts\" : variant string \"no\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:19" $at_failed && at_fn_log_failure $at_traceon; } @@ -68960,15 +70560,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"MinimalMark\" int32:1234 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:43" +printf "%s\n" "$at_srcdir/firewalld.conf.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"MinimalMark\" int32:1234 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:48" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"MinimalMark" int32:1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:43" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -68977,17 +70577,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"MinimalMark\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:43" +printf "%s\n" "$at_srcdir/firewalld.conf.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"MinimalMark\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:48" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"MinimalMark" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant int32 100 +echo >>"$at_stdout"; printf "%s\n" "variant int32 100 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:43" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -68998,15 +70598,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"AutomaticHelpers\" string:\"yes\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:44" +printf "%s\n" "$at_srcdir/firewalld.conf.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"AutomaticHelpers\" string:\"yes\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:49" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"AutomaticHelpers" string:"yes" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:49" $at_failed && at_fn_log_failure $at_traceon; } @@ -69015,17 +70615,55 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"AutomaticHelpers\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:44" +printf "%s\n" "$at_srcdir/firewalld.conf.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"AutomaticHelpers\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:49" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"AutomaticHelpers" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"no\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"no\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:49" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewalld.conf.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"Lockdown\" string:\"no\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:50" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"Lockdown" string:"no" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:50" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewalld.conf.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"Lockdown\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:50" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"Lockdown" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "variant string \"no\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:50" $at_failed && at_fn_log_failure $at_traceon; } @@ -69036,15 +70674,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"Lockdown\" string:\"yes\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:45" +printf "%s\n" "$at_srcdir/firewalld.conf.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"Lockdown\" string:\"yes\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:51" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"Lockdown" string:"yes" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:45" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -69053,17 +70691,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"Lockdown\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:45" +printf "%s\n" "$at_srcdir/firewalld.conf.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"Lockdown\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:51" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"Lockdown" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"yes\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"no\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:45" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -69074,15 +70712,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"LogDenied\" string:\"all\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:46" +printf "%s\n" "$at_srcdir/firewalld.conf.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"LogDenied\" string:\"all\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"LogDenied" string:"all" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:46" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -69091,17 +70729,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"LogDenied\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:46" +printf "%s\n" "$at_srcdir/firewalld.conf.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"LogDenied\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"LogDenied" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"all\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"all\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:46" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -69112,15 +70750,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter\" string:\"yes\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:47" +printf "%s\n" "$at_srcdir/firewalld.conf.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter\" string:\"yes\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter" string:"yes" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -69129,17 +70767,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:47" +printf "%s\n" "$at_srcdir/firewalld.conf.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"yes\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"yes\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -69150,15 +70788,53 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"IndividualCalls\" string:\"yes\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:48" +printf "%s\n" "$at_srcdir/firewalld.conf.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" string:\"no\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" string:"no" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:54" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewalld.conf.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "variant string \"no\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:54" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewalld.conf.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"IndividualCalls\" string:\"yes\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"IndividualCalls" string:"yes" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:48" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -69167,17 +70843,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IndividualCalls\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:48" +printf "%s\n" "$at_srcdir/firewalld.conf.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IndividualCalls\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IndividualCalls" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"yes\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"yes\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:48" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -69188,15 +70864,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"FirewallBackend\" string:\"iptables\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:49" +printf "%s\n" "$at_srcdir/firewalld.conf.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"FirewallBackend\" string:\"iptables\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:56" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"FirewallBackend" string:"iptables" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:49" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:56" $at_failed && at_fn_log_failure $at_traceon; } @@ -69205,17 +70881,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"FirewallBackend\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:49" +printf "%s\n" "$at_srcdir/firewalld.conf.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"FirewallBackend\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:56" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"FirewallBackend" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"iptables\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"iptables\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:49" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:56" $at_failed && at_fn_log_failure $at_traceon; } @@ -69226,15 +70902,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"FlushAllOnReload\" string:\"no\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:50" +printf "%s\n" "$at_srcdir/firewalld.conf.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"FlushAllOnReload\" string:\"no\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:57" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"FlushAllOnReload" string:"no" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:57" $at_failed && at_fn_log_failure $at_traceon; } @@ -69243,17 +70919,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"FlushAllOnReload\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:50" +printf "%s\n" "$at_srcdir/firewalld.conf.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"FlushAllOnReload\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:57" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"FlushAllOnReload" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"no\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"no\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:57" $at_failed && at_fn_log_failure $at_traceon; } @@ -69264,15 +70940,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"CleanupModulesOnExit\" string:\"yes\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:51" +printf "%s\n" "$at_srcdir/firewalld.conf.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"CleanupModulesOnExit\" string:\"yes\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"CleanupModulesOnExit" string:"yes" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:51" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -69281,17 +70957,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"CleanupModulesOnExit\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:51" +printf "%s\n" "$at_srcdir/firewalld.conf.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"CleanupModulesOnExit\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"CleanupModulesOnExit" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"yes\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"yes\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:51" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -69302,15 +70978,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"CleanupOnExit\" string:\"no\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:52" +printf "%s\n" "$at_srcdir/firewalld.conf.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"CleanupOnExit\" string:\"no\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:59" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"CleanupOnExit" string:"no" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:52" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:59" $at_failed && at_fn_log_failure $at_traceon; } @@ -69319,17 +70995,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"CleanupOnExit\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:52" +printf "%s\n" "$at_srcdir/firewalld.conf.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"CleanupOnExit\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:59" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"CleanupOnExit" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"no\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"no\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:52" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:59" $at_failed && at_fn_log_failure $at_traceon; } @@ -69340,15 +71016,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"RFC3964_IPv4\" string:\"no\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:53" +printf "%s\n" "$at_srcdir/firewalld.conf.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"RFC3964_IPv4\" string:\"no\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:60" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"RFC3964_IPv4" string:"no" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:53" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:60" $at_failed && at_fn_log_failure $at_traceon; } @@ -69357,17 +71033,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"RFC3964_IPv4\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:53" +printf "%s\n" "$at_srcdir/firewalld.conf.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"RFC3964_IPv4\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:60" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"RFC3964_IPv4" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"no\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"no\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:53" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:60" $at_failed && at_fn_log_failure $at_traceon; } @@ -69378,15 +71054,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"AllowZoneDrifting\" string:\"yes\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:54" +printf "%s\n" "$at_srcdir/firewalld.conf.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"AllowZoneDrifting\" string:\"yes\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:61" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"AllowZoneDrifting" string:"yes" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:54" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:61" $at_failed && at_fn_log_failure $at_traceon; } @@ -69395,17 +71071,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"AllowZoneDrifting\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:54" +printf "%s\n" "$at_srcdir/firewalld.conf.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"AllowZoneDrifting\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:61" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"AllowZoneDrifting" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"no\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"no\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:54" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:61" $at_failed && at_fn_log_failure $at_traceon; } @@ -69416,15 +71092,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"NftablesCounters\" string:\"yes\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:55" +printf "%s\n" "$at_srcdir/firewalld.conf.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"NftablesCounters\" string:\"yes\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:62" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"NftablesCounters" string:"yes" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:55" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:62" $at_failed && at_fn_log_failure $at_traceon; } @@ -69433,17 +71109,93 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewalld.conf.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"NftablesCounters\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:55" +printf "%s\n" "$at_srcdir/firewalld.conf.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"NftablesCounters\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:62" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"NftablesCounters" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "variant string \"yes\" +echo >>"$at_stdout"; printf "%s\n" "variant string \"yes\" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:55" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:62" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewalld.conf.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"NftablesTableOwner\" string:\"no\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:63" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"NftablesTableOwner" string:"no" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:63" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewalld.conf.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"NftablesTableOwner\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:63" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"NftablesTableOwner" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "variant string \"no\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:63" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewalld.conf.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:\"org.fedoraproject.FirewallD1.config\" string:\"StrictForwardPorts\" string:\"yes\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewalld.conf.at:64" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Set string:"org.fedoraproject.FirewallD1.config" string:"StrictForwardPorts" string:"yes" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:64" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewalld.conf.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"StrictForwardPorts\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewalld.conf.at:64" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"StrictForwardPorts" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "variant string \"yes\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewalld.conf.at:64" $at_failed && at_fn_log_failure $at_traceon; } @@ -69455,9 +71207,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewalld.conf.at:59" >"$at_check_line_file" + printf "%s\n" "firewalld.conf.at:68" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewalld.conf.at:59" + && at_fn_check_skip 99 "$at_srcdir/firewalld.conf.at:68" fi @@ -69466,13 +71218,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_65 -#AT_START_66 -at_fn_group_banner 66 'service.at:1' \ +#AT_STOP_71 +#AT_START_72 +at_fn_group_banner 72 'service.at:1' \ "dbus api - services" " " 3 at_xfail=no ( - $as_echo "66. $at_setup_line: testing $at_desc ..." + printf "%s\n" "72. $at_setup_line: testing $at_desc ..." $at_traceon @@ -69490,6 +71242,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -69506,7 +71259,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/service.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/service.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -69520,7 +71273,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/service.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/service.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "service.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -69536,7 +71289,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/service.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "service.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -69600,7 +71353,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/service.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/service.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -69691,7 +71444,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "service.at:1" >"$at_check_line_file" + printf "%s\n" "service.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/service.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -69710,7 +71463,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/service.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/service.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -69731,7 +71484,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/service.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/service.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "service.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -69748,7 +71501,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/service.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -69763,7 +71516,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/service.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -69780,7 +71533,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -69788,7 +71541,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "service.at:1" >"$at_check_line_file" + printf "%s\n" "service.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/service.at:1" fi echo "$!" > firewalld.pid @@ -69805,7 +71558,7 @@ at_fn_check_skip 99 "$at_srcdir/service.at:1" fi sleep 1 done - $as_echo "service.at:1" >"$at_check_line_file" + printf "%s\n" "service.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/service.at:1" @@ -69814,15 +71567,15 @@ at_fn_check_skip 99 "$at_srcdir/service.at:1" - $as_echo "service.at:4" >"$at_check_line_file" + printf "%s\n" "service.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:4" - $as_echo "service.at:4" >"$at_check_line_file" + printf "%s\n" "service.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:4" { set +x -$as_echo "$at_srcdir/service.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//method[@name=\"addService\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -69835,7 +71588,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -69849,12 +71602,12 @@ $at_traceon; } - $as_echo "service.at:11" >"$at_check_line_file" + printf "%s\n" "service.at:11" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:11" { set +x -$as_echo "$at_srcdir/service.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.addService \"foobar\" '(\"1.0\", \"foobar\", \"foobar service is for foobar\", [(\"1234\", \"udp\"), (\"22\", \"tcp\"), (\"1234\", \"udp\")], [\"ftp\"], {\"ipv4\": \"1.2.3.4\"}, [\"icmp\", \"igmp\"], [(\"4321\", \"tcp\"), (\"4321\", \"udp\")] )' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -69878,15 +71631,15 @@ SERVICE_OBJ=$(sed -e "s/.*config\/service\/\([^']\+\)['].*/\1/" ./stdout) export SERVICE_OBJ - $as_echo "service.at:26" >"$at_check_line_file" + printf "%s\n" "service.at:26" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:26" - $as_echo "service.at:26" >"$at_check_line_file" + printf "%s\n" "service.at:26" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:26" { set +x -$as_echo "$at_srcdir/service.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getSettings\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -69899,7 +71652,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -69911,12 +71664,12 @@ $at_traceon; } - $as_echo "service.at:31" >"$at_check_line_file" + printf "%s\n" "service.at:31" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:31" { set +x -$as_echo "$at_srcdir/service.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getSettings ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -69929,7 +71682,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(('1.0', 'foobar', 'foobar service is for foobar', [('1234', 'udp'), ('22', 'tcp')], ['ftp'], {'ipv4': '1.2.3.4'}, ['icmp', 'igmp'], [('4321', 'tcp'), ('4321', 'udp')]),) +echo >>"$at_stdout"; printf "%s\n" "(('1.0', 'foobar', 'foobar service is for foobar', [('1234', 'udp'), ('22', 'tcp')], ['ftp'], {'ipv4': '1.2.3.4'}, ['icmp', 'igmp'], [('4321', 'tcp'), ('4321', 'udp')]),) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service.at:31" @@ -69940,15 +71693,15 @@ $at_traceon; } - $as_echo "service.at:35" >"$at_check_line_file" + printf "%s\n" "service.at:35" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:35" - $as_echo "service.at:35" >"$at_check_line_file" + printf "%s\n" "service.at:35" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:35" { set +x -$as_echo "$at_srcdir/service.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"update\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -69961,7 +71714,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -69973,12 +71726,12 @@ $at_traceon; } - $as_echo "service.at:40" >"$at_check_line_file" + printf "%s\n" "service.at:40" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:40" { set +x -$as_echo "$at_srcdir/service.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.update '(\"1.1\", \"foobar new\", \"foobar new service is for foobar\", [(\"12345\", \"udp\"), (\"2222\", \"tcp\")], [\"ftp\"], {}, [\"icmp\"], [(\"4321\", \"tcp\")] )' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70000,12 +71753,12 @@ $at_traceon; } - $as_echo "service.at:52" >"$at_check_line_file" + printf "%s\n" "service.at:52" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:52" { set +x -$as_echo "$at_srcdir/service.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getSettings ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70018,7 +71771,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(('1.1', 'foobar new', 'foobar new service is for foobar', [('12345', 'udp'), ('2222', 'tcp')], ['ftp'], @a{ss} {}, ['icmp'], [('4321', 'tcp')]),) +echo >>"$at_stdout"; printf "%s\n" "(('1.1', 'foobar new', 'foobar new service is for foobar', [('12345', 'udp'), ('2222', 'tcp')], ['ftp'], @a{ss} {}, ['icmp'], [('4321', 'tcp')]),) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service.at:52" @@ -70029,15 +71782,15 @@ $at_traceon; } - $as_echo "service.at:56" >"$at_check_line_file" + printf "%s\n" "service.at:56" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:56" - $as_echo "service.at:56" >"$at_check_line_file" + printf "%s\n" "service.at:56" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:56" { set +x -$as_echo "$at_srcdir/service.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"loadDefaults\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70050,7 +71803,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: @@ -70061,12 +71814,12 @@ $at_traceon; } - $as_echo "service.at:60" >"$at_check_line_file" + printf "%s\n" "service.at:60" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:60" { set +x -$as_echo "$at_srcdir/service.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getServiceByName \"ssh\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70089,12 +71842,12 @@ $at_traceon; } SERVICE_OBJ_TEMP=$(sed -e "s/.*config\/service\/\([^']\+\)['].*/\1/" ./stdout) export SERVICE_OBJ_TEMP - $as_echo "service.at:63" >"$at_check_line_file" + printf "%s\n" "service.at:63" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:63" { set +x -$as_echo "$at_srcdir/service.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ_TEMP} --method org.fedoraproject.FirewallD1.config.service.setVersion \"1.1\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70115,12 +71868,12 @@ $at_traceon; } - $as_echo "service.at:64" >"$at_check_line_file" + printf "%s\n" "service.at:64" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:64" { set +x -$as_echo "$at_srcdir/service.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ_TEMP} --method org.fedoraproject.FirewallD1.config.service.loadDefaults ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70141,12 +71894,12 @@ $at_traceon; } - $as_echo "service.at:65" >"$at_check_line_file" + printf "%s\n" "service.at:65" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:65" { set +x -$as_echo "$at_srcdir/service.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getServiceByName \"ssh\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70169,12 +71922,12 @@ $at_traceon; } SERVICE_OBJ_TEMP=$(sed -e "s/.*config\/service\/\([^']\+\)['].*/\1/" ./stdout) export SERVICE_OBJ_TEMP - $as_echo "service.at:68" >"$at_check_line_file" + printf "%s\n" "service.at:68" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:68" { set +x -$as_echo "$at_srcdir/service.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ_TEMP} --method org.fedoraproject.FirewallD1.config.service.getVersion ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70187,7 +71940,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('',) +echo >>"$at_stdout"; printf "%s\n" "('',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service.at:68" @@ -70198,15 +71951,15 @@ $at_traceon; } - $as_echo "service.at:72" >"$at_check_line_file" + printf "%s\n" "service.at:72" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:72" - $as_echo "service.at:72" >"$at_check_line_file" + printf "%s\n" "service.at:72" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:72" { set +x -$as_echo "$at_srcdir/service.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"remove\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70219,7 +71972,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: @@ -70230,15 +71983,15 @@ $at_traceon; } - $as_echo "service.at:76" >"$at_check_line_file" + printf "%s\n" "service.at:76" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:76" - $as_echo "service.at:76" >"$at_check_line_file" + printf "%s\n" "service.at:76" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:76" { set +x -$as_echo "$at_srcdir/service.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"rename\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70251,7 +72004,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70264,15 +72017,15 @@ $at_traceon; } - $as_echo "service.at:82" >"$at_check_line_file" + printf "%s\n" "service.at:82" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:82" - $as_echo "service.at:82" >"$at_check_line_file" + printf "%s\n" "service.at:82" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:82" { set +x -$as_echo "$at_srcdir/service.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getVersion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70285,7 +72038,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70297,15 +72050,15 @@ $at_traceon; } - $as_echo "service.at:87" >"$at_check_line_file" + printf "%s\n" "service.at:87" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:87" - $as_echo "service.at:87" >"$at_check_line_file" + printf "%s\n" "service.at:87" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:87" { set +x -$as_echo "$at_srcdir/service.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"setVersion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70318,7 +72071,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70331,15 +72084,15 @@ $at_traceon; } - $as_echo "service.at:93" >"$at_check_line_file" + printf "%s\n" "service.at:93" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:93" - $as_echo "service.at:93" >"$at_check_line_file" + printf "%s\n" "service.at:93" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:93" { set +x -$as_echo "$at_srcdir/service.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getShort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70352,7 +72105,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70364,15 +72117,15 @@ $at_traceon; } - $as_echo "service.at:98" >"$at_check_line_file" + printf "%s\n" "service.at:98" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:98" - $as_echo "service.at:98" >"$at_check_line_file" + printf "%s\n" "service.at:98" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:98" { set +x -$as_echo "$at_srcdir/service.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"setShort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70385,7 +72138,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70398,15 +72151,15 @@ $at_traceon; } - $as_echo "service.at:104" >"$at_check_line_file" + printf "%s\n" "service.at:104" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:104" - $as_echo "service.at:104" >"$at_check_line_file" + printf "%s\n" "service.at:104" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:104" { set +x -$as_echo "$at_srcdir/service.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getDescription\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70419,7 +72172,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70431,15 +72184,15 @@ $at_traceon; } - $as_echo "service.at:109" >"$at_check_line_file" + printf "%s\n" "service.at:109" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:109" - $as_echo "service.at:109" >"$at_check_line_file" + printf "%s\n" "service.at:109" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:109" { set +x -$as_echo "$at_srcdir/service.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"setDescription\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70452,7 +72205,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70465,15 +72218,15 @@ $at_traceon; } - $as_echo "service.at:115" >"$at_check_line_file" + printf "%s\n" "service.at:115" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:115" - $as_echo "service.at:115" >"$at_check_line_file" + printf "%s\n" "service.at:115" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:115" { set +x -$as_echo "$at_srcdir/service.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getPorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70486,7 +72239,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70498,15 +72251,15 @@ $at_traceon; } - $as_echo "service.at:120" >"$at_check_line_file" + printf "%s\n" "service.at:120" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:120" - $as_echo "service.at:120" >"$at_check_line_file" + printf "%s\n" "service.at:120" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:120" { set +x -$as_echo "$at_srcdir/service.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"setPorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70519,7 +72272,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70531,15 +72284,15 @@ $at_traceon; } - $as_echo "service.at:125" >"$at_check_line_file" + printf "%s\n" "service.at:125" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:125" - $as_echo "service.at:125" >"$at_check_line_file" + printf "%s\n" "service.at:125" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:125" { set +x -$as_echo "$at_srcdir/service.at:125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"addPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70552,7 +72305,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -70565,15 +72318,15 @@ $at_traceon; } - $as_echo "service.at:131" >"$at_check_line_file" + printf "%s\n" "service.at:131" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:131" - $as_echo "service.at:131" >"$at_check_line_file" + printf "%s\n" "service.at:131" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:131" { set +x -$as_echo "$at_srcdir/service.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"removePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70586,7 +72339,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -70599,15 +72352,15 @@ $at_traceon; } - $as_echo "service.at:137" >"$at_check_line_file" + printf "%s\n" "service.at:137" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:137" - $as_echo "service.at:137" >"$at_check_line_file" + printf "%s\n" "service.at:137" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:137" { set +x -$as_echo "$at_srcdir/service.at:137: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:137: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"queryPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70620,7 +72373,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -70635,15 +72388,15 @@ $at_traceon; } - $as_echo "service.at:145" >"$at_check_line_file" + printf "%s\n" "service.at:145" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:145" - $as_echo "service.at:145" >"$at_check_line_file" + printf "%s\n" "service.at:145" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:145" { set +x -$as_echo "$at_srcdir/service.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getSourcePorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70656,7 +72409,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70668,15 +72421,15 @@ $at_traceon; } - $as_echo "service.at:150" >"$at_check_line_file" + printf "%s\n" "service.at:150" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:150" - $as_echo "service.at:150" >"$at_check_line_file" + printf "%s\n" "service.at:150" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:150" { set +x -$as_echo "$at_srcdir/service.at:150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"setSourcePorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70689,7 +72442,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70701,15 +72454,15 @@ $at_traceon; } - $as_echo "service.at:155" >"$at_check_line_file" + printf "%s\n" "service.at:155" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:155" - $as_echo "service.at:155" >"$at_check_line_file" + printf "%s\n" "service.at:155" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:155" { set +x -$as_echo "$at_srcdir/service.at:155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"addSourcePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70722,7 +72475,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -70735,15 +72488,15 @@ $at_traceon; } - $as_echo "service.at:161" >"$at_check_line_file" + printf "%s\n" "service.at:161" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:161" - $as_echo "service.at:161" >"$at_check_line_file" + printf "%s\n" "service.at:161" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:161" { set +x -$as_echo "$at_srcdir/service.at:161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"removeSourcePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70756,7 +72509,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -70769,15 +72522,15 @@ $at_traceon; } - $as_echo "service.at:167" >"$at_check_line_file" + printf "%s\n" "service.at:167" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:167" - $as_echo "service.at:167" >"$at_check_line_file" + printf "%s\n" "service.at:167" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:167" { set +x -$as_echo "$at_srcdir/service.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"querySourcePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70790,7 +72543,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -70805,15 +72558,15 @@ $at_traceon; } - $as_echo "service.at:175" >"$at_check_line_file" + printf "%s\n" "service.at:175" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:175" - $as_echo "service.at:175" >"$at_check_line_file" + printf "%s\n" "service.at:175" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:175" { set +x -$as_echo "$at_srcdir/service.at:175: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:175: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getProtocols\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70826,7 +72579,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70838,15 +72591,15 @@ $at_traceon; } - $as_echo "service.at:180" >"$at_check_line_file" + printf "%s\n" "service.at:180" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:180" - $as_echo "service.at:180" >"$at_check_line_file" + printf "%s\n" "service.at:180" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:180" { set +x -$as_echo "$at_srcdir/service.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"setProtocols\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70859,7 +72612,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70871,15 +72624,15 @@ $at_traceon; } - $as_echo "service.at:185" >"$at_check_line_file" + printf "%s\n" "service.at:185" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:185" - $as_echo "service.at:185" >"$at_check_line_file" + printf "%s\n" "service.at:185" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:185" { set +x -$as_echo "$at_srcdir/service.at:185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"addProtocol\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70892,7 +72645,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70904,15 +72657,15 @@ $at_traceon; } - $as_echo "service.at:190" >"$at_check_line_file" + printf "%s\n" "service.at:190" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:190" - $as_echo "service.at:190" >"$at_check_line_file" + printf "%s\n" "service.at:190" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:190" { set +x -$as_echo "$at_srcdir/service.at:190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"removeProtocol\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70925,7 +72678,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -70937,15 +72690,15 @@ $at_traceon; } - $as_echo "service.at:195" >"$at_check_line_file" + printf "%s\n" "service.at:195" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:195" - $as_echo "service.at:195" >"$at_check_line_file" + printf "%s\n" "service.at:195" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:195" { set +x -$as_echo "$at_srcdir/service.at:195: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:195: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"queryProtocol\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70958,7 +72711,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -70972,15 +72725,15 @@ $at_traceon; } - $as_echo "service.at:202" >"$at_check_line_file" + printf "%s\n" "service.at:202" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:202" - $as_echo "service.at:202" >"$at_check_line_file" + printf "%s\n" "service.at:202" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:202" { set +x -$as_echo "$at_srcdir/service.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getModules\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -70993,7 +72746,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -71005,15 +72758,15 @@ $at_traceon; } - $as_echo "service.at:207" >"$at_check_line_file" + printf "%s\n" "service.at:207" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:207" - $as_echo "service.at:207" >"$at_check_line_file" + printf "%s\n" "service.at:207" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:207" { set +x -$as_echo "$at_srcdir/service.at:207: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:207: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"setModules\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71026,7 +72779,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -71038,15 +72791,15 @@ $at_traceon; } - $as_echo "service.at:212" >"$at_check_line_file" + printf "%s\n" "service.at:212" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:212" - $as_echo "service.at:212" >"$at_check_line_file" + printf "%s\n" "service.at:212" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:212" { set +x -$as_echo "$at_srcdir/service.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"addModule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71059,7 +72812,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -71071,15 +72824,15 @@ $at_traceon; } - $as_echo "service.at:217" >"$at_check_line_file" + printf "%s\n" "service.at:217" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:217" - $as_echo "service.at:217" >"$at_check_line_file" + printf "%s\n" "service.at:217" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:217" { set +x -$as_echo "$at_srcdir/service.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"removeModule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71092,7 +72845,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -71104,15 +72857,15 @@ $at_traceon; } - $as_echo "service.at:222" >"$at_check_line_file" + printf "%s\n" "service.at:222" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:222" - $as_echo "service.at:222" >"$at_check_line_file" + printf "%s\n" "service.at:222" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:222" { set +x -$as_echo "$at_srcdir/service.at:222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"queryModule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71125,7 +72878,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -71139,15 +72892,15 @@ $at_traceon; } - $as_echo "service.at:229" >"$at_check_line_file" + printf "%s\n" "service.at:229" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:229" - $as_echo "service.at:229" >"$at_check_line_file" + printf "%s\n" "service.at:229" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:229" { set +x -$as_echo "$at_srcdir/service.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getDestinations\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71160,7 +72913,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -71172,15 +72925,15 @@ $at_traceon; } - $as_echo "service.at:234" >"$at_check_line_file" + printf "%s\n" "service.at:234" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:234" - $as_echo "service.at:234" >"$at_check_line_file" + printf "%s\n" "service.at:234" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:234" { set +x -$as_echo "$at_srcdir/service.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"setDestinations\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71193,7 +72946,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -71205,15 +72958,15 @@ $at_traceon; } - $as_echo "service.at:239" >"$at_check_line_file" + printf "%s\n" "service.at:239" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:239" - $as_echo "service.at:239" >"$at_check_line_file" + printf "%s\n" "service.at:239" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:239" { set +x -$as_echo "$at_srcdir/service.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"setDestination\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71226,7 +72979,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -71239,15 +72992,15 @@ $at_traceon; } - $as_echo "service.at:245" >"$at_check_line_file" + printf "%s\n" "service.at:245" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:245" - $as_echo "service.at:245" >"$at_check_line_file" + printf "%s\n" "service.at:245" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:245" { set +x -$as_echo "$at_srcdir/service.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getDestination\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71260,7 +73013,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -71273,15 +73026,15 @@ $at_traceon; } - $as_echo "service.at:251" >"$at_check_line_file" + printf "%s\n" "service.at:251" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:251" - $as_echo "service.at:251" >"$at_check_line_file" + printf "%s\n" "service.at:251" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:251" { set +x -$as_echo "$at_srcdir/service.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"removeDestination\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71294,7 +73047,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -71306,15 +73059,15 @@ $at_traceon; } - $as_echo "service.at:256" >"$at_check_line_file" + printf "%s\n" "service.at:256" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:256" - $as_echo "service.at:256" >"$at_check_line_file" + printf "%s\n" "service.at:256" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:256" { set +x -$as_echo "$at_srcdir/service.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"queryDestination\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71327,7 +73080,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -71342,15 +73095,15 @@ $at_traceon; } - $as_echo "service.at:264" >"$at_check_line_file" + printf "%s\n" "service.at:264" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:264" - $as_echo "service.at:264" >"$at_check_line_file" + printf "%s\n" "service.at:264" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:264" { set +x -$as_echo "$at_srcdir/service.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getIncludes\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71363,7 +73116,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -71375,12 +73128,12 @@ $at_traceon; } - $as_echo "service.at:269" >"$at_check_line_file" + printf "%s\n" "service.at:269" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:269" { set +x -$as_echo "$at_srcdir/service.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71393,7 +73146,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(@as [],) +echo >>"$at_stdout"; printf "%s\n" "(@as [],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service.at:269" @@ -71403,15 +73156,15 @@ $at_traceon; } - $as_echo "service.at:272" >"$at_check_line_file" + printf "%s\n" "service.at:272" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:272" - $as_echo "service.at:272" >"$at_check_line_file" + printf "%s\n" "service.at:272" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:272" { set +x -$as_echo "$at_srcdir/service.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"setIncludes\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71424,7 +73177,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -71436,12 +73189,12 @@ $at_traceon; } - $as_echo "service.at:277" >"$at_check_line_file" + printf "%s\n" "service.at:277" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:277" { set +x -$as_echo "$at_srcdir/service.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.setIncludes '[\"https\", \"ssh\"]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71462,12 +73215,12 @@ $at_traceon; } - $as_echo "service.at:278" >"$at_check_line_file" + printf "%s\n" "service.at:278" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:278" { set +x -$as_echo "$at_srcdir/service.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71480,7 +73233,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['https', 'ssh'],) +echo >>"$at_stdout"; printf "%s\n" "(['https', 'ssh'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service.at:278" @@ -71490,15 +73243,15 @@ $at_traceon; } - $as_echo "service.at:281" >"$at_check_line_file" + printf "%s\n" "service.at:281" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:281" - $as_echo "service.at:281" >"$at_check_line_file" + printf "%s\n" "service.at:281" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:281" { set +x -$as_echo "$at_srcdir/service.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"addInclude\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71511,7 +73264,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -71523,12 +73276,12 @@ $at_traceon; } - $as_echo "service.at:286" >"$at_check_line_file" + printf "%s\n" "service.at:286" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:286" { set +x -$as_echo "$at_srcdir/service.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.addInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71549,12 +73302,12 @@ $at_traceon; } - $as_echo "service.at:287" >"$at_check_line_file" + printf "%s\n" "service.at:287" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:287" { set +x -$as_echo "$at_srcdir/service.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71567,7 +73320,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service.at:287" @@ -71577,15 +73330,15 @@ $at_traceon; } - $as_echo "service.at:290" >"$at_check_line_file" + printf "%s\n" "service.at:290" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:290" - $as_echo "service.at:290" >"$at_check_line_file" + printf "%s\n" "service.at:290" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:290" { set +x -$as_echo "$at_srcdir/service.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"removeInclude\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71598,7 +73351,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -71610,12 +73363,12 @@ $at_traceon; } - $as_echo "service.at:295" >"$at_check_line_file" + printf "%s\n" "service.at:295" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:295" { set +x -$as_echo "$at_srcdir/service.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.removeInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71636,15 +73389,15 @@ $at_traceon; } - $as_echo "service.at:296" >"$at_check_line_file" + printf "%s\n" "service.at:296" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:296" - $as_echo "service.at:296" >"$at_check_line_file" + printf "%s\n" "service.at:296" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:296" { set +x -$as_echo "$at_srcdir/service.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"queryInclude\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71657,7 +73410,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -71670,12 +73423,12 @@ $at_traceon; } - $as_echo "service.at:302" >"$at_check_line_file" + printf "%s\n" "service.at:302" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:302" { set +x -$as_echo "$at_srcdir/service.at:302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71688,7 +73441,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service.at:302" @@ -71703,7 +73456,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service.at:306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/service.at:306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service.at:306" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -71722,7 +73475,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service.at:306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/service.at:306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service.at:306" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -71739,15 +73492,15 @@ $at_traceon; } - $as_echo "service.at:307" >"$at_check_line_file" + printf "%s\n" "service.at:307" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:307" - $as_echo "service.at:307" >"$at_check_line_file" + printf "%s\n" "service.at:307" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:307" { set +x -$as_echo "$at_srcdir/service.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getServiceSettings\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71760,7 +73513,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -71773,12 +73526,12 @@ $at_traceon; } - $as_echo "service.at:313" >"$at_check_line_file" + printf "%s\n" "service.at:313" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:313" { set +x -$as_echo "$at_srcdir/service.at:313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.getServiceSettings \"foobar\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71791,7 +73544,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(('1.1', 'foobar new', 'foobar new service is for foobar', [('12345', 'udp'), ('2222', 'tcp')], ['ftp'], @a{ss} {}, ['icmp'], [('4321', 'tcp')]),) +echo >>"$at_stdout"; printf "%s\n" "(('1.1', 'foobar new', 'foobar new service is for foobar', [('12345', 'udp'), ('2222', 'tcp')], ['ftp'], @a{ss} {}, ['icmp'], [('4321', 'tcp')]),) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service.at:313" @@ -71804,12 +73557,12 @@ $at_traceon; } - $as_echo "service.at:324" >"$at_check_line_file" + printf "%s\n" "service.at:324" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:324" { set +x -$as_echo "$at_srcdir/service.at:324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.addService \"foobar-old\" '(\"1.0\", \"foobar-old\", \"foobar-old service is for foobar-old\", [(\"1234\", \"udp\"), (\"22\", \"tcp\"), (\"1234\", \"udp\")], [\"ftp\"], {}, [], [(\"4321\", \"tcp\"), (\"4321\", \"udp\")] )' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71832,12 +73585,12 @@ $at_traceon; } SERVICE_OBJ=$(sed -e "s/.*config\/service\/\([^']\+\)['].*/\1/" ./stdout) export SERVICE_OBJ - $as_echo "service.at:338" >"$at_check_line_file" + printf "%s\n" "service.at:338" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:338" { set +x -$as_echo "$at_srcdir/service.at:338: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:338: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.update2 '{\"version\": <\"1.1\">, \"includes\": <[\"https\"]>, \"protocols\": <[\"icmp\"]> @@ -71865,12 +73618,12 @@ $at_traceon; } - $as_echo "service.at:345" >"$at_check_line_file" + printf "%s\n" "service.at:345" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:345" { set +x -$as_echo "$at_srcdir/service.at:345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getSettings ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71883,7 +73636,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(('1.1', 'foobar-old', 'foobar-old service is for foobar-old', [('1234', 'udp'), ('22', 'tcp')], ['ftp'], @a{ss} {}, ['icmp'], [('4321', 'tcp'), ('4321', 'udp')]),) +echo >>"$at_stdout"; printf "%s\n" "(('1.1', 'foobar-old', 'foobar-old service is for foobar-old', [('1234', 'udp'), ('22', 'tcp')], ['ftp'], @a{ss} {}, ['icmp'], [('4321', 'tcp'), ('4321', 'udp')]),) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service.at:345" @@ -71893,12 +73646,12 @@ $at_traceon; } - $as_echo "service.at:348" >"$at_check_line_file" + printf "%s\n" "service.at:348" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:348" { set +x -$as_echo "$at_srcdir/service.at:348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getSettings2 ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71911,7 +73664,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar-old service is for foobar-old'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar-old service is for foobar-old'> 'includes': <['https']> 'modules': <['ftp']> 'ports': <[('1234', 'udp'), ('22', 'tcp')]> @@ -71933,7 +73686,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/service.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service.at:359" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -71952,7 +73705,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/service.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service.at:359" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -71969,12 +73722,12 @@ $at_traceon; } - $as_echo "service.at:360" >"$at_check_line_file" + printf "%s\n" "service.at:360" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:360" { set +x -$as_echo "$at_srcdir/service.at:360: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:360: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.getServiceSettings \"foobar-old\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -71987,7 +73740,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(('1.1', 'foobar-old', 'foobar-old service is for foobar-old', [('1234', 'udp'), ('22', 'tcp')], ['ftp'], @a{ss} {}, ['icmp'], [('4321', 'tcp'), ('4321', 'udp')]),) +echo >>"$at_stdout"; printf "%s\n" "(('1.1', 'foobar-old', 'foobar-old service is for foobar-old', [('1234', 'udp'), ('22', 'tcp')], ['ftp'], @a{ss} {}, ['icmp'], [('4321', 'tcp'), ('4321', 'udp')]),) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service.at:360" @@ -71997,12 +73750,12 @@ $at_traceon; } - $as_echo "service.at:363" >"$at_check_line_file" + printf "%s\n" "service.at:363" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:363" { set +x -$as_echo "$at_srcdir/service.at:363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.getServiceSettings2 \"foobar-old\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72015,7 +73768,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar-old service is for foobar-old'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar-old service is for foobar-old'> 'includes': <['https']> 'modules': <['ftp']> 'ports': <[('1234', 'udp'), ('22', 'tcp')]> @@ -72033,15 +73786,15 @@ $at_traceon; } - $as_echo "service.at:375" >"$at_check_line_file" + printf "%s\n" "service.at:375" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:375" - $as_echo "service.at:375" >"$at_check_line_file" + printf "%s\n" "service.at:375" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:375" { set +x -$as_echo "$at_srcdir/service.at:375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//method[@name=\"addService2\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72054,7 +73807,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -72068,12 +73821,12 @@ $at_traceon; } - $as_echo "service.at:382" >"$at_check_line_file" + printf "%s\n" "service.at:382" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:382" { set +x -$as_echo "$at_srcdir/service.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.addService2 \"foobar-dict\" '{\"version\": <\"1.0\">, \"short\": <\"foobar-dict\">, \"description\": <\"foobar-dict service is for foobar-dict\">, @@ -72117,15 +73870,15 @@ SERVICE_OBJ=$(sed -e "s/.*config\/service\/\([^']\+\)['].*/\1/" ./stdout) export SERVICE_OBJ - $as_echo "service.at:399" >"$at_check_line_file" + printf "%s\n" "service.at:399" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:399" - $as_echo "service.at:399" >"$at_check_line_file" + printf "%s\n" "service.at:399" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:399" { set +x -$as_echo "$at_srcdir/service.at:399: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:399: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getSettings2\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72138,7 +73891,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -72150,12 +73903,12 @@ $at_traceon; } - $as_echo "service.at:404" >"$at_check_line_file" + printf "%s\n" "service.at:404" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:404" { set +x -$as_echo "$at_srcdir/service.at:404: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:404: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getSettings2 ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72168,7 +73921,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar-dict service is for foobar-dict'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar-dict service is for foobar-dict'> 'destination': <{'ipv6': '1234::4321'}> 'helpers': <['ftp']> 'includes': <['https', 'samba']> @@ -72188,15 +73941,15 @@ $at_traceon; } - $as_echo "service.at:418" >"$at_check_line_file" + printf "%s\n" "service.at:418" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:418" - $as_echo "service.at:418" >"$at_check_line_file" + printf "%s\n" "service.at:418" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:418" { set +x -$as_echo "$at_srcdir/service.at:418: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:418: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ}; echo \$? >&3; } | xmllint --xpath '//method[@name=\"update2\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72209,7 +73962,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -72221,12 +73974,12 @@ $at_traceon; } - $as_echo "service.at:423" >"$at_check_line_file" + printf "%s\n" "service.at:423" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:423" { set +x -$as_echo "$at_srcdir/service.at:423: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:423: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.update2 '{\"version\": <\"1.1\">, \"includes\": <[\"https\", \"samba\", \"http\"]> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 @@ -72251,12 +74004,12 @@ $at_traceon; } - $as_echo "service.at:428" >"$at_check_line_file" + printf "%s\n" "service.at:428" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:428" { set +x -$as_echo "$at_srcdir/service.at:428: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:428: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getSettings2 ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72269,7 +74022,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar-dict service is for foobar-dict'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar-dict service is for foobar-dict'> 'destination': <{'ipv6': '1234::4321'}> 'helpers': <['ftp']> 'includes': <['https', 'samba', 'http']> @@ -72289,12 +74042,12 @@ $at_traceon; } - $as_echo "service.at:442" >"$at_check_line_file" + printf "%s\n" "service.at:442" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:442" { set +x -$as_echo "$at_srcdir/service.at:442: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:442: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.update2 '{\"version\": <\"1.2\">, \"includes\": <@as []> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 @@ -72319,12 +74072,12 @@ $at_traceon; } - $as_echo "service.at:447" >"$at_check_line_file" + printf "%s\n" "service.at:447" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:447" { set +x -$as_echo "$at_srcdir/service.at:447: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:447: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getSettings2 ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72337,7 +74090,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar-dict service is for foobar-dict'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar-dict service is for foobar-dict'> 'destination': <{'ipv6': '1234::4321'}> 'helpers': <['ftp']> 'modules': <['ftp']> @@ -72360,7 +74113,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service.at:459: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/service.at:459: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service.at:459" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -72379,7 +74132,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service.at:459: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/service.at:459: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service.at:459" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -72396,15 +74149,15 @@ $at_traceon; } - $as_echo "service.at:460" >"$at_check_line_file" + printf "%s\n" "service.at:460" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:460" - $as_echo "service.at:460" >"$at_check_line_file" + printf "%s\n" "service.at:460" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:460" { set +x -$as_echo "$at_srcdir/service.at:460: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:460: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getServiceSettings2\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72417,7 +74170,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -72430,12 +74183,12 @@ $at_traceon; } - $as_echo "service.at:466" >"$at_check_line_file" + printf "%s\n" "service.at:466" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:466" { set +x -$as_echo "$at_srcdir/service.at:466: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:466: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.getServiceSettings2 \"foobar-dict\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72448,7 +74201,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar-dict service is for foobar-dict'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar-dict service is for foobar-dict'> 'destination': <{'ipv6': '1234::4321'}> 'helpers': <['ftp']> 'modules': <['ftp']> @@ -72467,12 +74220,12 @@ $at_traceon; } - $as_echo "service.at:479" >"$at_check_line_file" + printf "%s\n" "service.at:479" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service.at:479" { set +x -$as_echo "$at_srcdir/service.at:479: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service.at:479: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.update2 '{\"version\": <\"1.3\">, \"thisdoesnotexist\": <\"\"> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 @@ -72500,7 +74253,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_OPTION: option/d'" != x"ignore"; then - $as_echo "service.at:485" >"$at_check_line_file" + printf "%s\n" "service.at:485" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_OPTION: option/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/service.at:485" fi @@ -72511,13 +74264,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_66 -#AT_START_67 -at_fn_group_banner 67 'zone_permanent_signatures.at:1' \ +#AT_STOP_72 +#AT_START_73 +at_fn_group_banner 73 'zone_permanent_signatures.at:1' \ "dbus api - zone permanent signatures" " " 3 at_xfail=no ( - $as_echo "67. $at_setup_line: testing $at_desc ..." + printf "%s\n" "73. $at_setup_line: testing $at_desc ..." $at_traceon @@ -72535,6 +74288,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -72551,7 +74305,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_signatures.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -72565,7 +74319,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "zone_permanent_signatures.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -72581,7 +74335,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "zone_permanent_signatures.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -72645,7 +74399,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_signatures.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -72736,7 +74490,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "zone_permanent_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/zone_permanent_signatures.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -72755,7 +74509,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -72776,7 +74530,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "zone_permanent_signatures.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -72793,7 +74547,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -72808,7 +74562,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -72825,7 +74579,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -72833,7 +74587,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "zone_permanent_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/zone_permanent_signatures.at:1" fi echo "$!" > firewalld.pid @@ -72850,7 +74604,7 @@ at_fn_check_skip 99 "$at_srcdir/zone_permanent_signatures.at:1" fi sleep 1 done - $as_echo "zone_permanent_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/zone_permanent_signatures.at:1" @@ -72860,15 +74614,15 @@ at_fn_check_skip 99 "$at_srcdir/zone_permanent_signatures.at:1" - $as_echo "zone_permanent_signatures.at:8" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:8" - $as_echo "zone_permanent_signatures.at:8" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:8" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config\"]//method[@name=\"listZones\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72881,7 +74635,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -72893,15 +74647,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:13" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:13" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:13" - $as_echo "zone_permanent_signatures.at:13" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:13" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:13" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config\"]//method[@name=\"getZoneNames\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72914,7 +74668,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -72926,15 +74680,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:18" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:18" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:18" - $as_echo "zone_permanent_signatures.at:18" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:18" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:18" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config\"]//method[@name=\"getZoneByName\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72947,7 +74701,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -72960,15 +74714,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:24" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:24" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:24" - $as_echo "zone_permanent_signatures.at:24" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:24" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:24" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config\"]//method[@name=\"addZone\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -72981,7 +74735,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -72996,15 +74750,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:33" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:33" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:33" - $as_echo "zone_permanent_signatures.at:33" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:33" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:33" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config\"]//method[@name=\"getZoneOfInterface\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73017,7 +74771,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -73030,15 +74784,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:39" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:39" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:39" - $as_echo "zone_permanent_signatures.at:39" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:39" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:39" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config\"]//method[@name=\"getZoneOfSource\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73051,7 +74805,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -73067,12 +74821,12 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:52" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:52" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:52" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getZoneByName \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73096,15 +74850,15 @@ DBUS_PUBLIC_ZONE_OBJ=$(sed -e "s/.*config\/zone\/\([^']\+\)['].*/\1/" ./stdout) export DBUS_PUBLIC_ZONE_OBJ - $as_echo "zone_permanent_signatures.at:56" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:56" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:56" - $as_echo "zone_permanent_signatures.at:56" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:56" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:56" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getSettings\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73117,7 +74871,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73130,15 +74884,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:62" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:62" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:62" - $as_echo "zone_permanent_signatures.at:62" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:62" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:62" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"update\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73151,7 +74905,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73163,15 +74917,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:67" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:67" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:67" - $as_echo "zone_permanent_signatures.at:67" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:67" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:67" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//signal[@name=\"Updated\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73184,7 +74938,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73197,15 +74951,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:73" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:73" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:73" - $as_echo "zone_permanent_signatures.at:73" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:73" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:73" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"loadDefaults\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73218,7 +74972,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: @@ -73230,15 +74984,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:78" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:78" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:78" - $as_echo "zone_permanent_signatures.at:78" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:78" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:78" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"remove\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73251,7 +75005,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: @@ -73262,15 +75016,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:82" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:82" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:82" - $as_echo "zone_permanent_signatures.at:82" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:82" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:82" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//signal[@name=\"Removed\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73283,7 +75037,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73296,15 +75050,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:88" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:88" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:88" - $as_echo "zone_permanent_signatures.at:88" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:88" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:88" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"rename\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73317,7 +75071,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73329,15 +75083,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:93" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:93" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:93" - $as_echo "zone_permanent_signatures.at:93" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:93" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:93" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//signal[@name=\"Renamed\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73350,7 +75104,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73363,15 +75117,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:101" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:101" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:101" - $as_echo "zone_permanent_signatures.at:101" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:101" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:101" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getVersion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73384,7 +75138,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73396,15 +75150,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:106" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:106" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:106" - $as_echo "zone_permanent_signatures.at:106" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:106" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:106" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setVersion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73417,7 +75171,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73430,15 +75184,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:114" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:114" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:114" - $as_echo "zone_permanent_signatures.at:114" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:114" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:114" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getShort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73451,7 +75205,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73463,15 +75217,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:119" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:119" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:119" - $as_echo "zone_permanent_signatures.at:119" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:119" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:119" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setShort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73484,7 +75238,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73497,15 +75251,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:127" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:127" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:127" - $as_echo "zone_permanent_signatures.at:127" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:127" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:127" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getDescription\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73518,7 +75272,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73530,15 +75284,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:132" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:132" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:132" - $as_echo "zone_permanent_signatures.at:132" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:132" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:132" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setDescription\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73551,7 +75305,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73564,15 +75318,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:140" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:140" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:140" - $as_echo "zone_permanent_signatures.at:140" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:140" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:140" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getTarget\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73585,7 +75339,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73597,15 +75351,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:145" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:145" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:145" - $as_echo "zone_permanent_signatures.at:145" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:145" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:145" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setTarget\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73618,7 +75372,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73631,15 +75385,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:153" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:153" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:153" - $as_echo "zone_permanent_signatures.at:153" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:153" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:153" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getInterfaces\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73652,7 +75406,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73664,15 +75418,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:158" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:158" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:158" - $as_echo "zone_permanent_signatures.at:158" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:158" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:158" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setInterfaces\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73685,7 +75439,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73697,15 +75451,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:163" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:163" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:163" - $as_echo "zone_permanent_signatures.at:163" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:163" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:163" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"addInterface\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73718,7 +75472,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73730,15 +75484,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:168" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:168" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:168" - $as_echo "zone_permanent_signatures.at:168" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:168" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:168" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:168: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:168: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"removeInterface\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73751,7 +75505,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73763,15 +75517,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:173" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:173" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:173" - $as_echo "zone_permanent_signatures.at:173" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:173" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:173" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"queryInterface\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73784,7 +75538,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -73798,15 +75552,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:182" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:182" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:182" - $as_echo "zone_permanent_signatures.at:182" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:182" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:182" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getSources\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73819,7 +75573,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73831,15 +75585,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:187" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:187" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:187" - $as_echo "zone_permanent_signatures.at:187" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:187" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:187" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:187: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:187: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setSources\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73852,7 +75606,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73864,15 +75618,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:192" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:192" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:192" - $as_echo "zone_permanent_signatures.at:192" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:192" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:192" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:192: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:192: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"addSource\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73885,7 +75639,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73897,15 +75651,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:197" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:197" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:197" - $as_echo "zone_permanent_signatures.at:197" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:197" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:197" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"removeSource\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73918,7 +75672,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73930,15 +75684,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:202" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:202" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:202" - $as_echo "zone_permanent_signatures.at:202" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:202" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:202" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"querySource\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73951,7 +75705,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -73965,15 +75719,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:211" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:211" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:211" - $as_echo "zone_permanent_signatures.at:211" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:211" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:211" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getServices\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -73986,7 +75740,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -73998,15 +75752,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:216" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:216" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:216" - $as_echo "zone_permanent_signatures.at:216" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:216" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:216" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:216: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:216: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setServices\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74019,7 +75773,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74031,15 +75785,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:221" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:221" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:221" - $as_echo "zone_permanent_signatures.at:221" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:221" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:221" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"addService\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74052,7 +75806,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74064,15 +75818,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:226" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:226" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:226" - $as_echo "zone_permanent_signatures.at:226" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:226" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:226" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"removeService\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74085,7 +75839,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74097,15 +75851,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:231" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:231" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:231" - $as_echo "zone_permanent_signatures.at:231" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:231" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:231" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"queryService\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74118,7 +75872,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -74132,15 +75886,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:240" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:240" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:240" - $as_echo "zone_permanent_signatures.at:240" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:240" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:240" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getPorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74153,7 +75907,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74165,15 +75919,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:245" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:245" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:245" - $as_echo "zone_permanent_signatures.at:245" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:245" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:245" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setPorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74186,7 +75940,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74198,15 +75952,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:250" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:250" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:250" - $as_echo "zone_permanent_signatures.at:250" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:250" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:250" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"addPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74219,7 +75973,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -74232,15 +75986,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:256" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:256" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:256" - $as_echo "zone_permanent_signatures.at:256" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:256" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:256" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"removePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74253,7 +76007,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -74266,15 +76020,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:262" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:262" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:262" - $as_echo "zone_permanent_signatures.at:262" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:262" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:262" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"queryPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74287,7 +76041,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -74302,15 +76056,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:272" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:272" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:272" - $as_echo "zone_permanent_signatures.at:272" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:272" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:272" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getSourcePorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74323,7 +76077,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74335,15 +76089,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:277" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:277" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:277" - $as_echo "zone_permanent_signatures.at:277" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:277" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:277" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setSourcePorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74356,7 +76110,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74368,15 +76122,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:282" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:282" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:282" - $as_echo "zone_permanent_signatures.at:282" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:282" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:282" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"addSourcePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74389,7 +76143,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -74402,15 +76156,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:288" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:288" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:288" - $as_echo "zone_permanent_signatures.at:288" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:288" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:288" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:288: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:288: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"removeSourcePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74423,7 +76177,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -74436,15 +76190,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:294" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:294" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:294" - $as_echo "zone_permanent_signatures.at:294" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:294" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:294" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"querySourcePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74457,7 +76211,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -74472,15 +76226,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:304" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:304" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:304" - $as_echo "zone_permanent_signatures.at:304" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:304" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:304" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getProtocols\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74493,7 +76247,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74505,15 +76259,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:309" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:309" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:309" - $as_echo "zone_permanent_signatures.at:309" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:309" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:309" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setProtocols\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74526,7 +76280,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74538,15 +76292,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:314" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:314" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:314" - $as_echo "zone_permanent_signatures.at:314" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:314" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:314" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:314: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:314: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"addProtocol\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74559,7 +76313,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74571,15 +76325,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:319" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:319" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:319" - $as_echo "zone_permanent_signatures.at:319" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:319" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:319" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"removeProtocol\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74592,7 +76346,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74604,15 +76358,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:324" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:324" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:324" - $as_echo "zone_permanent_signatures.at:324" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:324" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:324" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"queryProtocol\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74625,7 +76379,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -74639,15 +76393,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:333" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:333" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:333" - $as_echo "zone_permanent_signatures.at:333" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:333" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:333" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getForwardPorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74660,7 +76414,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74672,15 +76426,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:338" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:338" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:338" - $as_echo "zone_permanent_signatures.at:338" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:338" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:338" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:338: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:338: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setForwardPorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74693,7 +76447,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74705,15 +76459,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:343" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:343" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:343" - $as_echo "zone_permanent_signatures.at:343" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:343" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:343" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:343: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:343: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"addForwardPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74726,7 +76480,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -74741,15 +76495,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:351" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:351" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:351" - $as_echo "zone_permanent_signatures.at:351" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:351" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:351" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"removeForwardPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74762,7 +76516,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -74777,15 +76531,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:359" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:359" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:359" - $as_echo "zone_permanent_signatures.at:359" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:359" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:359" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"queryForwardPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74798,7 +76552,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -74815,15 +76569,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:371" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:371" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:371" - $as_echo "zone_permanent_signatures.at:371" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:371" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:371" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:371: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:371: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getMasquerade\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74836,7 +76590,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74848,15 +76602,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:376" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:376" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:376" - $as_echo "zone_permanent_signatures.at:376" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:376" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:376" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setMasquerade\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74869,7 +76623,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74881,15 +76635,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:381" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:381" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:381" - $as_echo "zone_permanent_signatures.at:381" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:381" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:381" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"addMasquerade\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74902,7 +76656,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: @@ -74913,15 +76667,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:385" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:385" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:385" - $as_echo "zone_permanent_signatures.at:385" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:385" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:385" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"removeMasquerade\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74934,7 +76688,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: @@ -74945,15 +76699,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:389" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:389" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:389" - $as_echo "zone_permanent_signatures.at:389" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:389" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:389" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:389: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:389: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"queryMasquerade\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -74966,7 +76720,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -74979,15 +76733,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:397" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:397" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:397" - $as_echo "zone_permanent_signatures.at:397" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:397" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:397" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getIcmpBlocks\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75000,7 +76754,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75012,15 +76766,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:402" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:402" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:402" - $as_echo "zone_permanent_signatures.at:402" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:402" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:402" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:402: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:402: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setIcmpBlocks\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75033,7 +76787,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75045,15 +76799,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:407" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:407" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:407" - $as_echo "zone_permanent_signatures.at:407" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:407" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:407" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"addIcmpBlock\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75066,7 +76820,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75078,15 +76832,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:412" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:412" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:412" - $as_echo "zone_permanent_signatures.at:412" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:412" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:412" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:412: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:412: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"removeIcmpBlock\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75099,7 +76853,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75111,15 +76865,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:417" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:417" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:417" - $as_echo "zone_permanent_signatures.at:417" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:417" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:417" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:417: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:417: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"queryIcmpBlock\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75132,7 +76886,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -75146,15 +76900,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:426" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:426" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:426" - $as_echo "zone_permanent_signatures.at:426" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:426" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:426" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:426: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:426: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getIcmpBlockInversion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75167,7 +76921,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75179,15 +76933,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:431" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:431" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:431" - $as_echo "zone_permanent_signatures.at:431" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:431" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:431" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:431: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:431: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setIcmpBlockInversion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75200,7 +76954,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75212,15 +76966,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:436" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:436" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:436" - $as_echo "zone_permanent_signatures.at:436" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:436" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:436" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:436: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:436: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"addIcmpBlockInversion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75233,7 +76987,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: @@ -75244,15 +76998,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:440" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:440" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:440" - $as_echo "zone_permanent_signatures.at:440" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:440" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:440" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:440: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:440: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"removeIcmpBlockInversion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75265,7 +77019,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: @@ -75276,15 +77030,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:444" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:444" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:444" - $as_echo "zone_permanent_signatures.at:444" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:444" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:444" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:444: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:444: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"queryIcmpBlockInversion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75297,7 +77051,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75310,15 +77064,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:452" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:452" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:452" - $as_echo "zone_permanent_signatures.at:452" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:452" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:452" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:452: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:452: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getRichRules\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75331,7 +77085,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75343,15 +77097,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:457" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:457" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:457" - $as_echo "zone_permanent_signatures.at:457" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:457" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:457" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:457: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:457: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"setRichRules\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75364,7 +77118,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75376,15 +77130,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:462" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:462" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:462" - $as_echo "zone_permanent_signatures.at:462" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:462" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:462" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:462: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:462: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"addRichRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75397,7 +77151,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75409,15 +77163,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:467" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:467" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:467" - $as_echo "zone_permanent_signatures.at:467" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:467" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:467" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:467: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:467: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"removeRichRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75430,7 +77184,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75442,15 +77196,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:472" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:472" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:472" - $as_echo "zone_permanent_signatures.at:472" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:472" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:472" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:472: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:472: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"queryRichRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75463,7 +77217,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -75478,15 +77232,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:483" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:483" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:483" - $as_echo "zone_permanent_signatures.at:483" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:483" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:483" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:483: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:483: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config\"]//method[@name=\"addZone2\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75499,7 +77253,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -75514,15 +77268,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:491" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:491" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:491" - $as_echo "zone_permanent_signatures.at:491" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:491" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:491" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:491: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:491: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"getSettings2\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75535,7 +77289,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75548,15 +77302,15 @@ $at_traceon; } - $as_echo "zone_permanent_signatures.at:497" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:497" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:497" - $as_echo "zone_permanent_signatures.at:497" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:497" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_signatures.at:497" { set +x -$as_echo "$at_srcdir/zone_permanent_signatures.at:497: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_signatures.at:497: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.zone\"]//method[@name=\"update2\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75569,7 +77323,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -75584,7 +77338,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "zone_permanent_signatures.at:503" >"$at_check_line_file" + printf "%s\n" "zone_permanent_signatures.at:503" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/zone_permanent_signatures.at:503" fi @@ -75595,13 +77349,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_67 -#AT_START_68 -at_fn_group_banner 68 'zone_runtime_signatures.at:1' \ +#AT_STOP_73 +#AT_START_74 +at_fn_group_banner 74 'zone_runtime_signatures.at:1' \ "dbus api - zone runtime signatures" " " 3 at_xfail=no ( - $as_echo "68. $at_setup_line: testing $at_desc ..." + printf "%s\n" "74. $at_setup_line: testing $at_desc ..." $at_traceon @@ -75619,6 +77373,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -75635,7 +77390,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_signatures.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -75649,7 +77404,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "zone_runtime_signatures.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -75665,7 +77420,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "zone_runtime_signatures.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -75729,7 +77484,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_signatures.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -75820,7 +77575,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "zone_runtime_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/zone_runtime_signatures.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -75839,7 +77594,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -75860,7 +77615,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "zone_runtime_signatures.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -75877,7 +77632,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -75892,7 +77647,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -75909,7 +77664,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -75917,7 +77672,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "zone_runtime_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/zone_runtime_signatures.at:1" fi echo "$!" > firewalld.pid @@ -75934,7 +77689,7 @@ at_fn_check_skip 99 "$at_srcdir/zone_runtime_signatures.at:1" fi sleep 1 done - $as_echo "zone_runtime_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/zone_runtime_signatures.at:1" @@ -75944,15 +77699,15 @@ at_fn_check_skip 99 "$at_srcdir/zone_runtime_signatures.at:1" - $as_echo "zone_runtime_signatures.at:8" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:8" - $as_echo "zone_runtime_signatures.at:8" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:8" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1\"]//method[@name=\"getZoneSettings\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -75965,7 +77720,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -75979,15 +77734,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:16" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:16" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:16" - $as_echo "zone_runtime_signatures.at:16" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:16" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:16" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1\"]//method[@name=\"getDefaultZone\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76000,7 +77755,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -76012,15 +77767,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:21" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:21" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:21" - $as_echo "zone_runtime_signatures.at:21" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:21" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:21" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1\"]//method[@name=\"setDefaultZone\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76033,7 +77788,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -76046,15 +77801,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:28" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:28" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:28" - $as_echo "zone_runtime_signatures.at:28" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:28" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:28" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getZones\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76067,7 +77822,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -76079,15 +77834,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:33" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:33" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:33" - $as_echo "zone_runtime_signatures.at:33" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:33" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:33" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getActiveZones\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76100,7 +77855,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -76113,15 +77868,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:40" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:40" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:40" - $as_echo "zone_runtime_signatures.at:40" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:40" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:40" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getZoneOfInterface\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76134,7 +77889,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76147,15 +77902,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:46" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:46" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:46" - $as_echo "zone_runtime_signatures.at:46" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:46" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:46" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getZoneOfSource\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76168,7 +77923,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76183,15 +77938,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:57" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:57" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:57" - $as_echo "zone_runtime_signatures.at:57" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:57" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:57" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"isImmutable\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76204,7 +77959,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76218,15 +77973,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:65" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:65" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:65" - $as_echo "zone_runtime_signatures.at:65" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:65" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:65" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"addInterface\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76239,7 +77994,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76253,15 +78008,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:72" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:72" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:72" - $as_echo "zone_runtime_signatures.at:72" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:72" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:72" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"InterfaceAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76274,7 +78029,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76287,15 +78042,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:78" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:78" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:78" - $as_echo "zone_runtime_signatures.at:78" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:78" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:78" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"changeZone\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76308,7 +78063,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76322,15 +78077,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:85" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:85" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:85" - $as_echo "zone_runtime_signatures.at:85" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:85" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:85" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"ZoneChanged\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76343,7 +78098,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76356,15 +78111,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:91" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:91" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:91" - $as_echo "zone_runtime_signatures.at:91" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:91" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:91" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"changeZoneOfInterface\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76377,7 +78132,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76391,15 +78146,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:98" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:98" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:98" - $as_echo "zone_runtime_signatures.at:98" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:98" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:98" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"removeInterface\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76412,7 +78167,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76426,15 +78181,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:105" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:105" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:105" - $as_echo "zone_runtime_signatures.at:105" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:105" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:105" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"InterfaceRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76447,7 +78202,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76460,15 +78215,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:111" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:111" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:111" - $as_echo "zone_runtime_signatures.at:111" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:111" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:111" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"queryInterface\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76481,7 +78236,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76495,15 +78250,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:118" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:118" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:118" - $as_echo "zone_runtime_signatures.at:118" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:118" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:118" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getInterfaces\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76516,7 +78271,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76530,15 +78285,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:126" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:126" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:126" - $as_echo "zone_runtime_signatures.at:126" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:126" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:126" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"addSource\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76551,7 +78306,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76565,15 +78320,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:133" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:133" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:133" - $as_echo "zone_runtime_signatures.at:133" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:133" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:133" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"SourceAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76586,7 +78341,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76599,15 +78354,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:139" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:139" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:139" - $as_echo "zone_runtime_signatures.at:139" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:139" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:139" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"changeZoneOfSource\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76620,7 +78375,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76634,15 +78389,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:146" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:146" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:146" - $as_echo "zone_runtime_signatures.at:146" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:146" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:146" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"removeSource\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76655,7 +78410,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76669,15 +78424,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:153" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:153" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:153" - $as_echo "zone_runtime_signatures.at:153" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:153" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:153" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"SourceRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76690,7 +78445,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76703,15 +78458,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:159" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:159" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:159" - $as_echo "zone_runtime_signatures.at:159" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:159" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:159" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"querySource\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76724,7 +78479,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76738,15 +78493,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:166" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:166" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:166" - $as_echo "zone_runtime_signatures.at:166" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:166" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:166" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getSources\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76759,7 +78514,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76773,15 +78528,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:174" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:174" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:174" - $as_echo "zone_runtime_signatures.at:174" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:174" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:174" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"addService\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76794,7 +78549,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76809,15 +78564,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:182" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:182" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:182" - $as_echo "zone_runtime_signatures.at:182" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:182" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:182" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"ServiceAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76830,7 +78585,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76844,15 +78599,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:189" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:189" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:189" - $as_echo "zone_runtime_signatures.at:189" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:189" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:189" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"removeService\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76865,7 +78620,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76879,15 +78634,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:196" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:196" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:196" - $as_echo "zone_runtime_signatures.at:196" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:196" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:196" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:196: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:196: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"ServiceRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76900,7 +78655,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76913,15 +78668,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:202" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:202" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:202" - $as_echo "zone_runtime_signatures.at:202" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:202" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:202" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"queryService\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76934,7 +78689,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76948,15 +78703,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:209" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:209" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:209" - $as_echo "zone_runtime_signatures.at:209" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:209" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:209" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:209: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:209: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getServices\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -76969,7 +78724,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -76983,15 +78738,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:217" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:217" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:217" - $as_echo "zone_runtime_signatures.at:217" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:217" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:217" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"addProtocol\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77004,7 +78759,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77019,15 +78774,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:225" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:225" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:225" - $as_echo "zone_runtime_signatures.at:225" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:225" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:225" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"ProtocolAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77040,7 +78795,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77054,15 +78809,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:232" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:232" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:232" - $as_echo "zone_runtime_signatures.at:232" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:232" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:232" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"removeProtocol\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77075,7 +78830,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77089,15 +78844,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:239" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:239" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:239" - $as_echo "zone_runtime_signatures.at:239" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:239" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:239" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"ProtocolRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77110,7 +78865,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77123,15 +78878,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:245" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:245" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:245" - $as_echo "zone_runtime_signatures.at:245" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:245" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:245" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"queryProtocol\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77144,7 +78899,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77158,15 +78913,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:252" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:252" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:252" - $as_echo "zone_runtime_signatures.at:252" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:252" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:252" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getProtocols\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77179,7 +78934,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77193,15 +78948,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:260" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:260" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:260" - $as_echo "zone_runtime_signatures.at:260" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:260" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:260" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"addPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77214,7 +78969,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77230,15 +78985,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:269" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:269" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:269" - $as_echo "zone_runtime_signatures.at:269" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:269" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:269" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"PortAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77251,7 +79006,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77266,15 +79021,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:277" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:277" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:277" - $as_echo "zone_runtime_signatures.at:277" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:277" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:277" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"removePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77287,7 +79042,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77302,15 +79057,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:285" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:285" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:285" - $as_echo "zone_runtime_signatures.at:285" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:285" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:285" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"PortRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77323,7 +79078,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77337,15 +79092,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:292" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:292" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:292" - $as_echo "zone_runtime_signatures.at:292" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:292" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:292" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"queryPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77358,7 +79113,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77373,15 +79128,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:300" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:300" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:300" - $as_echo "zone_runtime_signatures.at:300" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:300" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:300" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getPorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77394,7 +79149,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77408,15 +79163,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:310" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:310" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:310" - $as_echo "zone_runtime_signatures.at:310" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:310" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:310" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"addSourcePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77429,7 +79184,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77445,15 +79200,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:319" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:319" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:319" - $as_echo "zone_runtime_signatures.at:319" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:319" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:319" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"SourcePortAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77466,7 +79221,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77481,15 +79236,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:327" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:327" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:327" - $as_echo "zone_runtime_signatures.at:327" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:327" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:327" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:327: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:327: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"removeSourcePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77502,7 +79257,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77517,15 +79272,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:335" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:335" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:335" - $as_echo "zone_runtime_signatures.at:335" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:335" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:335" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"SourcePortRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77538,7 +79293,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77552,15 +79307,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:342" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:342" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:342" - $as_echo "zone_runtime_signatures.at:342" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:342" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:342" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:342: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:342: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"querySourcePort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77573,7 +79328,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77588,15 +79343,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:350" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:350" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:350" - $as_echo "zone_runtime_signatures.at:350" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:350" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:350" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getSourcePorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77609,7 +79364,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77623,15 +79378,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:360" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:360" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:360" - $as_echo "zone_runtime_signatures.at:360" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:360" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:360" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:360: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:360: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"addForwardPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77644,7 +79399,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77662,15 +79417,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:371" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:371" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:371" - $as_echo "zone_runtime_signatures.at:371" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:371" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:371" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:371: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:371: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"ForwardPortAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77683,7 +79438,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77700,15 +79455,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:381" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:381" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:381" - $as_echo "zone_runtime_signatures.at:381" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:381" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:381" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"removeForwardPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77721,7 +79476,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77738,15 +79493,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:391" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:391" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:391" - $as_echo "zone_runtime_signatures.at:391" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:391" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:391" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"ForwardPortRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77759,7 +79514,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77775,15 +79530,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:400" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:400" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:400" - $as_echo "zone_runtime_signatures.at:400" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:400" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:400" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:400: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:400: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"queryForwardPort\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77796,7 +79551,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77813,15 +79568,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:410" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:410" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:410" - $as_echo "zone_runtime_signatures.at:410" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:410" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:410" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:410: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:410: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getForwardPorts\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77834,7 +79589,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77848,15 +79603,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:420" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:420" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:420" - $as_echo "zone_runtime_signatures.at:420" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:420" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:420" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:420: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:420: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"addMasquerade\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77869,7 +79624,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77883,15 +79638,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:427" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:427" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:427" - $as_echo "zone_runtime_signatures.at:427" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:427" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:427" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:427: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:427: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"MasqueradeAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77904,7 +79659,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77917,15 +79672,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:433" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:433" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:433" - $as_echo "zone_runtime_signatures.at:433" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:433" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:433" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:433: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:433: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"removeMasquerade\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77938,7 +79693,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -77951,15 +79706,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:439" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:439" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:439" - $as_echo "zone_runtime_signatures.at:439" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:439" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:439" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:439: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:439: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"MasqueradeRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -77972,7 +79727,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -77984,15 +79739,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:444" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:444" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:444" - $as_echo "zone_runtime_signatures.at:444" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:444" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:444" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:444: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:444: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"queryMasquerade\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78005,7 +79760,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78019,15 +79774,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:452" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:452" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:452" - $as_echo "zone_runtime_signatures.at:452" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:452" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:452" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:452: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:452: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"addIcmpBlock\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78040,7 +79795,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78055,15 +79810,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:460" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:460" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:460" - $as_echo "zone_runtime_signatures.at:460" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:460" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:460" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:460: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:460: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"IcmpBlockAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78076,7 +79831,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78090,15 +79845,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:467" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:467" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:467" - $as_echo "zone_runtime_signatures.at:467" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:467" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:467" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:467: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:467: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"removeIcmpBlock\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78111,7 +79866,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78125,15 +79880,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:474" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:474" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:474" - $as_echo "zone_runtime_signatures.at:474" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:474" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:474" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"IcmpBlockRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78146,7 +79901,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78159,15 +79914,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:480" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:480" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:480" - $as_echo "zone_runtime_signatures.at:480" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:480" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:480" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:480: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:480: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"queryIcmpBlock\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78180,7 +79935,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78194,15 +79949,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:487" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:487" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:487" - $as_echo "zone_runtime_signatures.at:487" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:487" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:487" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:487: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:487: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getIcmpBlocks\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78215,7 +79970,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78229,15 +79984,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:495" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:495" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:495" - $as_echo "zone_runtime_signatures.at:495" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:495" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:495" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:495: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:495: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"addIcmpBlockInversion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78250,7 +80005,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78263,15 +80018,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:501" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:501" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:501" - $as_echo "zone_runtime_signatures.at:501" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:501" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:501" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:501: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:501: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"IcmpBlockInversionAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78284,7 +80039,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -78296,15 +80051,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:506" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:506" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:506" - $as_echo "zone_runtime_signatures.at:506" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:506" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:506" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:506: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:506: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"removeIcmpBlockInversion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78317,7 +80072,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78330,15 +80085,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:512" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:512" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:512" - $as_echo "zone_runtime_signatures.at:512" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:512" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:512" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:512: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:512: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"IcmpBlockInversionRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78351,7 +80106,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -78363,15 +80118,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:517" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:517" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:517" - $as_echo "zone_runtime_signatures.at:517" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:517" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:517" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:517: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:517: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"queryIcmpBlockInversion\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78384,7 +80139,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78398,15 +80153,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:525" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:525" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:525" - $as_echo "zone_runtime_signatures.at:525" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:525" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:525" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"addRichRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78419,7 +80174,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78434,15 +80189,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:533" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:533" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:533" - $as_echo "zone_runtime_signatures.at:533" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:533" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:533" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:533: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:533: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"RichRuleAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78455,7 +80210,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78469,15 +80224,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:540" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:540" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:540" - $as_echo "zone_runtime_signatures.at:540" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:540" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:540" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"removeRichRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78490,7 +80245,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78504,15 +80259,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:547" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:547" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:547" - $as_echo "zone_runtime_signatures.at:547" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:547" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:547" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:547: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:547: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//signal[@name=\"RichRuleRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78525,7 +80280,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78538,15 +80293,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:553" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:553" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:553" - $as_echo "zone_runtime_signatures.at:553" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:553" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:553" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:553: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:553: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"queryRichRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78559,7 +80314,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78573,15 +80328,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:560" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:560" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:560" - $as_echo "zone_runtime_signatures.at:560" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:560" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:560" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:560: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:560: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getRichRules\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78594,7 +80349,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78609,15 +80364,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:571" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:571" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:571" - $as_echo "zone_runtime_signatures.at:571" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:571" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:571" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"getZoneSettings2\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78630,7 +80385,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78644,15 +80399,15 @@ $at_traceon; } - $as_echo "zone_runtime_signatures.at:578" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:578" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:578" - $as_echo "zone_runtime_signatures.at:578" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:578" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_signatures.at:578" { set +x -$as_echo "$at_srcdir/zone_runtime_signatures.at:578: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_signatures.at:578: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.zone\"]//method[@name=\"setZoneSettings2\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -78665,7 +80420,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -78681,7 +80436,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "zone_runtime_signatures.at:585" >"$at_check_line_file" + printf "%s\n" "zone_runtime_signatures.at:585" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/zone_runtime_signatures.at:585" fi @@ -78692,13 +80447,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_68 -#AT_START_69 -at_fn_group_banner 69 'zone_permanent_functional.at:1' \ +#AT_STOP_74 +#AT_START_75 +at_fn_group_banner 75 'zone_permanent_functional.at:1' \ "dbus api - zone permanent functional" " " 3 at_xfail=no ( - $as_echo "69. $at_setup_line: testing $at_desc ..." + printf "%s\n" "75. $at_setup_line: testing $at_desc ..." $at_traceon @@ -78716,6 +80471,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -78732,7 +80488,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_functional.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -78746,7 +80502,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "zone_permanent_functional.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -78762,7 +80518,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "zone_permanent_functional.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -78826,7 +80582,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_functional.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -78917,7 +80673,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "zone_permanent_functional.at:1" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/zone_permanent_functional.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -78936,7 +80692,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -78957,7 +80713,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "zone_permanent_functional.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -78974,7 +80730,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -78989,7 +80745,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -79006,7 +80762,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -79014,7 +80770,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "zone_permanent_functional.at:1" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/zone_permanent_functional.at:1" fi echo "$!" > firewalld.pid @@ -79031,7 +80787,7 @@ at_fn_check_skip 99 "$at_srcdir/zone_permanent_functional.at:1" fi sleep 1 done - $as_echo "zone_permanent_functional.at:1" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/zone_permanent_functional.at:1" @@ -79041,12 +80797,12 @@ at_fn_check_skip 99 "$at_srcdir/zone_permanent_functional.at:1" - $as_echo "zone_permanent_functional.at:8" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:8" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.addZone \"foobar\" '(\"1.0\", \"foobar\", \"foobar zone\", false, \"ACCEPT\", [\"ssh\", \"mdns\"], [(\"1234\", \"tcp\"), (\"1234\", \"udp\")], [\"echo-request\"], true, [(\"1234\", \"tcp\", \"4321\", \"\"), (\"1234\", \"udp\", \"4321\", \"10.10.10.10\")], [\"dummy0\", \"dummy1\"], [\"10.10.10.0/24\"], [\"rule family=ipv4 source address=10.20.20.20 drop\"], [\"icmp\"], [(\"1234\", \"tcp\"), (\"1234\", \"udp\")], false )' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79074,12 +80830,12 @@ if env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-db export NM_SHARED fi - $as_echo "zone_permanent_functional.at:37" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:37" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:37" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getZoneNames ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79092,7 +80848,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['block', 'dmz', 'drop', 'external', 'foobar', 'home', 'internal', ${NM_SHARED}'public', 'trusted', 'work'],) +echo >>"$at_stdout"; printf "%s\n" "(['block', 'dmz', 'drop', 'external', 'foobar', 'home', 'internal', ${NM_SHARED}'public', 'trusted', 'work'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:37" @@ -79102,12 +80858,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:40" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:40" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:40" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.listZones ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79129,7 +80885,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -e \"s/['][,]/'\\n/g\" ./stdout | sed -e \"s/.*config\\/zone\\/\\([^']\\+\\)['].*/\\1/\" | while read LINE; do { echo \"\${LINE}\" | grep \"^[0-9]\\+\$\" ; } || exit 1; done " +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -e \"s/['][,]/'\\n/g\" ./stdout | sed -e \"s/.*config\\/zone\\/\\([^']\\+\\)['].*/\\1/\" | while read LINE; do { echo \"\${LINE}\" | grep \"^[0-9]\\+\$\" ; } || exit 1; done " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_functional.at:41" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sed -e "s/['][,]/'\n/g" ./stdout | sed -e "s/.*config\/zone\/\([^']\+\)['].*/\1/" | while read LINE; do { echo "${LINE}" | grep "^[0-9]\+$" ; } || exit 1; done ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -79143,12 +80899,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:44" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:44" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:44" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getZoneByName \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79170,7 +80926,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -e \"s/.*config\\/zone\\/\\([^']\\+\\)['].*/\\1/\" ./stdout | grep \"^[0-9]\\+\$\" " +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -e \"s/.*config\\/zone\\/\\([^']\\+\\)['].*/\\1/\" ./stdout | grep \"^[0-9]\\+\$\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_functional.at:45" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sed -e "s/.*config\/zone\/\([^']\+\)['].*/\1/" ./stdout | grep "^[0-9]\+$" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -79188,7 +80944,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone public --add-interface dummy2 " +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone public --add-interface dummy2 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_functional.at:48" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone public --add-interface dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -79204,12 +80960,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:49" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:49" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:49" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getZoneOfInterface \"dummy2\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79222,7 +80978,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:49" @@ -79235,7 +80991,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone public --remove-interface dummy2 " +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone public --remove-interface dummy2 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_functional.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone public --remove-interface dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -79255,7 +81011,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone public --add-source 10.20.20.0/24 " +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone public --add-source 10.20.20.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_functional.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone public --add-source 10.20.20.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -79271,12 +81027,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:56" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:56" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:56" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getZoneOfSource \"10.20.20.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79289,7 +81045,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:56" @@ -79302,7 +81058,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone public --remove-source 10.20.20.0/24 " +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone public --remove-source 10.20.20.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_permanent_functional.at:59" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone public --remove-source 10.20.20.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -79320,12 +81076,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:65" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:65" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:65" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getSettings ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79338,7 +81094,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(('1.0', 'foobar', 'foobar zone', false, 'ACCEPT', ['ssh', 'mdns'], [('1234', 'tcp'), ('1234', 'udp')], ['echo-request'], true, [('1234', 'tcp', '4321', ''), ('1234', 'udp', '4321', '10.10.10.10')], ['dummy0', 'dummy1'], ['10.10.10.0/24'], ['rule family=\"ipv4\" source address=\"10.20.20.20\" drop'], ['icmp'], [('1234', 'tcp'), ('1234', 'udp')], false),) +echo >>"$at_stdout"; printf "%s\n" "(('1.0', 'foobar', 'foobar zone', false, 'ACCEPT', ['ssh', 'mdns'], [('1234', 'tcp'), ('1234', 'udp')], ['echo-request'], true, [('1234', 'tcp', '4321', ''), ('1234', 'udp', '4321', '10.10.10.10')], ['dummy0', 'dummy1'], ['10.10.10.0/24'], ['rule family=\"ipv4\" source address=\"10.20.20.20\" drop'], ['icmp'], [('1234', 'tcp'), ('1234', 'udp')], false),) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:65" @@ -79349,12 +81105,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:86" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:86" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:86" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.update '(\"1.1\", \"foobar v2\", \"foobar zone updated\", false, \"ACCEPT\", [\"ssh\", \"mdns\", \"samba\"], [(\"1234\", \"tcp\"), (\"4444\", \"udp\")], [\"echo-request\", \"echo-reply\"], false, [(\"1234\", \"tcp\", \"4321\", \"\")], [\"dummy0\", \"dummy1\", \"dummy2\"], [\"10.10.10.0/24\", \"10.20.0.0/16\"], [\"rule family=ipv4 source address=10.20.20.20 reject\"], [\"icmp\", \"ipv6-icmp\"], [(\"1234\", \"tcp\"), (\"6666\", \"udp\")], true )' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79375,12 +81131,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:105" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:105" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:105" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getSettings ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79393,7 +81149,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(('1.1', 'foobar v2', 'foobar zone updated', false, 'ACCEPT', ['ssh', 'mdns', 'samba'], [('1234', 'tcp'), ('4444', 'udp')], ['echo-request', 'echo-reply'], false, [('1234', 'tcp', '4321', '')], ['dummy0', 'dummy1', 'dummy2'], ['10.10.10.0/24', '10.20.0.0/16'], ['rule family=\"ipv4\" source address=\"10.20.20.20\" reject'], ['icmp', 'ipv6-icmp'], [('1234', 'tcp'), ('6666', 'udp')], true),) +echo >>"$at_stdout"; printf "%s\n" "(('1.1', 'foobar v2', 'foobar zone updated', false, 'ACCEPT', ['ssh', 'mdns', 'samba'], [('1234', 'tcp'), ('4444', 'udp')], ['echo-request', 'echo-reply'], false, [('1234', 'tcp', '4321', '')], ['dummy0', 'dummy1', 'dummy2'], ['10.10.10.0/24', '10.20.0.0/16'], ['rule family=\"ipv4\" source address=\"10.20.20.20\" reject'], ['icmp', 'ipv6-icmp'], [('1234', 'tcp'), ('6666', 'udp')], true),) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:105" @@ -79404,12 +81160,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:125" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:125" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:125" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.rename \"foobar-renamed\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79430,12 +81186,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:126" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:126" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:126" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getZoneByName \"foobar-renamed\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79457,12 +81213,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:129" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:129" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:129" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.remove ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79483,12 +81239,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:130" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:130" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:130" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getZoneByName \"foobar-renamed\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79510,12 +81266,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:133" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:133" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:133" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getZoneByName \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79539,12 +81295,12 @@ DBUS_PUBLIC_ZONE_OBJ=$(sed -e "s/.*config\/zone\/\([^']\+\)['].*/\1/" ./stdout) export DBUS_PUBLIC_ZONE_OBJ - $as_echo "zone_permanent_functional.at:138" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:138" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:138" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.loadDefaults ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79566,12 +81322,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:141" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:141" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:141" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getVersion ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79584,7 +81340,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('',) +echo >>"$at_stdout"; printf "%s\n" "('',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:141" @@ -79594,12 +81350,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:144" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:144" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:144" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setVersion \"1.1\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79620,12 +81376,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:145" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:145" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:145" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getVersion ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79638,7 +81394,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('1.1',) +echo >>"$at_stdout"; printf "%s\n" "('1.1',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:145" @@ -79649,12 +81405,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:150" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:150" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:150" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getShort ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79667,7 +81423,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('Public',) +echo >>"$at_stdout"; printf "%s\n" "('Public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:150" @@ -79677,12 +81433,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:153" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:153" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:153" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setShort \"Public updated\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79703,12 +81459,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:154" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:154" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:154" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getShort ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79721,7 +81477,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('Public updated',) +echo >>"$at_stdout"; printf "%s\n" "('Public updated',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:154" @@ -79732,12 +81488,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:159" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:159" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:159" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getDescription ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79750,7 +81506,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.',) +echo >>"$at_stdout"; printf "%s\n" "('For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:159" @@ -79760,12 +81516,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:162" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:162" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:162" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:162: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:162: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setDescription \"A shorter description.\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79786,12 +81542,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:163" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:163" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:163" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getDescription ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79804,7 +81560,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('A shorter description.',) +echo >>"$at_stdout"; printf "%s\n" "('A shorter description.',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:163" @@ -79815,12 +81571,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:168" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:168" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:168" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:168: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:168: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getTarget ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79833,7 +81589,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('default',) +echo >>"$at_stdout"; printf "%s\n" "('default',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:168" @@ -79843,12 +81599,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:171" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:171" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:171" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:171: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:171: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setTarget \"ACCEPT\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79869,12 +81625,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:172" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:172" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:172" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:172: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:172: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getTarget ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79887,7 +81643,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('ACCEPT',) +echo >>"$at_stdout"; printf "%s\n" "('ACCEPT',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:172" @@ -79898,12 +81654,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:177" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:177" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:177" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.addInterface \"dummy0\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79924,12 +81680,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:178" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:178" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:178" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:178: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:178: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryInterface \"dummy0\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79942,7 +81698,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:178" @@ -79952,12 +81708,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:181" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:181" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:181" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryInterface \"dummy1\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -79970,7 +81726,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:181" @@ -79980,12 +81736,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:184" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:184" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:184" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setInterfaces '[\"dummy0\", \"dummy1\"]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80006,12 +81762,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:185" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:185" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:185" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getInterfaces ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80024,7 +81780,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['dummy0', 'dummy1'],) +echo >>"$at_stdout"; printf "%s\n" "(['dummy0', 'dummy1'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:185" @@ -80034,12 +81790,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:188" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:188" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:188" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:188: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:188: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.removeInterface \"dummy0\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80060,12 +81816,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:189" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:189" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:189" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getInterfaces ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80078,7 +81834,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['dummy1'],) +echo >>"$at_stdout"; printf "%s\n" "(['dummy1'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:189" @@ -80089,12 +81845,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:194" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:194" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:194" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:194: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:194: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.addSource \"10.10.10.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80115,12 +81871,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:195" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:195" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:195" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:195: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:195: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.querySource \"10.10.10.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80133,7 +81889,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:195" @@ -80143,12 +81899,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:198" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:198" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:198" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:198: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:198: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.querySource \"10.20.20.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80161,7 +81917,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:198" @@ -80171,12 +81927,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:201" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:201" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:201" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setSources '[\"10.10.10.0/24\", \"10.20.20.0/24\"]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80197,12 +81953,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:202" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:202" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:202" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getSources ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80215,7 +81971,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['10.10.10.0/24', '10.20.20.0/24'],) +echo >>"$at_stdout"; printf "%s\n" "(['10.10.10.0/24', '10.20.20.0/24'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:202" @@ -80225,12 +81981,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:205" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:205" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:205" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.removeSource \"10.10.10.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80251,12 +82007,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:206" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:206" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:206" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:206: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:206: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getSources ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80269,7 +82025,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['10.20.20.0/24'],) +echo >>"$at_stdout"; printf "%s\n" "(['10.20.20.0/24'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:206" @@ -80280,12 +82036,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:211" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:211" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:211" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.addService \"samba\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80306,12 +82062,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:212" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:212" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:212" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryService \"samba\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80324,7 +82080,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:212" @@ -80334,12 +82090,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:215" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:215" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:215" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:215: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:215: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryService \"https\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80352,7 +82108,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:215" @@ -80362,12 +82118,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:218" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:218" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:218" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setServices '[\"samba\", \"https\"]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80388,12 +82144,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:219" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:219" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:219" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:219: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:219: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getServices ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80406,7 +82162,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['samba', 'https'],) +echo >>"$at_stdout"; printf "%s\n" "(['samba', 'https'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:219" @@ -80416,12 +82172,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:222" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:222" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:222" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.removeService \"samba\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80442,12 +82198,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:223" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:223" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:223" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getServices ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80460,7 +82216,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['https'],) +echo >>"$at_stdout"; printf "%s\n" "(['https'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:223" @@ -80471,12 +82227,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:228" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:228" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:228" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.addPort \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80497,12 +82253,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:229" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:229" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:229" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryPort \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80515,7 +82271,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:229" @@ -80525,12 +82281,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:232" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:232" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:232" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryPort \"4321\" \"udp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80543,7 +82299,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:232" @@ -80553,12 +82309,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:235" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:235" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:235" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setPorts '[(\"1234\", \"tcp\"), (\"4321\", \"udp\")]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80579,12 +82335,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:236" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:236" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:236" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getPorts ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80597,7 +82353,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "([('1234', 'tcp'), ('4321', 'udp')],) +echo >>"$at_stdout"; printf "%s\n" "([('1234', 'tcp'), ('4321', 'udp')],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:236" @@ -80607,12 +82363,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:239" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:239" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:239" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.removePort \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80633,12 +82389,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:240" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:240" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:240" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getPorts ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80651,7 +82407,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "([('4321', 'udp')],) +echo >>"$at_stdout"; printf "%s\n" "([('4321', 'udp')],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:240" @@ -80662,12 +82418,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:245" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:245" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:245" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.addSourcePort \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80688,12 +82444,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:246" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:246" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:246" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.querySourcePort \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80706,7 +82462,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:246" @@ -80716,12 +82472,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:249" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:249" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:249" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.querySourcePort \"4321\" \"udp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80734,7 +82490,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:249" @@ -80744,12 +82500,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:252" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:252" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:252" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setSourcePorts '[(\"1234\", \"tcp\"), (\"4321\", \"udp\")]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80770,12 +82526,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:253" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:253" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:253" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getSourcePorts ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80788,7 +82544,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "([('1234', 'tcp'), ('4321', 'udp')],) +echo >>"$at_stdout"; printf "%s\n" "([('1234', 'tcp'), ('4321', 'udp')],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:253" @@ -80798,12 +82554,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:256" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:256" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:256" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.removeSourcePort \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80824,12 +82580,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:257" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:257" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:257" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getSourcePorts ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80842,7 +82598,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "([('4321', 'udp')],) +echo >>"$at_stdout"; printf "%s\n" "([('4321', 'udp')],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:257" @@ -80853,12 +82609,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:262" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:262" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:262" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.addForwardPort \"1234\" \"tcp\" \"1111\" \"\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80879,12 +82635,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:263" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:263" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:263" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryForwardPort \"1234\" \"tcp\" \"1111\" \"\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80897,7 +82653,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:263" @@ -80907,12 +82663,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:266" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:266" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:266" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:266: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:266: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryForwardPort \"4321\" \"udp\" \"4444\" \"10.10.10.10\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80925,7 +82681,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:266" @@ -80935,12 +82691,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:269" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:269" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:269" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setForwardPorts '[(\"1234\", \"tcp\", \"1111\", \"\"), (\"4321\", \"udp\", \"4444\", \"10.10.10.10\")]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80961,12 +82717,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:270" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:270" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:270" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:270: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:270: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getForwardPorts ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -80979,7 +82735,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "([('1234', 'tcp', '1111', ''), ('4321', 'udp', '4444', '10.10.10.10')],) +echo >>"$at_stdout"; printf "%s\n" "([('1234', 'tcp', '1111', ''), ('4321', 'udp', '4444', '10.10.10.10')],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:270" @@ -80989,12 +82745,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:273" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:273" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:273" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.removeForwardPort \"1234\" \"tcp\" \"1111\" \"\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81015,12 +82771,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:274" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:274" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:274" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getForwardPorts ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81033,7 +82789,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "([('4321', 'udp', '4444', '10.10.10.10')],) +echo >>"$at_stdout"; printf "%s\n" "([('4321', 'udp', '4444', '10.10.10.10')],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:274" @@ -81044,12 +82800,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:279" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:279" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:279" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.addProtocol \"icmp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81070,12 +82826,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:280" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:280" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:280" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryProtocol \"icmp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81088,7 +82844,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:280" @@ -81098,12 +82854,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:283" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:283" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:283" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryProtocol \"igmp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81116,7 +82872,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:283" @@ -81126,12 +82882,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:286" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:286" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:286" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setProtocols '[\"icmp\", \"igmp\"]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81152,12 +82908,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:287" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:287" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:287" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getProtocols ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81170,7 +82926,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['icmp', 'igmp'],) +echo >>"$at_stdout"; printf "%s\n" "(['icmp', 'igmp'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:287" @@ -81180,12 +82936,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:290" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:290" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:290" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.removeProtocol \"icmp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81206,12 +82962,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:291" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:291" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:291" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getProtocols ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81224,7 +82980,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['igmp'],) +echo >>"$at_stdout"; printf "%s\n" "(['igmp'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:291" @@ -81235,12 +82991,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:296" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:296" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:296" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryMasquerade ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81253,7 +83009,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:296" @@ -81263,12 +83019,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:299" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:299" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:299" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.addMasquerade ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81289,12 +83045,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:300" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:300" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:300" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryMasquerade ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81307,7 +83063,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:300" @@ -81317,12 +83073,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:303" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:303" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:303" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setMasquerade true; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81343,12 +83099,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:304" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:304" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:304" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getMasquerade ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81361,7 +83117,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:304" @@ -81371,12 +83127,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:307" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:307" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:307" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.removeMasquerade ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81397,12 +83153,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:308" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:308" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:308" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getMasquerade ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81415,7 +83171,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:308" @@ -81426,12 +83182,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:313" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:313" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:313" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.addIcmpBlock \"echo-reply\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81452,12 +83208,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:314" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:314" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:314" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:314: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:314: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryIcmpBlock \"echo-reply\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81470,7 +83226,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:314" @@ -81480,12 +83236,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:317" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:317" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:317" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryIcmpBlock \"echo-request\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81498,7 +83254,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:317" @@ -81508,12 +83264,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:320" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:320" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:320" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setIcmpBlocks '[\"echo-reply\", \"echo-request\"]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81534,12 +83290,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:321" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:321" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:321" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getIcmpBlocks ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81552,7 +83308,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['echo-reply', 'echo-request'],) +echo >>"$at_stdout"; printf "%s\n" "(['echo-reply', 'echo-request'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:321" @@ -81562,12 +83318,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:324" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:324" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:324" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.removeIcmpBlock \"echo-reply\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81588,12 +83344,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:325" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:325" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:325" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:325: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:325: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getIcmpBlocks ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81606,7 +83362,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['echo-request'],) +echo >>"$at_stdout"; printf "%s\n" "(['echo-request'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:325" @@ -81617,12 +83373,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:330" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:330" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:330" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:330: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:330: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryIcmpBlockInversion ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81635,7 +83391,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:330" @@ -81645,12 +83401,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:333" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:333" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:333" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.addIcmpBlockInversion ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81671,12 +83427,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:334" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:334" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:334" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:334: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:334: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryIcmpBlockInversion ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81689,7 +83445,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:334" @@ -81699,12 +83455,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:337" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:337" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:337" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setIcmpBlockInversion true; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81725,12 +83481,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:338" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:338" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:338" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:338: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:338: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getIcmpBlockInversion ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81743,7 +83499,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:338" @@ -81753,12 +83509,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:341" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:341" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:341" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:341: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:341: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.removeIcmpBlockInversion ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81779,12 +83535,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:342" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:342" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:342" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:342: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:342: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getIcmpBlockInversion ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81797,7 +83553,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:342" @@ -81808,12 +83564,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:347" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:347" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:347" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.addRichRule \"rule family=ipv4 source address=10.10.10.0/24 accept\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81834,12 +83590,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:348" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:348" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:348" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryRichRule \"rule family=ipv4 source address=10.10.10.0/24 accept\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81852,7 +83608,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:348" @@ -81862,12 +83618,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:351" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:351" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:351" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.queryRichRule \"rule family=ipv4 source address=10.20.20.0/24 drop\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81880,7 +83636,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:351" @@ -81890,12 +83646,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:354" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:354" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:354" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.setRichRules '[\"rule family=ipv4 source address=10.10.10.0/24 accept\", \"rule family=ipv4 source address=10.20.20.0/24 drop\"]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81916,12 +83672,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:355" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:355" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:355" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getRichRules ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81934,7 +83690,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['rule family=\"ipv4\" source address=\"10.10.10.0/24\" accept', 'rule family=\"ipv4\" source address=\"10.20.20.0/24\" drop'],) +echo >>"$at_stdout"; printf "%s\n" "(['rule family=\"ipv4\" source address=\"10.10.10.0/24\" accept', 'rule family=\"ipv4\" source address=\"10.20.20.0/24\" drop'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:355" @@ -81944,12 +83700,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:358" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:358" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:358" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.removeRichRule \"rule family=ipv4 source address=10.10.10.0/24 accept\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81970,12 +83726,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:359" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:359" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:359" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_PUBLIC_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getRichRules ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -81988,7 +83744,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['rule family=\"ipv4\" source address=\"10.20.20.0/24\" drop'],) +echo >>"$at_stdout"; printf "%s\n" "(['rule family=\"ipv4\" source address=\"10.20.20.0/24\" drop'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_permanent_functional.at:359" @@ -82000,12 +83756,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:367" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:367" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:367" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.addZone2 \"foobar2\" '{\"version\": <\"1.0\">, \"short\": <\"foobar\">, \"description\": <\"foobar zone\">, \"target\": <\"ACCEPT\">, \"services\": <[\"ssh\", \"mdns\"]>, \"ports\": <[(\"1234\", \"tcp\"), (\"1234\", \"udp\")]>, \"icmp_blocks\": <[\"echo-request\"]>, \"masquerade\": , \"forward\": , \"forward_ports\": <[(\"1234\", \"tcp\", \"4321\", \"\"), (\"1234\", \"udp\", \"4321\", \"10.10.10.10\")]>, \"interfaces\": <[\"dummy2\", \"dummy3\"]>, \"sources\": <[\"10.10.10.0/24\"]>, \"rules_str\": <[\"rule family=ipv4 source address=10.20.20.20 drop\"]>, \"protocols\": <[\"icmp\"]>, \"source_ports\": <[(\"1234\", \"tcp\"), (\"1234\", \"udp\")]>, \"icmp_block_inversion\": }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82029,12 +83785,12 @@ DBUS_FOOBAR2_ZONE_OBJ=$(sed -e "s/.*config\/zone\/\([^']\+\)['].*/\1/" ./stdout) export DBUS_FOOBAR2_ZONE_OBJ - $as_echo "zone_permanent_functional.at:390" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:390" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:390" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR2_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getSettings2 ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82047,7 +83803,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar zone'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar zone'> 'egress_priority': <0> 'forward': 'forward_ports': <[('1234', 'tcp', '4321', ''), ('1234', 'udp', '4321', '10.10.10.10')]> @@ -82075,12 +83831,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:413" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:413" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:413" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:413: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:413: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR2_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.update2 '{\"version\": <\"1.1\">, \"short\": <\"foobar update2\">, \"description\": <\"foobar zone update2\">, \"target\": <\"DROP\">, \"services\": <[\"mdns\"]>, \"ports\": <[(\"1234\", \"udp\")]>, \"icmp_blocks\": <[\"echo-request\", \"echo-reply\"]>, \"masquerade\": , \"forward_ports\": <[(\"1234\", \"udp\", \"4321\", \"10.10.10.10\")]>, \"interfaces\": <[\"dummy3\"]>, \"sources\": <[\"10.10.10.0/24\", \"10.30.30.0/24\"]>, \"rules_str\": <[\"rule family=ipv4 source address=10.20.20.20 accept\"]>, \"protocols\": <[\"ipv6-icmp\"]>, \"source_ports\": <[(\"1234\", \"udp\")]>, \"ingress_priority\": <1>, \"egress_priority\": <-300>, \"icmp_block_inversion\": }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82101,12 +83857,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:433" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:433" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:433" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:433: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:433: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR2_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getSettings2 ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82119,7 +83875,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar zone update2'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar zone update2'> 'egress_priority': <-300> 'forward': 'forward_ports': <[('1234', 'udp', '4321', '10.10.10.10')]> @@ -82147,12 +83903,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:455" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:455" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:455" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:455: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:455: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR2_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.update2 '{\"version\": <\"1.2\">, \"target\": <\"ACCEPT\"> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82173,12 +83929,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:461" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:461" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:461" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:461: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:461: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR2_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.update2 '{\"version\": <\"1.3\">, \"icmp_blocks\": <@as []>, \"icmp_block_inversion\": }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82199,12 +83955,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:468" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:468" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:468" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:468: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:468: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR2_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.update2 '{\"version\": <\"1.4\">, \"forward_ports\": <@a(ssss) []> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82225,12 +83981,12 @@ $at_traceon; } - $as_echo "zone_permanent_functional.at:474" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:474" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_permanent_functional.at:474" { set +x -$as_echo "$at_srcdir/zone_permanent_functional.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_permanent_functional.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/zone/\${DBUS_FOOBAR2_ZONE_OBJ} --method org.fedoraproject.FirewallD1.config.zone.getSettings2 ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82243,7 +83999,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar zone update2'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar zone update2'> 'egress_priority': <-300> 'forward': 'icmp_block_inversion': @@ -82271,7 +84027,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_ZONE: foobar-renamed/d'" != x"ignore"; then - $as_echo "zone_permanent_functional.at:493" >"$at_check_line_file" + printf "%s\n" "zone_permanent_functional.at:493" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ZONE: foobar-renamed/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/zone_permanent_functional.at:493" fi @@ -82282,13 +84038,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_69 -#AT_START_70 -at_fn_group_banner 70 'zone_runtime_functional.at:1' \ +#AT_STOP_75 +#AT_START_76 +at_fn_group_banner 76 'zone_runtime_functional.at:1' \ "dbus api - zone runtime functional" " " 3 at_xfail=no ( - $as_echo "70. $at_setup_line: testing $at_desc ..." + printf "%s\n" "76. $at_setup_line: testing $at_desc ..." $at_traceon @@ -82306,6 +84062,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -82322,7 +84079,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82336,7 +84093,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "zone_runtime_functional.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82352,7 +84109,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "zone_runtime_functional.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82416,7 +84173,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82507,7 +84264,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "zone_runtime_functional.at:1" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/zone_runtime_functional.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -82526,7 +84283,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82547,7 +84304,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "zone_runtime_functional.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82564,7 +84321,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82579,7 +84336,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82596,7 +84353,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -82604,7 +84361,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "zone_runtime_functional.at:1" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/zone_runtime_functional.at:1" fi echo "$!" > firewalld.pid @@ -82621,7 +84378,7 @@ at_fn_check_skip 99 "$at_srcdir/zone_runtime_functional.at:1" fi sleep 1 done - $as_echo "zone_runtime_functional.at:1" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/zone_runtime_functional.at:1" @@ -82631,12 +84388,12 @@ at_fn_check_skip 99 "$at_srcdir/zone_runtime_functional.at:1" - $as_echo "zone_runtime_functional.at:8" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:8" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.getZoneSettings \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82649,7 +84406,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(('', 'Public', 'For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.', false, 'default', ['ssh', 'dhcpv6-client'], @a(ss) [], @as [], false, @a(ssss) [], @as [], @as [], @as [], @as [], @a(ss) [], false),) +echo >>"$at_stdout"; printf "%s\n" "(('', 'Public', 'For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.', false, 'default', ['ssh', 'dhcpv6-client'], @a(ss) [], @as [], false, @a(ssss) [], @as [], @as [], @as [], @as [], @a(ss) [], false),) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:8" @@ -82660,12 +84417,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:28" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:28" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:28" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.getDefaultZone ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82678,7 +84435,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:28" @@ -82688,12 +84445,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:31" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:31" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:31" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.setDefaultZone 'drop'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82706,7 +84463,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "() +echo >>"$at_stdout"; printf "%s\n" "() " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:31" @@ -82716,12 +84473,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:34" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:34" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:34" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.getDefaultZone ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82734,7 +84491,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('drop',) +echo >>"$at_stdout"; printf "%s\n" "('drop',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:34" @@ -82749,12 +84506,12 @@ if env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-db export NM_SHARED fi - $as_echo "zone_runtime_functional.at:43" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:43" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:43" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getZones ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82767,7 +84524,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['block', 'dmz', 'drop', 'external', 'home', 'internal', ${NM_SHARED}'public', 'trusted', 'work'],) +echo >>"$at_stdout"; printf "%s\n" "(['block', 'dmz', 'drop', 'external', 'home', 'internal', ${NM_SHARED}'public', 'trusted', 'work'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:43" @@ -82780,7 +84537,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --add-interface dummy0 " +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --add-interface dummy0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:46" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone public --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82799,7 +84556,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --add-source 10.1.1.1 " +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --add-source 10.1.1.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone public --add-source 10.1.1.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82815,12 +84572,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:48" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:48" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:48" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getActiveZones ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82833,7 +84590,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'public': {'interfaces': ['dummy0'], 'sources': ['10.1.1.1']}, 'drop': {'interfaces': [], 'sources': []} +echo >>"$at_stdout"; printf "%s\n" "'public': {'interfaces': ['dummy0'], 'sources': ['10.1.1.1']}, 'drop': {'interfaces': [], 'sources': []} " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:48" @@ -82846,7 +84603,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --remove-interface dummy0 " +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --remove-interface dummy0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:51" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone public --remove-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82865,7 +84622,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --remove-source 10.1.1.1 " +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --remove-source 10.1.1.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone public --remove-source 10.1.1.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82885,7 +84642,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --add-interface dummy1 " +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --add-interface dummy1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone public --add-interface dummy1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82901,12 +84658,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:56" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:56" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:56" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getZoneOfInterface \"dummy1\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82919,7 +84676,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:56" @@ -82932,7 +84689,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --remove-interface dummy1 " +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone public --remove-interface dummy1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:59" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone public --remove-interface dummy1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82951,7 +84708,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone drop --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone drop --add-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:60" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone drop --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -82967,12 +84724,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:61" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:61" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:61" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getZoneOfSource \"10.10.10.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -82985,7 +84742,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('drop',) +echo >>"$at_stdout"; printf "%s\n" "('drop',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:61" @@ -82998,7 +84755,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone drop --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone drop --remove-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_runtime_functional.at:64" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone drop --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -83016,12 +84773,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:71" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:71" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:71" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.isImmutable \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83034,7 +84791,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:71" @@ -83045,12 +84802,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:76" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:76" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:76" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addInterface \"public\" \"dummy0\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83063,7 +84820,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:76" @@ -83073,12 +84830,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:79" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:79" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:79" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.changeZone \"drop\" \"dummy0\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83091,7 +84848,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('drop',) +echo >>"$at_stdout"; printf "%s\n" "('drop',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:79" @@ -83101,12 +84858,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:82" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:82" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:82" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryInterface \"public\" \"dummy0\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83119,7 +84876,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:82" @@ -83129,12 +84886,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:85" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:85" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:85" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryInterface \"drop\" \"dummy0\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83147,7 +84904,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:85" @@ -83157,12 +84914,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:88" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:88" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:88" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.changeZoneOfInterface \"public\" \"dummy0\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83175,7 +84932,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:88" @@ -83185,12 +84942,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:91" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:91" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:91" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryInterface \"public\" \"dummy0\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83203,7 +84960,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:91" @@ -83213,12 +84970,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:94" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:94" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:94" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryInterface \"drop\" \"dummy0\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83231,7 +84988,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:94" @@ -83241,12 +84998,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:97" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:97" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:97" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addInterface \"public\" \"dummy1\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83259,7 +85016,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:97" @@ -83269,12 +85026,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:100" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:100" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:100" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getInterfaces \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83287,7 +85044,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['dummy0', 'dummy1'],) +echo >>"$at_stdout"; printf "%s\n" "(['dummy0', 'dummy1'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:100" @@ -83297,12 +85054,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:103" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:103" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:103" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.removeInterface \"public\" \"dummy0\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83315,7 +85072,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:103" @@ -83325,12 +85082,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:106" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:106" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:106" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getInterfaces \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83343,7 +85100,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['dummy1'],) +echo >>"$at_stdout"; printf "%s\n" "(['dummy1'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:106" @@ -83354,12 +85111,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:111" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:111" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:111" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addSource \"public\" \"10.10.10.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83372,7 +85129,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:111" @@ -83382,12 +85139,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:114" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:114" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:114" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.changeZoneOfSource \"drop\" \"10.10.10.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83400,7 +85157,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('drop',) +echo >>"$at_stdout"; printf "%s\n" "('drop',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:114" @@ -83410,12 +85167,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:117" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:117" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:117" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.querySource \"public\" \"10.10.10.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83428,7 +85185,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:117" @@ -83438,12 +85195,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:120" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:120" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:120" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.querySource \"drop\" \"10.10.10.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83456,7 +85213,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:120" @@ -83466,12 +85223,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:123" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:123" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:123" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.changeZoneOfSource \"public\" \"10.10.10.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83484,7 +85241,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:123" @@ -83494,12 +85251,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:126" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:126" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:126" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addSource \"public\" \"10.20.0.0/16\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83512,7 +85269,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:126" @@ -83522,12 +85279,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:129" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:129" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:129" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getSources \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83540,7 +85297,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['10.10.10.0/24', '10.20.0.0/16'],) +echo >>"$at_stdout"; printf "%s\n" "(['10.10.10.0/24', '10.20.0.0/16'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:129" @@ -83550,12 +85307,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:132" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:132" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:132" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.removeSource \"public\" \"10.10.10.0/24\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83568,7 +85325,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:132" @@ -83578,12 +85335,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:135" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:135" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:135" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getSources \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83596,7 +85353,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['10.20.0.0/16'],) +echo >>"$at_stdout"; printf "%s\n" "(['10.20.0.0/16'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:135" @@ -83607,12 +85364,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:140" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:140" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:140" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addService \"public\" \"samba\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83625,7 +85382,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:140" @@ -83635,12 +85392,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:143" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:143" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:143" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryService \"public\" \"samba\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83653,7 +85410,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:143" @@ -83663,12 +85420,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:146" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:146" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:146" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getServices \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83681,7 +85438,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['ssh', 'dhcpv6-client', 'samba'],) +echo >>"$at_stdout"; printf "%s\n" "(['ssh', 'dhcpv6-client', 'samba'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:146" @@ -83691,12 +85448,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:149" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:149" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:149" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.removeService \"public\" \"samba\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83709,7 +85466,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:149" @@ -83719,12 +85476,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:152" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:152" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:152" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryService \"public\" \"samba\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83737,7 +85494,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:152" @@ -83748,12 +85505,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:157" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:157" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:157" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addProtocol \"public\" \"icmp\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83766,7 +85523,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:157" @@ -83776,12 +85533,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:160" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:160" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:160" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryProtocol \"public\" \"icmp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83794,7 +85551,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:160" @@ -83804,12 +85561,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:163" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:163" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:163" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getProtocols \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83822,7 +85579,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['icmp'],) +echo >>"$at_stdout"; printf "%s\n" "(['icmp'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:163" @@ -83832,12 +85589,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:166" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:166" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:166" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.removeProtocol \"public\" \"icmp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83850,7 +85607,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:166" @@ -83860,12 +85617,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:169" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:169" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:169" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:169: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:169: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryProtocol \"public\" \"icmp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83878,7 +85635,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:169" @@ -83889,12 +85646,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:174" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:174" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:174" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addPort \"public\" \"1234\" \"tcp\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83907,7 +85664,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:174" @@ -83917,12 +85674,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:177" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:177" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:177" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryPort \"public\" \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83935,7 +85692,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:177" @@ -83945,12 +85702,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:180" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:180" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:180" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addPort \"public\" \"4321\" \"udp\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83963,7 +85720,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:180" @@ -83973,12 +85730,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:183" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:183" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:183" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getPorts \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -83991,7 +85748,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "([['1234', 'tcp'], ['4321', 'udp']],) +echo >>"$at_stdout"; printf "%s\n" "([['1234', 'tcp'], ['4321', 'udp']],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:183" @@ -84001,12 +85758,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:186" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:186" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:186" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:186: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:186: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.removePort \"public\" \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84019,7 +85776,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:186" @@ -84029,12 +85786,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:189" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:189" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:189" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryPort \"public\" \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84047,7 +85804,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:189" @@ -84058,12 +85815,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:194" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:194" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:194" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:194: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:194: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addSourcePort \"public\" \"1234\" \"tcp\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84076,7 +85833,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:194" @@ -84086,12 +85843,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:197" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:197" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:197" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.querySourcePort \"public\" \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84104,7 +85861,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:197" @@ -84114,12 +85871,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:200" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:200" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:200" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:200: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:200: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addSourcePort \"public\" \"4321\" \"udp\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84132,7 +85889,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:200" @@ -84142,12 +85899,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:203" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:203" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:203" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getSourcePorts \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84160,7 +85917,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "([['1234', 'tcp'], ['4321', 'udp']],) +echo >>"$at_stdout"; printf "%s\n" "([['1234', 'tcp'], ['4321', 'udp']],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:203" @@ -84170,12 +85927,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:206" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:206" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:206" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:206: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:206: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.removeSourcePort \"public\" \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84188,7 +85945,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:206" @@ -84198,12 +85955,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:209" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:209" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:209" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:209: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:209: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.querySourcePort \"public\" \"1234\" \"tcp\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84216,7 +85973,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:209" @@ -84227,12 +85984,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:214" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:214" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:214" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addForwardPort \"public\" \"1234\" \"tcp\" \"1111\" \"\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84245,7 +86002,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:214" @@ -84255,12 +86012,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:217" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:217" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:217" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryForwardPort \"public\" \"1234\" \"tcp\" \"1111\" \"\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84273,7 +86030,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:217" @@ -84283,12 +86040,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:220" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:220" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:220" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addForwardPort \"public\" \"4321\" \"udp\" \"4444\" \"10.10.10.10\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84301,7 +86058,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:220" @@ -84311,12 +86068,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:223" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:223" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:223" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getForwardPorts \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84329,7 +86086,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "([['1234', 'tcp', '1111', ''], ['4321', 'udp', '4444', '10.10.10.10']],) +echo >>"$at_stdout"; printf "%s\n" "([['1234', 'tcp', '1111', ''], ['4321', 'udp', '4444', '10.10.10.10']],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:223" @@ -84339,12 +86096,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:226" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:226" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:226" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.removeForwardPort \"public\" \"1234\" \"tcp\" \"1111\" \"\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84357,7 +86114,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:226" @@ -84367,12 +86124,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:229" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:229" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:229" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryForwardPort \"public\" \"1234\" \"tcp\" \"1111\" \"\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84385,7 +86142,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:229" @@ -84396,12 +86153,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:234" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:234" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:234" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addMasquerade \"public\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84414,7 +86171,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:234" @@ -84424,12 +86181,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:237" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:237" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:237" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:237: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:237: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryMasquerade \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84442,7 +86199,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:237" @@ -84452,12 +86209,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:240" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:240" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:240" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.removeMasquerade \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84470,7 +86227,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:240" @@ -84480,12 +86237,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:243" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:243" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:243" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryMasquerade \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84498,7 +86255,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:243" @@ -84509,12 +86266,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:248" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:248" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:248" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addIcmpBlock \"public\" \"echo-reply\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84527,7 +86284,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:248" @@ -84537,12 +86294,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:251" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:251" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:251" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryIcmpBlock \"public\" \"echo-reply\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84555,7 +86312,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:251" @@ -84565,12 +86322,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:254" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:254" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:254" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:254: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:254: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addIcmpBlock \"public\" \"echo-request\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84583,7 +86340,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:254" @@ -84593,12 +86350,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:257" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:257" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:257" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getIcmpBlocks \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84611,7 +86368,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['echo-reply', 'echo-request'],) +echo >>"$at_stdout"; printf "%s\n" "(['echo-reply', 'echo-request'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:257" @@ -84621,12 +86378,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:260" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:260" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:260" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.removeIcmpBlock \"public\" \"echo-reply\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84639,7 +86396,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:260" @@ -84649,12 +86406,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:263" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:263" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:263" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryIcmpBlock \"public\" \"echo-reply\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84667,7 +86424,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:263" @@ -84678,12 +86435,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:268" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:268" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:268" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:268: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:268: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addIcmpBlockInversion \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84696,7 +86453,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:268" @@ -84706,12 +86463,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:271" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:271" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:271" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryIcmpBlockInversion \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84724,7 +86481,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:271" @@ -84734,12 +86491,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:274" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:274" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:274" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.removeIcmpBlockInversion \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84752,7 +86509,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:274" @@ -84762,12 +86519,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:277" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:277" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:277" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryIcmpBlockInversion \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84780,7 +86537,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:277" @@ -84791,12 +86548,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:282" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:282" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:282" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addRichRule \"public\" \"rule family=ipv4 source address=10.10.10.10 accept\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84809,7 +86566,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:282" @@ -84819,12 +86576,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:285" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:285" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:285" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryRichRule \"public\" \"rule family=ipv4 source address=10.10.10.10 accept\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84837,7 +86594,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:285" @@ -84847,12 +86604,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:288" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:288" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:288" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:288: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:288: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getRichRules \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84865,7 +86622,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['rule family=\"ipv4\" source address=\"10.10.10.10\" accept'],) +echo >>"$at_stdout"; printf "%s\n" "(['rule family=\"ipv4\" source address=\"10.10.10.10\" accept'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:288" @@ -84875,12 +86632,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:291" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:291" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:291" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.addRichRule \"public\" \"rule family=ipv4 source address=20.20.20.20 accept\" 0; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84893,7 +86650,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:291" @@ -84903,12 +86660,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:294" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:294" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:294" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryRichRule \"public\" \"rule family=ipv4 source address=20.20.20.20 accept\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84921,7 +86678,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:294" @@ -84931,12 +86688,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:297" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:297" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:297" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.removeRichRule \"public\" \"rule family=ipv4 source address=10.10.10.10 accept\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84949,7 +86706,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "('public',) +echo >>"$at_stdout"; printf "%s\n" "('public',) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:297" @@ -84959,12 +86716,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:300" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:300" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:300" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.queryRichRule \"public\" \"rule family=ipv4 source address=10.10.10.10 accept\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -84977,7 +86734,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/zone_runtime_functional.at:300" @@ -84989,12 +86746,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:308" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:308" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:308" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getZoneSettings2 \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85007,7 +86764,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.'> 'egress_priority': <0> 'forward': 'forward_ports': <[('4321', 'udp', '4444', '10.10.10.10')]> @@ -85033,12 +86790,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:329" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:329" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:329" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:329: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:329: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.setZoneSettings2 \"public\" '{\"services\": <[\"mdns\"]>, \"ports\": <[(\"1234\", \"udp\")]>, \"icmp_blocks\": <[\"echo-request\", \"echo-reply\"]>, \"masquerade\": , \"forward\": , \"forward_ports\": <[(\"1234\", \"udp\", \"4321\", \"10.10.10.10\")]>, \"interfaces\": <[\"dummy3\"]>, \"sources\": <[\"10.10.10.0/24\"]>, \"rules_str\": <[\"rule family=ipv4 source address=10.20.20.20 accept\"]>, \"protocols\": <[\"ipv6-icmp\"]>, \"source_ports\": <[(\"1234\", \"udp\")]>, \"icmp_block_inversion\": }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85059,12 +86816,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:345" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:345" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:345" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getZoneSettings2 \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85077,7 +86834,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.'> 'egress_priority': <0> 'forward': 'forward_ports': <[('1234', 'udp', '4321', '10.10.10.10')]> @@ -85103,12 +86860,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:365" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:365" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:365" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.setZoneSettings2 \"public\" '{\"services\": <[\"mdns\"]>, \"ports\": <[(\"1234\", \"udp\")]>, \"icmp_blocks\": <[\"echo-request\", \"echo-reply\"]>, \"masquerade\": , \"forward_ports\": <[(\"1234\", \"udp\", \"4321\", \"10.10.10.10\")]>, \"interfaces\": <[\"dummy3\"]>, \"sources\": <[\"10.10.10.0/24\"]>, \"rules_str\": <[\"rule family=ipv4 source address=10.20.20.20 accept\"]>, \"protocols\": <[\"ipv6-icmp\"]>, \"source_ports\": <[(\"1234\", \"udp\")]>, \"icmp_block_inversion\": }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85130,12 +86887,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:382" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:382" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:382" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.setZoneSettings2 \"public\" '{\"services\": <[\"mdns\", \"ssh\"]>, \"icmp_blocks\": <[\"echo-reply\"]> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85156,12 +86913,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:389" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:389" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:389" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:389: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:389: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.setZoneSettings2 \"public\" '{\"rules_str\": <@as []>, \"icmp_block_inversion\": }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85182,12 +86939,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:396" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:396" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:396" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.setZoneSettings2 \"public\" '{\"forward_ports\": <@a(ssss) []> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85208,12 +86965,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:402" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:402" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:402" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:402: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:402: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.setZoneSettings2 \"public\" '{\"services\": <@as []> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85234,12 +86991,12 @@ $at_traceon; } - $as_echo "zone_runtime_functional.at:408" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:408" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/zone_runtime_functional.at:408" { set +x -$as_echo "$at_srcdir/zone_runtime_functional.at:408: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone_runtime_functional.at:408: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.zone.getZoneSettings2 \"public\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85252,7 +87009,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.'> 'egress_priority': <0> 'forward': 'icmp_block_inversion': @@ -85278,7 +87035,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "zone_runtime_functional.at:425" >"$at_check_line_file" + printf "%s\n" "zone_runtime_functional.at:425" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/zone_runtime_functional.at:425" fi @@ -85289,13 +87046,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_70 -#AT_START_71 -at_fn_group_banner 71 'policy_permanent_signatures.at:1' \ +#AT_STOP_76 +#AT_START_77 +at_fn_group_banner 77 'policy_permanent_signatures.at:1' \ "dbus api - policy permanent signatures" " " 3 at_xfail=no ( - $as_echo "71. $at_setup_line: testing $at_desc ..." + printf "%s\n" "77. $at_setup_line: testing $at_desc ..." $at_traceon @@ -85313,6 +87070,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -85329,7 +87087,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_signatures.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -85343,7 +87101,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy_permanent_signatures.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -85359,7 +87117,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy_permanent_signatures.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -85423,7 +87181,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_signatures.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -85514,7 +87272,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy_permanent_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy_permanent_signatures.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -85533,7 +87291,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -85554,7 +87312,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy_permanent_signatures.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -85571,7 +87329,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -85586,7 +87344,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -85603,7 +87361,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -85611,7 +87369,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy_permanent_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy_permanent_signatures.at:1" fi echo "$!" > firewalld.pid @@ -85628,7 +87386,7 @@ at_fn_check_skip 99 "$at_srcdir/policy_permanent_signatures.at:1" fi sleep 1 done - $as_echo "policy_permanent_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy_permanent_signatures.at:1" @@ -85638,15 +87396,15 @@ at_fn_check_skip 99 "$at_srcdir/policy_permanent_signatures.at:1" - $as_echo "policy_permanent_signatures.at:8" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:8" - $as_echo "policy_permanent_signatures.at:8" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:8" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config\"]//method[@name=\"listPolicies\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85659,7 +87417,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -85671,15 +87429,15 @@ $at_traceon; } - $as_echo "policy_permanent_signatures.at:13" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:13" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:13" - $as_echo "policy_permanent_signatures.at:13" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:13" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:13" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config\"]//method[@name=\"getPolicyNames\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85692,7 +87450,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -85704,15 +87462,15 @@ $at_traceon; } - $as_echo "policy_permanent_signatures.at:18" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:18" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:18" - $as_echo "policy_permanent_signatures.at:18" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:18" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:18" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config\"]//method[@name=\"getPolicyByName\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85725,7 +87483,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -85738,15 +87496,15 @@ $at_traceon; } - $as_echo "policy_permanent_signatures.at:24" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:24" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:24" - $as_echo "policy_permanent_signatures.at:24" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:24" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:24" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config\"]//method[@name=\"addPolicy\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85759,7 +87517,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -85775,12 +87533,12 @@ $at_traceon; } - $as_echo "policy_permanent_signatures.at:36" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:36" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:36" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getPolicyByName \"allow-host-ipv6\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85804,15 +87562,15 @@ DBUS_POLICY_OBJ=$(sed -e "s/.*config\/policy\/\([^']\+\)['].*/\1/" ./stdout) export DBUS_POLICY_OBJ - $as_echo "policy_permanent_signatures.at:40" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:40" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:40" - $as_echo "policy_permanent_signatures.at:40" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:40" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:40" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_POLICY_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.policy\"]//method[@name=\"getSettings\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85825,7 +87583,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -85838,15 +87596,15 @@ $at_traceon; } - $as_echo "policy_permanent_signatures.at:46" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:46" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:46" - $as_echo "policy_permanent_signatures.at:46" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:46" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:46" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_POLICY_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.policy\"]//method[@name=\"update\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85859,7 +87617,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -85871,15 +87629,15 @@ $at_traceon; } - $as_echo "policy_permanent_signatures.at:51" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:51" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:51" - $as_echo "policy_permanent_signatures.at:51" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:51" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:51" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_POLICY_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.policy\"]//signal[@name=\"Updated\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85892,7 +87650,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -85905,15 +87663,15 @@ $at_traceon; } - $as_echo "policy_permanent_signatures.at:57" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:57" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:57" - $as_echo "policy_permanent_signatures.at:57" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:57" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:57" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_POLICY_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.policy\"]//method[@name=\"remove\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85926,7 +87684,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: @@ -85937,15 +87695,15 @@ $at_traceon; } - $as_echo "policy_permanent_signatures.at:61" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:61" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:61" - $as_echo "policy_permanent_signatures.at:61" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:61" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:61" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_POLICY_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.policy\"]//signal[@name=\"Removed\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85958,7 +87716,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -85971,15 +87729,15 @@ $at_traceon; } - $as_echo "policy_permanent_signatures.at:67" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:67" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:67" - $as_echo "policy_permanent_signatures.at:67" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:67" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:67" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_POLICY_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.policy\"]//method[@name=\"rename\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -85992,7 +87750,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -86004,15 +87762,15 @@ $at_traceon; } - $as_echo "policy_permanent_signatures.at:72" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:72" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:72" - $as_echo "policy_permanent_signatures.at:72" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:72" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:72" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_POLICY_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.policy\"]//signal[@name=\"Renamed\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -86025,7 +87783,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -86038,15 +87796,15 @@ $at_traceon; } - $as_echo "policy_permanent_signatures.at:78" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:78" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:78" - $as_echo "policy_permanent_signatures.at:78" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:78" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_signatures.at:78" { set +x -$as_echo "$at_srcdir/policy_permanent_signatures.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_signatures.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_POLICY_OBJ}; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.policy\"]//method[@name=\"loadDefaults\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -86059,7 +87817,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: @@ -86073,7 +87831,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy_permanent_signatures.at:83" >"$at_check_line_file" + printf "%s\n" "policy_permanent_signatures.at:83" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/policy_permanent_signatures.at:83" fi @@ -86084,13 +87842,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_71 -#AT_START_72 -at_fn_group_banner 72 'policy_runtime_signatures.at:1' \ +#AT_STOP_77 +#AT_START_78 +at_fn_group_banner 78 'policy_runtime_signatures.at:1' \ "dbus api - policy runtime signatures" " " 3 at_xfail=no ( - $as_echo "72. $at_setup_line: testing $at_desc ..." + printf "%s\n" "78. $at_setup_line: testing $at_desc ..." $at_traceon @@ -86108,6 +87866,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -86124,7 +87883,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_signatures.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86138,7 +87897,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy_runtime_signatures.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86154,7 +87913,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy_runtime_signatures.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86218,7 +87977,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_signatures.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86309,7 +88068,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy_runtime_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy_runtime_signatures.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -86328,7 +88087,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86349,7 +88108,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy_runtime_signatures.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86366,7 +88125,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86381,7 +88140,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_signatures.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86398,7 +88157,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -86406,7 +88165,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy_runtime_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy_runtime_signatures.at:1" fi echo "$!" > firewalld.pid @@ -86423,7 +88182,7 @@ at_fn_check_skip 99 "$at_srcdir/policy_runtime_signatures.at:1" fi sleep 1 done - $as_echo "policy_runtime_signatures.at:1" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy_runtime_signatures.at:1" @@ -86432,15 +88191,15 @@ at_fn_check_skip 99 "$at_srcdir/policy_runtime_signatures.at:1" - $as_echo "policy_runtime_signatures.at:6" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:6" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_signatures.at:6" - $as_echo "policy_runtime_signatures.at:6" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:6" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_signatures.at:6" { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.policy\"]//method[@name=\"getPolicySettings\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -86453,7 +88212,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -86466,15 +88225,15 @@ $at_traceon; } - $as_echo "policy_runtime_signatures.at:12" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:12" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_signatures.at:12" - $as_echo "policy_runtime_signatures.at:12" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:12" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_signatures.at:12" { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.policy\"]//method[@name=\"setPolicySettings\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -86487,7 +88246,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -86500,15 +88259,15 @@ $at_traceon; } - $as_echo "policy_runtime_signatures.at:18" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:18" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_signatures.at:18" - $as_echo "policy_runtime_signatures.at:18" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:18" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_signatures.at:18" { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.policy\"]//signal[@name=\"PolicyUpdated\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -86521,7 +88280,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -86535,15 +88294,15 @@ $at_traceon; } - $as_echo "policy_runtime_signatures.at:26" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:26" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_signatures.at:26" - $as_echo "policy_runtime_signatures.at:26" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:26" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_signatures.at:26" { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.policy\"]//method[@name=\"getPolicies\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -86556,7 +88315,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -86568,15 +88327,15 @@ $at_traceon; } - $as_echo "policy_runtime_signatures.at:31" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:31" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_signatures.at:31" - $as_echo "policy_runtime_signatures.at:31" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:31" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_signatures.at:31" { set +x -$as_echo "$at_srcdir/policy_runtime_signatures.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_signatures.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.policy\"]//method[@name=\"getActivePolicies\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -86589,7 +88348,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -86604,7 +88363,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy_runtime_signatures.at:37" >"$at_check_line_file" + printf "%s\n" "policy_runtime_signatures.at:37" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/policy_runtime_signatures.at:37" fi @@ -86615,13 +88374,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_72 -#AT_START_73 -at_fn_group_banner 73 'policy_permanent_functional.at:1' \ +#AT_STOP_78 +#AT_START_79 +at_fn_group_banner 79 'policy_permanent_functional.at:1' \ "dbus api - policy permanent functional" " " 3 at_xfail=no ( - $as_echo "73. $at_setup_line: testing $at_desc ..." + printf "%s\n" "79. $at_setup_line: testing $at_desc ..." $at_traceon @@ -86639,6 +88398,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -86655,7 +88415,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_functional.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86669,7 +88429,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy_permanent_functional.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86685,7 +88445,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy_permanent_functional.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86749,7 +88509,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_functional.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86840,7 +88600,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy_permanent_functional.at:1" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy_permanent_functional.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -86859,7 +88619,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86880,7 +88640,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy_permanent_functional.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86897,7 +88657,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86912,7 +88672,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -86929,7 +88689,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -86937,7 +88697,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy_permanent_functional.at:1" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy_permanent_functional.at:1" fi echo "$!" > firewalld.pid @@ -86954,7 +88714,7 @@ at_fn_check_skip 99 "$at_srcdir/policy_permanent_functional.at:1" fi sleep 1 done - $as_echo "policy_permanent_functional.at:1" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy_permanent_functional.at:1" @@ -86964,12 +88724,12 @@ at_fn_check_skip 99 "$at_srcdir/policy_permanent_functional.at:1" - $as_echo "policy_permanent_functional.at:8" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:8" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.listPolicies ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -86991,7 +88751,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -e \"s/['][,]/'\\n/g\" ./stdout | sed -e \"s/.*config\\/policy\\/\\([^']\\+\\)['].*/\\1/\" | while read LINE; do { echo \"\${LINE}\" | grep \"^[0-9]\\+\$\" ; } || exit 1; done " +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -e \"s/['][,]/'\\n/g\" ./stdout | sed -e \"s/.*config\\/policy\\/\\([^']\\+\\)['].*/\\1/\" | while read LINE; do { echo \"\${LINE}\" | grep \"^[0-9]\\+\$\" ; } || exit 1; done " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_functional.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sed -e "s/['][,]/'\n/g" ./stdout | sed -e "s/.*config\/policy\/\([^']\+\)['].*/\1/" | while read LINE; do { echo "${LINE}" | grep "^[0-9]\+$" ; } || exit 1; done ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -87006,12 +88766,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:13" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:13" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:13" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getPolicyNames ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87024,7 +88784,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['allow-host-ipv6'],) +echo >>"$at_stdout"; printf "%s\n" "(['allow-host-ipv6'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy_permanent_functional.at:13" @@ -87035,12 +88795,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:17" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:17" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:17" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getPolicyByName \"allow-host-ipv6\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87062,7 +88822,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -e \"s/.*config\\/policy\\/\\([^']\\+\\)['].*/\\1/\" ./stdout | grep \"^[0-9]\\+\$\" " +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -e \"s/.*config\\/policy\\/\\([^']\\+\\)['].*/\\1/\" ./stdout | grep \"^[0-9]\\+\$\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_permanent_functional.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sed -e "s/.*config\/policy\/\([^']\+\)['].*/\1/" ./stdout | grep "^[0-9]\+$" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -87077,12 +88837,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:20" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:20" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:20" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.addPolicy \"foobar\" '{\"version\": <\"1.0\">, \"short\": <\"foobar\">, \"description\": <\"foobar policy\">, \"target\": <\"CONTINUE\">, \"services\": <[\"ssh\", \"mdns\"]>, \"ports\": <[(\"1234\", \"tcp\"), (\"1234\", \"udp\")]>, \"icmp_blocks\": <[\"echo-request\"]>, \"masquerade\": , \"forward_ports\": <[(\"1234\", \"tcp\", \"4321\", \"\"), (\"1234\", \"udp\", \"4321\", \"\")]>, \"rich_rules\": <[\"rule family=ipv4 source address=10.20.20.20 drop\"]>, \"protocols\": <[\"icmp\"]>, \"source_ports\": <[(\"1234\", \"tcp\"), (\"1234\", \"udp\")]>, \"ingress_zones\": <[\"public\"]>, \"egress_zones\": <[\"HOST\"]>, \"priority\": <-100> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87107,12 +88867,12 @@ export DBUS_FOOBAR_POLICY_OBJ - $as_echo "policy_permanent_functional.at:46" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:46" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:46" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_FOOBAR_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.getSettings ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87125,7 +88885,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar policy'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar policy'> 'egress_zones': <['HOST']> 'forward_ports': <[('1234', 'tcp', '4321', ''), ('1234', 'udp', '4321', '')]> 'icmp_blocks': <['echo-request']> @@ -87150,12 +88910,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:66" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:66" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:66" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_FOOBAR_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.update '{\"version\": <\"1.1\">, \"short\": <\"foobar update\">, \"description\": <\"foobar policy update\">, \"target\": <\"DROP\">, \"services\": <[\"mdns\"]>, \"ports\": <[(\"1234\", \"udp\")]>, \"icmp_blocks\": <[\"echo-request\", \"echo-reply\"]>, \"masquerade\": , \"forward_ports\": <[(\"1234\", \"udp\", \"4321\", \"10.10.10.10\")]>, \"rich_rules\": <[\"rule family=ipv4 source address=10.20.20.20 accept\"]>, \"protocols\": <[\"ipv6-icmp\"]>, \"source_ports\": <[(\"1234\", \"udp\")]>, \"ingress_zones\": <[\"public\", \"external\"]>, \"egress_zones\": <[\"internal\"]>, \"priority\": <200> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87176,12 +88936,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:84" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:84" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:84" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_FOOBAR_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.getSettings ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87194,7 +88954,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar policy update'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar policy update'> 'egress_zones': <['internal']> 'forward_ports': <[('1234', 'udp', '4321', '10.10.10.10')]> 'icmp_blocks': <['echo-request', 'echo-reply']> @@ -87219,12 +88979,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:103" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:103" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:103" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_FOOBAR_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.update '{\"version\": <\"1.2\">, \"target\": <\"DROP\"> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87245,12 +89005,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:109" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:109" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:109" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_FOOBAR_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.update '{\"version\": <\"1.3\">, \"icmp_blocks\": <@as []> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87271,12 +89031,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:115" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:115" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:115" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_FOOBAR_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.update '{\"version\": <\"1.4\">, \"forward_ports\": <@a(ssss) []> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87297,12 +89057,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:121" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:121" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:121" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_FOOBAR_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.getSettings ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87315,7 +89075,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'foobar policy update'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'foobar policy update'> 'egress_zones': <['internal']> 'ingress_zones': <['public', 'external']> 'masquerade': @@ -87338,12 +89098,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:137" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:137" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:137" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:137: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:137: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_FOOBAR_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.rename \"foobar-renamed\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87364,12 +89124,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:138" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:138" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:138" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getPolicyByName \"foobar-renamed\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87391,12 +89151,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:140" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:140" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:140" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_FOOBAR_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.remove ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87417,12 +89177,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:141" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:141" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:141" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getPolicyByName \"foobar-renamed\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87444,12 +89204,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:144" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:144" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:144" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getPolicyByName \"allow-host-ipv6\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87472,12 +89232,12 @@ $at_traceon; } DBUS_BUILTIN_POLICY_OBJ=$(sed -e "s/.*config\/policy\/\([^']\+\)['].*/\1/" ./stdout) export DBUS_BUILTIN_POLICY_OBJ - $as_echo "policy_permanent_functional.at:147" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:147" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:147" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_BUILTIN_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.update '{\"version\": <\"1.2\">, \"target\": <\"DROP\"> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87498,12 +89258,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:152" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:152" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:152" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_BUILTIN_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.getSettings ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87516,12 +89276,12 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'Allows basic IPv6 functionality for the host running firewalld.'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'Allows basic IPv6 functionality for the host running firewalld.'> 'egress_zones': <['HOST']> 'ingress_zones': <['ANY']> 'masquerade': 'priority': <-15000> -'rich_rules': <['rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept', 'rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept', 'rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept', 'rule family=\"ipv6\" icmp-type name=\"redirect\" accept']> +'rich_rules': <['rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept', 'rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept', 'rule family=\"ipv6\" icmp-type name=\"redirect\" accept', 'rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept']> 'short': <'Allow host IPv6'> 'target': <'DROP'> 'version': <'1.2'> @@ -87535,12 +89295,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:164" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:164" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:164" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:164: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:164: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_BUILTIN_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.loadDefaults ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87561,12 +89321,12 @@ $at_traceon; } - $as_echo "policy_permanent_functional.at:165" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:165" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_permanent_functional.at:165" { set +x -$as_echo "$at_srcdir/policy_permanent_functional.at:165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_permanent_functional.at:165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/policy/\${DBUS_BUILTIN_POLICY_OBJ} --method org.fedoraproject.FirewallD1.config.policy.getSettings ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87579,12 +89339,12 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'Allows basic IPv6 functionality for the host running firewalld.'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'Allows basic IPv6 functionality for the host running firewalld.'> 'egress_zones': <['HOST']> 'ingress_zones': <['ANY']> 'masquerade': 'priority': <-15000> -'rich_rules': <['rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept', 'rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept', 'rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept', 'rule family=\"ipv6\" icmp-type name=\"redirect\" accept']> +'rich_rules': <['rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept', 'rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept', 'rule family=\"ipv6\" icmp-type name=\"redirect\" accept', 'rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept']> 'short': <'Allow host IPv6'> 'target': <'CONTINUE'> " | \ @@ -87599,7 +89359,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_POLICY: foobar-renamed/d'" != x"ignore"; then - $as_echo "policy_permanent_functional.at:176" >"$at_check_line_file" + printf "%s\n" "policy_permanent_functional.at:176" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_POLICY: foobar-renamed/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/policy_permanent_functional.at:176" fi @@ -87610,13 +89370,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_73 -#AT_START_74 -at_fn_group_banner 74 'policy_runtime_functional.at:1' \ +#AT_STOP_79 +#AT_START_80 +at_fn_group_banner 80 'policy_runtime_functional.at:1' \ "dbus api - policy runtime functional" " " 3 at_xfail=no ( - $as_echo "74. $at_setup_line: testing $at_desc ..." + printf "%s\n" "80. $at_setup_line: testing $at_desc ..." $at_traceon @@ -87634,6 +89394,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -87650,7 +89411,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_functional.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -87664,7 +89425,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy_runtime_functional.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -87680,7 +89441,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy_runtime_functional.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -87744,7 +89505,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_functional.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -87835,7 +89596,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy_runtime_functional.at:1" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy_runtime_functional.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -87854,7 +89615,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -87875,7 +89636,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy_runtime_functional.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -87892,7 +89653,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -87907,7 +89668,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_functional.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -87924,7 +89685,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -87932,7 +89693,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy_runtime_functional.at:1" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy_runtime_functional.at:1" fi echo "$!" > firewalld.pid @@ -87949,7 +89710,7 @@ at_fn_check_skip 99 "$at_srcdir/policy_runtime_functional.at:1" fi sleep 1 done - $as_echo "policy_runtime_functional.at:1" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy_runtime_functional.at:1" @@ -87959,12 +89720,12 @@ at_fn_check_skip 99 "$at_srcdir/policy_runtime_functional.at:1" - $as_echo "policy_runtime_functional.at:8" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_functional.at:8" { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.policy.getPolicySettings \"allow-host-ipv6\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -87977,12 +89738,12 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'Allows basic IPv6 functionality for the host running firewalld.'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'Allows basic IPv6 functionality for the host running firewalld.'> 'egress_zones': <['HOST']> 'ingress_zones': <['ANY']> 'masquerade': 'priority': <-15000> -'rich_rules': <['rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept', 'rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept', 'rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept', 'rule family=\"ipv6\" icmp-type name=\"redirect\" accept']> +'rich_rules': <['rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept', 'rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept', 'rule family=\"ipv6\" icmp-type name=\"redirect\" accept', 'rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept']> 'short': <'Allow host IPv6'> 'target': <'CONTINUE'> " | \ @@ -87995,12 +89756,12 @@ $at_traceon; } - $as_echo "policy_runtime_functional.at:21" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:21" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_functional.at:21" { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.policy.setPolicySettings \"allow-host-ipv6\" '{\"services\": <[\"mdns\"]>, \"ports\": <[(\"1234\", \"udp\")]>, \"icmp_blocks\": <[\"echo-request\"]>, \"masquerade\": , \"forward_ports\": <[(\"1234\", \"udp\", \"4321\", \"\")]>, \"rich_rules\": <[\"rule family=ipv4 source address=10.20.20.20 accept\"]>, \"protocols\": <[\"ipv6-icmp\"]>, \"source_ports\": <[(\"1234\", \"udp\")]>, \"ingress_zones\": <[\"ANY\"]>, \"egress_zones\": <[\"HOST\"]> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88021,12 +89782,12 @@ $at_traceon; } - $as_echo "policy_runtime_functional.at:35" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:35" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_functional.at:35" { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.policy.getPolicySettings \"allow-host-ipv6\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88039,7 +89800,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'Allows basic IPv6 functionality for the host running firewalld.'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'Allows basic IPv6 functionality for the host running firewalld.'> 'egress_zones': <['HOST']> 'forward_ports': <[('1234', 'udp', '4321', '')]> 'icmp_blocks': <['echo-request']> @@ -88062,12 +89823,12 @@ $at_traceon; } - $as_echo "policy_runtime_functional.at:52" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:52" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_functional.at:52" { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.policy.setPolicySettings \"allow-host-ipv6\" '{\"services\": <[\"mdns\"]>, \"ports\": <[(\"1234\", \"udp\")]>, \"icmp_blocks\": <[\"echo-request\"]>, \"masquerade\": , \"forward_ports\": <[(\"1234\", \"udp\", \"4321\", \"\")]>, \"rich_rules\": <[\"rule family=ipv4 source address=10.20.20.20 accept\"]>, \"protocols\": <[\"ipv6-icmp\"]>, \"source_ports\": <[(\"1234\", \"udp\")]>, \"ingress_zones\": <[\"ANY\"]>, \"egress_zones\": <[\"HOST\"]> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88089,12 +89850,12 @@ $at_traceon; } - $as_echo "policy_runtime_functional.at:68" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:68" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_functional.at:68" { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.policy.setPolicySettings \"allow-host-ipv6\" '{\"services\": <[\"mdns\", \"ssh\"]>, \"icmp_blocks\": <[\"echo-reply\"]> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88115,12 +89876,12 @@ $at_traceon; } - $as_echo "policy_runtime_functional.at:75" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:75" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_functional.at:75" { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.policy.setPolicySettings \"allow-host-ipv6\" '{\"rich_rules\": <@as []> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88141,12 +89902,12 @@ $at_traceon; } - $as_echo "policy_runtime_functional.at:81" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:81" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_functional.at:81" { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:81: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:81: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.policy.setPolicySettings \"allow-host-ipv6\" '{\"forward_ports\": <@a(ssss) []> }' ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88167,12 +89928,12 @@ $at_traceon; } - $as_echo "policy_runtime_functional.at:87" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:87" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_functional.at:87" { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.policy.getPolicySettings \"allow-host-ipv6\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88185,7 +89946,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'description': <'Allows basic IPv6 functionality for the host running firewalld.'> +echo >>"$at_stdout"; printf "%s\n" "'description': <'Allows basic IPv6 functionality for the host running firewalld.'> 'egress_zones': <['HOST']> 'icmp_blocks': <['echo-reply']> 'ingress_zones': <['ANY']> @@ -88211,7 +89972,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_functional.at:102" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -88230,7 +89991,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy_runtime_functional.at:102" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -88249,12 +90010,12 @@ $at_traceon; } - $as_echo "policy_runtime_functional.at:108" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:108" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_functional.at:108" { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.policy.getPolicies ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88267,7 +90028,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['allow-host-ipv6'],) +echo >>"$at_stdout"; printf "%s\n" "(['allow-host-ipv6'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy_runtime_functional.at:108" @@ -88278,12 +90039,12 @@ $at_traceon; } - $as_echo "policy_runtime_functional.at:112" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:112" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/policy_runtime_functional.at:112" { set +x -$as_echo "$at_srcdir/policy_runtime_functional.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy_runtime_functional.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1 --method org.fedoraproject.FirewallD1.policy.getActivePolicies ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88296,7 +90057,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "'allow-host-ipv6': {'ingress_zones': ['ANY'], 'egress_zones': ['HOST']} +echo >>"$at_stdout"; printf "%s\n" "'allow-host-ipv6': {'ingress_zones': ['ANY'], 'egress_zones': ['HOST']} " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy_runtime_functional.at:112" @@ -88309,7 +90070,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy_runtime_functional.at:116" >"$at_check_line_file" + printf "%s\n" "policy_runtime_functional.at:116" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/policy_runtime_functional.at:116" fi @@ -88320,13 +90081,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_74 -#AT_START_75 -at_fn_group_banner 75 'direct.at:1' \ +#AT_STOP_80 +#AT_START_81 +at_fn_group_banner 81 'direct.at:1' \ "dbus api - direct signatures" " " 3 at_xfail=no ( - $as_echo "75. $at_setup_line: testing $at_desc ..." + printf "%s\n" "81. $at_setup_line: testing $at_desc ..." $at_traceon @@ -88344,6 +90105,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -88360,7 +90122,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/direct.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/direct.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "direct.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -88374,7 +90136,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/direct.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/direct.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "direct.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -88390,7 +90152,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/direct.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/direct.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "direct.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -88454,7 +90216,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/direct.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/direct.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "direct.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -88545,7 +90307,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "direct.at:1" >"$at_check_line_file" + printf "%s\n" "direct.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/direct.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -88564,7 +90326,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/direct.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/direct.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "direct.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -88585,7 +90347,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/direct.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/direct.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "direct.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -88602,7 +90364,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/direct.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/direct.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "direct.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -88617,7 +90379,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/direct.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/direct.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "direct.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -88634,7 +90396,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -88642,7 +90404,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "direct.at:1" >"$at_check_line_file" + printf "%s\n" "direct.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/direct.at:1" fi echo "$!" > firewalld.pid @@ -88659,7 +90421,7 @@ at_fn_check_skip 99 "$at_srcdir/direct.at:1" fi sleep 1 done - $as_echo "direct.at:1" >"$at_check_line_file" + printf "%s\n" "direct.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/direct.at:1" @@ -88669,15 +90431,15 @@ at_fn_check_skip 99 "$at_srcdir/direct.at:1" - $as_echo "direct.at:8" >"$at_check_line_file" + printf "%s\n" "direct.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:8" - $as_echo "direct.at:8" >"$at_check_line_file" + printf "%s\n" "direct.at:8" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:8" { set +x -$as_echo "$at_srcdir/direct.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"addChain\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88690,7 +90452,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -88706,15 +90468,15 @@ $at_traceon; } - $as_echo "direct.at:17" >"$at_check_line_file" + printf "%s\n" "direct.at:17" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:17" - $as_echo "direct.at:17" >"$at_check_line_file" + printf "%s\n" "direct.at:17" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:17" { set +x -$as_echo "$at_srcdir/direct.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"addPassthrough\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88727,7 +90489,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -88742,15 +90504,15 @@ $at_traceon; } - $as_echo "direct.at:25" >"$at_check_line_file" + printf "%s\n" "direct.at:25" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:25" - $as_echo "direct.at:25" >"$at_check_line_file" + printf "%s\n" "direct.at:25" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:25" { set +x -$as_echo "$at_srcdir/direct.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"addRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88763,7 +90525,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -88781,15 +90543,15 @@ $at_traceon; } - $as_echo "direct.at:36" >"$at_check_line_file" + printf "%s\n" "direct.at:36" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:36" - $as_echo "direct.at:36" >"$at_check_line_file" + printf "%s\n" "direct.at:36" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:36" { set +x -$as_echo "$at_srcdir/direct.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getAllChains\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88802,7 +90564,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -88816,15 +90578,15 @@ $at_traceon; } - $as_echo "direct.at:43" >"$at_check_line_file" + printf "%s\n" "direct.at:43" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:43" - $as_echo "direct.at:43" >"$at_check_line_file" + printf "%s\n" "direct.at:43" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:43" { set +x -$as_echo "$at_srcdir/direct.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getAllPassthroughs\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88837,7 +90599,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -88851,15 +90613,15 @@ $at_traceon; } - $as_echo "direct.at:50" >"$at_check_line_file" + printf "%s\n" "direct.at:50" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:50" - $as_echo "direct.at:50" >"$at_check_line_file" + printf "%s\n" "direct.at:50" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:50" { set +x -$as_echo "$at_srcdir/direct.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getAllRules\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88872,7 +90634,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -88886,15 +90648,15 @@ $at_traceon; } - $as_echo "direct.at:57" >"$at_check_line_file" + printf "%s\n" "direct.at:57" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:57" - $as_echo "direct.at:57" >"$at_check_line_file" + printf "%s\n" "direct.at:57" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:57" { set +x -$as_echo "$at_srcdir/direct.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getChains\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88907,7 +90669,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -88923,15 +90685,15 @@ $at_traceon; } - $as_echo "direct.at:66" >"$at_check_line_file" + printf "%s\n" "direct.at:66" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:66" - $as_echo "direct.at:66" >"$at_check_line_file" + printf "%s\n" "direct.at:66" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:66" { set +x -$as_echo "$at_srcdir/direct.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getPassthroughs\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88944,7 +90706,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -88959,15 +90721,15 @@ $at_traceon; } - $as_echo "direct.at:74" >"$at_check_line_file" + printf "%s\n" "direct.at:74" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:74" - $as_echo "direct.at:74" >"$at_check_line_file" + printf "%s\n" "direct.at:74" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:74" { set +x -$as_echo "$at_srcdir/direct.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"getRules\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -88980,7 +90742,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -88997,15 +90759,15 @@ $at_traceon; } - $as_echo "direct.at:84" >"$at_check_line_file" + printf "%s\n" "direct.at:84" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:84" - $as_echo "direct.at:84" >"$at_check_line_file" + printf "%s\n" "direct.at:84" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:84" { set +x -$as_echo "$at_srcdir/direct.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"passthrough\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89018,7 +90780,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89034,15 +90796,15 @@ $at_traceon; } - $as_echo "direct.at:93" >"$at_check_line_file" + printf "%s\n" "direct.at:93" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:93" - $as_echo "direct.at:93" >"$at_check_line_file" + printf "%s\n" "direct.at:93" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:93" { set +x -$as_echo "$at_srcdir/direct.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"queryChain\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89055,7 +90817,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89072,15 +90834,15 @@ $at_traceon; } - $as_echo "direct.at:103" >"$at_check_line_file" + printf "%s\n" "direct.at:103" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:103" - $as_echo "direct.at:103" >"$at_check_line_file" + printf "%s\n" "direct.at:103" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:103" { set +x -$as_echo "$at_srcdir/direct.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"queryPassthrough\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89093,7 +90855,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89109,15 +90871,15 @@ $at_traceon; } - $as_echo "direct.at:112" >"$at_check_line_file" + printf "%s\n" "direct.at:112" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:112" - $as_echo "direct.at:112" >"$at_check_line_file" + printf "%s\n" "direct.at:112" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:112" { set +x -$as_echo "$at_srcdir/direct.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"queryRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89130,7 +90892,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89149,15 +90911,15 @@ $at_traceon; } - $as_echo "direct.at:124" >"$at_check_line_file" + printf "%s\n" "direct.at:124" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:124" - $as_echo "direct.at:124" >"$at_check_line_file" + printf "%s\n" "direct.at:124" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:124" { set +x -$as_echo "$at_srcdir/direct.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"removeAllPassthroughs\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89170,7 +90932,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -89183,15 +90945,15 @@ $at_traceon; } - $as_echo "direct.at:130" >"$at_check_line_file" + printf "%s\n" "direct.at:130" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:130" - $as_echo "direct.at:130" >"$at_check_line_file" + printf "%s\n" "direct.at:130" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:130" { set +x -$as_echo "$at_srcdir/direct.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"removeChain\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89204,7 +90966,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89220,15 +90982,15 @@ $at_traceon; } - $as_echo "direct.at:139" >"$at_check_line_file" + printf "%s\n" "direct.at:139" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:139" - $as_echo "direct.at:139" >"$at_check_line_file" + printf "%s\n" "direct.at:139" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:139" { set +x -$as_echo "$at_srcdir/direct.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"removePassthrough\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89241,7 +91003,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89256,15 +91018,15 @@ $at_traceon; } - $as_echo "direct.at:147" >"$at_check_line_file" + printf "%s\n" "direct.at:147" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:147" - $as_echo "direct.at:147" >"$at_check_line_file" + printf "%s\n" "direct.at:147" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:147" { set +x -$as_echo "$at_srcdir/direct.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"removeRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89277,7 +91039,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89295,15 +91057,15 @@ $at_traceon; } - $as_echo "direct.at:158" >"$at_check_line_file" + printf "%s\n" "direct.at:158" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:158" - $as_echo "direct.at:158" >"$at_check_line_file" + printf "%s\n" "direct.at:158" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:158" { set +x -$as_echo "$at_srcdir/direct.at:158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"removeRules\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89316,7 +91078,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89332,15 +91094,15 @@ $at_traceon; } - $as_echo "direct.at:167" >"$at_check_line_file" + printf "%s\n" "direct.at:167" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:167" - $as_echo "direct.at:167" >"$at_check_line_file" + printf "%s\n" "direct.at:167" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:167" { set +x -$as_echo "$at_srcdir/direct.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//signal[@name=\"ChainAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89353,7 +91115,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89369,15 +91131,15 @@ $at_traceon; } - $as_echo "direct.at:176" >"$at_check_line_file" + printf "%s\n" "direct.at:176" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:176" - $as_echo "direct.at:176" >"$at_check_line_file" + printf "%s\n" "direct.at:176" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:176" { set +x -$as_echo "$at_srcdir/direct.at:176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//signal[@name=\"ChainRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89390,7 +91152,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89406,15 +91168,15 @@ $at_traceon; } - $as_echo "direct.at:185" >"$at_check_line_file" + printf "%s\n" "direct.at:185" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:185" - $as_echo "direct.at:185" >"$at_check_line_file" + printf "%s\n" "direct.at:185" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:185" { set +x -$as_echo "$at_srcdir/direct.at:185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//signal[@name=\"PassthroughAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89427,7 +91189,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89442,15 +91204,15 @@ $at_traceon; } - $as_echo "direct.at:193" >"$at_check_line_file" + printf "%s\n" "direct.at:193" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:193" - $as_echo "direct.at:193" >"$at_check_line_file" + printf "%s\n" "direct.at:193" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:193" { set +x -$as_echo "$at_srcdir/direct.at:193: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:193: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//signal[@name=\"PassthroughRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89463,7 +91225,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89478,15 +91240,15 @@ $at_traceon; } - $as_echo "direct.at:201" >"$at_check_line_file" + printf "%s\n" "direct.at:201" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:201" - $as_echo "direct.at:201" >"$at_check_line_file" + printf "%s\n" "direct.at:201" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:201" { set +x -$as_echo "$at_srcdir/direct.at:201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//signal[@name=\"RuleAdded\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89499,7 +91261,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89517,15 +91279,15 @@ $at_traceon; } - $as_echo "direct.at:212" >"$at_check_line_file" + printf "%s\n" "direct.at:212" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:212" - $as_echo "direct.at:212" >"$at_check_line_file" + printf "%s\n" "direct.at:212" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:212" { set +x -$as_echo "$at_srcdir/direct.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//signal[@name=\"RuleRemoved\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89538,7 +91300,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89557,15 +91319,15 @@ $at_traceon; } - $as_echo "direct.at:227" >"$at_check_line_file" + printf "%s\n" "direct.at:227" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:227" - $as_echo "direct.at:227" >"$at_check_line_file" + printf "%s\n" "direct.at:227" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:227" { set +x -$as_echo "$at_srcdir/direct.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"getSettings\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89578,7 +91340,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89592,15 +91354,15 @@ $at_traceon; } - $as_echo "direct.at:234" >"$at_check_line_file" + printf "%s\n" "direct.at:234" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:234" - $as_echo "direct.at:234" >"$at_check_line_file" + printf "%s\n" "direct.at:234" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:234" { set +x -$as_echo "$at_srcdir/direct.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"update\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89613,7 +91375,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89627,15 +91389,15 @@ $at_traceon; } - $as_echo "direct.at:241" >"$at_check_line_file" + printf "%s\n" "direct.at:241" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:241" - $as_echo "direct.at:241" >"$at_check_line_file" + printf "%s\n" "direct.at:241" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:241" { set +x -$as_echo "$at_srcdir/direct.at:241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"addChain\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89648,7 +91410,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89664,15 +91426,15 @@ $at_traceon; } - $as_echo "direct.at:250" >"$at_check_line_file" + printf "%s\n" "direct.at:250" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:250" - $as_echo "direct.at:250" >"$at_check_line_file" + printf "%s\n" "direct.at:250" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:250" { set +x -$as_echo "$at_srcdir/direct.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"addPassthrough\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89685,7 +91447,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89700,15 +91462,15 @@ $at_traceon; } - $as_echo "direct.at:258" >"$at_check_line_file" + printf "%s\n" "direct.at:258" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:258" - $as_echo "direct.at:258" >"$at_check_line_file" + printf "%s\n" "direct.at:258" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:258" { set +x -$as_echo "$at_srcdir/direct.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"addRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89721,7 +91483,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89739,15 +91501,15 @@ $at_traceon; } - $as_echo "direct.at:269" >"$at_check_line_file" + printf "%s\n" "direct.at:269" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:269" - $as_echo "direct.at:269" >"$at_check_line_file" + printf "%s\n" "direct.at:269" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:269" { set +x -$as_echo "$at_srcdir/direct.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"getAllChains\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89760,7 +91522,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89774,15 +91536,15 @@ $at_traceon; } - $as_echo "direct.at:276" >"$at_check_line_file" + printf "%s\n" "direct.at:276" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:276" - $as_echo "direct.at:276" >"$at_check_line_file" + printf "%s\n" "direct.at:276" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:276" { set +x -$as_echo "$at_srcdir/direct.at:276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"getAllPassthroughs\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89795,7 +91557,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89809,15 +91571,15 @@ $at_traceon; } - $as_echo "direct.at:283" >"$at_check_line_file" + printf "%s\n" "direct.at:283" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:283" - $as_echo "direct.at:283" >"$at_check_line_file" + printf "%s\n" "direct.at:283" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:283" { set +x -$as_echo "$at_srcdir/direct.at:283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"getAllRules\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89830,7 +91592,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89844,15 +91606,15 @@ $at_traceon; } - $as_echo "direct.at:290" >"$at_check_line_file" + printf "%s\n" "direct.at:290" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:290" - $as_echo "direct.at:290" >"$at_check_line_file" + printf "%s\n" "direct.at:290" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:290" { set +x -$as_echo "$at_srcdir/direct.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"getChains\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89865,7 +91627,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89881,15 +91643,15 @@ $at_traceon; } - $as_echo "direct.at:299" >"$at_check_line_file" + printf "%s\n" "direct.at:299" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:299" - $as_echo "direct.at:299" >"$at_check_line_file" + printf "%s\n" "direct.at:299" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:299" { set +x -$as_echo "$at_srcdir/direct.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"getPassthroughs\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89902,7 +91664,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89917,15 +91679,15 @@ $at_traceon; } - $as_echo "direct.at:307" >"$at_check_line_file" + printf "%s\n" "direct.at:307" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:307" - $as_echo "direct.at:307" >"$at_check_line_file" + printf "%s\n" "direct.at:307" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:307" { set +x -$as_echo "$at_srcdir/direct.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"getRules\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89938,7 +91700,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89955,15 +91717,15 @@ $at_traceon; } - $as_echo "direct.at:317" >"$at_check_line_file" + printf "%s\n" "direct.at:317" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:317" - $as_echo "direct.at:317" >"$at_check_line_file" + printf "%s\n" "direct.at:317" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:317" { set +x -$as_echo "$at_srcdir/direct.at:317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"queryChain\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -89976,7 +91738,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -89993,15 +91755,15 @@ $at_traceon; } - $as_echo "direct.at:327" >"$at_check_line_file" + printf "%s\n" "direct.at:327" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:327" - $as_echo "direct.at:327" >"$at_check_line_file" + printf "%s\n" "direct.at:327" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:327" { set +x -$as_echo "$at_srcdir/direct.at:327: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:327: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"queryPassthrough\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -90014,7 +91776,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -90030,15 +91792,15 @@ $at_traceon; } - $as_echo "direct.at:336" >"$at_check_line_file" + printf "%s\n" "direct.at:336" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:336" - $as_echo "direct.at:336" >"$at_check_line_file" + printf "%s\n" "direct.at:336" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:336" { set +x -$as_echo "$at_srcdir/direct.at:336: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:336: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"queryRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -90051,7 +91813,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -90070,15 +91832,15 @@ $at_traceon; } - $as_echo "direct.at:348" >"$at_check_line_file" + printf "%s\n" "direct.at:348" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:348" - $as_echo "direct.at:348" >"$at_check_line_file" + printf "%s\n" "direct.at:348" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:348" { set +x -$as_echo "$at_srcdir/direct.at:348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"removeChain\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -90091,7 +91853,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -90107,15 +91869,15 @@ $at_traceon; } - $as_echo "direct.at:357" >"$at_check_line_file" + printf "%s\n" "direct.at:357" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:357" - $as_echo "direct.at:357" >"$at_check_line_file" + printf "%s\n" "direct.at:357" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:357" { set +x -$as_echo "$at_srcdir/direct.at:357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"removePassthrough\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -90128,7 +91890,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -90143,15 +91905,15 @@ $at_traceon; } - $as_echo "direct.at:365" >"$at_check_line_file" + printf "%s\n" "direct.at:365" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:365" - $as_echo "direct.at:365" >"$at_check_line_file" + printf "%s\n" "direct.at:365" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:365" { set +x -$as_echo "$at_srcdir/direct.at:365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"removeRule\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -90164,7 +91926,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -90182,15 +91944,15 @@ $at_traceon; } - $as_echo "direct.at:376" >"$at_check_line_file" + printf "%s\n" "direct.at:376" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:376" - $as_echo "direct.at:376" >"$at_check_line_file" + printf "%s\n" "direct.at:376" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:376" { set +x -$as_echo "$at_srcdir/direct.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//method[@name=\"removeRules\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -90203,7 +91965,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -90219,15 +91981,15 @@ $at_traceon; } - $as_echo "direct.at:385" >"$at_check_line_file" + printf "%s\n" "direct.at:385" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:385" - $as_echo "direct.at:385" >"$at_check_line_file" + printf "%s\n" "direct.at:385" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/direct.at:385" { set +x -$as_echo "$at_srcdir/direct.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/direct.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.direct\"]//signal[@name=\"Updated\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -90240,7 +92002,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ @@ -90255,7 +92017,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "direct.at:391" >"$at_check_line_file" + printf "%s\n" "direct.at:391" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/direct.at:391" fi @@ -90266,13 +92028,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_75 -#AT_START_76 -at_fn_group_banner 76 'firewall-cmd.at:5' \ - "basic options" " " 4 +#AT_STOP_81 +#AT_START_82 +at_fn_group_banner 82 'lockdown.at:1' \ + "dbus api - lockdown signatures" " " 3 at_xfail=no ( - $as_echo "76. $at_setup_line: testing $at_desc ..." + printf "%s\n" "82. $at_setup_line: testing $at_desc ..." $at_traceon @@ -90290,6 +92052,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -90306,29 +92069,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" +printf "%s\n" "$at_srcdir/lockdown.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "lockdown.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:5" +printf "%s\n" "$at_srcdir/lockdown.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "lockdown.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -90336,15 +92099,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:5" +printf "%s\n" "$at_srcdir/lockdown.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "lockdown.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -90400,15 +92163,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" +printf "%s\n" "$at_srcdir/lockdown.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "lockdown.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -90491,8 +92254,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:5" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" + printf "%s\n" "lockdown.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/lockdown.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -90510,15 +92273,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" +printf "%s\n" "$at_srcdir/lockdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "lockdown.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -90531,15 +92294,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:5" +printf "%s\n" "$at_srcdir/lockdown.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "lockdown.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -90548,30 +92311,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" +printf "%s\n" "$at_srcdir/lockdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "lockdown.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" +printf "%s\n" "$at_srcdir/lockdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "lockdown.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -90580,7 +92343,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -90588,8 +92351,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:5" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" + printf "%s\n" "lockdown.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/lockdown.at:1" fi echo "$!" > firewalld.pid @@ -90605,10 +92368,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" fi sleep 1 done - $as_echo "firewall-cmd.at:5" >"$at_check_line_file" + printf "%s\n" "lockdown.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" - + && at_fn_check_skip 99 "$at_srcdir/lockdown.at:1" @@ -90616,116 +92378,33 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo >>"$at_stderr"; $as_echo "State: running - -No options specified -usage: 'firewall-cmd --help' for usage information or see firewall-cmd(1) man page -" | \ - $at_diff - "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -h " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -h -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:14" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --help " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --help -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:15" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - + printf "%s\n" "lockdown.at:8" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/lockdown.at:8" + printf "%s\n" "lockdown.at:8" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/lockdown.at:8" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -V " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -V -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:16" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - +printf "%s\n" "$at_srcdir/lockdown.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//method[@name=\"enableLockdown\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "lockdown.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo $? >&3; } | xmllint --xpath '//method[@name="enableLockdown"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:17" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --complete-reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --complete-reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:23" +echo >>"$at_stdout"; printf "%s\n" " + + +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -90733,39 +92412,33 @@ $at_traceon; } - - + printf "%s\n" "lockdown.at:14" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/lockdown.at:14" + printf "%s\n" "lockdown.at:14" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/lockdown.at:14" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --panic-on " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --panic-on -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:25" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - +printf "%s\n" "$at_srcdir/lockdown.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo \$? >&3; } | xmllint --xpath '//signal[@name=\"LockdownEnabled\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "lockdown.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1; echo $? >&3; } | xmllint --xpath '//signal[@name="LockdownEnabled"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:26" +echo >>"$at_stdout"; printf "%s\n" " + + +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -90774,39 +92447,34 @@ $at_traceon; } + printf "%s\n" "lockdown.at:24" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/lockdown.at:24" + printf "%s\n" "lockdown.at:24" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/lockdown.at:24" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:26" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - +printf "%s\n" "$at_srcdir/lockdown.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.policies\"]//method[@name=\"setLockdownWhitelist\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "lockdown.at:24" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo $? >&3; } | xmllint --xpath '//interface[@name="org.fedoraproject.FirewallD1.config.policies"]//method[@name="setLockdownWhitelist"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-panic " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "yes +echo >>"$at_stdout"; printf "%s\n" " + + + " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:27" +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:24" $at_failed && at_fn_log_failure $at_traceon; } @@ -90814,39 +92482,33 @@ $at_traceon; } - + printf "%s\n" "lockdown.at:31" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/lockdown.at:31" + printf "%s\n" "lockdown.at:31" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which xmllint >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/lockdown.at:31" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --panic-off " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --panic-off -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:29" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - +printf "%s\n" "$at_srcdir/lockdown.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo \$? >&3; } | xmllint --xpath '//interface[@name=\"org.fedoraproject.FirewallD1.config.policies\"]//signal[@name=\"LockdownWhitelistUpdated\"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "lockdown.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { gdbus introspect --xml --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config; echo $? >&3; } | xmllint --xpath '//interface[@name="org.fedoraproject.FirewallD1.config.policies"]//signal[@name="LockdownWhitelistUpdated"]' - | xmllint --format - | xmllint --c14n - | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-panic " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:30" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "no +echo >>"$at_stdout"; printf "%s\n" " + + " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:30" +at_fn_check_status 0 $at_status "$at_srcdir/lockdown.at:31" $at_failed && at_fn_log_failure $at_traceon; } @@ -90856,9 +92518,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:32" >"$at_check_line_file" + printf "%s\n" "lockdown.at:37" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:32" + && at_fn_check_skip 99 "$at_srcdir/lockdown.at:37" fi @@ -90867,13 +92529,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_76 -#AT_START_77 -at_fn_group_banner 77 'firewall-cmd.at:34' \ - "get/list options" " " 4 +#AT_STOP_82 +#AT_START_83 +at_fn_group_banner 83 'firewall-cmd.at:5' \ + "basic options" " " 4 at_xfail=no ( - $as_echo "77. $at_setup_line: testing $at_desc ..." + printf "%s\n" "83. $at_setup_line: testing $at_desc ..." $at_traceon @@ -90891,6 +92553,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -90907,29 +92570,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:34" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:5" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -90937,15 +92600,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:34" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:5" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -91001,15 +92664,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -91092,8 +92755,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:34" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" + printf "%s\n" "firewall-cmd.at:5" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -91111,15 +92774,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -91132,15 +92795,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:34" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:5" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -91149,30 +92812,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -91181,7 +92844,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -91189,8 +92852,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:34" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" + printf "%s\n" "firewall-cmd.at:5" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" fi echo "$!" > firewalld.pid @@ -91206,9 +92869,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" fi sleep 1 done - $as_echo "firewall-cmd.at:34" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:5" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" @@ -91218,15 +92881,20 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:37" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zones +printf "%s\n" "$at_srcdir/firewall-cmd.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stderr"; printf "%s\n" "State: running + +No options specified +usage: 'firewall-cmd --help' for usage information or see firewall-cmd(1) man page +" | \ + $at_diff - "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:37" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -91237,15 +92905,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-services " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-services +printf "%s\n" "$at_srcdir/firewall-cmd.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -h " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -h ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:38" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -91256,15 +92924,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-icmptypes " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-icmptypes +printf "%s\n" "$at_srcdir/firewall-cmd.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --help " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --help ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:39" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -91275,15 +92943,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:40" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zones +printf "%s\n" "$at_srcdir/firewall-cmd.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -V " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -V ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:40" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -91294,15 +92962,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:41" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-services +printf "%s\n" "$at_srcdir/firewall-cmd.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:41" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -91313,15 +92981,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-icmptypes " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-icmptypes +printf "%s\n" "$at_srcdir/firewall-cmd.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --complete-reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:23" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --complete-reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:42" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:23" $at_failed && at_fn_log_failure $at_traceon; } @@ -91333,15 +93001,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-zones +printf "%s\n" "$at_srcdir/firewall-cmd.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --panic-on " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --panic-on ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -91351,16 +93019,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:45" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all +printf "%s\n" "$at_srcdir/firewall-cmd.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:45" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -91371,15 +93040,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-zones +printf "%s\n" "$at_srcdir/firewall-cmd.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:46" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -91389,16 +93058,59 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all +printf "%s\n" "$at_srcdir/firewall-cmd.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-panic " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-panic +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "yes +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:27" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --panic-off " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --panic-off ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:29" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-panic " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-panic +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "no +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:30" $at_failed && at_fn_log_failure $at_traceon; } @@ -91408,9 +93120,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:48" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:32" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:48" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:32" fi @@ -91419,13 +93131,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_77 -#AT_START_78 -at_fn_group_banner 78 'firewall-cmd.at:50' \ - "default zone" " " 4 +#AT_STOP_83 +#AT_START_84 +at_fn_group_banner 84 'firewall-cmd.at:34' \ + "get/list options" " " 4 at_xfail=no ( - $as_echo "78. $at_setup_line: testing $at_desc ..." + printf "%s\n" "84. $at_setup_line: testing $at_desc ..." $at_traceon @@ -91443,6 +93155,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -91459,29 +93172,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:50" +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:34" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -91489,15 +93202,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:50" +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:34" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -91553,15 +93266,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -91644,8 +93357,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:50" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" + printf "%s\n" "firewall-cmd.at:34" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -91663,15 +93376,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -91684,15 +93397,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:50" +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:34" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -91701,30 +93414,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -91733,7 +93446,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -91741,8 +93454,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:50" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" + printf "%s\n" "firewall-cmd.at:34" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" fi echo "$!" > firewalld.pid @@ -91758,9 +93471,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" fi sleep 1 done - $as_echo "firewall-cmd.at:50" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:34" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" @@ -91770,17 +93483,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-default-zone +printf "%s\n" "$at_srcdir/firewall-cmd.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:37" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:53" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:37" $at_failed && at_fn_log_failure $at_traceon; } @@ -91791,15 +93502,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone=\"home\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone="home" +printf "%s\n" "$at_srcdir/firewall-cmd.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-services " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:55" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -91810,17 +93521,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:56" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-default-zone +printf "%s\n" "$at_srcdir/firewall-cmd.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-icmptypes " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-icmptypes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "home -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:56" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:39" $at_failed && at_fn_log_failure $at_traceon; } @@ -91831,15 +93540,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone="public" +printf "%s\n" "$at_srcdir/firewall-cmd.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:40" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:40" $at_failed && at_fn_log_failure $at_traceon; } @@ -91850,15 +93559,111 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:59" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone +printf "%s\n" "$at_srcdir/firewall-cmd.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:41" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:59" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:41" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-icmptypes " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-icmptypes +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:42" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-zones +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:44" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:45" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-zones +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:46" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -91868,9 +93673,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:60" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:48" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:60" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:48" fi @@ -91879,13 +93684,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_78 -#AT_START_79 -at_fn_group_banner 79 'firewall-cmd.at:62' \ - "user zone" " " 4 +#AT_STOP_84 +#AT_START_85 +at_fn_group_banner 85 'firewall-cmd.at:50' \ + "default zone" " " 4 at_xfail=no ( - $as_echo "79. $at_setup_line: testing $at_desc ..." + printf "%s\n" "85. $at_setup_line: testing $at_desc ..." $at_traceon @@ -91903,6 +93708,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -91919,7 +93725,468 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:50" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:50" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + + else + : + + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf + + fi + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:50" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + cat >./nft_rule_index.nft <<'_ATEOF' + + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + + else + : + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:50" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +$at_failed && at_fn_log_failure +$at_traceon; } + + + fi + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:50" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:50" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:53" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-default-zone +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:53" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone=\"home\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone="home" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:55" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:56" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-default-zone +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "home +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:56" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:58" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:59" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:59" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:60" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:60" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_85 +#AT_START_86 +at_fn_group_banner 86 'firewall-cmd.at:62' \ + "user zone" " " 4 +at_xfail=no +( + printf "%s\n" "86. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:62" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -91933,7 +94200,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:62" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -91949,7 +94216,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:62" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92013,7 +94280,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:62" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92104,7 +94371,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:62" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:62" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -92123,7 +94390,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:62" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92144,7 +94411,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:62" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92161,7 +94428,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:62" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92176,7 +94443,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:62" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92193,7 +94460,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -92201,7 +94468,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:62" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:62" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" fi echo "$!" > firewalld.pid @@ -92218,7 +94485,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" fi sleep 1 done - $as_echo "firewall-cmd.at:62" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:62" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" @@ -92230,7 +94497,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --new-zone=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --new-zone=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:65" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --new-zone=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92248,7 +94515,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:66" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92267,7 +94534,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones | grep foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:67" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zones | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92286,7 +94553,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep default " +printf "%s\n" "$at_srcdir/firewall-cmd.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep default " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:68" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92305,7 +94572,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=BAD " +printf "%s\n" "$at_srcdir/firewall-cmd.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=BAD " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:69" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=BAD ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92324,7 +94591,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% " +printf "%s\n" "$at_srcdir/firewall-cmd.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92343,7 +94610,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP " +printf "%s\n" "$at_srcdir/firewall-cmd.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92362,7 +94629,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92381,7 +94648,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92400,7 +94667,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-service=ssh " +printf "%s\n" "$at_srcdir/firewall-cmd.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-service=ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:74" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-service=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92420,7 +94687,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:77: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghi " +printf "%s\n" "$at_srcdir/firewall-cmd.at:77: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghi " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:77" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92439,7 +94706,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghij " +printf "%s\n" "$at_srcdir/firewall-cmd.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghij " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:78" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghij ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92457,7 +94724,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_TARGET: /d' -e '/ERROR: INVALID_NAME: /d'" != x"ignore"; then - $as_echo "firewall-cmd.at:79" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:79" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_TARGET: /d' -e '/ERROR: INVALID_NAME: /d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:79" fi @@ -92468,13 +94735,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_79 -#AT_START_80 -at_fn_group_banner 80 'firewall-cmd.at:82' \ +#AT_STOP_86 +#AT_START_87 +at_fn_group_banner 87 'firewall-cmd.at:82' \ "zone interfaces" " " 4 at_xfail=no ( - $as_echo "80. $at_setup_line: testing $at_desc ..." + printf "%s\n" "87. $at_setup_line: testing $at_desc ..." $at_traceon @@ -92492,6 +94759,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -92508,7 +94776,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:82" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92522,7 +94790,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:82" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92538,7 +94806,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:82" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92602,7 +94870,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:82" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92693,7 +94961,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:82" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:82" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:82" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -92712,7 +94980,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92733,7 +95001,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:82" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92750,7 +95018,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92765,7 +95033,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92782,7 +95050,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -92790,7 +95058,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:82" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:82" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:82" fi echo "$!" > firewalld.pid @@ -92807,7 +95075,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:82" fi sleep 1 done - $as_echo "firewall-cmd.at:82" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:82" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:82" @@ -92819,7 +95087,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:82" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --add-interface=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --add-interface=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:85" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --add-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92838,14 +95106,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:86" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:86" @@ -92859,7 +95127,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones " +printf "%s\n" "$at_srcdir/firewall-cmd.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:88" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92878,7 +95146,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-interface=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-interface=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:89" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92898,7 +95166,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --change-interface=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --change-interface=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:91" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --change-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92917,14 +95185,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:92" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:92" @@ -92938,7 +95206,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=block --add-interface=dummy1 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=block --add-interface=dummy1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:94" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=block --add-interface=dummy1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92957,7 +95225,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=block --remove-interface=dummy1 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=block --remove-interface=dummy1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:95" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=block --remove-interface=dummy1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92977,7 +95245,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --change-zone=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --change-zone=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:97" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --change-zone=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -92996,14 +95264,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:98" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dmz +echo >>"$at_stdout"; printf "%s\n" "dmz " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:98" @@ -93017,14 +95285,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --list-interfaces " +printf "%s\n" "$at_srcdir/firewall-cmd.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --list-interfaces " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:100" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --list-interfaces ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dummy +echo >>"$at_stdout"; printf "%s\n" "dummy " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:100" @@ -93038,7 +95306,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:102" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93057,7 +95325,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:103" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93077,7 +95345,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --change-interface=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --change-interface=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:105" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --change-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93095,7 +95363,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:106" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93114,7 +95382,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:107" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93134,7 +95402,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:109" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93153,7 +95421,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:110" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93172,7 +95440,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface " +printf "%s\n" "$at_srcdir/firewall-cmd.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:111" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93191,7 +95459,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-zones " +printf "%s\n" "$at_srcdir/firewall-cmd.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-zones " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:112" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93210,7 +95478,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-services " +printf "%s\n" "$at_srcdir/firewall-cmd.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-services " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:113" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93229,7 +95497,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-default-zone " +printf "%s\n" "$at_srcdir/firewall-cmd.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-default-zone " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:114" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93248,7 +95516,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --set-default-zone " +printf "%s\n" "$at_srcdir/firewall-cmd.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --set-default-zone " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:115" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --set-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93267,7 +95535,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-zone-of-interface " +printf "%s\n" "$at_srcdir/firewall-cmd.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-zone-of-interface " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:116" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-zone-of-interface ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93287,7 +95555,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-interface=perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93306,7 +95574,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=perm_dummy2 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=perm_dummy2 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:119" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=perm_dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93326,7 +95594,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:120" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93345,7 +95613,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:120" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93365,14 +95633,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:121" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:121" @@ -93386,7 +95654,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-interface=perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:123" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93405,14 +95673,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --list-interfaces " +printf "%s\n" "$at_srcdir/firewall-cmd.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --list-interfaces " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:124" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --list-interfaces ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "perm_dummy +echo >>"$at_stdout"; printf "%s\n" "perm_dummy " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:124" @@ -93428,7 +95696,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:127" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93448,7 +95716,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:130" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93467,14 +95735,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:131" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:131" @@ -93488,7 +95756,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:133" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93507,7 +95775,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:134" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93526,7 +95794,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:135" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93545,14 +95813,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:136" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:136" @@ -93566,7 +95834,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:138" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93585,7 +95853,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:139" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93604,7 +95872,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --remove-interface=perm_dummy2 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --remove-interface=perm_dummy2 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:140" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --remove-interface=perm_dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93624,7 +95892,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:141" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93643,7 +95911,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:141" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93664,7 +95932,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-interface=foobar+++ " +printf "%s\n" "$at_srcdir/firewall-cmd.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-interface=foobar+++ " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:146" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-interface=foobar+++ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93683,7 +95951,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-interface=foobar+ " +printf "%s\n" "$at_srcdir/firewall-cmd.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-interface=foobar+ " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:147" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-interface=foobar+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93704,7 +95972,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -93717,7 +95985,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar*\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar*\" jump filter_IN_public @@ -93745,7 +96013,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-interface=foobar+++ " +printf "%s\n" "$at_srcdir/firewall-cmd.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-interface=foobar+++ " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:163" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-interface=foobar+++ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93764,7 +96032,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:164: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-interface=foobar+ " +printf "%s\n" "$at_srcdir/firewall-cmd.at:164: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-interface=foobar+ " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:164" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-interface=foobar+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93783,7 +96051,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-interface=foobar+ " +printf "%s\n" "$at_srcdir/firewall-cmd.at:165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-interface=foobar+ " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:165" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-interface=foobar+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93802,7 +96070,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-interface=foobar+ " +printf "%s\n" "$at_srcdir/firewall-cmd.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-interface=foobar+ " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:166" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-interface=foobar+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93822,7 +96090,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:167" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93841,7 +96109,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:167" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93860,7 +96128,7 @@ $at_traceon; } if test x"-e '/ERROR: ZONE_CONFLICT: perm_dummy/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:168" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:168" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: ZONE_CONFLICT: perm_dummy/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:168" fi @@ -93871,13 +96139,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_80 -#AT_START_81 -at_fn_group_banner 81 'firewall-cmd.at:170' \ +#AT_STOP_87 +#AT_START_88 +at_fn_group_banner 88 'firewall-cmd.at:170' \ "zone sources" " " 4 at_xfail=no ( - $as_echo "81. $at_setup_line: testing $at_desc ..." + printf "%s\n" "88. $at_setup_line: testing $at_desc ..." $at_traceon @@ -93895,6 +96163,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -93911,7 +96180,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:170" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93925,7 +96194,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:170" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -93941,7 +96210,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:170" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94005,7 +96274,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:170" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94096,7 +96365,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:170" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:170" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:170" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -94115,7 +96384,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:170" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94136,7 +96405,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:170" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94153,7 +96422,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:170" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94168,7 +96437,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:170" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94185,7 +96454,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -94193,7 +96462,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:170" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:170" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:170" fi echo "$!" > firewalld.pid @@ -94210,7 +96479,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:170" fi sleep 1 done - $as_echo "firewall-cmd.at:170" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:170" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:170" @@ -94225,7 +96494,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:170" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94244,14 +96513,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -94265,14 +96534,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1.2.3.4 +echo >>"$at_stdout"; printf "%s\n" "1.2.3.4 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -94286,14 +96555,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 1.2.3.4 +echo >>"$at_stdout"; printf "%s\n" "sources: 1.2.3.4 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -94307,14 +96576,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default) +echo >>"$at_stdout"; printf "%s\n" "public (default) sources: 1.2.3.4 " | \ $at_diff - "$at_stdout" || at_failed=: @@ -94329,7 +96598,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94348,7 +96617,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94367,14 +96636,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -94388,7 +96657,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94407,7 +96676,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94426,7 +96695,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94445,7 +96714,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94463,7 +96732,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94482,14 +96751,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -94503,14 +96772,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1.2.3.4 +echo >>"$at_stdout"; printf "%s\n" "1.2.3.4 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -94524,14 +96793,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 1.2.3.4 +echo >>"$at_stdout"; printf "%s\n" "sources: 1.2.3.4 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -94545,7 +96814,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94566,7 +96835,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94586,7 +96855,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94605,14 +96874,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" @@ -94626,7 +96895,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94645,7 +96914,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94666,7 +96935,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94685,14 +96954,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -94706,14 +96975,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "192.168.1.0/24 +echo >>"$at_stdout"; printf "%s\n" "192.168.1.0/24 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -94727,14 +96996,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 192.168.1.0/24 +echo >>"$at_stdout"; printf "%s\n" "sources: 192.168.1.0/24 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -94748,14 +97017,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default) +echo >>"$at_stdout"; printf "%s\n" "public (default) sources: 192.168.1.0/24 " | \ $at_diff - "$at_stdout" || at_failed=: @@ -94770,7 +97039,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94789,7 +97058,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94808,14 +97077,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -94829,7 +97098,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94848,7 +97117,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94867,7 +97136,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94886,7 +97155,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94904,7 +97173,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -94923,14 +97192,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -94944,14 +97213,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "192.168.1.0/24 +echo >>"$at_stdout"; printf "%s\n" "192.168.1.0/24 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -94965,14 +97234,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 192.168.1.0/24 +echo >>"$at_stdout"; printf "%s\n" "sources: 192.168.1.0/24 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -94986,7 +97255,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95007,7 +97276,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95027,7 +97296,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95046,14 +97315,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" @@ -95067,7 +97336,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95086,7 +97355,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95107,7 +97376,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95126,14 +97395,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -95147,14 +97416,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "192.168.1.1/255.255.255.0 +echo >>"$at_stdout"; printf "%s\n" "192.168.1.1/255.255.255.0 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -95168,14 +97437,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 192.168.1.1/255.255.255.0 +echo >>"$at_stdout"; printf "%s\n" "sources: 192.168.1.1/255.255.255.0 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -95189,14 +97458,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default) +echo >>"$at_stdout"; printf "%s\n" "public (default) sources: 192.168.1.1/255.255.255.0 " | \ $at_diff - "$at_stdout" || at_failed=: @@ -95211,7 +97480,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95230,7 +97499,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95249,14 +97518,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -95270,7 +97539,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95289,7 +97558,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95308,7 +97577,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95327,7 +97596,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95345,7 +97614,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95364,14 +97633,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -95385,14 +97654,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "192.168.1.1/255.255.255.0 +echo >>"$at_stdout"; printf "%s\n" "192.168.1.1/255.255.255.0 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -95406,14 +97675,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 192.168.1.1/255.255.255.0 +echo >>"$at_stdout"; printf "%s\n" "sources: 192.168.1.1/255.255.255.0 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -95427,7 +97696,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95448,7 +97717,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95468,7 +97737,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95487,14 +97756,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" @@ -95508,7 +97777,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95527,7 +97796,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.1/255.255.255.0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.1/255.255.255.0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95551,7 +97820,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95570,14 +97839,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -95591,14 +97860,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "3ffe:501:ffff::/64 +echo >>"$at_stdout"; printf "%s\n" "3ffe:501:ffff::/64 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -95612,14 +97881,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 3ffe:501:ffff::/64 +echo >>"$at_stdout"; printf "%s\n" "sources: 3ffe:501:ffff::/64 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -95633,14 +97902,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default) +echo >>"$at_stdout"; printf "%s\n" "public (default) sources: 3ffe:501:ffff::/64 " | \ $at_diff - "$at_stdout" || at_failed=: @@ -95655,7 +97924,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95674,7 +97943,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95693,14 +97962,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -95714,7 +97983,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95733,7 +98002,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95752,7 +98021,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95771,7 +98040,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95789,7 +98058,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95808,14 +98077,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -95829,14 +98098,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "3ffe:501:ffff::/64 +echo >>"$at_stdout"; printf "%s\n" "3ffe:501:ffff::/64 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -95850,14 +98119,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 3ffe:501:ffff::/64 +echo >>"$at_stdout"; printf "%s\n" "sources: 3ffe:501:ffff::/64 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -95871,7 +98140,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95892,7 +98161,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95912,7 +98181,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95931,14 +98200,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -95952,7 +98221,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95971,7 +98240,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=3ffe:501:ffff::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=3ffe:501:ffff::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -95992,7 +98261,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96011,14 +98280,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -96032,14 +98301,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dead:beef::babe +echo >>"$at_stdout"; printf "%s\n" "dead:beef::babe " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -96053,14 +98322,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: dead:beef::babe +echo >>"$at_stdout"; printf "%s\n" "sources: dead:beef::babe " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -96074,14 +98343,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default) +echo >>"$at_stdout"; printf "%s\n" "public (default) sources: dead:beef::babe " | \ $at_diff - "$at_stdout" || at_failed=: @@ -96096,7 +98365,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96115,7 +98384,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96134,14 +98403,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -96155,7 +98424,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96174,7 +98443,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96193,7 +98462,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96212,7 +98481,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96230,7 +98499,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96249,14 +98518,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -96270,14 +98539,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dead:beef::babe +echo >>"$at_stdout"; printf "%s\n" "dead:beef::babe " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -96291,14 +98560,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: dead:beef::babe +echo >>"$at_stdout"; printf "%s\n" "sources: dead:beef::babe " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -96312,7 +98581,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96333,7 +98602,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96353,7 +98622,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96372,14 +98641,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "work " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" @@ -96393,7 +98662,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96412,7 +98681,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=dead:beef::babe " +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=dead:beef::babe " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96436,7 +98705,7 @@ $at_traceon; } if test x" -e '/ERROR: ZONE_CONFLICT/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:221" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:221" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: ZONE_CONFLICT/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:221" fi @@ -96447,13 +98716,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_81 -#AT_START_82 -at_fn_group_banner 82 'firewall-cmd.at:223' \ +#AT_STOP_88 +#AT_START_89 +at_fn_group_banner 89 'firewall-cmd.at:223' \ "services" " " 4 at_xfail=no ( - $as_echo "82. $at_setup_line: testing $at_desc ..." + printf "%s\n" "89. $at_setup_line: testing $at_desc ..." $at_traceon @@ -96471,6 +98740,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -96487,7 +98757,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:223" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96501,7 +98771,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:223" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96517,7 +98787,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:223" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96581,7 +98851,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:223" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96672,7 +98942,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:223" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:223" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -96691,7 +98961,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:223" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96712,7 +98982,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:223" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96729,7 +98999,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:223" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96744,7 +99014,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:223" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96761,7 +99031,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -96769,7 +99039,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:223" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:223" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" fi echo "$!" > firewalld.pid @@ -96786,7 +99056,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" fi sleep 1 done - $as_echo "firewall-cmd.at:223" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:223" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" @@ -96798,7 +99068,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --timeout 60 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --timeout 60 --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:226" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=dns --timeout 60 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96817,7 +99087,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service dns " +printf "%s\n" "$at_srcdir/firewall-cmd.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service dns " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:227" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96836,7 +99106,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-service=dns " +printf "%s\n" "$at_srcdir/firewall-cmd.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-service=dns " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:228" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-service=dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96855,7 +99125,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service=dns " +printf "%s\n" "$at_srcdir/firewall-cmd.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service=dns " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:229" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service=dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96874,7 +99144,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:230: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=smtpssssssss " +printf "%s\n" "$at_srcdir/firewall-cmd.at:230: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=smtpssssssss " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:230" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=smtpssssssss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96893,7 +99163,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --timeout " +printf "%s\n" "$at_srcdir/firewall-cmd.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --timeout " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:231" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=dns --timeout ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96911,7 +99181,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --add-interface=dummy0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --add-interface=dummy0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:232" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=dns --add-interface=dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96930,7 +99200,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --timeout 60 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --timeout 60 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:234" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --timeout 60 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96948,7 +99218,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service dns " +printf "%s\n" "$at_srcdir/firewall-cmd.at:235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service dns " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:235" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -96967,14 +99237,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --list-services " +printf "%s\n" "$at_srcdir/firewall-cmd.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --list-services " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:236" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --list-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dns ssh +echo >>"$at_stdout"; printf "%s\n" "dns ssh " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:236" @@ -96988,7 +99258,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:238: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-service dns " +printf "%s\n" "$at_srcdir/firewall-cmd.at:238: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-service dns " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:238" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-service dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97008,7 +99278,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-service=dns " +printf "%s\n" "$at_srcdir/firewall-cmd.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-service=dns " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:239" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --remove-service=dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97028,7 +99298,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-service=dns " +printf "%s\n" "$at_srcdir/firewall-cmd.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-service=dns " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:244" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-service=dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97047,7 +99317,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=smtpssssssss " +printf "%s\n" "$at_srcdir/firewall-cmd.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=smtpssssssss " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:245" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=smtpssssssss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97066,7 +99336,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --add-interface=dummy0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --add-interface=dummy0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:246" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --add-interface=dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97085,7 +99355,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=http --add-service=nfs --timeout=1h " +printf "%s\n" "$at_srcdir/firewall-cmd.at:248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=http --add-service=nfs --timeout=1h " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:248" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=http --add-service=nfs --timeout=1h ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97104,7 +99374,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service http " +printf "%s\n" "$at_srcdir/firewall-cmd.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service http " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:249" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97123,7 +99393,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service=nfs --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service=nfs --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:250" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service=nfs --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97142,7 +99412,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-service=nfs --remove-service=http " +printf "%s\n" "$at_srcdir/firewall-cmd.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-service=nfs --remove-service=http " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:251" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-service=nfs --remove-service=http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97161,7 +99431,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service http " +printf "%s\n" "$at_srcdir/firewall-cmd.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service http " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:252" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97180,7 +99450,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service nfs " +printf "%s\n" "$at_srcdir/firewall-cmd.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service nfs " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:253" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service nfs ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97200,7 +99470,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-service=http --add-service=nfs " +printf "%s\n" "$at_srcdir/firewall-cmd.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-service=http --add-service=nfs " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:255" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-service=http --add-service=nfs ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97219,7 +99489,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service http " +printf "%s\n" "$at_srcdir/firewall-cmd.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service http " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:256" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97238,7 +99508,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service=nfs --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service=nfs --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:257" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service=nfs --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97258,7 +99528,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-service=nfs --remove-service=http " +printf "%s\n" "$at_srcdir/firewall-cmd.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-service=nfs --remove-service=http " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:258" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-service=nfs --remove-service=http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97278,7 +99548,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service http " +printf "%s\n" "$at_srcdir/firewall-cmd.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service http " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:263" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97297,7 +99567,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service nfs " +printf "%s\n" "$at_srcdir/firewall-cmd.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service nfs " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:264" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service nfs ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97315,7 +99585,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_SERVICE:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:265" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:265" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:265" fi @@ -97326,13 +99596,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_82 -#AT_START_83 -at_fn_group_banner 83 'firewall-cmd.at:267' \ +#AT_STOP_89 +#AT_START_90 +at_fn_group_banner 90 'firewall-cmd.at:267' \ "user services" " " 4 at_xfail=no ( - $as_echo "83. $at_setup_line: testing $at_desc ..." + printf "%s\n" "90. $at_setup_line: testing $at_desc ..." $at_traceon @@ -97350,6 +99620,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -97366,7 +99637,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:267" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97380,7 +99651,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:267" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97396,7 +99667,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:267" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97460,7 +99731,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:267" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97551,7 +99822,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:267" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:267" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -97570,7 +99841,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:267" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97591,7 +99862,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:267" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97608,7 +99879,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:267" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97623,7 +99894,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:267" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97640,7 +99911,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -97648,7 +99919,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:267" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:267" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" fi echo "$!" > firewalld.pid @@ -97665,7 +99936,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" fi sleep 1 done - $as_echo "firewall-cmd.at:267" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:267" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" @@ -97677,7 +99948,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:270: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service=ssh " +printf "%s\n" "$at_srcdir/firewall-cmd.at:270: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service=ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:270" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97696,7 +99967,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:272" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97715,7 +99986,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:273" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97735,7 +100006,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:275: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:275: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:275" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97753,7 +100024,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:276" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97771,7 +100042,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:277" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97790,7 +100061,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:278" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97809,7 +100080,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:279" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97828,7 +100099,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:280" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97847,7 +100118,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:281" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97866,7 +100137,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:282" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97885,7 +100156,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:283" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97904,7 +100175,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:284: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:284: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:284" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97923,7 +100194,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 666/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 666/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:285" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97942,7 +100213,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=666/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=666/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:286" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97961,7 +100232,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:287" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97980,7 +100251,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:288: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=999/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:288: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=999/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:288" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -97999,7 +100270,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 999/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 999/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:289" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98018,7 +100289,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=999/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=999/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:290" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98037,7 +100308,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:291" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98056,7 +100327,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:292" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98076,7 +100347,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-protocol=ddp --add-protocol gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-protocol=ddp --add-protocol gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:294" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-protocol=ddp --add-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98095,7 +100366,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:295" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98114,7 +100385,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:296" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98133,7 +100404,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol ddp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol ddp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:297" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98152,7 +100423,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:298: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:298: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:298" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98171,7 +100442,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:299" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98190,7 +100461,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:300" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98210,7 +100481,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=sip " +printf "%s\n" "$at_srcdir/firewall-cmd.at:302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=sip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:302" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98229,7 +100500,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=sip " +printf "%s\n" "$at_srcdir/firewall-cmd.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=sip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:303" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98248,7 +100519,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:304" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98267,7 +100538,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:305: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:305: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:305" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98286,7 +100557,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:306" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98305,7 +100576,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:307" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98325,7 +100596,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=sip " +printf "%s\n" "$at_srcdir/firewall-cmd.at:309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=sip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:309" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98344,7 +100615,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=sip " +printf "%s\n" "$at_srcdir/firewall-cmd.at:310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=sip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:310" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98363,7 +100634,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:311: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:311: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:311" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98382,7 +100653,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:312" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98401,14 +100672,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --get-service-helpers " +printf "%s\n" "$at_srcdir/firewall-cmd.at:313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --get-service-helpers " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:313" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --get-service-helpers ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftp +echo >>"$at_stdout"; printf "%s\n" "ftp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:313" @@ -98422,7 +100693,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:316" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98441,7 +100712,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:317" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98461,7 +100732,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:319" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98479,7 +100750,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:foo " +printf "%s\n" "$at_srcdir/firewall-cmd.at:320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:foo " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:320" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:foo ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98497,7 +100768,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:321" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98516,7 +100787,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:322: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:322: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:322" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98538,7 +100809,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv6:fd00:dead:beef:ff0::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv6:fd00:dead:beef:ff0::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv6:fd00:dead:beef:ff0::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98557,7 +100828,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98576,7 +100847,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv6 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv6 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98595,7 +100866,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98617,7 +100888,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:330: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-service=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:330: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-service=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:330" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-service=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98636,7 +100907,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:331: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:331: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:331" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98655,7 +100926,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:332: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-service=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:332: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-service=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:332" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-service=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98674,7 +100945,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:333" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98701,7 +100972,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service-from-file=\"./foobar-to-be-renamed\" --name=\"foobar-from-file\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service-from-file=\"./foobar-to-be-renamed\" --name=\"foobar-from-file\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:335" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service-from-file="./foobar-to-be-renamed" --name="foobar-from-file" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98720,7 +100991,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar-from-file " +printf "%s\n" "$at_srcdir/firewall-cmd.at:335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar-from-file " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:335" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar-from-file ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98741,7 +101012,7 @@ _ATEOF if test x"-e '/ERROR: NAME_CONFLICT: new_service():/d' -e '/ERROR: INVALID_ADDR:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:346" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:346" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: NAME_CONFLICT: new_service():/d' -e '/ERROR: INVALID_ADDR:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:346" fi @@ -98752,13 +101023,13 @@ _ATEOF $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_83 -#AT_START_84 -at_fn_group_banner 84 'firewall-cmd.at:349' \ +#AT_STOP_90 +#AT_START_91 +at_fn_group_banner 91 'firewall-cmd.at:349' \ "ports" " " 4 at_xfail=no ( - $as_echo "84. $at_setup_line: testing $at_desc ..." + printf "%s\n" "91. $at_setup_line: testing $at_desc ..." $at_traceon @@ -98776,6 +101047,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -98792,7 +101064,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:349" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98806,7 +101078,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:349" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98822,7 +101094,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:349" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98886,7 +101158,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:349" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -98977,7 +101249,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:349" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:349" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -98996,7 +101268,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:349" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99017,7 +101289,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:349" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99034,7 +101306,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:349" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99049,7 +101321,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:349" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99066,7 +101338,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -99074,7 +101346,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:349" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:349" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" fi echo "$!" > firewalld.pid @@ -99091,7 +101363,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" fi sleep 1 done - $as_echo "firewall-cmd.at:349" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:349" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" @@ -99103,7 +101375,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --list-ports " +printf "%s\n" "$at_srcdir/firewall-cmd.at:352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --list-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:352" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99122,7 +101394,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:353" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99140,7 +101412,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666/dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666/dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:354" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99158,7 +101430,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo " +printf "%s\n" "$at_srcdir/firewall-cmd.at:355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:355" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99177,7 +101449,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo --add-port bar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo --add-port bar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:356" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo --add-port bar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99196,7 +101468,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666/tcp --zone=public --timeout=30m " +printf "%s\n" "$at_srcdir/firewall-cmd.at:357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666/tcp --zone=public --timeout=30m " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:357" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=666/tcp --zone=public --timeout=30m ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99215,7 +101487,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port=666/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port=666/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:358" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99234,7 +101506,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:359" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99253,7 +101525,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:360: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=111-222/udp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:360: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=111-222/udp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:360" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=111-222/udp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99272,7 +101544,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:361: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:361: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:361" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99291,7 +101563,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:362" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99311,7 +101583,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=5000/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=5000/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:364" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99330,7 +101602,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=5000/sctp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=5000/sctp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:365" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=5000/sctp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99349,7 +101621,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 5000/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 5000/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:366" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99368,7 +101640,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=5000/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=5000/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:367" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99387,7 +101659,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=222/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=222/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:368" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99406,7 +101678,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=222/dccp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=222/dccp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:369" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=222/dccp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99425,7 +101697,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:370: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 222/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:370: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 222/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:370" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99444,7 +101716,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:371: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=222/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:371: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=222/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:371" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99464,7 +101736,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:373" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99482,7 +101754,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666/dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666/dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99500,7 +101772,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99519,7 +101791,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port=666/tcp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port=666/tcp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:376" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port=666/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99538,7 +101810,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=111-222/udp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=111-222/udp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:377" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=111-222/udp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99557,7 +101829,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:378" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99576,7 +101848,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:379" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99595,7 +101867,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:380" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99615,7 +101887,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=5000/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=5000/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99634,7 +101906,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:383" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99653,7 +101925,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:384: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 5000/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:384: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 5000/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:384" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99672,7 +101944,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:385" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99691,7 +101963,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=222/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=222/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:386" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99710,7 +101982,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:387: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:387: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:387" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99729,7 +102001,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:388: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 222/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:388: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 222/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:388" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99748,7 +102020,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:389: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:389: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:389" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99768,7 +102040,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=80/tcp --add-port 443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=80/tcp --add-port 443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:391" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=80/tcp --add-port 443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99787,7 +102059,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=80/tcp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=80/tcp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:392" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=80/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99806,7 +102078,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:393" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99825,7 +102097,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 80/tcp --remove-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 80/tcp --remove-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:394" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 80/tcp --remove-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99844,7 +102116,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=80/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=80/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=80/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99863,7 +102135,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:396" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99883,7 +102155,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:398: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=80/tcp --add-port 443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:398: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=80/tcp --add-port 443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:398" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=80/tcp --add-port 443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99902,7 +102174,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:399: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:399: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:399" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99921,7 +102193,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:400: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:400: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:400" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99940,7 +102212,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 80/tcp --remove-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 80/tcp --remove-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:401" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 80/tcp --remove-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99959,7 +102231,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:402: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:402: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:402" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99978,7 +102250,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:403: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:403: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:403" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -99996,7 +102268,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:404" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:404" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:404" fi @@ -100007,13 +102279,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_84 -#AT_START_85 -at_fn_group_banner 85 'firewall-cmd.at:406' \ +#AT_STOP_91 +#AT_START_92 +at_fn_group_banner 92 'firewall-cmd.at:406' \ "source ports" " " 4 at_xfail=no ( - $as_echo "85. $at_setup_line: testing $at_desc ..." + printf "%s\n" "92. $at_setup_line: testing $at_desc ..." $at_traceon @@ -100031,6 +102303,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -100047,7 +102320,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:406" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100061,7 +102334,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:406" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100077,7 +102350,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:406" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100141,7 +102414,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:406" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100232,7 +102505,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:406" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:406" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -100251,7 +102524,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:406" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100272,7 +102545,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:406" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100289,7 +102562,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:406" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100304,7 +102577,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:406" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100321,7 +102594,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -100329,7 +102602,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:406" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:406" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" fi echo "$!" > firewalld.pid @@ -100346,7 +102619,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" fi sleep 1 done - $as_echo "firewall-cmd.at:406" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:406" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" @@ -100358,7 +102631,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:409: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --list-source-ports " +printf "%s\n" "$at_srcdir/firewall-cmd.at:409: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --list-source-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:409" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100377,7 +102650,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:410: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:410: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:410" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100395,7 +102668,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:411: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666/dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:411: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666/dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:411" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100413,7 +102686,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:412: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666/tcp --zone=public --timeout=30m " +printf "%s\n" "$at_srcdir/firewall-cmd.at:412: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666/tcp --zone=public --timeout=30m " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:412" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=666/tcp --zone=public --timeout=30m ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100432,7 +102705,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:413: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port=666/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:413: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port=666/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:413" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-source-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100451,7 +102724,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:414: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:414: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:414" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100470,7 +102743,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:415: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=111-222/udp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:415: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=111-222/udp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:415" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=111-222/udp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100489,7 +102762,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:416: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port 111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:416: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port 111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:416" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-source-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100508,7 +102781,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:417: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:417: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:417" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100528,7 +102801,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:419: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:419: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:419" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100546,7 +102819,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:420: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666/dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:420: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666/dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:420" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100564,7 +102837,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:421: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:421: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:421" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100583,7 +102856,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:422: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port=666/tcp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:422: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port=666/tcp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:422" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-source-port=666/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100602,7 +102875,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:423: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=111-222/udp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:423: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=111-222/udp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:423" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=111-222/udp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100621,7 +102894,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:424: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:424: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:424" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100640,7 +102913,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:425: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port 111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:425: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port 111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:425" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-source-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100659,7 +102932,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:426: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:426: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:426" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100679,7 +102952,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:428: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=80/tcp --add-source-port 443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:428: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=80/tcp --add-source-port 443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:428" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=80/tcp --add-source-port 443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100698,7 +102971,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:429: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=80/tcp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:429: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=80/tcp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:429" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=80/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100717,7 +102990,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:430: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:430: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:430" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100736,7 +103009,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:431: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port 80/tcp --remove-source-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:431: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port 80/tcp --remove-source-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:431" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-source-port 80/tcp --remove-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100755,7 +103028,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:432: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=80/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:432: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=80/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:432" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=80/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100774,7 +103047,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:433: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:433: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:433" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100794,7 +103067,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:435: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=80/tcp --add-source-port 443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:435: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=80/tcp --add-source-port 443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:435" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=80/tcp --add-source-port 443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100813,7 +103086,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:436: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:436: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:436" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100832,7 +103105,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:437: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:437: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:437" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100851,7 +103124,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:438: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port 80/tcp --remove-source-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:438: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port 80/tcp --remove-source-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:438" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-source-port 80/tcp --remove-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100870,7 +103143,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:439: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:439: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:439" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100889,7 +103162,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:440: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:440: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:440" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100907,7 +103180,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:441" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:441" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:441" fi @@ -100918,13 +103191,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_85 -#AT_START_86 -at_fn_group_banner 86 'firewall-cmd.at:443' \ +#AT_STOP_92 +#AT_START_93 +at_fn_group_banner 93 'firewall-cmd.at:443' \ "protocols" " " 4 at_xfail=no ( - $as_echo "86. $at_setup_line: testing $at_desc ..." + printf "%s\n" "93. $at_setup_line: testing $at_desc ..." $at_traceon @@ -100942,6 +103215,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -100958,7 +103232,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:443" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100972,7 +103246,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:443" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -100988,7 +103262,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:443" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101052,7 +103326,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:443" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101143,7 +103417,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:443" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:443" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -101162,7 +103436,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:443" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101183,7 +103457,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:443" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101200,7 +103474,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:443" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101215,7 +103489,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:443" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101232,7 +103506,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -101240,7 +103514,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:443" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:443" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" fi echo "$!" > firewalld.pid @@ -101257,7 +103531,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" fi sleep 1 done - $as_echo "firewall-cmd.at:443" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:443" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" @@ -101269,7 +103543,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:446: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:446: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:446" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-protocol=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101288,7 +103562,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:447: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=dccp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:447: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=dccp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:447" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-protocol=dccp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101307,7 +103581,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:448: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:448: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:448" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101326,7 +103600,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:449: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-protocol dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:449: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-protocol dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:449" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101345,7 +103619,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:450: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:450: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:450" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101364,7 +103638,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:451: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:451: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:451" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-protocol=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101383,7 +103657,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:452: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=dccp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:452: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=dccp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:452" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-protocol=dccp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101402,7 +103676,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:453: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:453: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:453" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101421,7 +103695,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:454: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-protocol dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:454: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-protocol dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:454" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101440,7 +103714,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:455: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:455: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:455" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101460,7 +103734,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:457: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=ddp --add-protocol gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:457: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=ddp --add-protocol gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:457" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-protocol=ddp --add-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101479,7 +103753,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:458: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=ddp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:458: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=ddp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:458" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=ddp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101498,7 +103772,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:459: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:459: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:459" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101517,7 +103791,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:460: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-protocol ddp --remove-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:460: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-protocol ddp --remove-protocol=gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:460" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-protocol ddp --remove-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101536,7 +103810,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:461: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=ddp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:461: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=ddp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:461" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101555,7 +103829,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:462: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:462: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:462" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101574,7 +103848,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:463: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=ddp --add-protocol gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:463: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=ddp --add-protocol gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:463" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-protocol=ddp --add-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101593,7 +103867,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:464: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:464: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:464" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101612,7 +103886,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:465: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:465: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:465" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101631,7 +103905,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:466: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-protocol ddp --remove-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:466: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-protocol ddp --remove-protocol=gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:466" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-protocol ddp --remove-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101650,7 +103924,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:467: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:467: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:467" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101669,7 +103943,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:468: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=gre " +printf "%s\n" "$at_srcdir/firewall-cmd.at:468: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:468" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101687,7 +103961,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_PROTOCOL: dummy/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:469" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:469" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_PROTOCOL: dummy/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:469" fi @@ -101698,13 +103972,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_86 -#AT_START_87 -at_fn_group_banner 87 'firewall-cmd.at:471' \ +#AT_STOP_93 +#AT_START_94 +at_fn_group_banner 94 'firewall-cmd.at:471' \ "masquerade" " " 4 at_xfail=no ( - $as_echo "87. $at_setup_line: testing $at_desc ..." + printf "%s\n" "94. $at_setup_line: testing $at_desc ..." $at_traceon @@ -101722,6 +103996,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -101738,7 +104013,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:471" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101752,7 +104027,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:471" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101768,7 +104043,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:471" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101832,7 +104107,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:471" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101923,7 +104198,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:471" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:471" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -101942,7 +104217,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:471" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101963,7 +104238,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:471" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101980,7 +104255,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:471" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -101995,7 +104270,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:471" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102012,7 +104287,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -102020,7 +104295,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:471" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:471" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" fi echo "$!" > firewalld.pid @@ -102037,7 +104312,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" fi sleep 1 done - $as_echo "firewall-cmd.at:471" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:471" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" @@ -102049,7 +104324,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-masquerade --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-masquerade --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:474" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-masquerade --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102070,7 +104345,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:476: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:476: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POST_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -102083,7 +104358,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POST_public_allow { meta nfproto ipv4 oifname != \"lo\" masquerade } @@ -102109,7 +104384,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:488: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-masquerade " +printf "%s\n" "$at_srcdir/firewall-cmd.at:488: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:488" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102128,7 +104403,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:489: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-masquerade " +printf "%s\n" "$at_srcdir/firewall-cmd.at:489: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:489" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102147,7 +104422,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:490: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-masquerade " +printf "%s\n" "$at_srcdir/firewall-cmd.at:490: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:490" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102167,7 +104442,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:492: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-masquerade --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:492: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-masquerade --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:492" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-masquerade --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102186,7 +104461,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:493: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-masquerade " +printf "%s\n" "$at_srcdir/firewall-cmd.at:493: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:493" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102205,7 +104480,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:494: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-masquerade " +printf "%s\n" "$at_srcdir/firewall-cmd.at:494: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:494" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102224,7 +104499,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:495: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-masquerade " +printf "%s\n" "$at_srcdir/firewall-cmd.at:495: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:495" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102242,7 +104517,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:496" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:496" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:496" fi @@ -102253,13 +104528,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_87 -#AT_START_88 -at_fn_group_banner 88 'firewall-cmd.at:498' \ +#AT_STOP_94 +#AT_START_95 +at_fn_group_banner 95 'firewall-cmd.at:498' \ "forward" " " 4 at_xfail=no ( - $as_echo "88. $at_setup_line: testing $at_desc ..." + printf "%s\n" "95. $at_setup_line: testing $at_desc ..." $at_traceon @@ -102277,6 +104552,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -102293,7 +104569,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:498" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102307,7 +104583,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:498" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102323,7 +104599,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:498" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102387,7 +104663,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:498" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102478,7 +104754,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:498" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:498" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:498" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -102497,7 +104773,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:498" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102518,7 +104794,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:498" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102535,7 +104811,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:498" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102550,7 +104826,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:498" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102567,7 +104843,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -102575,7 +104851,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:498" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:498" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:498" fi echo "$!" > firewalld.pid @@ -102592,7 +104868,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:498" fi sleep 1 done - $as_echo "firewall-cmd.at:498" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:498" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:498" @@ -102604,7 +104880,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:498" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:501: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy --add-interface=dummy2 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:501: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy --add-interface=dummy2 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:501" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy --add-interface=dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102623,7 +104899,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:502: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:502: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:502" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102644,7 +104920,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:503: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:503: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -102657,7 +104933,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_home_allow { oifname \"dummy\" accept oifname \"dummy2\" accept @@ -102684,7 +104960,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy2 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy2 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:525" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102705,7 +104981,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:526: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:526: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -102718,7 +104994,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_home_allow { oifname \"dummy\" accept } @@ -102744,7 +105020,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:539: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy3 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:539: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy3 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:539" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102765,7 +105041,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -102778,7 +105054,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_home_allow { oifname \"dummy\" accept oifname \"dummy3\" accept @@ -102805,7 +105081,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:556: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --query-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:556: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --query-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:556" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102824,7 +105100,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:557: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:557: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:557" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --remove-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102845,7 +105121,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:558: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:558: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -102858,7 +105134,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_home_allow { } } @@ -102883,7 +105159,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:568: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --query-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:568: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --query-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:568" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102902,7 +105178,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:569: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy --remove-interface=dummy3 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:569: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy --remove-interface=dummy3 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:569" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy --remove-interface=dummy3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102922,7 +105198,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --add-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --add-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:571" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102941,7 +105217,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:572: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-interface=dummy --add-interface=dummy3 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:572: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-interface=dummy --add-interface=dummy3 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:572" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-interface=dummy --add-interface=dummy3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102960,7 +105236,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:573: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-source=10.10.10.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:573: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-source=10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:573" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102980,7 +105256,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:574" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -102999,7 +105275,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:574" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103019,7 +105295,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:575: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:575: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:575" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103040,7 +105316,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:576: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:576: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -103053,7 +105329,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_home_allow { oifname \"dummy\" accept oifname \"dummy3\" accept @@ -103081,7 +105357,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:594: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --remove-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:594: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --remove-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:594" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --remove-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103100,7 +105376,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:595: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:595: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:595" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103119,7 +105395,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:596: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-interface=dummy --remove-interface=dummy3 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:596: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-interface=dummy --remove-interface=dummy3 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:596" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-interface=dummy --remove-interface=dummy3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103138,7 +105414,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:597: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-source=10.10.10.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:597: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-source=10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:597" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103158,7 +105434,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:598" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103177,7 +105453,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:598" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103198,7 +105474,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:601: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone |grep public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:601: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone |grep public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:601" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-default-zone |grep public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103217,7 +105493,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:602: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-interface dummy4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:602: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-interface dummy4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:602" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-interface dummy4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103236,7 +105512,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:603: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:603: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:603" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103257,7 +105533,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:604: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:604: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -103270,7 +105546,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_public_allow { oifname \"dummy4\" accept } @@ -103297,7 +105573,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:619: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:619: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:619" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103319,7 +105595,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:620: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=1234::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:620: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=1234::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:620" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=1234::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103340,7 +105616,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:623: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:623: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:623" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103361,7 +105637,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:624: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:624: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -103374,7 +105650,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_internal_allow { ip daddr 10.10.10.0/24 accept ip6 daddr 1234::/64 accept @@ -103404,7 +105680,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:638: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=1234::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:638: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=1234::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:638" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=1234::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103427,7 +105703,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:641: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:641: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -103440,7 +105716,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_internal_allow { ip daddr 10.10.10.0/24 accept } @@ -103466,7 +105742,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:653: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.20.20.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:653: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.20.20.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:653" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.20.20.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103488,7 +105764,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:654: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=4321::/64 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:654: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=4321::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:654" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=4321::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103511,7 +105787,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:657: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:657: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -103524,7 +105800,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_internal_allow { ip daddr 10.10.10.0/24 accept ip daddr 10.20.20.0/24 accept @@ -103552,7 +105828,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:673: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-forward " +printf "%s\n" "$at_srcdir/firewall-cmd.at:673: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:673" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103573,7 +105849,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:674: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:674: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -103586,7 +105862,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_internal_allow { } } @@ -103610,7 +105886,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:684" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:684" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:684" fi @@ -103621,13 +105897,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_88 -#AT_START_89 -at_fn_group_banner 89 'firewall-cmd.at:686' \ +#AT_STOP_95 +#AT_START_96 +at_fn_group_banner 96 'firewall-cmd.at:686' \ "forward ports" " " 4 at_xfail=no ( - $as_echo "89. $at_setup_line: testing $at_desc ..." + printf "%s\n" "96. $at_setup_line: testing $at_desc ..." $at_traceon @@ -103645,6 +105921,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -103661,7 +105938,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:686" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103675,7 +105952,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:686" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103691,7 +105968,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:686" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103755,7 +106032,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:686" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103846,7 +106123,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:686" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:686" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -103865,7 +106142,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:686" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103886,7 +106163,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:686" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103903,7 +106180,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:686" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103918,7 +106195,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:686" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103935,7 +106212,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -103943,7 +106220,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:686" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:686" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" fi echo "$!" > firewalld.pid @@ -103960,7 +106237,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" fi sleep 1 done - $as_echo "firewall-cmd.at:686" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:686" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" @@ -103972,7 +106249,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:689: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=666 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:689: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=666 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:689" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -103991,7 +106268,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:690: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=11:proto=tcp:toport=22 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:690: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=11:proto=tcp:toport=22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:690" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=11:proto=tcp:toport=22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104012,7 +106289,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -104025,7 +106302,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PRE_public_allow { meta nfproto ipv4 tcp dport 11 redirect to :22 } @@ -104051,7 +106328,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:704: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:704: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:704" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104070,7 +106347,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:705: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4444 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:705: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4444 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:705" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4444 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104088,7 +106365,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:706: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:706: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:706" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104109,7 +106386,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:708: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:708: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -104122,7 +106399,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PRE_public_allow { meta nfproto ipv4 tcp dport 33 dnat ip to 4.4.4.4 } @@ -104148,7 +106425,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:720: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:720: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:720" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104167,7 +106444,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:721: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:721: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:721" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104186,7 +106463,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:722: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:722: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:722" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104205,7 +106482,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:723: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:723: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:723" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104224,7 +106501,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:724: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:724: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:724" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104243,7 +106520,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:725: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:725: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:725" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104262,7 +106539,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:726: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:726: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:726" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104281,7 +106558,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:727: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:727: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:727" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104300,7 +106577,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:728: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:728: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:728" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104322,7 +106599,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +printf "%s\n" "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104343,7 +106620,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -104356,7 +106633,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PRE_public_allow { meta nfproto ipv6 sctp dport 66 dnat ip6 to [fd00:dead:beef:ff0::]:66 } @@ -104382,7 +106659,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104401,7 +106678,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +printf "%s\n" "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104420,7 +106697,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +printf "%s\n" "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104441,7 +106718,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:748: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:748: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:748" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104460,7 +106737,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=100:proto=tcp:toport=200 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=100:proto=tcp:toport=200 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:749" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104479,7 +106756,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:750" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104498,7 +106775,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:751: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:751: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:751" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104517,7 +106794,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:752: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=100:proto=tcp:toport=200 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:752: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=100:proto=tcp:toport=200 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:752" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104536,7 +106813,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:753: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:753: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:753" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104555,7 +106832,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:754: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-forward-ports " +printf "%s\n" "$at_srcdir/firewall-cmd.at:754: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-forward-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:754" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-forward-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104575,7 +106852,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:756: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=666 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:756: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=666 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:756" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104594,7 +106871,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:757: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=11:proto=tcp:toport=22 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:757: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=11:proto=tcp:toport=22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:757" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=11:proto=tcp:toport=22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104613,7 +106890,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:758: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:758: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:758" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104632,7 +106909,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:759: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4444 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:759: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4444 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:759" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4444 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104650,7 +106927,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:760: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:760: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:760" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104669,7 +106946,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:761: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:761: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:761" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104688,7 +106965,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:762: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:762: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:762" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104707,7 +106984,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:763: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:763: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:763" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104726,7 +107003,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:764: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:764: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:764" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104745,7 +107022,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:765: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:765: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:765" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104764,7 +107041,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:766: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:766: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:766" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104783,7 +107060,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:767: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:767: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:767" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104802,7 +107079,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:768: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:768: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:768" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104821,7 +107098,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:769: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:769: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:769" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104843,7 +107120,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104862,7 +107139,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104881,7 +107158,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104900,7 +107177,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104921,7 +107198,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:776: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:776: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:776" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104940,7 +107217,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:777: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=100:proto=tcp:toport=200 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:777: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=100:proto=tcp:toport=200 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:777" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104959,7 +107236,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:778: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:778: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:778" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104978,7 +107255,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:779: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:779: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:779" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -104997,7 +107274,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:780: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=100:proto=tcp:toport=200 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:780: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=100:proto=tcp:toport=200 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:780" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105016,7 +107293,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:781: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:781: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:781" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105035,7 +107312,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:782: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-forward-ports " +printf "%s\n" "$at_srcdir/firewall-cmd.at:782: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-forward-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:782" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-forward-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105053,7 +107330,7 @@ $at_traceon; } if test x"-e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:783" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:783" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:783" fi @@ -105064,13 +107341,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_89 -#AT_START_90 -at_fn_group_banner 90 'firewall-cmd.at:785' \ +#AT_STOP_96 +#AT_START_97 +at_fn_group_banner 97 'firewall-cmd.at:785' \ "ICMP block" " " 4 at_xfail=no ( - $as_echo "90. $at_setup_line: testing $at_desc ..." + printf "%s\n" "97. $at_setup_line: testing $at_desc ..." $at_traceon @@ -105088,6 +107365,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -105104,7 +107382,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:785" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105118,7 +107396,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:785" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105134,7 +107412,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:785" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105198,7 +107476,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:785" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105289,7 +107567,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:785" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:785" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -105308,7 +107586,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:785" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105329,7 +107607,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:785" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105346,7 +107624,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:785" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105361,7 +107639,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:785" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105378,7 +107656,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -105386,7 +107664,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:785" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:785" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" fi echo "$!" > firewalld.pid @@ -105403,7 +107681,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" fi sleep 1 done - $as_echo "firewall-cmd.at:785" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:785" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" @@ -105415,7 +107693,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:788: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-icmp-blocks " +printf "%s\n" "$at_srcdir/firewall-cmd.at:788: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-icmp-blocks " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:788" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-icmp-blocks ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105435,7 +107713,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:790: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=dummyblock " +printf "%s\n" "$at_srcdir/firewall-cmd.at:790: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=dummyblock " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:790" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=dummyblock ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105454,7 +107732,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:791: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:791: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:791" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105473,7 +107751,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:792: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:792: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:792" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105492,7 +107770,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:793: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:793: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:793" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105511,7 +107789,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:794: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:794: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:794" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105530,7 +107808,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:795: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=dummyblock " +printf "%s\n" "$at_srcdir/firewall-cmd.at:795: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=dummyblock " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:795" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=dummyblock ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105549,7 +107827,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:796: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:796: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:796" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105568,7 +107846,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:797: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:797: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:797" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105587,7 +107865,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:798: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:798: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:798" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105606,7 +107884,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:799: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:799: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:799" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105626,7 +107904,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:801: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:801: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:801" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105645,7 +107923,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:802: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-icmp-block-inversion " +printf "%s\n" "$at_srcdir/firewall-cmd.at:802: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-icmp-block-inversion " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:802" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105664,7 +107942,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:803: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion " +printf "%s\n" "$at_srcdir/firewall-cmd.at:803: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:803" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105683,7 +107961,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:804: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-icmp-block-inversion " +printf "%s\n" "$at_srcdir/firewall-cmd.at:804: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-icmp-block-inversion " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:804" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105702,7 +107980,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-icmp-block-inversion --zone=public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-icmp-block-inversion --zone=public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:805" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-icmp-block-inversion --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105721,7 +107999,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:806: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion " +printf "%s\n" "$at_srcdir/firewall-cmd.at:806: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:806" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105740,7 +108018,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:807: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-icmp-block-inversion " +printf "%s\n" "$at_srcdir/firewall-cmd.at:807: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-icmp-block-inversion " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:807" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105759,7 +108037,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:808: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion " +printf "%s\n" "$at_srcdir/firewall-cmd.at:808: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:808" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105779,7 +108057,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:810: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=block " +printf "%s\n" "$at_srcdir/firewall-cmd.at:810: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=block " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:810" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=block ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105798,7 +108076,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:811: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=block " +printf "%s\n" "$at_srcdir/firewall-cmd.at:811: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=block " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:811" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=block ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105817,7 +108095,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:812: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=drop " +printf "%s\n" "$at_srcdir/firewall-cmd.at:812: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=drop " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:812" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=drop ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105836,7 +108114,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:813: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=drop " +printf "%s\n" "$at_srcdir/firewall-cmd.at:813: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=drop " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:813" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=drop ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105855,7 +108133,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:814: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=trusted " +printf "%s\n" "$at_srcdir/firewall-cmd.at:814: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=trusted " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:814" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105874,7 +108152,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:815: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=trusted " +printf "%s\n" "$at_srcdir/firewall-cmd.at:815: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=trusted " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:815" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105894,7 +108172,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:817: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:817: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:817" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105913,7 +108191,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:818: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply " +printf "%s\n" "$at_srcdir/firewall-cmd.at:818: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:818" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105932,7 +108210,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:819: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:819: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:819" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105951,7 +108229,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:820: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:820: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:820" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105970,7 +108248,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:821: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply " +printf "%s\n" "$at_srcdir/firewall-cmd.at:821: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:821" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -105989,7 +108267,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:822" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106008,7 +108286,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:823: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:823: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:823" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106027,7 +108305,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:824: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply " +printf "%s\n" "$at_srcdir/firewall-cmd.at:824: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:824" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106046,7 +108324,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:825: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:825: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:825" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106065,7 +108343,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:826: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:826: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:826" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106084,7 +108362,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:827: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply " +printf "%s\n" "$at_srcdir/firewall-cmd.at:827: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:827" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106103,7 +108381,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation " +printf "%s\n" "$at_srcdir/firewall-cmd.at:828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:828" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106121,7 +108399,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_ICMPTYPE:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:829" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:829" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ICMPTYPE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:829" fi @@ -106132,13 +108410,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_90 -#AT_START_91 -at_fn_group_banner 91 'firewall-cmd.at:831' \ +#AT_STOP_97 +#AT_START_98 +at_fn_group_banner 98 'firewall-cmd.at:831' \ "user ICMP types" " " 4 at_xfail=no ( - $as_echo "91. $at_setup_line: testing $at_desc ..." + printf "%s\n" "98. $at_setup_line: testing $at_desc ..." $at_traceon @@ -106156,6 +108434,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -106172,7 +108451,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:831" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106186,7 +108465,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:831" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106202,7 +108481,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:831" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106266,7 +108545,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:831" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106357,7 +108636,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:831" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:831" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -106376,7 +108655,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:831" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106397,7 +108676,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:831" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106414,7 +108693,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:831" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106429,7 +108708,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:831" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106446,7 +108725,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -106454,7 +108733,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:831" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:831" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" fi echo "$!" > firewalld.pid @@ -106471,7 +108750,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" fi sleep 1 done - $as_echo "firewall-cmd.at:831" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:831" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" @@ -106483,7 +108762,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:834: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype=redirect " +printf "%s\n" "$at_srcdir/firewall-cmd.at:834: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype=redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:834" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-icmptype=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106502,7 +108781,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:836: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:836: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:836" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-icmptype=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106521,7 +108800,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:837: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-icmptypes | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:837: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-icmptypes | grep foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:837" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-icmptypes | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106541,7 +108820,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:839: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv5 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:839: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv5 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:839" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv5 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106560,7 +108839,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:840: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:840: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:840" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106579,7 +108858,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:841: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:841: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:841" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106598,7 +108877,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:842: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:842: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:842" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106617,7 +108896,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:843: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:843: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:843" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106636,7 +108915,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:844: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:844: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:844" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106655,7 +108934,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:845: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:845: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:845" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106675,7 +108954,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:847: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-icmp-block=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:847: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-icmp-block=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:847" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-icmp-block=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106694,7 +108973,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:848: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:848: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:848" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106714,7 +108993,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:850: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-icmptype=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:850: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-icmptype=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:850" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-icmptype=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106733,7 +109012,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:851: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:851: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:851" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106751,7 +109030,7 @@ $at_traceon; } if test x"-e '/NAME_CONFLICT: new_icmptype():/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:852" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:852" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/NAME_CONFLICT: new_icmptype():/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:852" fi @@ -106762,13 +109041,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_91 -#AT_START_92 -at_fn_group_banner 92 'firewall-cmd.at:854' \ +#AT_STOP_98 +#AT_START_99 +at_fn_group_banner 99 'firewall-cmd.at:854' \ "ipset" " " 4 at_xfail=no ( - $as_echo "92. $at_setup_line: testing $at_desc ..." + printf "%s\n" "99. $at_setup_line: testing $at_desc ..." $at_traceon @@ -106786,6 +109065,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -106802,7 +109082,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:854" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106816,7 +109096,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:854" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106832,7 +109112,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:854" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106896,7 +109176,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:854" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -106987,7 +109267,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:854" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:854" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -107006,7 +109286,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:854" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107027,7 +109307,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:854" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107044,7 +109324,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:854" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107059,7 +109339,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:854" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107076,7 +109356,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -107084,7 +109364,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:854" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:854" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" fi echo "$!" > firewalld.pid @@ -107101,7 +109381,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" fi sleep 1 done - $as_echo "firewall-cmd.at:854" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:854" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" @@ -107114,7 +109394,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:857: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/firewall-cmd.at:857: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:857" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107129,7 +109409,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:857: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " +printf "%s\n" "$at_srcdir/firewall-cmd.at:857: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:857" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107142,29 +109422,29 @@ $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "firewall-cmd.at:857" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:857" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft flush set inet firewalld_check_ipset foobar >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:857" - $as_echo "firewall-cmd.at:857" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:857" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout { type ipv4_addr \; timeout 600s \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:857" - $as_echo "firewall-cmd.at:857" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:857" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_size { type ipv4_addr \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:857" - $as_echo "firewall-cmd.at:857" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:857" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout_size { type ipv4_addr \; timeout 600s \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:857" - $as_echo "firewall-cmd.at:857" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:857" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_interval_concat { type ipv4_addr . inet_service \; flags interval \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:857" - $as_echo "firewall-cmd.at:857" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:857" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -j '{"nftables": [{"add": {"element": {"family": "inet", "table": "firewalld_check_ipset", "name": "foobar_interval_concat", "elem": [{"concat": [{"prefix": {"addr": "10.10.10.0", "len": 24}}, {"range": ["1234", "2000"]}]}]}}}]}' >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:857" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:857: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/firewall-cmd.at:857: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:857" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107191,7 +109471,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:860: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip " +printf "%s\n" "$at_srcdir/firewall-cmd.at:860: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:860" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107210,7 +109490,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:861: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:861: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:861" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107229,14 +109509,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:862: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " +printf "%s\n" "$at_srcdir/firewall-cmd.at:862: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:862" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:862" @@ -107250,7 +109530,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:864: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:864: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:864" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107269,7 +109549,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:865: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries | grep \"1.2.3.4\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:865: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries | grep \"1.2.3.4\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:865" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries | grep "1.2.3.4" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107288,7 +109568,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:866: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.400 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:866: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.400 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:866" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.400 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107307,7 +109587,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:867: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --remove-entry=1.2.3.4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:867: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --remove-entry=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:867" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --remove-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107326,14 +109606,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:868: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " +printf "%s\n" "$at_srcdir/firewall-cmd.at:868: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:868" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:868" @@ -107348,7 +109628,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:871: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=ipset:foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:871: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=ipset:foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:871" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107367,7 +109647,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:872: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=ipset:foobar | grep public " +printf "%s\n" "$at_srcdir/firewall-cmd.at:872: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=ipset:foobar | grep public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:872" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=ipset:foobar | grep public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107386,7 +109666,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:873: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources | grep \"ipset:foobar\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:873: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources | grep \"ipset:foobar\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:873" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources | grep "ipset:foobar" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107405,7 +109685,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:874: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:874: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:874" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107424,7 +109704,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:875: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=ipset:foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:875: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=ipset:foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:875" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107443,7 +109723,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:876: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:876: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:876" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107463,7 +109743,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:878: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:878: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:878" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107482,7 +109762,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:879: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:879: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:879" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107502,7 +109782,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:882: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port " +printf "%s\n" "$at_srcdir/firewall-cmd.at:882: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:882" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107521,7 +109801,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:883: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10-10.10.10.12,1234 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:883: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10-10.10.10.12,1234 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:883" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10-10.10.10.12,1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107540,7 +109820,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:884: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,2000-2100 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:884: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,2000-2100 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:884" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,2000-2100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107560,7 +109840,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:885: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:885: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:885" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107579,7 +109859,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:885: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:885: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:885" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107601,7 +109881,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:886: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:886: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -107614,7 +109894,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr . inet_proto . inet_service flags interval @@ -107637,7 +109917,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:896: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,8080 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:896: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,8080 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:896" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,8080 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107656,7 +109936,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:897: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:897: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:897" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107676,7 +109956,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:898: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:898: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:898" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107695,7 +109975,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:898: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:898: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:898" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107716,7 +109996,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:901: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port " +printf "%s\n" "$at_srcdir/firewall-cmd.at:901: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:901" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107735,7 +110015,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:902: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:902: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:902" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107754,7 +110034,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:903: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,udp:1000-1002 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:903: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,udp:1000-1002 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:903" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,udp:1000-1002 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107774,7 +110054,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:904: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:904: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:904" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107793,7 +110073,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:904: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:904: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:904" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107813,7 +110093,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:905: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,8080 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:905: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,8080 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:905" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,8080 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107832,7 +110112,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:906: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:906: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:906" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107853,7 +110133,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:907: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:907: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -107866,7 +110146,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr . inet_proto . inet_service flags interval @@ -107892,7 +110172,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:918: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:918: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -107905,7 +110185,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { ip saddr . meta l4proto . th sport @foobar jump filter_IN_policy_allow-host-ipv6 ip saddr . meta l4proto . th sport @foobar jump filter_IN_internal @@ -107933,7 +110213,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:940: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,sctp:8080 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:940: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,sctp:8080 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:940" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,sctp:8080 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107952,7 +110232,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:941: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:941: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:941" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107972,7 +110252,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:942: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:942: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:942" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -107991,7 +110271,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:942: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:942: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:942" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108012,7 +110292,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:945: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,mark " +printf "%s\n" "$at_srcdir/firewall-cmd.at:945: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,mark " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:945" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,mark ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108031,7 +110311,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:946: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,0x100 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:946: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,0x100 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:946" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,0x100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108051,7 +110331,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:947" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108070,7 +110350,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:947" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108090,7 +110370,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:948: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,0x200 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:948: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,0x200 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:948" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,0x200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108109,7 +110389,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:949: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:949: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:949" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108130,7 +110410,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:950: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:950: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -108143,7 +110423,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr . mark flags interval @@ -108168,7 +110448,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:960: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:960: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -108181,7 +110461,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { ip saddr . mark @foobar jump filter_IN_policy_allow-host-ipv6 ip saddr . mark @foobar jump filter_IN_internal @@ -108209,7 +110489,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:979: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:979: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:979" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108229,7 +110509,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:980" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108248,7 +110528,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:980" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108269,7 +110549,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:983: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,port " +printf "%s\n" "$at_srcdir/firewall-cmd.at:983: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,port " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:983" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,port ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108288,7 +110568,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:984: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,sctp:1234 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:984: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,sctp:1234 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:984" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,sctp:1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108308,7 +110588,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:985" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108327,7 +110607,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:985" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108347,7 +110627,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:986: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:986: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:986" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108366,7 +110646,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:987" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108386,7 +110666,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:988: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:988: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:988" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108405,7 +110685,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:988: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:988: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:988" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108426,7 +110706,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:991: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port,net " +printf "%s\n" "$at_srcdir/firewall-cmd.at:991: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port,net " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:991" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port,net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108445,7 +110725,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:992: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234,10.10.10.0/24 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:992: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234,10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:992" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234,10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108465,7 +110745,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:993" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108484,7 +110764,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:993" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108504,7 +110784,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:994: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080,1.6.0.0/16 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:994: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080,1.6.0.0/16 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:994" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080,1.6.0.0/16 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108525,7 +110805,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:995: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:995: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -108538,7 +110818,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr . inet_proto . inet_service . ipv4_addr flags interval @@ -108564,7 +110844,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1012: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1012: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1012" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108584,7 +110864,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1013" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108603,7 +110883,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1013" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108624,7 +110904,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1016: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,iface " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1016: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,iface " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1016" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,iface ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108643,7 +110923,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1017: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,foobar0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1017: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1017" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108663,7 +110943,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1018: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1018: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1018" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108682,7 +110962,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1018: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1018: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1018" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108702,7 +110982,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1019: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.0/24,raboof0 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1019: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.0/24,raboof0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1019" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.0/24,raboof0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108721,7 +111001,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1020: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1020: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1020" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108742,7 +111022,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1021: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1021: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -108755,7 +111035,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr . ifname flags interval @@ -108780,7 +111060,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -108793,11 +111073,11 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { -ip saddr . oifname @foobar jump filter_IN_policy_allow-host-ipv6 -ip saddr . oifname @foobar jump filter_IN_internal -ip saddr . oifname @foobar reject with icmpx admin-prohibited +ip saddr . iifname @foobar jump filter_IN_policy_allow-host-ipv6 +ip saddr . iifname @foobar jump filter_IN_internal +ip saddr . iifname @foobar reject with icmpx admin-prohibited jump filter_IN_policy_allow-host-ipv6 jump filter_IN_public reject with icmpx admin-prohibited @@ -108821,7 +111101,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1050: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1050: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1050" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108841,7 +111121,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1051" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108860,7 +111140,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1051" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108884,7 +111164,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:mac " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:mac " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:mac ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108903,7 +111183,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=12:34:56:78:90:ab " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=12:34:56:78:90:ab " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=12:34:56:78:90:ab ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108923,7 +111203,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108942,7 +111222,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108962,7 +111242,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=12:34:56:78:90:ac " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=12:34:56:78:90:ac " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=12:34:56:78:90:ac ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -108981,7 +111261,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109001,7 +111281,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109020,7 +111300,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109041,7 +111321,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_ENTRY: invalid address/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1061" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1061" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ENTRY: invalid address/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1061" fi @@ -109052,13 +111332,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_92 -#AT_START_93 -at_fn_group_banner 93 'firewall-cmd.at:1063' \ +#AT_STOP_99 +#AT_START_100 +at_fn_group_banner 100 'firewall-cmd.at:1063' \ "user helpers" " " 4 at_xfail=no ( - $as_echo "93. $at_setup_line: testing $at_desc ..." + printf "%s\n" "100. $at_setup_line: testing $at_desc ..." $at_traceon @@ -109076,6 +111356,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -109092,7 +111373,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1063" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109106,7 +111387,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1063" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109122,7 +111403,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1063" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109186,7 +111467,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1063" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109277,7 +111558,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1063" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1063" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -109296,7 +111577,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1063" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109317,7 +111598,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1063" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109334,7 +111615,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1063" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109349,7 +111630,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1063" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109366,7 +111647,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -109374,7 +111655,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1063" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1063" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" fi echo "$!" > firewalld.pid @@ -109391,7 +111672,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" fi sleep 1 done - $as_echo "firewall-cmd.at:1063" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1063" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" @@ -109403,7 +111684,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1066: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=foo " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1066: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=foo " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1066" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=foo ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109422,7 +111703,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1067: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=nf_conntrack_foo " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1067: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=nf_conntrack_foo " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1067" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=nf_conntrack_foo ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109441,7 +111722,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1068: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1068: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1068" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109460,7 +111741,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1069: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1069: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1069" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109479,7 +111760,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1070: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv5 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1070: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv5 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1070" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv5 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109498,7 +111779,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1071: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1071: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1071" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109517,7 +111798,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1072: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1072: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1072" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109536,7 +111817,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1073: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family= " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1073: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family= " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1073" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family= ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109556,14 +111837,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1075: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1075: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1075" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1075" @@ -109577,14 +111858,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1077: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1077: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1077" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1077" @@ -109599,7 +111880,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1080: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --add-port=44/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1080: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --add-port=44/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1080" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --add-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109618,7 +111899,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1081: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports | grep 44 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1081: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports | grep 44 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1081" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports | grep 44 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109637,7 +111918,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1082: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1082: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1082" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109656,7 +111937,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1083: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --remove-port=44/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1083: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --remove-port=44/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1083" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --remove-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109675,7 +111956,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1084: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1084: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1084" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109694,14 +111975,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1085: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1085: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1085" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1085" @@ -109715,7 +111996,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1087: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-helper=foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1087: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-helper=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1087" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-helper=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109734,7 +112015,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1088: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1088: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1088" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109752,7 +112033,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_MODULE:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1089" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1089" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_MODULE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1089" fi @@ -109763,13 +112044,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_93 -#AT_START_94 -at_fn_group_banner 94 'firewall-cmd.at:1091' \ +#AT_STOP_100 +#AT_START_101 +at_fn_group_banner 101 'firewall-cmd.at:1091' \ "direct" " " 4 at_xfail=no ( - $as_echo "94. $at_setup_line: testing $at_desc ..." + printf "%s\n" "101. $at_setup_line: testing $at_desc ..." $at_traceon @@ -109787,6 +112068,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -109803,7 +112085,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1091" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109817,7 +112099,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1091" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109833,7 +112115,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1091" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109897,7 +112179,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1091" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -109988,7 +112270,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1091" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1091" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -110007,7 +112289,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1091" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110028,7 +112310,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1091" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110045,7 +112327,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1091" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110060,7 +112342,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1091" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110077,7 +112359,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -110085,7 +112367,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1091" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1091" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" fi echo "$!" > firewalld.pid @@ -110102,7 +112384,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" fi sleep 1 done - $as_echo "firewall-cmd.at:1091" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1091" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" @@ -110111,7 +112393,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" - $as_echo "firewall-cmd.at:1093" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1093" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1093" @@ -110121,7 +112403,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1095: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1095: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1095" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110140,7 +112422,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1096: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-chains ipv4 filter | grep mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1096: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-chains ipv4 filter | grep mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1096" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-chains ipv4 filter | grep mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110159,7 +112441,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1097: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-chains | grep \"ipv4 filter mychain\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1097: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-chains | grep \"ipv4 filter mychain\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1097" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-chains | grep "ipv4 filter mychain" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110178,7 +112460,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1098: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1098: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1098" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110197,7 +112479,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1099: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv5 filter mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1099: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv5 filter mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1099" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv5 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110216,7 +112498,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 badtable mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 badtable mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1100" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv4 badtable mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110236,7 +112518,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1102" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110255,7 +112537,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"3 -j ACCEPT\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"3 -j ACCEPT\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1103" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "3 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110274,7 +112556,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 filter mychain 3 -j ACCEPT\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 filter mychain 3 -j ACCEPT\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1104" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 filter mychain 3 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110293,7 +112575,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1105" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110312,7 +112594,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter mychain 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter mychain 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1106" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110331,7 +112613,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1107" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110350,7 +112632,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv5 filter mychain 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv5 filter mychain 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1108" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv5 filter mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110369,7 +112651,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 badtable mychain 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 badtable mychain 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1109" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 badtable mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110389,7 +112671,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1111" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110408,7 +112690,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1112" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110427,7 +112709,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1113" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110446,7 +112728,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1114" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110465,7 +112747,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"3 -s 192.168.1.1 -j ACCEPT\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"3 -s 192.168.1.1 -j ACCEPT\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1115" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "3 -s 192.168.1.1 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110484,7 +112766,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"4 -s 192.168.1.2 -j ACCEPT\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"4 -s 192.168.1.2 -j ACCEPT\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1116" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "4 -s 192.168.1.2 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110503,7 +112785,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"5 -s 192.168.1.3 -j ACCEPT\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"5 -s 192.168.1.3 -j ACCEPT\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1117" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "5 -s 192.168.1.3 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110522,7 +112804,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"6 -s 192.168.1.4 -j ACCEPT\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"6 -s 192.168.1.4 -j ACCEPT\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "6 -s 192.168.1.4 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110541,7 +112823,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules ipv4 filter mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules ipv4 filter mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1119" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rules ipv4 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110560,7 +112842,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1120" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110579,7 +112861,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1121" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110598,7 +112880,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1122" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110617,7 +112899,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1123" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110637,7 +112919,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv5 filter mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv5 filter mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1125" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv5 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110656,7 +112938,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 badtable mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 badtable mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1126" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 badtable mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110675,7 +112957,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1127" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110694,7 +112976,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1128: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1128: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1128" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110713,7 +112995,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter dummy " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1129" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110733,7 +113015,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1132" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110752,7 +113034,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --list-all " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --list-all " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1133" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110771,7 +113053,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-services " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-services " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1134" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110790,7 +113072,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-default-zone " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-default-zone " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1135" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110809,7 +113091,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --zone=home --list-services " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --zone=home --list-services " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1136" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --zone=home --list-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110828,7 +113110,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1137: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --permanent --list-all " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1137: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --permanent --list-all " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1137" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --permanent --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110848,7 +113130,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-chain ipv4 filter žluťoučký " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-chain ipv4 filter žluťoučký " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1140" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110867,7 +113149,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-chains ipv4 filter |grep \"žluťoučký\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-chains ipv4 filter |grep \"žluťoučký\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1141" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-chains ipv4 filter |grep "žluťoučký" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110886,7 +113168,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-chains | grep \"ipv4 filter žluťoučký\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-chains | grep \"ipv4 filter žluťoučký\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1142" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-chains | grep "ipv4 filter žluťoučký" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110905,7 +113187,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1143" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110924,7 +113206,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter žluťoučký 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter žluťoučký 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1144" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110943,7 +113225,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-rules ipv4 filter žluťoučký | grep ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-rules ipv4 filter žluťoučký | grep ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1145" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-rules ipv4 filter žluťoučký | grep ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110962,7 +113244,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 filter žluťoučký 3 -j ACCEPT\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 filter žluťoučký 3 -j ACCEPT\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1146" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep "ipv4 filter žluťoučký 3 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -110981,7 +113263,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1147" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111000,7 +113282,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 filter žluťoučký 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 filter žluťoučký 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1148" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111019,7 +113301,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1149" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111038,7 +113320,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-chain ipv4 filter žluťoučký " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-chain ipv4 filter žluťoučký " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1150" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111057,7 +113339,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1151" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111077,7 +113359,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1154" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111096,7 +113378,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter FORWARD_direct 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter FORWARD_direct 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1155" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter FORWARD_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111115,7 +113397,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1156: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 security INPUT_direct 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1156: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 security INPUT_direct 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1156" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 security INPUT_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111134,7 +113416,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 raw PREROUTING_direct 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 raw PREROUTING_direct 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1157" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 raw PREROUTING_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111153,7 +113435,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 mangle PREROUTING_direct 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 mangle PREROUTING_direct 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1158" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 mangle PREROUTING_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111172,7 +113454,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 nat PREROUTING_direct 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 nat PREROUTING_direct 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1159" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 nat PREROUTING_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111191,7 +113473,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1160" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111211,7 +113493,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1161" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111230,7 +113512,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1161" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111249,7 +113531,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_TABLE:/d' -e '/WARNING: NOT_ENABLED: chain/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1162" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1162" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_TABLE:/d' -e '/WARNING: NOT_ENABLED: chain/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1162" fi @@ -111260,13 +113542,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_94 -#AT_START_95 -at_fn_group_banner 95 'firewall-cmd.at:1165' \ +#AT_STOP_101 +#AT_START_102 +at_fn_group_banner 102 'firewall-cmd.at:1165' \ "direct nat" " " 4 at_xfail=no ( - $as_echo "95. $at_setup_line: testing $at_desc ..." + printf "%s\n" "102. $at_setup_line: testing $at_desc ..." $at_traceon @@ -111284,6 +113566,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -111300,7 +113583,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1165" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111314,7 +113597,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1165" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111330,7 +113613,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1165" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111394,7 +113677,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1165" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111485,7 +113768,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1165" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1165" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -111504,7 +113787,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1165" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111525,7 +113808,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1165" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111542,7 +113825,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1165" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111557,7 +113840,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1165" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111574,7 +113857,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -111582,7 +113865,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1165" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1165" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" fi echo "$!" > firewalld.pid @@ -111599,7 +113882,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" fi sleep 1 done - $as_echo "firewall-cmd.at:1165" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1165" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" @@ -111609,7 +113892,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" - $as_echo "firewall-cmd.at:1168" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1168" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1168" @@ -111621,7 +113904,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 18 || test ${KERNEL_MAJOR} -gt 4; then : else - $as_echo "firewall-cmd.at:1169" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1169" >"$at_check_line_file" at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1169" fi @@ -111633,7 +113916,7 @@ at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1169" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1173" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111652,7 +113935,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1174" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111671,7 +113954,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1175: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1175: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1175" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111690,7 +113973,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1176" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111709,7 +113992,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1177" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111728,7 +114011,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1178: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1178: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1178" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111747,7 +114030,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1179: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1179: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1179" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111766,7 +114049,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1180" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111785,7 +114068,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules |grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules |grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1181" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules |grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111804,7 +114087,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1182" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111823,7 +114106,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1183" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111842,7 +114125,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1184" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111861,7 +114144,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1185" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111881,7 +114164,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:1188" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1188" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1188" fi @@ -111892,13 +114175,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_95 -#AT_START_96 -at_fn_group_banner 96 'firewall-cmd.at:1190' \ +#AT_STOP_102 +#AT_START_103 +at_fn_group_banner 103 'firewall-cmd.at:1190' \ "direct passthrough" " " 4 at_xfail=no ( - $as_echo "96. $at_setup_line: testing $at_desc ..." + printf "%s\n" "103. $at_setup_line: testing $at_desc ..." $at_traceon @@ -111916,6 +114199,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -111932,7 +114216,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1190" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111946,7 +114230,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1190" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -111962,7 +114246,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1190" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112026,7 +114310,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1190" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112117,7 +114401,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1190" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1190" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -112136,7 +114420,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1190" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112157,7 +114441,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1190" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112174,7 +114458,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1190" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112189,7 +114473,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1190" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112206,7 +114490,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -112214,7 +114498,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1190" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1190" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" fi echo "$!" > firewalld.pid @@ -112231,7 +114515,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" fi sleep 1 done - $as_echo "firewall-cmd.at:1190" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1190" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" @@ -112240,7 +114524,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" - $as_echo "firewall-cmd.at:1192" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1192" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1192" @@ -112250,7 +114534,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1194: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --append POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1194: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --append POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1194" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --append POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112269,7 +114553,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1195: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --delete POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1195: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --delete POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1195" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --delete POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112289,7 +114573,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1197" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112308,7 +114592,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1198: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1198: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1198" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112327,7 +114611,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1199: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1199: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1199" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112346,7 +114630,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1200: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1200: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1200" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112365,7 +114649,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1201" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112384,7 +114668,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1202" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112403,7 +114687,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1203" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112427,7 +114711,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv6 --table filter --append FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv6 --table filter --append FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv6 --table filter --append FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112446,7 +114730,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-passthroughs ipv6 | grep \"fd00:dead:beef:ff0::/64\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-passthroughs ipv6 | grep \"fd00:dead:beef:ff0::/64\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-passthroughs ipv6 | grep "fd00:dead:beef:ff0::/64" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112465,7 +114749,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-passthroughs | grep \"fd00:dead:beef:ff0::/64\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-passthroughs | grep \"fd00:dead:beef:ff0::/64\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-passthroughs | grep "fd00:dead:beef:ff0::/64" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112484,7 +114768,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -nvL | grep \"fd00:dead:beef:ff0::/64\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -nvL | grep \"fd00:dead:beef:ff0::/64\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -nvL | grep "fd00:dead:beef:ff0::/64" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112503,7 +114787,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv6 --table filter --delete FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv6 --table filter --delete FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv6 --table filter --delete FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112529,7 +114813,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv5 -nvL " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv5 -nvL " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1213" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv5 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112548,7 +114832,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1214" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112568,7 +114852,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1216: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough --get-chains ipv4 filter " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1216: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough --get-chains ipv4 filter " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1216" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough --get-chains ipv4 filter ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112588,7 +114872,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1218" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112607,7 +114891,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1219: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv5 -nvL " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1219: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv5 -nvL " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1219" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv5 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112626,7 +114910,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 -nvL " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 -nvL " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1220" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112645,7 +114929,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-passthroughs ipv4 | grep \"[-]nvL\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-passthroughs ipv4 | grep \"[-]nvL\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1221" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-passthroughs ipv4 | grep "[-]nvL" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112664,7 +114948,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-passthroughs | grep \"ipv4 [-]nvL\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-passthroughs | grep \"ipv4 [-]nvL\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1222" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-passthroughs | grep "ipv4 [-]nvL" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112683,7 +114967,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1223" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112702,7 +114986,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-passthrough ipv4 -nvL " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-passthrough ipv4 -nvL " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1224" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112721,7 +115005,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1225" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112739,7 +115023,7 @@ $at_traceon; } if test x"-e '/WARNING: NOT_ENABLED: passthrough/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1226" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1226" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: NOT_ENABLED: passthrough/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1226" fi @@ -112750,13 +115034,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_96 -#AT_START_97 -at_fn_group_banner 97 'firewall-cmd.at:1228' \ +#AT_STOP_103 +#AT_START_104 +at_fn_group_banner 104 'firewall-cmd.at:1228' \ "direct ebtables" " " 4 at_xfail=no ( - $as_echo "97. $at_setup_line: testing $at_desc ..." + printf "%s\n" "104. $at_setup_line: testing $at_desc ..." $at_traceon @@ -112774,6 +115058,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -112790,7 +115075,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1228" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112804,7 +115089,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1228" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112820,7 +115105,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1228" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112884,7 +115169,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1228" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -112975,7 +115260,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1228" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1228" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -112994,7 +115279,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1228" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113015,7 +115300,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1228" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113032,7 +115317,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1228" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113047,7 +115332,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1228" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113064,7 +115349,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -113072,7 +115357,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1228" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1228" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" fi echo "$!" > firewalld.pid @@ -113089,7 +115374,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" fi sleep 1 done - $as_echo "firewall-cmd.at:1228" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1228" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" @@ -113098,7 +115383,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" - $as_echo "firewall-cmd.at:1230" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1230" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1230" @@ -113108,7 +115393,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain eb filter mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain eb filter mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1232" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain eb filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113127,7 +115412,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1233: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-chains eb filter | grep mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1233: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-chains eb filter | grep mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1233" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-chains eb filter | grep mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113146,7 +115431,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1234" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113165,7 +115450,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 999 -p IPv6 --ip6-protocol UDP --ip6-source-port ! 12345 -j DROP " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 999 -p IPv6 --ip6-protocol UDP --ip6-source-port ! 12345 -j DROP " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1235" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 999 -p IPv6 --ip6-protocol UDP --ip6-source-port ! 12345 -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113184,7 +115469,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { \$EBTABLES --concurrent -t filter -L mychain; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -113197,7 +115482,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-p IPv6 -j DROP +echo >>"$at_stdout"; printf "%s\n" "-p IPv6 -j DROP -p IPv6 --ip6-proto udp ! --ip6-sport 12345 -j DROP -j RETURN " | \ @@ -113213,7 +115498,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule eb filter mychain 1 -p 0x86dd -j DROP " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule eb filter mychain 1 -p 0x86dd -j DROP " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1241" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule eb filter mychain 1 -p 0x86dd -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113232,7 +115517,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { \$EBTABLES --concurrent -t filter -L mychain; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -113245,7 +115530,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-p IPv6 --ip6-proto udp ! --ip6-sport 12345 -j DROP +echo >>"$at_stdout"; printf "%s\n" "-p IPv6 --ip6-proto udp ! --ip6-sport 12345 -j DROP -j RETURN " | \ $at_diff - "$at_stdout" || at_failed=: @@ -113261,7 +115546,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1247: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT 1 -p 0x86dd -j DROP " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1247: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT 1 -p 0x86dd -j DROP " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1247" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT 1 -p 0x86dd -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113280,7 +115565,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT_direct 1 -p 0x86dd -j DROP " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT_direct 1 -p 0x86dd -j DROP " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1248" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT_direct 1 -p 0x86dd -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113299,7 +115584,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { \$EBTABLES --concurrent -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -113312,7 +115597,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-p IPv6 -j DROP +echo >>"$at_stdout"; printf "%s\n" "-p IPv6 -j DROP -p IPv6 -j DROP " | \ $at_diff - "$at_stdout" || at_failed=: @@ -113328,7 +115613,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules eb filter INPUT " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules eb filter INPUT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1261" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rules eb filter INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113347,7 +115632,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules eb filter mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules eb filter mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1262" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rules eb filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113367,7 +115652,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-chain eb filter mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-chain eb filter mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1264" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-chain eb filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113386,7 +115671,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1265: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-chains eb filter | grep mychain " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1265: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-chains eb filter | grep mychain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1265" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-chains eb filter | grep mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113405,7 +115690,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1266: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1266: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1266" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113425,7 +115710,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1267" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113444,7 +115729,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1267" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113464,7 +115749,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1268: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1268: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { \$EBTABLES --concurrent -t filter -L mychain; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -113477,7 +115762,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-p IPv6 -j DROP +echo >>"$at_stdout"; printf "%s\n" "-p IPv6 -j DROP -j RETURN " | \ $at_diff - "$at_stdout" || at_failed=: @@ -113491,7 +115776,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:1272" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1272" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1272" fi @@ -113502,13 +115787,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_97 -#AT_START_98 -at_fn_group_banner 98 'firewall-cmd.at:1274' \ +#AT_STOP_104 +#AT_START_105 +at_fn_group_banner 105 'firewall-cmd.at:1274' \ "lockdown" " " 4 at_xfail=no ( - $as_echo "98. $at_setup_line: testing $at_desc ..." + printf "%s\n" "105. $at_setup_line: testing $at_desc ..." $at_traceon @@ -113526,6 +115811,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -113542,7 +115828,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1274" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113556,7 +115842,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "firewall-cmd.at:1274" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113572,7 +115858,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1274" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113636,7 +115922,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1274" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113727,7 +116013,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1274" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1274" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1274" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -113746,7 +116032,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1274" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113767,7 +116053,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "firewall-cmd.at:1274" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113784,7 +116070,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1274" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113799,7 +116085,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1274" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -113816,7 +116102,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -113824,7 +116110,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1274" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1274" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1274" fi echo "$!" > firewalld.pid @@ -113841,7 +116127,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1274" fi sleep 1 done - $as_echo "firewall-cmd.at:1274" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1274" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1274" @@ -113853,14 +116139,16 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1274" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-command /usr/bin/command " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-command /usr/bin/command " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1277" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1277" $at_failed && at_fn_log_failure $at_traceon; } @@ -113872,33 +116160,16 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1278" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1278" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-lockdown-whitelist-commands | grep \"/usr/bin/command\" " +printf "%s\n" "$at_srcdir/firewall-cmd.at:1279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1279" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-lockdown-whitelist-commands | grep "/usr/bin/command" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1279" $at_failed && at_fn_log_failure $at_traceon; } @@ -113910,15 +116181,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1280" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1281" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1280" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1281" $at_failed && at_fn_log_failure $at_traceon; } @@ -113929,15 +116202,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1281" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1283" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1281" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1283" $at_failed && at_fn_log_failure $at_traceon; } @@ -113948,15 +116223,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1282" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1285" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1282" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1285" $at_failed && at_fn_log_failure $at_traceon; } @@ -113967,34 +116244,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1283" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1287" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1283" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1284: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-commands | grep \"/usr/bin/command\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1284" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-commands | grep "/usr/bin/command" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1284" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1287" $at_failed && at_fn_log_failure $at_traceon; } @@ -114005,15 +116265,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1285" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1289" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1285" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1289" $at_failed && at_fn_log_failure $at_traceon; } @@ -114024,15 +116286,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1286" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1291" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1286" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1291" $at_failed && at_fn_log_failure $at_traceon; } @@ -114044,15 +116308,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1288: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1288" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1294" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1288" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1294" $at_failed && at_fn_log_failure $at_traceon; } @@ -114063,34 +116329,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1289" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1296" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1289" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-lockdown-whitelist-contexts | grep \"system_u:system_r:MadDaemon_t:s0\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1290" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-lockdown-whitelist-contexts | grep "system_u:system_r:MadDaemon_t:s0" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1290" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1296" $at_failed && at_fn_log_failure $at_traceon; } @@ -114101,15 +116350,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1291" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1298: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1298" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1291" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1298" $at_failed && at_fn_log_failure $at_traceon; } @@ -114120,15 +116371,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1292" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1300" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1292" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1300" $at_failed && at_fn_log_failure $at_traceon; } @@ -114139,15 +116392,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1293: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1293" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1302" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1293" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1302" $at_failed && at_fn_log_failure $at_traceon; } @@ -114158,34 +116413,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1294" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1304" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1294" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-contexts | grep \"system_u:system_r:MadDaemon_t:s0\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1295" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-contexts | grep "system_u:system_r:MadDaemon_t:s0" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1295" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1304" $at_failed && at_fn_log_failure $at_traceon; } @@ -114196,15 +116434,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1296" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1306" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1296" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1306" $at_failed && at_fn_log_failure $at_traceon; } @@ -114215,15 +116455,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1297" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1308" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1297" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1308" $at_failed && at_fn_log_failure $at_traceon; } @@ -114235,15 +116477,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1299" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1311: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1311" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1299" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1311" $at_failed && at_fn_log_failure $at_traceon; } @@ -114254,34 +116498,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1300" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1313" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1300" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-lockdown-whitelist-uids | grep \"6666\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1301" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-lockdown-whitelist-uids | grep "6666" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1301" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1313" $at_failed && at_fn_log_failure $at_traceon; } @@ -114292,15 +116519,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1302" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1315: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1315" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1302" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1315" $at_failed && at_fn_log_failure $at_traceon; } @@ -114311,15 +116540,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1303" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1317" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1303" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1317" $at_failed && at_fn_log_failure $at_traceon; } @@ -114330,15 +116561,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666x " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1304" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666x " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1319" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666x ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1304" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1319" $at_failed && at_fn_log_failure $at_traceon; } @@ -114349,15 +116580,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1305: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1305" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1320" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1305" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1320" $at_failed && at_fn_log_failure $at_traceon; } @@ -114368,34 +116601,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1306" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1322: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1322" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1306" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-uids | grep \"6666\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1307" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-uids | grep "6666" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1307" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1322" $at_failed && at_fn_log_failure $at_traceon; } @@ -114406,15 +116622,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1308" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1324" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1308" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1324" $at_failed && at_fn_log_failure $at_traceon; } @@ -114425,15 +116643,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1309" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1326: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1326" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1309" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1326" $at_failed && at_fn_log_failure $at_traceon; } @@ -114444,15 +116664,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666x " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1310" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1328: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666x " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1328" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666x ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1310" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1328" $at_failed && at_fn_log_failure $at_traceon; } @@ -114462,17 +116682,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1312" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1329: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1329" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1312" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1329" $at_failed && at_fn_log_failure $at_traceon; } @@ -114483,34 +116704,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1313" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1331: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1331" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1313" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1314: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-lockdown-whitelist-users | grep \"theboss\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1314" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-lockdown-whitelist-users | grep "theboss" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1314" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1331" $at_failed && at_fn_log_failure $at_traceon; } @@ -114521,15 +116725,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1315: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1315" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1333" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1315" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1333" $at_failed && at_fn_log_failure $at_traceon; } @@ -114540,15 +116746,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1316" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1335" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1316" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1335" $at_failed && at_fn_log_failure $at_traceon; } @@ -114559,15 +116767,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1317" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1337" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1317" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1337" $at_failed && at_fn_log_failure $at_traceon; } @@ -114578,34 +116788,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1318: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1318" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1339: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1339" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1318" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-users | grep \"theboss\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1319" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-users | grep "theboss" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1319" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1339" $at_failed && at_fn_log_failure $at_traceon; } @@ -114616,15 +116809,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1320" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1341: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1341" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1320" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" $at_failed && at_fn_log_failure $at_traceon; } @@ -114635,15 +116830,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1321" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1343: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1343" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1321" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1343" $at_failed && at_fn_log_failure $at_traceon; } @@ -114651,22 +116848,24 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1323" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1346" >"$at_check_line_file" (test `whoami` != 'root') \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1323" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1346" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user root " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1324" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user root " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user root ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1324" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" $at_failed && at_fn_log_failure $at_traceon; } @@ -114677,15 +116876,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1325: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --lockdown-on " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1325" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --lockdown-on " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --lockdown-on ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1325" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" $at_failed && at_fn_log_failure $at_traceon; } @@ -114696,15 +116897,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1326: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1326" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1326" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" $at_failed && at_fn_log_failure $at_traceon; } @@ -114715,15 +116918,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1327: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --lockdown-off " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1327" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --lockdown-off " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --lockdown-off ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1327" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" $at_failed && at_fn_log_failure $at_traceon; } @@ -114734,15 +116939,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1328: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1328" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1355" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1328" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1355" $at_failed && at_fn_log_failure $at_traceon; } @@ -114752,9 +116959,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:1329" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1357" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1329" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1357" fi @@ -114763,13 +116970,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_98 -#AT_START_99 -at_fn_group_banner 99 'firewall-cmd.at:1341' \ +#AT_STOP_105 +#AT_START_106 +at_fn_group_banner 106 'firewall-cmd.at:1369' \ "rich rules good" " " 4 at_xfail=no ( - $as_echo "99. $at_setup_line: testing $at_desc ..." + printf "%s\n" "106. $at_setup_line: testing $at_desc ..." $at_traceon @@ -114787,6 +116994,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -114803,29 +117011,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1369" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } @@ -114833,15 +117041,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1369" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } @@ -114897,15 +117105,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } @@ -114988,8 +117196,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1341" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" + printf "%s\n" "firewall-cmd.at:1369" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1369" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -115007,15 +117215,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } @@ -115028,15 +117236,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1369" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } @@ -115045,30 +117253,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } @@ -115077,7 +117285,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -115085,8 +117293,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1341" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" + printf "%s\n" "firewall-cmd.at:1369" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1369" fi echo "$!" > firewalld.pid @@ -115102,9 +117310,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" fi sleep 1 done - $as_echo "firewall-cmd.at:1341" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1369" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1369" @@ -115115,15 +117323,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -115134,15 +117342,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -115153,15 +117361,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -115172,15 +117380,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -115191,15 +117399,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -115210,15 +117418,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -115229,15 +117437,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -115248,15 +117456,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -115269,15 +117477,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -115288,15 +117496,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -115307,15 +117515,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -115326,15 +117534,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -115345,15 +117553,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -115364,15 +117572,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -115383,15 +117591,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -115402,15 +117610,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -115423,15 +117631,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -115442,15 +117650,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -115461,15 +117669,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -115480,15 +117688,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -115499,15 +117707,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -115518,15 +117726,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -115537,15 +117745,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -115556,15 +117764,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -115577,15 +117785,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -115596,15 +117804,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -115615,15 +117823,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -115634,15 +117842,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -115653,15 +117861,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -115672,15 +117880,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -115691,15 +117899,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -115710,15 +117918,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -115731,15 +117939,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -115750,15 +117958,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -115769,15 +117977,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -115788,15 +117996,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -115807,15 +118015,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -115826,15 +118034,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -115845,15 +118053,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -115864,15 +118072,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -115885,15 +118093,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -115904,15 +118112,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -115923,15 +118131,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -115942,15 +118150,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -115961,15 +118169,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -115980,15 +118188,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -115999,15 +118207,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -116018,15 +118226,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -116039,15 +118247,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -116058,15 +118266,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -116077,15 +118285,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -116096,15 +118304,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -116115,15 +118323,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -116134,15 +118342,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -116153,15 +118361,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -116172,15 +118380,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -116193,15 +118401,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -116212,15 +118420,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -116231,15 +118439,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -116250,15 +118458,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -116269,15 +118477,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -116288,15 +118496,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -116307,15 +118515,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -116326,15 +118534,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -116347,15 +118555,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -116366,15 +118574,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -116385,15 +118593,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -116404,15 +118612,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -116423,15 +118631,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -116442,15 +118650,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -116461,15 +118669,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -116480,15 +118688,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -116501,15 +118709,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -116520,15 +118728,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -116539,15 +118747,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -116558,15 +118766,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -116577,15 +118785,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -116596,15 +118804,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -116615,15 +118823,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -116634,15 +118842,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -116658,15 +118866,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116677,15 +118885,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116696,15 +118904,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116715,15 +118923,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116734,15 +118942,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116753,15 +118961,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116772,15 +118980,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116791,15 +118999,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116812,15 +119020,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116831,15 +119039,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116850,15 +119058,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116869,15 +119077,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116888,15 +119096,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116907,15 +119115,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116926,15 +119134,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116945,15 +119153,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116966,15 +119174,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -116985,15 +119193,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117004,15 +119212,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117023,15 +119231,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117042,15 +119250,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117061,15 +119269,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117080,15 +119288,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117099,15 +119307,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117120,15 +119328,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117139,15 +119347,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117158,15 +119366,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117177,15 +119385,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117196,15 +119404,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117215,15 +119423,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117234,15 +119442,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117253,15 +119461,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117274,15 +119482,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117293,15 +119501,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117312,15 +119520,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117331,15 +119539,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117350,15 +119558,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117369,15 +119577,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117388,15 +119596,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117407,15 +119615,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117428,15 +119636,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117447,15 +119655,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117466,15 +119674,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117485,15 +119693,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117504,15 +119712,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117523,15 +119731,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117542,15 +119750,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117561,15 +119769,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -117584,15 +119792,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -117603,15 +119811,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -117622,15 +119830,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -117641,15 +119849,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -117660,15 +119868,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -117679,15 +119887,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -117698,15 +119906,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -117717,15 +119925,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -117738,15 +119946,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -117757,15 +119965,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -117776,15 +119984,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -117795,15 +120003,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -117814,15 +120022,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -117833,15 +120041,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -117852,15 +120060,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -117871,15 +120079,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -117892,15 +120100,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -117911,15 +120119,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -117930,15 +120138,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -117949,15 +120157,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -117968,15 +120176,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -117987,15 +120195,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -118006,15 +120214,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -118025,15 +120233,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -118046,15 +120254,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -118065,15 +120273,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -118084,15 +120292,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -118103,15 +120311,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -118122,15 +120330,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -118141,15 +120349,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -118160,15 +120368,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -118179,15 +120387,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -118200,15 +120408,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -118219,15 +120427,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -118238,15 +120446,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -118257,15 +120465,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -118276,15 +120484,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -118295,15 +120503,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -118314,15 +120522,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -118333,15 +120541,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -118354,15 +120562,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -118373,15 +120581,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -118392,15 +120600,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -118411,15 +120619,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -118430,15 +120638,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -118449,15 +120657,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -118468,15 +120676,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -118487,15 +120695,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -118508,15 +120716,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -118527,15 +120735,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -118546,15 +120754,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -118565,15 +120773,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -118584,15 +120792,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -118603,15 +120811,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -118622,15 +120830,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -118641,15 +120849,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -118665,15 +120873,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118684,15 +120892,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118703,15 +120911,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118722,15 +120930,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118741,15 +120949,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118760,15 +120968,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118779,15 +120987,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118798,15 +121006,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118819,15 +121027,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118838,15 +121046,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118857,15 +121065,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118876,15 +121084,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118895,15 +121103,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118914,15 +121122,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118933,15 +121141,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118952,15 +121160,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -118975,15 +121183,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -118994,15 +121202,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -119013,15 +121221,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -119032,15 +121240,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -119051,15 +121259,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -119070,15 +121278,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -119089,15 +121297,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -119108,15 +121316,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -119127,9 +121335,9 @@ $at_traceon; } if test x"-e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1374" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1402" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1374" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1402" fi @@ -119138,13 +121346,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_99 -#AT_START_100 -at_fn_group_banner 100 'firewall-cmd.at:1375' \ +#AT_STOP_106 +#AT_START_107 +at_fn_group_banner 107 'firewall-cmd.at:1403' \ "rich rules audit" " " 4 at_xfail=no ( - $as_echo "100. $at_setup_line: testing $at_desc ..." + printf "%s\n" "107. $at_setup_line: testing $at_desc ..." $at_traceon @@ -119162,6 +121370,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -119178,29 +121387,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1403" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1375" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1403" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } @@ -119208,15 +121417,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1375" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1403" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } @@ -119272,15 +121481,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1403" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } @@ -119363,8 +121572,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1375" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1375" + printf "%s\n" "firewall-cmd.at:1403" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1403" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -119382,15 +121591,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1403" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } @@ -119403,15 +121612,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1375" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1403" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } @@ -119420,30 +121629,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1403" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1403" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } @@ -119452,7 +121661,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -119460,8 +121669,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1375" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1375" + printf "%s\n" "firewall-cmd.at:1403" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1403" fi echo "$!" > firewalld.pid @@ -119477,9 +121686,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1375" fi sleep 1 done - $as_echo "firewall-cmd.at:1375" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1403" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1375" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1403" @@ -119489,48 +121698,48 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1375" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_log_audit " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1406: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_log_audit " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1406" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check_log_audit ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1406" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add chain inet firewalld_check_log_audit foobar { type filter hook input priority 0 \\; } " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1406: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add chain inet firewalld_check_log_audit foobar { type filter hook input priority 0 \\; } " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1406" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add chain inet firewalld_check_log_audit foobar { type filter hook input priority 0 \; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1406" $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "firewall-cmd.at:1378" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1406" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add rule inet firewalld_check_log_audit foobar log level audit >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1378" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1406" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_log_audit " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1406: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_log_audit " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1406" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_log_audit ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1406" $at_failed && at_fn_log_failure $at_traceon; } @@ -119542,15 +121751,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -119561,15 +121770,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -119580,15 +121789,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -119599,15 +121808,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -119618,15 +121827,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -119637,15 +121846,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -119656,15 +121865,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -119675,15 +121884,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1379" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -119694,9 +121903,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:1380" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1408" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1380" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1408" fi @@ -119705,13 +121914,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_100 -#AT_START_101 -at_fn_group_banner 101 'firewall-cmd.at:1383' \ +#AT_STOP_107 +#AT_START_108 +at_fn_group_banner 108 'firewall-cmd.at:1411' \ "rich rules priority" " " 4 at_xfail=no ( - $as_echo "101. $at_setup_line: testing $at_desc ..." + printf "%s\n" "108. $at_setup_line: testing $at_desc ..." $at_traceon @@ -119729,6 +121938,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -119745,29 +121955,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1411" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1411" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } @@ -119775,15 +121985,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1411" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } @@ -119839,15 +122049,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1411" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } @@ -119930,8 +122140,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1383" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" + printf "%s\n" "firewall-cmd.at:1411" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1411" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -119949,15 +122159,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1411" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } @@ -119970,15 +122180,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1411" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } @@ -119987,30 +122197,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1411" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1411" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } @@ -120019,7 +122229,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -120027,8 +122237,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1383" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" + printf "%s\n" "firewall-cmd.at:1411" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1411" fi echo "$!" > firewalld.pid @@ -120044,9 +122254,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" fi sleep 1 done - $as_echo "firewall-cmd.at:1383" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1411" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1411" @@ -120056,48 +122266,48 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_log_audit " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1386" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1414: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_log_audit " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1414" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check_log_audit ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1386" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1414" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add chain inet firewalld_check_log_audit foobar { type filter hook input priority 0 \\; } " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1386" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1414: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add chain inet firewalld_check_log_audit foobar { type filter hook input priority 0 \\; } " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1414" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add chain inet firewalld_check_log_audit foobar { type filter hook input priority 0 \; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1386" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1414" $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "firewall-cmd.at:1386" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1414" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add rule inet firewalld_check_log_audit foobar log level audit >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1386" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1414" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_log_audit " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1386" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1414: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_log_audit " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1414" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_log_audit ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1386" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1414" $at_failed && at_fn_log_failure $at_traceon; } @@ -120111,11 +122321,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1389: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1417: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1389" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1417" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -120124,7 +122334,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public { jump filter_IN_public_pre jump filter_IN_public_log @@ -120136,7 +122346,7 @@ meta l4proto { icmp, ipv6-icmp } accept } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1389" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1417" $at_failed && at_fn_log_failure $at_traceon; } @@ -120151,11 +122361,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1429: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1401" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1429" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -120164,7 +122374,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_public { jump filter_FWD_public_pre jump filter_FWD_public_log @@ -120175,7 +122385,7 @@ jump filter_FWD_public_post } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1429" $at_failed && at_fn_log_failure $at_traceon; } @@ -120201,15 +122411,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1448: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"1111\" protocol=\"tcp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1448" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1476: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"1111\" protocol=\"tcp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1476" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule port port="1111" protocol="tcp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1448" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1476" $at_failed && at_fn_log_failure $at_traceon; } @@ -120220,15 +122430,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1449: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port=\"1122\" protocol=\"tcp\" audit accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1449" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1477: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port=\"1122\" protocol=\"tcp\" audit accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1477" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port="1122" protocol="tcp" audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1449" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1477" $at_failed && at_fn_log_failure $at_traceon; } @@ -120239,15 +122449,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1450: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"2222\" protocol=\"tcp\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1450" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1478: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"2222\" protocol=\"tcp\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1478" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule port port="2222" protocol="tcp" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1450" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1478" $at_failed && at_fn_log_failure $at_traceon; } @@ -120258,15 +122468,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1451: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"3333\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1451" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1479: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"3333\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1479" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule port port="3333" protocol="tcp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1451" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1479" $at_failed && at_fn_log_failure $at_traceon; } @@ -120277,15 +122487,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1452: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port=\"4444\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1452" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1480: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port=\"4444\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1480" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port="4444" protocol="tcp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1452" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1480" $at_failed && at_fn_log_failure $at_traceon; } @@ -120298,11 +122508,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1453: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1481: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1453" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1481" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -120311,7 +122521,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_log { tcp dport 1111 log tcp dport 1122 log level audit @@ -120319,7 +122529,7 @@ tcp dport 1122 log level audit } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1453" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1481" $at_failed && at_fn_log_failure $at_traceon; } @@ -120334,11 +122544,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1461: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1489: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1461" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1489" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -120347,14 +122557,14 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_deny { tcp dport 2222 drop } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1461" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1489" $at_failed && at_fn_log_failure $at_traceon; } @@ -120369,11 +122579,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1468: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1496: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1468" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1496" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -120382,7 +122592,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -120393,7 +122603,7 @@ tcp dport 4444 accept } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1468" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1496" $at_failed && at_fn_log_failure $at_traceon; } @@ -120425,15 +122635,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1506: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1506" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1534: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1534" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1506" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1534" $at_failed && at_fn_log_failure $at_traceon; } @@ -120444,15 +122654,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1506: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1506" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1534: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1534" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1506" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1534" $at_failed && at_fn_log_failure $at_traceon; } @@ -120465,15 +122675,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1509: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32768 port port=\"1234\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1509" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1537: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32768 port port=\"1234\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1537" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32768 port port="1234" protocol="tcp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1509" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1537" $at_failed && at_fn_log_failure $at_traceon; } @@ -120484,15 +122694,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1510: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32767 port port=\"1234\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1510" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1538: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32767 port port=\"1234\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1538" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32767 port port="1234" protocol="tcp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1510" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1538" $at_failed && at_fn_log_failure $at_traceon; } @@ -120503,15 +122713,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1511: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32769 port port=\"1234\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1511" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1539: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32769 port port=\"1234\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1539" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32769 port port="1234" protocol="tcp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/firewall-cmd.at:1511" +at_fn_check_status 139 $at_status "$at_srcdir/firewall-cmd.at:1539" $at_failed && at_fn_log_failure $at_traceon; } @@ -120522,15 +122732,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1512: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32768 port port=\"1234\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1512" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32768 port port=\"1234\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1540" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32768 port port="1234" protocol="tcp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/firewall-cmd.at:1512" +at_fn_check_status 139 $at_status "$at_srcdir/firewall-cmd.at:1540" $at_failed && at_fn_log_failure $at_traceon; } @@ -120542,15 +122752,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1513" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1541: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1541" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1513" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1541" $at_failed && at_fn_log_failure $at_traceon; } @@ -120561,15 +122771,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1513" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1541: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1541" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1513" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1541" $at_failed && at_fn_log_failure $at_traceon; } @@ -120583,15 +122793,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1517: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1517" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1545: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1545" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1517" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1545" $at_failed && at_fn_log_failure $at_traceon; } @@ -120602,15 +122812,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1518: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1518" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1546" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1518" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1546" $at_failed && at_fn_log_failure $at_traceon; } @@ -120623,11 +122833,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1519: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1547: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1519" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1547" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -120636,14 +122846,14 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_post { drop } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1519" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1547" $at_failed && at_fn_log_failure $at_traceon; } @@ -120662,15 +122872,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1532: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1532" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1560: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1560" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1532" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1560" $at_failed && at_fn_log_failure $at_traceon; } @@ -120681,15 +122891,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1533: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1533" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1561: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1561" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1533" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1561" $at_failed && at_fn_log_failure $at_traceon; } @@ -120700,15 +122910,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1534: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1534" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1562: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1562" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1534" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1562" $at_failed && at_fn_log_failure $at_traceon; } @@ -120719,15 +122929,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1535: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1535" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1563: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1563" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1535" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1563" $at_failed && at_fn_log_failure $at_traceon; } @@ -120738,15 +122948,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1536: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1536" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1564: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1564" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1536" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1564" $at_failed && at_fn_log_failure $at_traceon; } @@ -120757,15 +122967,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1537: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1537" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1565: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1565" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1537" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1565" $at_failed && at_fn_log_failure $at_traceon; } @@ -120777,15 +122987,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1540" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1568: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1568" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1540" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1568" $at_failed && at_fn_log_failure $at_traceon; } @@ -120796,15 +123006,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1541: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1541" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1569: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1569" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1541" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1569" $at_failed && at_fn_log_failure $at_traceon; } @@ -120815,15 +123025,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1542: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule log prefix=\"foobar: \"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1542" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1570: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule log prefix=\"foobar: \"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1570" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule log prefix="foobar: "' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1542" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1570" $at_failed && at_fn_log_failure $at_traceon; } @@ -120835,15 +123045,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1543: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1543" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1571" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1543" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1571" $at_failed && at_fn_log_failure $at_traceon; } @@ -120854,15 +123064,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1543: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1543" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1571" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1543" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1571" $at_failed && at_fn_log_failure $at_traceon; } @@ -120875,15 +123085,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"10.10.0.0/16\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1546" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"10.10.0.0/16\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1574" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="10.10.0.0/16" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1546" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1574" $at_failed && at_fn_log_failure $at_traceon; } @@ -120894,15 +123104,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1547: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 source address=\"10.1.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1547" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1575: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 source address=\"10.1.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1575" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-10 source address="10.1.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1547" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1575" $at_failed && at_fn_log_failure $at_traceon; } @@ -120913,15 +123123,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1548: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-1 source address=\"10.1.0.0/16\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1548" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1576: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-1 source address=\"10.1.0.0/16\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1576" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-1 source address="10.1.0.0/16" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1548" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1576" $at_failed && at_fn_log_failure $at_traceon; } @@ -120932,15 +123142,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1550: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=0 forward-port port=\"222\" protocol=\"tcp\" to-port=\"22\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1550" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1578: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=0 forward-port port=\"222\" protocol=\"tcp\" to-port=\"22\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1578" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=0 forward-port port="222" protocol="tcp" to-port="22"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1550" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1578" $at_failed && at_fn_log_failure $at_traceon; } @@ -120951,15 +123161,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1551: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=0 forward-port port=\"2222\" protocol=\"tcp\" to-port=\"22\" to-addr=\"10.1.1.1\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1551" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1579: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=0 forward-port port=\"2222\" protocol=\"tcp\" to-port=\"22\" to-addr=\"10.1.1.1\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1579" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=0 forward-port port="2222" protocol="tcp" to-port="22" to-addr="10.1.1.1"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1551" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1579" $at_failed && at_fn_log_failure $at_traceon; } @@ -120970,15 +123180,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1552: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 forward-port port=\"8888\" protocol=\"tcp\" to-port=\"80\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1552" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1580: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 forward-port port=\"8888\" protocol=\"tcp\" to-port=\"80\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1580" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-10 forward-port port="8888" protocol="tcp" to-port="80"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1552" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1580" $at_failed && at_fn_log_failure $at_traceon; } @@ -120989,15 +123199,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1553: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 forward-port port=\"8080\" protocol=\"tcp\" to-port=\"80\" to-addr=\"10.1.1.1\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1553" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1581: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 forward-port port=\"8080\" protocol=\"tcp\" to-port=\"80\" to-addr=\"10.1.1.1\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1581" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-10 forward-port port="8080" protocol="tcp" to-port="80" to-addr="10.1.1.1"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1553" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1581" $at_failed && at_fn_log_failure $at_traceon; } @@ -121011,15 +123221,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=0 forward-port port=\"9090\" protocol=\"tcp\" to-port=\"90\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1554" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1582: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=0 forward-port port=\"9090\" protocol=\"tcp\" to-port=\"90\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1582" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" priority=0 forward-port port="9090" protocol="tcp" to-port="90"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1554" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1582" $at_failed && at_fn_log_failure $at_traceon; } @@ -121030,15 +123240,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=-123 forward-port port=\"999\" protocol=\"tcp\" to-port=\"99\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1554" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1582: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=-123 forward-port port=\"999\" protocol=\"tcp\" to-port=\"99\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1582" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" priority=-123 forward-port port="999" protocol="tcp" to-port="99"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1554" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1582" $at_failed && at_fn_log_failure $at_traceon; } @@ -121049,15 +123259,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=-123 forward-port port=\"9999\" protocol=\"tcp\" to-port=\"9999\" to-addr=\"1234::4321\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1554" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1582: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=-123 forward-port port=\"9999\" protocol=\"tcp\" to-port=\"9999\" to-addr=\"1234::4321\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1582" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" priority=-123 forward-port port="9999" protocol="tcp" to-port="9999" to-addr="1234::4321"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1554" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1582" $at_failed && at_fn_log_failure $at_traceon; } @@ -121072,11 +123282,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1559: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1587: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1559" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1587" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121085,7 +123295,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT { ct state established,related accept ct status dnat accept @@ -121097,7 +123307,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1559" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1587" $at_failed && at_fn_log_failure $at_traceon; } @@ -121112,11 +123322,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1599: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1571" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1599" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121125,14 +123335,14 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_pre { ip saddr 10.1.0.0/16 drop } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1571" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1599" $at_failed && at_fn_log_failure $at_traceon; } @@ -121147,11 +123357,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1578: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1606: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1578" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1606" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121160,7 +123370,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -121168,7 +123378,7 @@ ip6 daddr fe80::/64 udp dport 546 accept } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1578" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1606" $at_failed && at_fn_log_failure $at_traceon; } @@ -121183,11 +123393,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1586: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1614: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1586" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1614" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121196,13 +123406,13 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_public_pre { } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1586" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1614" $at_failed && at_fn_log_failure $at_traceon; } @@ -121217,11 +123427,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1592: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1620: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1592" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1620" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121230,13 +123440,13 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_public_allow { } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1592" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1620" $at_failed && at_fn_log_failure $at_traceon; } @@ -121251,11 +123461,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1626: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1598" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1626" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121264,7 +123474,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PRE_public_pre { meta nfproto ipv6 tcp dport 999 redirect to :99 meta nfproto ipv6 tcp dport 9999 dnat ip6 to [1234::4321]:9999 @@ -121274,7 +123484,7 @@ meta nfproto ipv4 tcp dport 8080 dnat ip to 10.1.1.1:80 } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1598" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1626" $at_failed && at_fn_log_failure $at_traceon; } @@ -121289,11 +123499,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1608: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1636: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1608" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1636" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121302,7 +123512,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PRE_public_allow { meta nfproto ipv4 tcp dport 222 redirect to :22 meta nfproto ipv4 tcp dport 2222 dnat ip to 10.1.1.1:22 @@ -121311,7 +123521,7 @@ meta nfproto ipv6 tcp dport 9090 redirect to :90 } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1608" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1636" $at_failed && at_fn_log_failure $at_traceon; } @@ -121326,11 +123536,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1617: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1645: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POST_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1617" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1645" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POST_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121339,14 +123549,14 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POST_public_pre { ip saddr 10.1.1.0/24 oifname != \"lo\" masquerade } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1617" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1645" $at_failed && at_fn_log_failure $at_traceon; } @@ -121361,11 +123571,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1624: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1652: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POST_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1624" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1652" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POST_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121374,14 +123584,14 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POST_public_allow { ip saddr 10.10.0.0/16 oifname != \"lo\" masquerade } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1624" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1652" $at_failed && at_fn_log_failure $at_traceon; } @@ -121396,11 +123606,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1631: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1659: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PRE_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1631" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1659" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PRE_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121409,13 +123619,13 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PRE_public_pre { } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1631" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1659" $at_failed && at_fn_log_failure $at_traceon; } @@ -121430,11 +123640,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1637: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1665: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1637" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1665" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121443,13 +123653,13 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PRE_public_allow { } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1637" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1665" $at_failed && at_fn_log_failure $at_traceon; } @@ -121517,15 +123727,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1692" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1720: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1720" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1692" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1720" $at_failed && at_fn_log_failure $at_traceon; } @@ -121536,15 +123746,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1692" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1720: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1720" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1692" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1720" $at_failed && at_fn_log_failure $at_traceon; } @@ -121557,15 +123767,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1695: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-block name=\"destination-unreachable\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1695" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1723: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-block name=\"destination-unreachable\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1723" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-block name="destination-unreachable"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1695" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1723" $at_failed && at_fn_log_failure $at_traceon; } @@ -121576,15 +123786,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1696: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-block name=\"destination-unreachable\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1696" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1724: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-block name=\"destination-unreachable\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1724" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-block name="destination-unreachable"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1696" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1724" $at_failed && at_fn_log_failure $at_traceon; } @@ -121595,15 +123805,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1698: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-type name=\"echo-request\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1698" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1726: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-type name=\"echo-request\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1726" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-type name="echo-request" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1698" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1726" $at_failed && at_fn_log_failure $at_traceon; } @@ -121614,15 +123824,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1699: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-type name=\"echo-request\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1699" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1727: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-type name=\"echo-request\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1727" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-type name="echo-request" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1699" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1727" $at_failed && at_fn_log_failure $at_traceon; } @@ -121635,11 +123845,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1700: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1728: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1700" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1728" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121648,7 +123858,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_pre { icmp destination-unreachable reject with icmpx admin-prohibited icmpv6 destination-unreachable reject with icmpx admin-prohibited @@ -121658,7 +123868,7 @@ icmpv6 echo-request accept } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1700" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1728" $at_failed && at_fn_log_failure $at_traceon; } @@ -121673,11 +123883,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1710: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1738: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1710" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1738" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121686,7 +123896,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_deny { icmp destination-unreachable reject with icmpx admin-prohibited icmpv6 destination-unreachable reject with icmpx admin-prohibited @@ -121694,7 +123904,7 @@ icmpv6 destination-unreachable reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1710" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1738" $at_failed && at_fn_log_failure $at_traceon; } @@ -121709,11 +123919,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1718: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1746: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1718" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1746" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121722,7 +123932,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -121732,7 +123942,7 @@ icmpv6 echo-request accept } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1718" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1746" $at_failed && at_fn_log_failure $at_traceon; } @@ -121747,11 +123957,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1728: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1756: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1728" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1756" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121760,13 +123970,13 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_public_pre { } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1728" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1756" $at_failed && at_fn_log_failure $at_traceon; } @@ -121781,11 +123991,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1734: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1762: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1734" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1762" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121794,13 +124004,13 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_public_deny { } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1734" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1762" $at_failed && at_fn_log_failure $at_traceon; } @@ -121815,11 +124025,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1740: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1768: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1740" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1768" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -121828,13 +124038,13 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_public_allow { } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1740" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1768" $at_failed && at_fn_log_failure $at_traceon; } @@ -121884,15 +124094,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1781: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1781" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1809: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1809" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1781" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1809" $at_failed && at_fn_log_failure $at_traceon; } @@ -121903,15 +124113,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1781: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1781" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1809: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1809" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1781" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1809" $at_failed && at_fn_log_failure $at_traceon; } @@ -121924,15 +124134,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1784: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=70 service name=\"smtps\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1784" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1812: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=70 service name=\"smtps\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1812" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=70 service name="smtps" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1784" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1812" $at_failed && at_fn_log_failure $at_traceon; } @@ -121943,15 +124153,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1785: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-111 service name=\"ntp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1785" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1813: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-111 service name=\"ntp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1813" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-111 service name="ntp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1785" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1813" $at_failed && at_fn_log_failure $at_traceon; } @@ -121962,15 +124172,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1786: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 port port=\"1111\" protocol=\"tcp\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1786" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1814: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 port port=\"1111\" protocol=\"tcp\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1814" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 port port="1111" protocol="tcp" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1786" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1814" $at_failed && at_fn_log_failure $at_traceon; } @@ -121981,15 +124191,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1787: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-100 port port=\"1111\" protocol=\"tcp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1787" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1815: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-100 port port=\"1111\" protocol=\"tcp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1815" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-100 port port="1111" protocol="tcp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1787" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1815" $at_failed && at_fn_log_failure $at_traceon; } @@ -122000,15 +124210,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1788: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=\"-77\" service name=\"smtp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1788" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1816: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=\"-77\" service name=\"smtp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1816" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority="-77" service name="smtp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1788" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1816" $at_failed && at_fn_log_failure $at_traceon; } @@ -122019,15 +124229,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1789: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=-111 service name=\"ntp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1789" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1817: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=-111 service name=\"ntp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1817" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=-111 service name="ntp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1789" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1817" $at_failed && at_fn_log_failure $at_traceon; } @@ -122038,15 +124248,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1790: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-32768 source address=\"10.0.0.0/8\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1790" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1818: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-32768 source address=\"10.0.0.0/8\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1818" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-32768 source address="10.0.0.0/8" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1790" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1818" $at_failed && at_fn_log_failure $at_traceon; } @@ -122057,15 +124267,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1791: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-2 source address=\"10.0.0.0/8\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1791" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1819: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-2 source address=\"10.0.0.0/8\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1819" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-2 source address="10.0.0.0/8" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1791" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1819" $at_failed && at_fn_log_failure $at_traceon; } @@ -122076,15 +124286,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1792: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-1 source address=\"10.0.0.0/8\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1792" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1820: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-1 source address=\"10.0.0.0/8\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1820" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-1 source address="10.0.0.0/8" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1792" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1820" $at_failed && at_fn_log_failure $at_traceon; } @@ -122095,15 +124305,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1793: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-5 source address=\"10.10.10.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1793" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1821: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-5 source address=\"10.10.10.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1821" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-5 source address="10.10.10.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1793" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1821" $at_failed && at_fn_log_failure $at_traceon; } @@ -122114,15 +124324,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1794: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-3 source address=\"10.100.100.0/24\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1794" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-3 source address=\"10.100.100.0/24\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1822" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-3 source address="10.100.100.0/24" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1794" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1822" $at_failed && at_fn_log_failure $at_traceon; } @@ -122133,15 +124343,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1795: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1795" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1823: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1823" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1795" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1823" $at_failed && at_fn_log_failure $at_traceon; } @@ -122152,15 +124362,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1796: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=125 service name=\"imap\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1796" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1824: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=125 service name=\"imap\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1824" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=125 service name="imap" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1796" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1824" $at_failed && at_fn_log_failure $at_traceon; } @@ -122171,15 +124381,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1797: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=126 log prefix=\"DROPPED: \"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1797" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1825: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=126 log prefix=\"DROPPED: \"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1825" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=126 log prefix="DROPPED: "' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1797" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1825" $at_failed && at_fn_log_failure $at_traceon; } @@ -122190,15 +124400,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1798: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=10 service name=\"ssh\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1798" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1826: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=10 service name=\"ssh\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1826" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=10 service name="ssh" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1798" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1826" $at_failed && at_fn_log_failure $at_traceon; } @@ -122209,15 +124419,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1799: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=1 service name=\"http\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1799" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1827: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=1 service name=\"http\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1827" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=1 service name="http" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1799" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1827" $at_failed && at_fn_log_failure $at_traceon; } @@ -122228,15 +124438,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1800: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=100 service name=\"https\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1800" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=100 service name=\"https\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1828" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=100 service name="https" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1800" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1828" $at_failed && at_fn_log_failure $at_traceon; } @@ -122247,15 +124457,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1801: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=5 service name=\"https\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1801" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1829: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=5 service name=\"https\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1829" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=5 service name="https" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1801" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1829" $at_failed && at_fn_log_failure $at_traceon; } @@ -122266,15 +124476,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1802: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=66 service name=\"smtp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1802" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1830: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=66 service name=\"smtp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1830" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=66 service name="smtp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1802" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1830" $at_failed && at_fn_log_failure $at_traceon; } @@ -122285,15 +124495,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1803: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=66 service name=\"smtp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1803" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1831: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=66 service name=\"smtp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1831" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=66 service name="smtp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1803" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1831" $at_failed && at_fn_log_failure $at_traceon; } @@ -122304,15 +124514,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1804: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=70 service name=\"smtps\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1804" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1832: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=70 service name=\"smtps\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1832" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=70 service name="smtps" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1804" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1832" $at_failed && at_fn_log_failure $at_traceon; } @@ -122323,15 +124533,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=5 service name=\"https\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1805" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1833: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=5 service name=\"https\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1833" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=5 service name="https" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1805" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1833" $at_failed && at_fn_log_failure $at_traceon; } @@ -122342,15 +124552,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1806: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=\"-77\" service name=\"smtp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1806" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1834: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=\"-77\" service name=\"smtp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1834" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority="-77" service name="smtp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1806" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1834" $at_failed && at_fn_log_failure $at_traceon; } @@ -122361,15 +124571,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1807: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" priority=-3 source address=\"10.100.100.0/24\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1807" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1835: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" priority=-3 source address=\"10.100.100.0/24\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1835" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" priority=-3 source address="10.100.100.0/24" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1807" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1835" $at_failed && at_fn_log_failure $at_traceon; } @@ -122382,11 +124592,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1808: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1836: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1808" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1836" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -122395,7 +124605,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_pre { ip saddr 10.0.0.0/8 log tcp dport 1111 log @@ -122407,7 +124617,7 @@ ip saddr 10.0.0.0/8 drop } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1808" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1836" $at_failed && at_fn_log_failure $at_traceon; } @@ -122422,11 +124632,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1820: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1848: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1820" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1848" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -122435,7 +124645,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -122443,7 +124653,7 @@ ip6 daddr fe80::/64 udp dport 546 accept } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1820" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1848" $at_failed && at_fn_log_failure $at_traceon; } @@ -122458,11 +124668,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1856: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1828" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1856" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -122471,13 +124681,13 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_deny { } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1828" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1856" $at_failed && at_fn_log_failure $at_traceon; } @@ -122492,11 +124702,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1834: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1862: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1834" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1862" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -122505,13 +124715,13 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_log { } } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1834" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1862" $at_failed && at_fn_log_failure $at_traceon; } @@ -122526,11 +124736,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1840: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1868: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1840" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1868" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -122539,7 +124749,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_post { tcp dport 80 accept tcp dport 22 accept @@ -122551,7 +124761,7 @@ drop } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1840" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1868" $at_failed && at_fn_log_failure $at_traceon; } @@ -122594,15 +124804,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1895: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --runtime-to-permanent " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1895" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1923: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --runtime-to-permanent " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1923" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1895" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1923" $at_failed && at_fn_log_failure $at_traceon; } @@ -122614,15 +124824,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1896: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1896" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1924: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1924" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1896" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1924" $at_failed && at_fn_log_failure $at_traceon; } @@ -122633,15 +124843,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1896: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1896" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1924: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1924" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1896" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1924" $at_failed && at_fn_log_failure $at_traceon; } @@ -122654,15 +124864,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1900: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 service name=\"http\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1900" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1928: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 service name=\"http\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1928" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 service name="http" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1900" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1928" $at_failed && at_fn_log_failure $at_traceon; } @@ -122673,14 +124883,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1901: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1901" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1929: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1929" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default, active) +echo >>"$at_stdout"; printf "%s\n" "public (default, active) target: default ingress-priority: 0 egress-priority: 0 @@ -122711,7 +124921,7 @@ rule priority=\"126\" log prefix=\"DROPPED: \" rule priority=\"127\" drop " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1901" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1929" $at_failed && at_fn_log_failure $at_traceon; } @@ -122722,9 +124932,9 @@ $at_traceon; } if test x"-e '/INVALID_RULE: no element, no source, no destination/d' -e '/INVALID_RULE: no element, no action/d' -e '/ERROR: INVALID_PRIORITY: /d' -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1933" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1961" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/INVALID_RULE: no element, no source, no destination/d' -e '/INVALID_RULE: no element, no action/d' -e '/ERROR: INVALID_PRIORITY: /d' -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1933" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1961" fi @@ -122733,13 +124943,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_101 -#AT_START_102 -at_fn_group_banner 102 'firewall-cmd.at:1938' \ +#AT_STOP_108 +#AT_START_109 +at_fn_group_banner 109 'firewall-cmd.at:1966' \ "rich rules bad" " " 4 at_xfail=no ( - $as_echo "102. $at_setup_line: testing $at_desc ..." + printf "%s\n" "109. $at_setup_line: testing $at_desc ..." $at_traceon @@ -122757,6 +124967,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -122773,29 +124984,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1938" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1938" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1966" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" $at_failed && at_fn_log_failure $at_traceon; } @@ -122803,15 +125014,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1938" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1966" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" $at_failed && at_fn_log_failure $at_traceon; } @@ -122867,15 +125078,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1938" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" $at_failed && at_fn_log_failure $at_traceon; } @@ -122958,8 +125169,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1938" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1938" + printf "%s\n" "firewall-cmd.at:1966" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1966" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -122977,15 +125188,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1938" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" $at_failed && at_fn_log_failure $at_traceon; } @@ -122998,15 +125209,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1938" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1966" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" $at_failed && at_fn_log_failure $at_traceon; } @@ -123015,30 +125226,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1938" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1938" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" $at_failed && at_fn_log_failure $at_traceon; } @@ -123047,7 +125258,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -123055,8 +125266,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1938" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1938" + printf "%s\n" "firewall-cmd.at:1966" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1966" fi echo "$!" > firewalld.pid @@ -123072,9 +125283,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1938" fi sleep 1 done - $as_echo "firewall-cmd.at:1938" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1966" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1938" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1966" @@ -123086,15 +125297,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1938" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1945: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1945" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1973: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1973" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1945" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1973" $at_failed && at_fn_log_failure $at_traceon; } @@ -123105,15 +125316,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1945: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1945" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1973: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1973" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1945" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1973" $at_failed && at_fn_log_failure $at_traceon; } @@ -123125,15 +125336,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1946: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='name=\"dns\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1946" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1974: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='name=\"dns\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1974" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='name="dns" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1946" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1974" $at_failed && at_fn_log_failure $at_traceon; } @@ -123144,15 +125355,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1946: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='name=\"dns\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1946" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1974: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='name=\"dns\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1974" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='name="dns" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1946" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1974" $at_failed && at_fn_log_failure $at_traceon; } @@ -123164,15 +125375,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1947" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1975: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1975" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1947" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1975" $at_failed && at_fn_log_failure $at_traceon; } @@ -123183,15 +125394,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1947" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1975: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1975" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1947" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1975" $at_failed && at_fn_log_failure $at_traceon; } @@ -123203,15 +125414,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1948: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1948" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1976: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1976" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="ah" reject type="icmp-host-prohibited"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1948" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1976" $at_failed && at_fn_log_failure $at_traceon; } @@ -123222,15 +125433,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1948: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1948" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1976: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1976" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="ah" reject type="icmp-host-prohibited"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1948" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1976" $at_failed && at_fn_log_failure $at_traceon; } @@ -123242,15 +125453,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1949: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1949" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1977: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1977" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" protocol value="ah" reject type="dummy"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1949" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1977" $at_failed && at_fn_log_failure $at_traceon; } @@ -123261,15 +125472,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1949: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1949" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1977: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1977" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" protocol value="ah" reject type="dummy"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1949" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1977" $at_failed && at_fn_log_failure $at_traceon; } @@ -123281,15 +125492,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1950: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1950" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1978: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1978" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1950" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1978" $at_failed && at_fn_log_failure $at_traceon; } @@ -123300,15 +125511,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1950: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1950" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1978: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1978" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1950" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1978" $at_failed && at_fn_log_failure $at_traceon; } @@ -123320,15 +125531,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1951: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule bad_element' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1951" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1979: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule bad_element' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1979" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule bad_element' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1951" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1979" $at_failed && at_fn_log_failure $at_traceon; } @@ -123339,15 +125550,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1951: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule bad_element' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1951" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1979: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule bad_element' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1979" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule bad_element' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1951" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1979" $at_failed && at_fn_log_failure $at_traceon; } @@ -123359,15 +125570,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1952: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv5\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1952" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv5\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1980" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv5"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1952" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1980" $at_failed && at_fn_log_failure $at_traceon; } @@ -123378,15 +125589,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1952: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv5\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1952" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv5\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1980" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv5"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1952" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1980" $at_failed && at_fn_log_failure $at_traceon; } @@ -123398,15 +125609,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1953: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule name=\"dns\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1953" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1981: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule name=\"dns\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule name="dns" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1953" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1981" $at_failed && at_fn_log_failure $at_traceon; } @@ -123417,15 +125628,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1953: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule name=\"dns\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1953" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1981: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule name=\"dns\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule name="dns" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1953" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1981" $at_failed && at_fn_log_failure $at_traceon; } @@ -123437,15 +125648,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1954: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol=\"ah\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1954" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1982: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol=\"ah\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1982" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol="ah" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1954" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1982" $at_failed && at_fn_log_failure $at_traceon; } @@ -123456,15 +125667,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1954: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol=\"ah\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1954" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1982: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol=\"ah\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1982" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol="ah" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1954" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1982" $at_failed && at_fn_log_failure $at_traceon; } @@ -123476,15 +125687,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1955: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" accept drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1955" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1983: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" accept drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1983" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="ah" accept drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1955" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1983" $at_failed && at_fn_log_failure $at_traceon; } @@ -123495,15 +125706,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1955: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" accept drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1955" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1983: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" accept drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1983" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="ah" accept drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1955" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1983" $at_failed && at_fn_log_failure $at_traceon; } @@ -123515,15 +125726,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1956: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1956" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1984: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1984" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service name="radius" port port="4011" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1956" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1984" $at_failed && at_fn_log_failure $at_traceon; } @@ -123534,15 +125745,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1956: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1956" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1984: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1984" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name="radius" port port="4011" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1956" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1984" $at_failed && at_fn_log_failure $at_traceon; } @@ -123554,15 +125765,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1957: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service bad_attribute=\"dns\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1957" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service bad_attribute=\"dns\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1985" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service bad_attribute="dns"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1957" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1985" $at_failed && at_fn_log_failure $at_traceon; } @@ -123573,15 +125784,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1957: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service bad_attribute=\"dns\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1957" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service bad_attribute=\"dns\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1985" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service bad_attribute="dns"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1957" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1985" $at_failed && at_fn_log_failure $at_traceon; } @@ -123593,15 +125804,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1958: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1958" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1986: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1986" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="igmp" log level="eror"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:1958" +at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:1986" $at_failed && at_fn_log_failure $at_traceon; } @@ -123612,15 +125823,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1958: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1958" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1986: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1986" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="igmp" log level="eror"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:1958" +at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:1986" $at_failed && at_fn_log_failure $at_traceon; } @@ -123635,15 +125846,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='family=\"ipv6\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='family=\"ipv6\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='family="ipv6" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1987" $at_failed && at_fn_log_failure $at_traceon; } @@ -123654,15 +125865,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='family=\"ipv6\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='family=\"ipv6\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='family="ipv6" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1987" $at_failed && at_fn_log_failure $at_traceon; } @@ -123674,15 +125885,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 207 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 207 $at_status "$at_srcdir/firewall-cmd.at:1987" $at_failed && at_fn_log_failure $at_traceon; } @@ -123693,15 +125904,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 207 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 207 $at_status "$at_srcdir/firewall-cmd.at:1987" $at_failed && at_fn_log_failure $at_traceon; } @@ -123713,15 +125924,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:1987" $at_failed && at_fn_log_failure $at_traceon; } @@ -123732,15 +125943,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:1987" $at_failed && at_fn_log_failure $at_traceon; } @@ -123754,15 +125965,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1964: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"esp\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1964" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1992: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"esp\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1992" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="esp"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1964" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1992" $at_failed && at_fn_log_failure $at_traceon; } @@ -123773,15 +125984,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1964: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"esp\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1964" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1992: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"esp\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1992" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="esp"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1964" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1992" $at_failed && at_fn_log_failure $at_traceon; } @@ -123793,15 +126004,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1965: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" masquerade drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1965" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" masquerade drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1993" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" masquerade drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1965" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1993" $at_failed && at_fn_log_failure $at_traceon; } @@ -123812,15 +126023,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1965: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" masquerade drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1965" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" masquerade drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1993" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" masquerade drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1965" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1993" $at_failed && at_fn_log_failure $at_traceon; } @@ -123832,15 +126043,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1966: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1994: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1994" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" icmp-block name="redirect" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1966" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1994" $at_failed && at_fn_log_failure $at_traceon; } @@ -123851,15 +126062,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1966: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1994: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1994" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" icmp-block name="redirect" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1966" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1994" $at_failed && at_fn_log_failure $at_traceon; } @@ -123871,15 +126082,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1967: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1967" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1995: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1995" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="2222" to-port="22" protocol="tcp" family="ipv4" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1967" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1995" $at_failed && at_fn_log_failure $at_traceon; } @@ -123890,15 +126101,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1967: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1967" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1995: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1995" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="2222" to-port="22" protocol="tcp" family="ipv4" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1967" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1995" $at_failed && at_fn_log_failure $at_traceon; } @@ -123910,15 +126121,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1968: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1968" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1996: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1996" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service name="ssh" log prefix="RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:1968" +at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:1996" $at_failed && at_fn_log_failure $at_traceon; } @@ -123929,15 +126140,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1968: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1968" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1996: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1996" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name="ssh" log prefix="RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:1968" +at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:1996" $at_failed && at_fn_log_failure $at_traceon; } @@ -123949,15 +126160,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1969: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1969" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1997: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1997" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="sctp" nflog group=-1 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:1969" +at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:1997" $at_failed && at_fn_log_failure $at_traceon; } @@ -123968,15 +126179,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1969: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1969" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1997: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1997" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="sctp" nflog group=-1 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:1969" +at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:1997" $at_failed && at_fn_log_failure $at_traceon; } @@ -123988,15 +126199,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1970: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1970" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1998: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1998" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" service name="https" nflog queue-size=-1 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1970" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1998" $at_failed && at_fn_log_failure $at_traceon; } @@ -124007,15 +126218,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1970: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1970" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1998: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1998" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" service name="https" nflog queue-size=-1 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1970" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1998" $at_failed && at_fn_log_failure $at_traceon; } @@ -124027,15 +126238,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1971: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1971" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1999: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1999" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" service name="https" nflog queue-size=65536 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1971" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1999" $at_failed && at_fn_log_failure $at_traceon; } @@ -124046,15 +126257,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1971: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1971" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1999: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1999" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" service name="https" nflog queue-size=65536 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1971" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1999" $at_failed && at_fn_log_failure $at_traceon; } @@ -124065,9 +126276,9 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_RULE:/d' -e '/ERROR: INVALID_LOG_LEVEL: eror/d' -e '/ERROR: MISSING_FAMILY/d' -e '/ERROR: INVALID_LIMIT: 1\/2m/d' -e '/ERROR: INVALID_LOG_PREFIX:/d' -e '/ERROR: INVALID_NFLOG_GROUP:/d' -e '/ERROR: INVALID_NFLOG_QUEUE:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1973" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:2001" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_RULE:/d' -e '/ERROR: INVALID_LOG_LEVEL: eror/d' -e '/ERROR: MISSING_FAMILY/d' -e '/ERROR: INVALID_LIMIT: 1\/2m/d' -e '/ERROR: INVALID_LOG_PREFIX:/d' -e '/ERROR: INVALID_NFLOG_GROUP:/d' -e '/ERROR: INVALID_NFLOG_QUEUE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1973" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:2001" fi @@ -124076,13 +126287,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_102 -#AT_START_103 -at_fn_group_banner 103 'firewall-cmd.at:1981' \ +#AT_STOP_109 +#AT_START_110 +at_fn_group_banner 110 'firewall-cmd.at:2009' \ "config validation" " " 4 at_xfail=no ( - $as_echo "103. $at_setup_line: testing $at_desc ..." + printf "%s\n" "110. $at_setup_line: testing $at_desc ..." $at_traceon @@ -124100,6 +126311,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -124116,29 +126328,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2009" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:2009" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" $at_failed && at_fn_log_failure $at_traceon; } @@ -124146,15 +126358,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:2009" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" $at_failed && at_fn_log_failure $at_traceon; } @@ -124210,15 +126422,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2009" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" $at_failed && at_fn_log_failure $at_traceon; } @@ -124301,8 +126513,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1981" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1981" + printf "%s\n" "firewall-cmd.at:2009" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:2009" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -124320,15 +126532,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2009" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" $at_failed && at_fn_log_failure $at_traceon; } @@ -124341,15 +126553,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:2009" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" $at_failed && at_fn_log_failure $at_traceon; } @@ -124358,30 +126570,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2009" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2009" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" $at_failed && at_fn_log_failure $at_traceon; } @@ -124390,7 +126602,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -124398,8 +126610,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1981" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1981" + printf "%s\n" "firewall-cmd.at:2009" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:2009" fi echo "$!" > firewalld.pid @@ -124415,9 +126627,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1981" fi sleep 1 done - $as_echo "firewall-cmd.at:1981" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:2009" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1981" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:2009" @@ -124427,15 +126639,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1981" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1985" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2013" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1985" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2013" $at_failed && at_fn_log_failure $at_traceon; } @@ -124465,15 +126677,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2003: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2003" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2031" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2003" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2031" $at_failed && at_fn_log_failure $at_traceon; } @@ -124484,15 +126696,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2003: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2003" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2031" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2003" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2031" $at_failed && at_fn_log_failure $at_traceon; } @@ -124504,15 +126716,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2004: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2004" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2032: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2032" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2004" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2032" $at_failed && at_fn_log_failure $at_traceon; } @@ -124522,28 +126734,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2009: cp ./firewalld.conf ./firewalld.conf.orig" -at_fn_check_prepare_trace "firewall-cmd.at:2009" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2037: cp ./firewalld.conf ./firewalld.conf.orig" +at_fn_check_prepare_trace "firewall-cmd.at:2037" ( $at_check_trace; cp ./firewalld.conf ./firewalld.conf.orig ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2037" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2010: echo \"SomeBogusField=yes\" >> ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:2010" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2038: echo \"SomeBogusField=yes\" >> ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:2038" ( $at_check_trace; echo "SomeBogusField=yes" >> ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2010" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2038" $at_failed && at_fn_log_failure $at_traceon; } @@ -124551,15 +126763,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2011: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2011" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2039: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2039" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2011" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2039" $at_failed && at_fn_log_failure $at_traceon; } @@ -124567,15 +126779,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2016: cp ./firewalld.conf.orig ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:2016" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2044: cp ./firewalld.conf.orig ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:2044" ( $at_check_trace; cp ./firewalld.conf.orig ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2016" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2044" $at_failed && at_fn_log_failure $at_traceon; } @@ -124591,15 +126803,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2025: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2025" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2053" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2025" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2053" $at_failed && at_fn_log_failure $at_traceon; } @@ -124618,15 +126830,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2033: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2033" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2061: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2061" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2033" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2061" $at_failed && at_fn_log_failure $at_traceon; } @@ -124634,15 +126846,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2034: rm ./direct.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2034" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2062: rm ./direct.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2062" ( $at_check_trace; rm ./direct.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2034" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2062" $at_failed && at_fn_log_failure $at_traceon; } @@ -124658,15 +126870,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2043: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2043" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2071: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2071" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2043" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2071" $at_failed && at_fn_log_failure $at_traceon; } @@ -124685,15 +126897,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2051" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2079: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2079" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2051" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2079" $at_failed && at_fn_log_failure $at_traceon; } @@ -124712,15 +126924,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2059: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2059" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2087: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2087" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2059" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2087" $at_failed && at_fn_log_failure $at_traceon; } @@ -124728,29 +126940,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2060: rm ./lockdown-whitelist.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2060" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2088: rm ./lockdown-whitelist.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2088" ( $at_check_trace; rm ./lockdown-whitelist.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2060" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2088" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2063: mkdir -p ./ipsets" -at_fn_check_prepare_trace "firewall-cmd.at:2063" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2091: mkdir -p ./ipsets" +at_fn_check_prepare_trace "firewall-cmd.at:2091" ( $at_check_trace; mkdir -p ./ipsets ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2063" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2091" $at_failed && at_fn_log_failure $at_traceon; } @@ -124765,15 +126977,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2070: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2070" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2098: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2098" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2070" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2098" $at_failed && at_fn_log_failure $at_traceon; } @@ -124792,15 +127004,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2082: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2082" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2110" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2082" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2110" $at_failed && at_fn_log_failure $at_traceon; } @@ -124818,15 +127030,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2089: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2089" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2117" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 119 $at_status "$at_srcdir/firewall-cmd.at:2089" +at_fn_check_status 119 $at_status "$at_srcdir/firewall-cmd.at:2117" $at_failed && at_fn_log_failure $at_traceon; } @@ -124834,15 +127046,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2090: rm ./ipsets/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2090" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2118: rm ./ipsets/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2118" ( $at_check_trace; rm ./ipsets/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2090" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2118" $at_failed && at_fn_log_failure $at_traceon; } @@ -124861,15 +127073,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2101" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2129" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 135 $at_status "$at_srcdir/firewall-cmd.at:2101" +at_fn_check_status 135 $at_status "$at_srcdir/firewall-cmd.at:2129" $at_failed && at_fn_log_failure $at_traceon; } @@ -124877,29 +127089,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2102: rm ./ipsets/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2102" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2130: rm ./ipsets/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2130" ( $at_check_trace; rm ./ipsets/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2102" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2130" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2105: mkdir -p ./helpers" -at_fn_check_prepare_trace "firewall-cmd.at:2105" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2133: mkdir -p ./helpers" +at_fn_check_prepare_trace "firewall-cmd.at:2133" ( $at_check_trace; mkdir -p ./helpers ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2105" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2133" $at_failed && at_fn_log_failure $at_traceon; } @@ -124913,15 +127125,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2111" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2139" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2111" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2139" $at_failed && at_fn_log_failure $at_traceon; } @@ -124939,15 +127151,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2118" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2146" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2118" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2146" $at_failed && at_fn_log_failure $at_traceon; } @@ -124969,15 +127181,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2120" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2148" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2120" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2148" $at_failed && at_fn_log_failure $at_traceon; } @@ -124987,29 +127199,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2129: rm ./helpers/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2129" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2157: rm ./helpers/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2157" ( $at_check_trace; rm ./helpers/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2129" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2157" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2132: mkdir -p ./icmptypes" -at_fn_check_prepare_trace "firewall-cmd.at:2132" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2160: mkdir -p ./icmptypes" +at_fn_check_prepare_trace "firewall-cmd.at:2160" ( $at_check_trace; mkdir -p ./icmptypes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2132" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2160" $at_failed && at_fn_log_failure $at_traceon; } @@ -125024,15 +127236,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2139" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2167" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2139" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2167" $at_failed && at_fn_log_failure $at_traceon; } @@ -125051,15 +127263,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2147" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2175: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2175" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2147" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2175" $at_failed && at_fn_log_failure $at_traceon; } @@ -125067,29 +127279,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2148: rm ./icmptypes/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2148" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2176: rm ./icmptypes/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2176" ( $at_check_trace; rm ./icmptypes/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2148" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2176" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2151: mkdir -p ./services" -at_fn_check_prepare_trace "firewall-cmd.at:2151" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2179: mkdir -p ./services" +at_fn_check_prepare_trace "firewall-cmd.at:2179" ( $at_check_trace; mkdir -p ./services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2151" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2179" $at_failed && at_fn_log_failure $at_traceon; } @@ -125104,15 +127316,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2158" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2186: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2186" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2158" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2186" $at_failed && at_fn_log_failure $at_traceon; } @@ -125131,15 +127343,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2166" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2194: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2194" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2166" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2194" $at_failed && at_fn_log_failure $at_traceon; } @@ -125158,15 +127370,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2174" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2202" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2174" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2202" $at_failed && at_fn_log_failure $at_traceon; } @@ -125185,15 +127397,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2182" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2210: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2210" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2182" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2210" $at_failed && at_fn_log_failure $at_traceon; } @@ -125212,15 +127424,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2190" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2218" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2190" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2218" $at_failed && at_fn_log_failure $at_traceon; } @@ -125239,15 +127451,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2198: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2198" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2226" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2198" +at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2226" $at_failed && at_fn_log_failure $at_traceon; } @@ -125267,15 +127479,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2207: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2207" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2235" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2207" +at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2235" $at_failed && at_fn_log_failure $at_traceon; } @@ -125294,15 +127506,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2215: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2215" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2243" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2215" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2243" $at_failed && at_fn_log_failure $at_traceon; } @@ -125310,29 +127522,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2216: rm ./services/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2216" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2244: rm ./services/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2244" ( $at_check_trace; rm ./services/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2216" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2244" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2219: mkdir -p ./zones" -at_fn_check_prepare_trace "firewall-cmd.at:2219" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2247: mkdir -p ./zones" +at_fn_check_prepare_trace "firewall-cmd.at:2247" ( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2219" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2247" $at_failed && at_fn_log_failure $at_traceon; } @@ -125344,15 +127556,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2223" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2251" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/firewall-cmd.at:2223" +at_fn_check_status 112 $at_status "$at_srcdir/firewall-cmd.at:2251" $at_failed && at_fn_log_failure $at_traceon; } @@ -125371,15 +127583,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2231" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2259" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/firewall-cmd.at:2231" +at_fn_check_status 101 $at_status "$at_srcdir/firewall-cmd.at:2259" $at_failed && at_fn_log_failure $at_traceon; } @@ -125398,15 +127610,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2239" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2267" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2239" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2267" $at_failed && at_fn_log_failure $at_traceon; } @@ -125425,15 +127637,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2247: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2247" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2275: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2275" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2247" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2275" $at_failed && at_fn_log_failure $at_traceon; } @@ -125452,15 +127664,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2255" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2283" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2255" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2283" $at_failed && at_fn_log_failure $at_traceon; } @@ -125479,15 +127691,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2263" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2291" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2263" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2291" $at_failed && at_fn_log_failure $at_traceon; } @@ -125506,15 +127718,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2271" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2299" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2271" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2299" $at_failed && at_fn_log_failure $at_traceon; } @@ -125533,15 +127745,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2279" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2307" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2279" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2307" $at_failed && at_fn_log_failure $at_traceon; } @@ -125560,15 +127772,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2287" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2315: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2315" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2287" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2315" $at_failed && at_fn_log_failure $at_traceon; } @@ -125587,15 +127799,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2295" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2323" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2295" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2323" $at_failed && at_fn_log_failure $at_traceon; } @@ -125614,15 +127826,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2303" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2331: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2331" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2303" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2331" $at_failed && at_fn_log_failure $at_traceon; } @@ -125641,15 +127853,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2311: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2311" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2339: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2339" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2311" +at_fn_check_status 144 $at_status "$at_srcdir/firewall-cmd.at:2339" $at_failed && at_fn_log_failure $at_traceon; } @@ -125671,15 +127883,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2326: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2326" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2350" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2326" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2350" $at_failed && at_fn_log_failure $at_traceon; } @@ -125703,15 +127915,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2339: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2339" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2363" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2339" +at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:2363" $at_failed && at_fn_log_failure $at_traceon; } @@ -125733,15 +127945,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2354" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2354" +at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:2374" $at_failed && at_fn_log_failure $at_traceon; } @@ -125763,15 +127975,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2369" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2385" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2369" +at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:2385" $at_failed && at_fn_log_failure $at_traceon; } @@ -125793,15 +128005,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2384: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2384" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2396" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2384" +at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:2396" $at_failed && at_fn_log_failure $at_traceon; } @@ -125823,15 +128035,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2399: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2399" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2407" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2399" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:2407" $at_failed && at_fn_log_failure $at_traceon; } @@ -125853,15 +128065,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2414: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2414" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2418: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2418" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2414" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2418" $at_failed && at_fn_log_failure $at_traceon; } @@ -125886,15 +128098,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2416: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2416" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2420: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2420" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2416" +at_fn_check_status 105 $at_status "$at_srcdir/firewall-cmd.at:2420" $at_failed && at_fn_log_failure $at_traceon; } @@ -125904,7 +128116,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2432: rm ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/firewall-cmd.at:2432: rm ./zones/foobar.xml" at_fn_check_prepare_trace "firewall-cmd.at:2432" ( $at_check_trace; rm ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -125920,7 +128132,7 @@ $at_traceon; } if test x"-e '/ERROR:/d' -e '/WARNING:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:2434" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:2434" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR:/d' -e '/WARNING:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:2434" fi @@ -125931,13 +128143,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_103 -#AT_START_104 -at_fn_group_banner 104 'rhbz1514043.at:1' \ +#AT_STOP_110 +#AT_START_111 +at_fn_group_banner 111 'rhbz1514043.at:1' \ "--set-log-denied does not zero config" " " 5 at_xfail=no ( - $as_echo "104. $at_setup_line: testing $at_desc ..." + printf "%s\n" "111. $at_setup_line: testing $at_desc ..." $at_traceon @@ -125955,6 +128167,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -125971,7 +128184,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -125985,7 +128198,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1514043.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126001,7 +128214,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1514043.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126065,7 +128278,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126156,7 +128369,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1514043.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1514043.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -126175,7 +128388,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126196,7 +128409,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1514043.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126213,7 +128426,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126228,7 +128441,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126245,7 +128458,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -126253,7 +128466,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1514043.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1514043.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" fi echo "$!" > firewalld.pid @@ -126270,7 +128483,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" fi sleep 1 done - $as_echo "rhbz1514043.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1514043.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" @@ -126282,7 +128495,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" { set +x -$as_echo "$at_srcdir/rhbz1514043.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=all " +printf "%s\n" "$at_srcdir/rhbz1514043.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=all " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --set-log-denied=all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126301,7 +128514,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1514043.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-service=samba " +printf "%s\n" "$at_srcdir/rhbz1514043.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-service=samba " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-service=samba ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126321,7 +128534,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1514043.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1514043.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126340,7 +128553,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1514043.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1514043.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126360,14 +128573,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1514043.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^services " +printf "%s\n" "$at_srcdir/rhbz1514043.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^services " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "services: dhcpv6-client samba ssh +echo >>"$at_stdout"; printf "%s\n" "services: dhcpv6-client samba ssh " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:7" @@ -126384,7 +128597,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1514043.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1514043.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -126397,7 +128610,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT { ct state established,related accept ct status dnat accept @@ -126426,7 +128639,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1514043.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1514043.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -126439,7 +128652,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD { ct state established,related accept ct status dnat accept @@ -126480,7 +128693,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1514043.at:84" >"$at_check_line_file" + printf "%s\n" "rhbz1514043.at:84" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:84" fi @@ -126491,13 +128704,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_104 -#AT_START_105 -at_fn_group_banner 105 'rhbz1498923.at:1' \ +#AT_STOP_111 +#AT_START_112 +at_fn_group_banner 112 'rhbz1498923.at:1' \ "invalid direct rule causes reload error" " " 5 at_xfail=no ( - $as_echo "105. $at_setup_line: testing $at_desc ..." + printf "%s\n" "112. $at_setup_line: testing $at_desc ..." $at_traceon @@ -126515,6 +128728,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -126531,7 +128745,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126545,7 +128759,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1498923.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126561,7 +128775,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1498923.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126625,7 +128839,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126716,7 +128930,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1498923.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1498923.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -126735,7 +128949,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126756,7 +128970,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1498923.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126773,7 +128987,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126788,7 +129002,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126805,7 +129019,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -126813,7 +129027,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1498923.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1498923.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" fi echo "$!" > firewalld.pid @@ -126830,7 +129044,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" fi sleep 1 done - $as_echo "rhbz1498923.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1498923.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" @@ -126839,14 +129053,14 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" - $as_echo "rhbz1498923.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1498923.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1498923.at:3" { set +x -$as_echo "$at_srcdir/rhbz1498923.at:6: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1498923.at:6: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1498923.at:6" ( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126863,7 +129077,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1498923.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126882,7 +129096,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1498923.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126902,7 +129116,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 " +printf "%s\n" "$at_srcdir/rhbz1498923.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126921,14 +129135,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " +printf "%s\n" "$at_srcdir/rhbz1498923.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:9" @@ -126943,7 +129157,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1498923.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126962,7 +129176,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1498923.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -126982,13 +129196,13 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " +printf "%s\n" "$at_srcdir/rhbz1498923.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "no zone +echo >>"$at_stderr"; printf "%s\n" "no zone " | \ $at_diff - "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: @@ -127001,7 +129215,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:18: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1498923.at:18: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1498923.at:18" ( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127018,7 +129232,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1498923.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127037,7 +129251,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1498923.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127058,7 +129272,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 8080 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1498923.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 8080 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 8080 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127077,7 +129291,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 1 --a-bogus-flag " +printf "%s\n" "$at_srcdir/rhbz1498923.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 1 --a-bogus-flag " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:22" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 1 --a-bogus-flag ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127097,7 +129311,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 " +printf "%s\n" "$at_srcdir/rhbz1498923.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127116,7 +129330,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --add-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1498923.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --add-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --direct --add-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127137,7 +129351,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1498923.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127156,7 +129370,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1498923.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127176,13 +129390,13 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " +printf "%s\n" "$at_srcdir/rhbz1498923.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:29" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "failed +echo >>"$at_stderr"; printf "%s\n" "failed " | \ $at_diff - "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" @@ -127198,14 +129412,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " +printf "%s\n" "$at_srcdir/rhbz1498923.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:33" @@ -127219,7 +129433,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1498923.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:36" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127242,7 +129456,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rhbz1498923.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter INPUT 1 --a-bogus-flag" +printf "%s\n" "$at_srcdir/rhbz1498923.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter INPUT 1 --a-bogus-flag" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter INPUT 1 --a-bogus-flag" "rhbz1498923.at:39" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter INPUT 1 --a-bogus-flag ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127260,7 +129474,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1498923.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:40" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127279,7 +129493,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1498923.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:40" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127300,14 +129514,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " +printf "%s\n" "$at_srcdir/rhbz1498923.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:43" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "public " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:43" @@ -127321,7 +129535,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1498923.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:46" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127339,7 +129553,7 @@ $at_traceon; } if test x"-e '/.*a-bogus-flag.*/d'" != x"ignore"; then - $as_echo "rhbz1498923.at:47" >"$at_check_line_file" + printf "%s\n" "rhbz1498923.at:47" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/.*a-bogus-flag.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:47" fi @@ -127350,13 +129564,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_105 -#AT_START_106 -at_fn_group_banner 106 'pr181.at:1' \ +#AT_STOP_112 +#AT_START_113 +at_fn_group_banner 113 'pr181.at:1' \ "combined zones name length check" " " 5 at_xfail=no ( - $as_echo "106. $at_setup_line: testing $at_desc ..." + printf "%s\n" "113. $at_setup_line: testing $at_desc ..." $at_traceon @@ -127374,6 +129588,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -127390,7 +129605,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/pr181.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/pr181.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127404,7 +129619,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/pr181.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/pr181.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "pr181.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127420,7 +129635,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/pr181.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "pr181.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127484,7 +129699,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/pr181.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/pr181.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127575,7 +129790,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "pr181.at:1" >"$at_check_line_file" + printf "%s\n" "pr181.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/pr181.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -127594,7 +129809,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/pr181.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/pr181.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127615,7 +129830,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/pr181.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/pr181.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "pr181.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127632,7 +129847,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/pr181.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127647,7 +129862,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/pr181.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127664,7 +129879,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -127672,7 +129887,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "pr181.at:1" >"$at_check_line_file" + printf "%s\n" "pr181.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/pr181.at:1" fi echo "$!" > firewalld.pid @@ -127689,7 +129904,7 @@ at_fn_check_skip 99 "$at_srcdir/pr181.at:1" fi sleep 1 done - $as_echo "pr181.at:1" >"$at_check_line_file" + printf "%s\n" "pr181.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/pr181.at:1" @@ -127698,7 +129913,7 @@ at_fn_check_skip 99 "$at_srcdir/pr181.at:1" { set +x -$as_echo "$at_srcdir/pr181.at:4: mkdir -p ./zones/foobar" +printf "%s\n" "$at_srcdir/pr181.at:4: mkdir -p ./zones/foobar" at_fn_check_prepare_trace "pr181.at:4" ( $at_check_trace; mkdir -p ./zones/foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127712,7 +129927,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:6: echo '' > ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:6: echo '' > ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:6" ( $at_check_trace; echo '' > ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127725,7 +129940,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:7: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:7: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:7" ( $at_check_trace; echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127738,7 +129953,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:8: echo 'foobar' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:8: echo 'foobar' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:8" ( $at_check_trace; echo 'foobar' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127751,7 +129966,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:9: echo 'foobar desc' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:9: echo 'foobar desc' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:9" ( $at_check_trace; echo 'foobar desc' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127764,7 +129979,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:10: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:10: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:10" ( $at_check_trace; echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127777,7 +129992,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:11: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:11: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:11" ( $at_check_trace; echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127791,7 +130006,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:13: echo '' > ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:13: echo '' > ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:13" ( $at_check_trace; echo '' > ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127804,7 +130019,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:14: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:14: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:14" ( $at_check_trace; echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127817,7 +130032,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:15: echo 'foobar' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:15: echo 'foobar' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:15" ( $at_check_trace; echo 'foobar' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127830,7 +130045,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:16: echo 'foobar desc' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:16: echo 'foobar desc' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:16" ( $at_check_trace; echo 'foobar desc' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127843,7 +130058,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:17: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:17: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:17" ( $at_check_trace; echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127856,7 +130071,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:18: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +printf "%s\n" "$at_srcdir/pr181.at:18: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" at_fn_check_prepare_trace "pr181.at:18" ( $at_check_trace; echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127874,7 +130089,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/pr181.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127893,7 +130108,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/pr181.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127913,14 +130128,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=foobar --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^services " +printf "%s\n" "$at_srcdir/pr181.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=foobar --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^services " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=foobar --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "services: http ssh +echo >>"$at_stdout"; printf "%s\n" "services: http ssh " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:21" @@ -127933,7 +130148,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "pr181.at:24" >"$at_check_line_file" + printf "%s\n" "pr181.at:24" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/pr181.at:24" fi @@ -127944,13 +130159,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_106 -#AT_START_107 -at_fn_group_banner 107 'gh287.at:1' \ +#AT_STOP_113 +#AT_START_114 +at_fn_group_banner 114 'gh287.at:1' \ "ICMP block inversion" " " 5 at_xfail=no ( - $as_echo "107. $at_setup_line: testing $at_desc ..." + printf "%s\n" "114. $at_setup_line: testing $at_desc ..." $at_traceon @@ -127968,6 +130183,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -127984,7 +130200,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh287.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh287.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -127998,7 +130214,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh287.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh287.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh287.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128014,7 +130230,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh287.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh287.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128078,7 +130294,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh287.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh287.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128169,7 +130385,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh287.at:1" >"$at_check_line_file" + printf "%s\n" "gh287.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh287.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -128188,7 +130404,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh287.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh287.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128209,7 +130425,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh287.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh287.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh287.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128226,7 +130442,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh287.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128241,7 +130457,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh287.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128258,7 +130474,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -128266,7 +130482,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh287.at:1" >"$at_check_line_file" + printf "%s\n" "gh287.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh287.at:1" fi echo "$!" > firewalld.pid @@ -128283,7 +130499,7 @@ at_fn_check_skip 99 "$at_srcdir/gh287.at:1" fi sleep 1 done - $as_echo "gh287.at:1" >"$at_check_line_file" + printf "%s\n" "gh287.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh287.at:1" @@ -128292,7 +130508,7 @@ at_fn_check_skip 99 "$at_srcdir/gh287.at:1" { set +x -$as_echo "$at_srcdir/gh287.at:4: mkdir -p ./zones" +printf "%s\n" "$at_srcdir/gh287.at:4: mkdir -p ./zones" at_fn_check_prepare_trace "gh287.at:4" ( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128305,7 +130521,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:5: echo '' > ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh287.at:5: echo '' > ./zones/foobar.xml" at_fn_check_prepare_trace "gh287.at:5" ( $at_check_trace; echo '' > ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128318,7 +130534,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:6: echo '' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh287.at:6: echo '' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh287.at:6" ( $at_check_trace; echo '' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128331,7 +130547,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:7: echo 'foobar' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh287.at:7: echo 'foobar' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh287.at:7" ( $at_check_trace; echo 'foobar' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128344,7 +130560,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:8: echo 'foobar desc' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh287.at:8: echo 'foobar desc' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh287.at:8" ( $at_check_trace; echo 'foobar desc' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128357,7 +130573,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:9: echo '' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh287.at:9: echo '' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh287.at:9" ( $at_check_trace; echo '' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128370,7 +130586,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:10: echo '' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh287.at:10: echo '' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh287.at:10" ( $at_check_trace; echo '' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128383,7 +130599,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:11: echo '' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh287.at:11: echo '' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh287.at:11" ( $at_check_trace; echo '' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128396,7 +130612,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:12: echo '' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh287.at:12: echo '' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh287.at:12" ( $at_check_trace; echo '' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128414,7 +130630,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh287.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128433,7 +130649,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh287.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128452,7 +130668,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh287.at:15" >"$at_check_line_file" + printf "%s\n" "gh287.at:15" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh287.at:15" fi @@ -128463,13 +130679,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_107 -#AT_START_108 -at_fn_group_banner 108 'individual_calls.at:1' \ +#AT_STOP_114 +#AT_START_115 +at_fn_group_banner 115 'individual_calls.at:1' \ "individual calls" " " 5 at_xfail=no ( - $as_echo "108. $at_setup_line: testing $at_desc ..." + printf "%s\n" "115. $at_setup_line: testing $at_desc ..." $at_traceon @@ -128487,6 +130703,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -128503,7 +130720,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/individual_calls.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/individual_calls.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128517,7 +130734,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/individual_calls.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/individual_calls.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "individual_calls.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128533,7 +130750,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/individual_calls.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/individual_calls.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "individual_calls.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128597,7 +130814,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/individual_calls.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/individual_calls.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128688,7 +130905,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "individual_calls.at:1" >"$at_check_line_file" + printf "%s\n" "individual_calls.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/individual_calls.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -128707,7 +130924,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/individual_calls.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/individual_calls.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128728,7 +130945,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/individual_calls.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/individual_calls.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "individual_calls.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128745,7 +130962,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/individual_calls.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/individual_calls.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128760,7 +130977,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/individual_calls.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/individual_calls.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128777,7 +130994,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -128785,7 +131002,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "individual_calls.at:1" >"$at_check_line_file" + printf "%s\n" "individual_calls.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/individual_calls.at:1" fi echo "$!" > firewalld.pid @@ -128802,7 +131019,7 @@ at_fn_check_skip 99 "$at_srcdir/individual_calls.at:1" fi sleep 1 done - $as_echo "individual_calls.at:1" >"$at_check_line_file" + printf "%s\n" "individual_calls.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/individual_calls.at:1" @@ -128811,7 +131028,7 @@ at_fn_check_skip 99 "$at_srcdir/individual_calls.at:1" { set +x -$as_echo "$at_srcdir/individual_calls.at:4: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/individual_calls.at:4: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "individual_calls.at:4" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128828,7 +131045,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/individual_calls.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/individual_calls.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128847,7 +131064,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/individual_calls.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/individual_calls.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128867,7 +131084,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "individual_calls.at:7" >"$at_check_line_file" + printf "%s\n" "individual_calls.at:7" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/individual_calls.at:7" fi @@ -128878,13 +131095,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_108 -#AT_START_109 -at_fn_group_banner 109 'rhbz1534571.at:3' \ +#AT_STOP_115 +#AT_START_116 +at_fn_group_banner 116 'rhbz1534571.at:3' \ "rule deduplication" " " 5 at_xfail=no ( - $as_echo "109. $at_setup_line: testing $at_desc ..." + printf "%s\n" "116. $at_setup_line: testing $at_desc ..." $at_traceon @@ -128902,6 +131119,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -128918,7 +131136,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:3" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128932,7 +131150,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1534571.at:3" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -128948,7 +131166,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1534571.at:3" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129012,7 +131230,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:3" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129103,7 +131321,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1534571.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1534571.at:3" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:3" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -129122,7 +131340,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129143,7 +131361,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1534571.at:3" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129160,7 +131378,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129175,7 +131393,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129192,7 +131410,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -129200,7 +131418,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1534571.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1534571.at:3" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:3" fi echo "$!" > firewalld.pid @@ -129217,7 +131435,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:3" fi sleep 1 done - $as_echo "rhbz1534571.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1534571.at:3" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:3" @@ -129229,7 +131447,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:3" { set +x -$as_echo "$at_srcdir/rhbz1534571.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service nfs --add-service nfs3 " +printf "%s\n" "$at_srcdir/rhbz1534571.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service nfs --add-service nfs3 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service nfs --add-service nfs3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129248,7 +131466,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs3 " +printf "%s\n" "$at_srcdir/rhbz1534571.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs3 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129267,7 +131485,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs " +printf "%s\n" "$at_srcdir/rhbz1534571.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129287,7 +131505,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-service nfs --add-service nfs3 " +printf "%s\n" "$at_srcdir/rhbz1534571.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-service nfs --add-service nfs3 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-service nfs --add-service nfs3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129307,7 +131525,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1534571.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129326,7 +131544,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1534571.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129346,7 +131564,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs3 " +printf "%s\n" "$at_srcdir/rhbz1534571.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs3 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129365,7 +131583,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs " +printf "%s\n" "$at_srcdir/rhbz1534571.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129384,7 +131602,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1534571.at:17" >"$at_check_line_file" + printf "%s\n" "rhbz1534571.at:17" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:17" fi @@ -129395,13 +131613,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_109 -#AT_START_110 -at_fn_group_banner 110 'gh290.at:1' \ +#AT_STOP_116 +#AT_START_117 +at_fn_group_banner 117 'gh290.at:1' \ "invalid syntax in xml files" " " 5 at_xfail=no ( - $as_echo "110. $at_setup_line: testing $at_desc ..." + printf "%s\n" "117. $at_setup_line: testing $at_desc ..." $at_traceon @@ -129419,6 +131637,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -129435,7 +131654,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh290.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh290.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129449,7 +131668,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh290.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh290.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh290.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129465,7 +131684,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh290.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh290.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129529,7 +131748,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh290.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh290.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129620,7 +131839,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh290.at:1" >"$at_check_line_file" + printf "%s\n" "gh290.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh290.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -129639,7 +131858,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh290.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh290.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129660,7 +131879,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh290.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh290.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh290.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129677,7 +131896,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh290.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129692,7 +131911,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh290.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129709,7 +131928,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -129717,7 +131936,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh290.at:1" >"$at_check_line_file" + printf "%s\n" "gh290.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh290.at:1" fi echo "$!" > firewalld.pid @@ -129734,7 +131953,7 @@ at_fn_check_skip 99 "$at_srcdir/gh290.at:1" fi sleep 1 done - $as_echo "gh290.at:1" >"$at_check_line_file" + printf "%s\n" "gh290.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh290.at:1" @@ -129743,14 +131962,14 @@ at_fn_check_skip 99 "$at_srcdir/gh290.at:1" - $as_echo "gh290.at:3" >"$at_check_line_file" + printf "%s\n" "gh290.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh290.at:3" { set +x -$as_echo "$at_srcdir/gh290.at:6: mkdir -p ./zones" +printf "%s\n" "$at_srcdir/gh290.at:6: mkdir -p ./zones" at_fn_check_prepare_trace "gh290.at:6" ( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129763,7 +131982,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:7: echo '' > ./direct.xml" +printf "%s\n" "$at_srcdir/gh290.at:7: echo '' > ./direct.xml" at_fn_check_prepare_trace "gh290.at:7" ( $at_check_trace; echo '' > ./direct.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129776,7 +131995,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:8: echo '' >> ./direct.xml" +printf "%s\n" "$at_srcdir/gh290.at:8: echo '' >> ./direct.xml" at_fn_check_prepare_trace "gh290.at:8" ( $at_check_trace; echo '' >> ./direct.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129789,7 +132008,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:9: echo '' >> ./direct.xml" +printf "%s\n" "$at_srcdir/gh290.at:9: echo '' >> ./direct.xml" at_fn_check_prepare_trace "gh290.at:9" ( $at_check_trace; echo '' >> ./direct.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129802,7 +132021,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:10: echo '--destination 127.0.0.1 --jump RETURN' >> ./direct.xml" +printf "%s\n" "$at_srcdir/gh290.at:10: echo '--destination 127.0.0.1 --jump RETURN' >> ./direct.xml" at_fn_check_prepare_trace "gh290.at:10" ( $at_check_trace; echo '--destination 127.0.0.1 --jump RETURN' >> ./direct.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129815,7 +132034,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:12: echo '' >> ./direct.xml" +printf "%s\n" "$at_srcdir/gh290.at:12: echo '' >> ./direct.xml" at_fn_check_prepare_trace "gh290.at:12" ( $at_check_trace; echo '' >> ./direct.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129839,7 +132058,7 @@ $at_traceon; } test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -129847,7 +132066,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh290.at:14" >"$at_check_line_file" + printf "%s\n" "gh290.at:14" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh290.at:14" fi echo "$!" > firewalld.pid @@ -129864,14 +132083,14 @@ at_fn_check_skip 99 "$at_srcdir/gh290.at:14" fi sleep 1 done - $as_echo "gh290.at:14" >"$at_check_line_file" + printf "%s\n" "gh290.at:14" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh290.at:14" { set +x -$as_echo "$at_srcdir/gh290.at:15: grep \"ERROR:.*mismatched tag\" ./firewalld.log" +printf "%s\n" "$at_srcdir/gh290.at:15: grep \"ERROR:.*mismatched tag\" ./firewalld.log" at_fn_check_prepare_trace "gh290.at:15" ( $at_check_trace; grep "ERROR:.*mismatched tag" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129887,7 +132106,7 @@ $at_traceon; } if test x"-e '/ERROR:.*mismatched tag.*/d'" != x"ignore"; then - $as_echo "gh290.at:16" >"$at_check_line_file" + printf "%s\n" "gh290.at:16" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR:.*mismatched tag.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh290.at:16" fi @@ -129898,13 +132117,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_110 -#AT_START_111 -at_fn_group_banner 111 'gh290.at:19' \ +#AT_STOP_117 +#AT_START_118 +at_fn_group_banner 118 'gh290.at:19' \ "invalid syntax in xml files" " " 5 at_xfail=no ( - $as_echo "111. $at_setup_line: testing $at_desc ..." + printf "%s\n" "118. $at_setup_line: testing $at_desc ..." $at_traceon @@ -129922,6 +132141,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -129938,7 +132158,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh290.at:19: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh290.at:19: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:19" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129952,7 +132172,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh290.at:19: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh290.at:19: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh290.at:19" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -129968,7 +132188,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:19: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh290.at:19: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh290.at:19" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130032,7 +132252,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh290.at:19: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh290.at:19: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:19" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130123,7 +132343,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh290.at:19" >"$at_check_line_file" + printf "%s\n" "gh290.at:19" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh290.at:19" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -130142,7 +132362,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh290.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh290.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130163,7 +132383,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh290.at:19: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh290.at:19: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh290.at:19" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130180,7 +132400,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh290.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130195,7 +132415,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh290.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130212,7 +132432,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -130220,7 +132440,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh290.at:19" >"$at_check_line_file" + printf "%s\n" "gh290.at:19" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh290.at:19" fi echo "$!" > firewalld.pid @@ -130237,7 +132457,7 @@ at_fn_check_skip 99 "$at_srcdir/gh290.at:19" fi sleep 1 done - $as_echo "gh290.at:19" >"$at_check_line_file" + printf "%s\n" "gh290.at:19" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh290.at:19" @@ -130246,7 +132466,7 @@ at_fn_check_skip 99 "$at_srcdir/gh290.at:19" { set +x -$as_echo "$at_srcdir/gh290.at:23: mkdir -p ./zones" +printf "%s\n" "$at_srcdir/gh290.at:23: mkdir -p ./zones" at_fn_check_prepare_trace "gh290.at:23" ( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130259,7 +132479,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:24: echo '' > ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh290.at:24: echo '' > ./zones/foobar.xml" at_fn_check_prepare_trace "gh290.at:24" ( $at_check_trace; echo '' > ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130272,7 +132492,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:25: echo '' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh290.at:25: echo '' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh290.at:25" ( $at_check_trace; echo '' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130285,7 +132505,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:26: echo 'foobar' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh290.at:26: echo 'foobar' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh290.at:26" ( $at_check_trace; echo 'foobar' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130298,7 +132518,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:28: echo '' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh290.at:28: echo '' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh290.at:28" ( $at_check_trace; echo '' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130311,7 +132531,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:29: echo '' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh290.at:29: echo '' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh290.at:29" ( $at_check_trace; echo '' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130324,7 +132544,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh290.at:30: echo '' >> ./zones/foobar.xml" +printf "%s\n" "$at_srcdir/gh290.at:30: echo '' >> ./zones/foobar.xml" at_fn_check_prepare_trace "gh290.at:30" ( $at_check_trace; echo '' >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130348,7 +132568,7 @@ $at_traceon; } test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -130356,7 +132576,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh290.at:32" >"$at_check_line_file" + printf "%s\n" "gh290.at:32" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh290.at:32" fi echo "$!" > firewalld.pid @@ -130373,14 +132593,14 @@ at_fn_check_skip 99 "$at_srcdir/gh290.at:32" fi sleep 1 done - $as_echo "gh290.at:32" >"$at_check_line_file" + printf "%s\n" "gh290.at:32" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh290.at:32" { set +x -$as_echo "$at_srcdir/gh290.at:33: grep \"ERROR:.*Missing attribute protocol for port\" ./firewalld.log" +printf "%s\n" "$at_srcdir/gh290.at:33: grep \"ERROR:.*Missing attribute protocol for port\" ./firewalld.log" at_fn_check_prepare_trace "gh290.at:33" ( $at_check_trace; grep "ERROR:.*Missing attribute protocol for port" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130396,7 +132616,7 @@ $at_traceon; } if test x"ignore" != x"ignore"; then - $as_echo "gh290.at:34" >"$at_check_line_file" + printf "%s\n" "gh290.at:34" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh290.at:34" fi @@ -130407,13 +132627,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_111 -#AT_START_112 -at_fn_group_banner 112 'icmp_block_in_forward_chain.at:1' \ +#AT_STOP_118 +#AT_START_119 +at_fn_group_banner 119 'icmp_block_in_forward_chain.at:1' \ "ICMP block not present FORWARD chain" " " 5 at_xfail=no ( - $as_echo "112. $at_setup_line: testing $at_desc ..." + printf "%s\n" "119. $at_setup_line: testing $at_desc ..." $at_traceon @@ -130431,6 +132651,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -130447,7 +132668,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130461,7 +132682,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "icmp_block_in_forward_chain.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130477,7 +132698,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "icmp_block_in_forward_chain.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130541,7 +132762,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130632,7 +132853,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" + printf "%s\n" "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -130651,7 +132872,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130672,7 +132893,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "icmp_block_in_forward_chain.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130689,7 +132910,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130704,7 +132925,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130721,7 +132942,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -130729,7 +132950,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" + printf "%s\n" "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" fi echo "$!" > firewalld.pid @@ -130746,7 +132967,7 @@ at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" fi sleep 1 done - $as_echo "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" + printf "%s\n" "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" @@ -130758,7 +132979,7 @@ at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-icmp-block=host-prohibited " +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-icmp-block=host-prohibited " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-icmp-block=host-prohibited ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130780,7 +133001,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_deny | sed -e 's/icmp code 10/icmp code host-prohibited/'; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -130793,7 +133014,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_deny { icmp destination-unreachable icmp code host-prohibited reject with icmpx admin-prohibited } @@ -130815,7 +133036,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_deny | sed -e 's/icmp code 10/icmp code host-prohibited/'; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -130828,7 +133049,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_public_deny { } } @@ -130854,7 +133075,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "icmp_block_in_forward_chain.at:26" >"$at_check_line_file" + printf "%s\n" "icmp_block_in_forward_chain.at:26" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:26" fi @@ -130865,13 +133086,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_112 -#AT_START_113 -at_fn_group_banner 113 'pr323.at:1' \ +#AT_STOP_119 +#AT_START_120 +at_fn_group_banner 120 'pr323.at:1' \ "GRE proto helper" " " 5 at_xfail=no ( - $as_echo "113. $at_setup_line: testing $at_desc ..." + printf "%s\n" "120. $at_setup_line: testing $at_desc ..." $at_traceon @@ -130889,6 +133110,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -130905,7 +133127,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/pr323.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/pr323.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130919,7 +133141,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/pr323.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/pr323.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "pr323.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130935,7 +133157,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr323.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/pr323.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "pr323.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -130999,7 +133221,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/pr323.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/pr323.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131090,7 +133312,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "pr323.at:1" >"$at_check_line_file" + printf "%s\n" "pr323.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/pr323.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -131109,7 +133331,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/pr323.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/pr323.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131130,7 +133352,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/pr323.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/pr323.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "pr323.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131147,7 +133369,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr323.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/pr323.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131162,7 +133384,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr323.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/pr323.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131179,7 +133401,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -131187,7 +133409,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "pr323.at:1" >"$at_check_line_file" + printf "%s\n" "pr323.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/pr323.at:1" fi echo "$!" > firewalld.pid @@ -131204,7 +133426,7 @@ at_fn_check_skip 99 "$at_srcdir/pr323.at:1" fi sleep 1 done - $as_echo "pr323.at:1" >"$at_check_line_file" + printf "%s\n" "pr323.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/pr323.at:1" @@ -131213,7 +133435,7 @@ at_fn_check_skip 99 "$at_srcdir/pr323.at:1" - $as_echo "pr323.at:4" >"$at_check_line_file" + printf "%s\n" "pr323.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} modinfo nf_conntrack_proto_gre ) \ && at_fn_check_skip 77 "$at_srcdir/pr323.at:4" @@ -131222,7 +133444,7 @@ at_fn_check_skip 99 "$at_srcdir/pr323.at:1" { set +x -$as_echo "$at_srcdir/pr323.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-protocol=gre " +printf "%s\n" "$at_srcdir/pr323.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-protocol=gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131241,7 +133463,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr323.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-protocol=gre " +printf "%s\n" "$at_srcdir/pr323.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-protocol=gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131261,7 +133483,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr323.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=gre " +printf "%s\n" "$at_srcdir/pr323.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131277,7 +133499,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr323.at:10: lsmod | grep nf_conntrack_proto_gre" +printf "%s\n" "$at_srcdir/pr323.at:10: lsmod | grep nf_conntrack_proto_gre" at_fn_check_prepare_notrace 'a shell pipeline' "pr323.at:10" ( $at_check_trace; lsmod | grep nf_conntrack_proto_gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131293,7 +133515,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "pr323.at:12" >"$at_check_line_file" + printf "%s\n" "pr323.at:12" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/pr323.at:12" fi @@ -131304,13 +133526,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_113 -#AT_START_114 -at_fn_group_banner 114 'rhbz1506742.at:1' \ +#AT_STOP_120 +#AT_START_121 +at_fn_group_banner 121 'rhbz1506742.at:1' \ "ipset with timeout" " " 5 at_xfail=no ( - $as_echo "114. $at_setup_line: testing $at_desc ..." + printf "%s\n" "121. $at_setup_line: testing $at_desc ..." $at_traceon @@ -131328,6 +133550,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -131344,7 +133567,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131358,7 +133581,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1506742.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131374,7 +133597,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1506742.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131438,7 +133661,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131529,7 +133752,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1506742.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1506742.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -131548,7 +133771,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131569,7 +133792,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1506742.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131586,7 +133809,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131601,7 +133824,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131618,7 +133841,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -131626,7 +133849,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1506742.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1506742.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" fi echo "$!" > firewalld.pid @@ -131643,7 +133866,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" fi sleep 1 done - $as_echo "rhbz1506742.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1506742.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" @@ -131656,7 +133879,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" { set +x -$as_echo "$at_srcdir/rhbz1506742.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/rhbz1506742.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131671,7 +133894,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " +printf "%s\n" "$at_srcdir/rhbz1506742.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131684,29 +133907,29 @@ $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "rhbz1506742.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1506742.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft flush set inet firewalld_check_ipset foobar >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1506742.at:4" - $as_echo "rhbz1506742.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1506742.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout { type ipv4_addr \; timeout 600s \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1506742.at:4" - $as_echo "rhbz1506742.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1506742.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_size { type ipv4_addr \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1506742.at:4" - $as_echo "rhbz1506742.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1506742.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout_size { type ipv4_addr \; timeout 600s \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1506742.at:4" - $as_echo "rhbz1506742.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1506742.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_interval_concat { type ipv4_addr . inet_service \; flags interval \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1506742.at:4" - $as_echo "rhbz1506742.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1506742.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -j '{"nftables": [{"add": {"element": {"family": "inet", "table": "firewalld_check_ipset", "name": "foobar_interval_concat", "elem": [{"concat": [{"prefix": {"addr": "10.10.10.0", "len": 24}}, {"range": ["1234", "2000"]}]}]}}}]}' >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1506742.at:4" { set +x -$as_echo "$at_srcdir/rhbz1506742.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/rhbz1506742.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131728,7 +133951,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --option=maxelem=1000000 --option=family=inet --option=hashsize=4096 --option=timeout=600 " +printf "%s\n" "$at_srcdir/rhbz1506742.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --option=maxelem=1000000 --option=family=inet --option=hashsize=4096 --option=timeout=600 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --option=maxelem=1000000 --option=family=inet --option=hashsize=4096 --option=timeout=600 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131748,7 +133971,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1506742.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131767,7 +133990,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1506742.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131789,7 +134012,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1506742.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -131802,7 +134025,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr size 1000000 @@ -131825,7 +134048,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=1.2.3.4 " +printf "%s\n" "$at_srcdir/rhbz1506742.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131844,7 +134067,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=1.2.3.4 " +printf "%s\n" "$at_srcdir/rhbz1506742.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131863,7 +134086,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 " +printf "%s\n" "$at_srcdir/rhbz1506742.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131882,7 +134105,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=1.2.3.4 " +printf "%s\n" "$at_srcdir/rhbz1506742.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131908,7 +134131,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1506742.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entries-from-file=foobar_entries.txt " +printf "%s\n" "$at_srcdir/rhbz1506742.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entries-from-file=foobar_entries.txt " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entries-from-file=foobar_entries.txt ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131927,7 +134150,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entries-from-file=foobar_entries.txt " +printf "%s\n" "$at_srcdir/rhbz1506742.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entries-from-file=foobar_entries.txt " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entries-from-file=foobar_entries.txt ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131946,7 +134169,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 " +printf "%s\n" "$at_srcdir/rhbz1506742.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:29" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131965,7 +134188,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entries-from-file=foobar_entries.txt " +printf "%s\n" "$at_srcdir/rhbz1506742.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entries-from-file=foobar_entries.txt " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:30" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entries-from-file=foobar_entries.txt ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -131983,7 +134206,7 @@ $at_traceon; } if test x"-e '/Error: IPSET_WITH_TIMEOUT/d' -e '/ERROR: IPSET_WITH_TIMEOUT/d' -e '/WARNING: NOT_ENABLED/d'" != x"ignore"; then - $as_echo "rhbz1506742.at:31" >"$at_check_line_file" + printf "%s\n" "rhbz1506742.at:31" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/Error: IPSET_WITH_TIMEOUT/d' -e '/ERROR: IPSET_WITH_TIMEOUT/d' -e '/WARNING: NOT_ENABLED/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:31" fi @@ -131994,13 +134217,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_114 -#AT_START_115 -at_fn_group_banner 115 'rhbz1594657.at:1' \ +#AT_STOP_121 +#AT_START_122 +at_fn_group_banner 122 'rhbz1594657.at:1' \ "no log untracked passthrough queries" " " 5 at_xfail=no ( - $as_echo "115. $at_setup_line: testing $at_desc ..." + printf "%s\n" "122. $at_setup_line: testing $at_desc ..." $at_traceon @@ -132018,6 +134241,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -132034,7 +134258,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132048,7 +134272,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1594657.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132064,7 +134288,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1594657.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132128,7 +134352,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132219,7 +134443,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1594657.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1594657.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -132238,7 +134462,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132259,7 +134483,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1594657.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132276,7 +134500,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132291,7 +134515,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132308,7 +134532,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -132316,7 +134540,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1594657.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1594657.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" fi echo "$!" > firewalld.pid @@ -132333,7 +134557,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" fi sleep 1 done - $as_echo "rhbz1594657.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1594657.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" @@ -132342,7 +134566,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" - $as_echo "rhbz1594657.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1594657.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1594657.at:3" @@ -132352,7 +134576,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" { set +x -$as_echo "$at_srcdir/rhbz1594657.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L dummy_chain " +printf "%s\n" "$at_srcdir/rhbz1594657.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L dummy_chain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L dummy_chain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132371,7 +134595,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1594657.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L INPUT " +printf "%s\n" "$at_srcdir/rhbz1594657.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L INPUT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132391,7 +134615,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1594657.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -C dummy_chain -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1594657.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -C dummy_chain -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -C dummy_chain -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132410,7 +134634,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1594657.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L dummy_chain " +printf "%s\n" "$at_srcdir/rhbz1594657.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L dummy_chain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L dummy_chain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132429,7 +134653,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1594657.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L INPUT " +printf "%s\n" "$at_srcdir/rhbz1594657.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L INPUT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132453,7 +134677,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -C dummy_chain -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -C dummy_chain -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -C dummy_chain -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132472,7 +134696,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L dummy_chain " +printf "%s\n" "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L dummy_chain " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L dummy_chain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132491,7 +134715,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L INPUT " +printf "%s\n" "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L INPUT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132515,7 +134739,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1594657.at:17" >"$at_check_line_file" + printf "%s\n" "rhbz1594657.at:17" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:17" fi @@ -132526,13 +134750,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_115 -#AT_START_116 -at_fn_group_banner 116 'rhbz1571957.at:1' \ +#AT_STOP_122 +#AT_START_123 +at_fn_group_banner 123 'rhbz1571957.at:1' \ "set-log-denied w/ ICMP block inversion" " " 5 at_xfail=no ( - $as_echo "116. $at_setup_line: testing $at_desc ..." + printf "%s\n" "123. $at_setup_line: testing $at_desc ..." $at_traceon @@ -132550,6 +134774,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -132566,7 +134791,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132580,7 +134805,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1571957.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132596,7 +134821,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1571957.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132660,7 +134885,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132751,7 +134976,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1571957.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1571957.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -132770,7 +134995,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132791,7 +135016,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1571957.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132808,7 +135033,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132823,7 +135048,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132840,7 +135065,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -132848,7 +135073,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1571957.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1571957.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" fi echo "$!" > firewalld.pid @@ -132865,7 +135090,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" fi sleep 1 done - $as_echo "rhbz1571957.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1571957.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" @@ -132877,7 +135102,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" { set +x -$as_echo "$at_srcdir/rhbz1571957.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-icmp-block-inversion " +printf "%s\n" "$at_srcdir/rhbz1571957.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-icmp-block-inversion " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132897,7 +135122,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1571957.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132916,7 +135141,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1571957.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132936,7 +135161,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=all " +printf "%s\n" "$at_srcdir/rhbz1571957.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=all " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --set-log-denied=all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132952,7 +135177,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:7: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1571957.at:7: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1571957.at:7" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132969,7 +135194,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1571957.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -132988,7 +135213,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1571957.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133008,7 +135233,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=broadcast " +printf "%s\n" "$at_srcdir/rhbz1571957.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=broadcast " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --set-log-denied=broadcast ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133028,7 +135253,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1571957.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133047,7 +135272,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1571957.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133067,7 +135292,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1571957.at:12" >"$at_check_line_file" + printf "%s\n" "rhbz1571957.at:12" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:12" fi @@ -133078,13 +135303,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_116 -#AT_START_117 -at_fn_group_banner 117 'rhbz1404076.at:1' \ +#AT_STOP_123 +#AT_START_124 +at_fn_group_banner 124 'rhbz1404076.at:1' \ "query single port added with range" " " 5 at_xfail=no ( - $as_echo "117. $at_setup_line: testing $at_desc ..." + printf "%s\n" "124. $at_setup_line: testing $at_desc ..." $at_traceon @@ -133102,6 +135327,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -133118,7 +135344,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133132,7 +135358,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1404076.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133148,7 +135374,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1404076.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133212,7 +135438,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133303,7 +135529,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1404076.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1404076.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -133322,7 +135548,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133343,7 +135569,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1404076.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133360,7 +135586,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133375,7 +135601,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133392,7 +135618,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -133400,7 +135626,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1404076.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1404076.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" fi echo "$!" > firewalld.pid @@ -133417,7 +135643,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" fi sleep 1 done - $as_echo "rhbz1404076.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1404076.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" @@ -133431,7 +135657,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=8070-8080/udp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=8070-8080/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=8070-8080/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133450,7 +135676,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9050-10050/sctp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9050-10050/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9050-10050/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133469,7 +135695,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9000/dccp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9000/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9000/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133489,7 +135715,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=8080-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=8080-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133508,7 +135734,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133527,7 +135753,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085-8087/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085-8087/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8085-8087/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133546,7 +135772,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8080-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8080-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133565,7 +135791,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8080-8089/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8080-8089/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8080-8089/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133584,7 +135810,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8081-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8081-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8081-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133603,7 +135829,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=webcache/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=webcache/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=webcache/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133621,7 +135847,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8091/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8091/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8091/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133639,7 +135865,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085/udp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8085/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133657,14 +135883,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" @@ -133679,7 +135905,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10000-10010/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10000-10010/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10000-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133698,7 +135924,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133716,7 +135942,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9010-9020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9010-9020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133734,7 +135960,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10050-10060/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10050-10060/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133752,7 +135978,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9999/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9999/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9999/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133770,7 +135996,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10011/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10011/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10011/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133788,7 +136014,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9095-10000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9095-10000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9095-10000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133806,7 +136032,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9090-9094/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9090-9094/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9090-9094/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133824,7 +136050,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9099-10001/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9099-10001/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=9099-10001/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133843,7 +136069,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10005-10020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10005-10020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10005-10020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133861,7 +136087,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10021-10022/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10021-10022/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10021-10022/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133879,7 +136105,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10010-10015/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10010-10015/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133898,7 +136124,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9080-10040/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9080-10040/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9080-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133916,7 +136142,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9079-10041/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9079-10041/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9079-10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133934,7 +136160,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9093-10025/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9093-10025/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=9093-10025/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133953,7 +136179,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10010-10015/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10010-10015/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133969,7 +136195,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" at_fn_check_prepare_trace "rhbz1404076.at:70" ( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -133986,7 +136212,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9090-10030/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9090-10030/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=9090-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134005,14 +136231,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" @@ -134027,7 +136253,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134045,7 +136271,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9010-9020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9010-9020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134063,7 +136289,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10050-10060/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10050-10060/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134081,7 +136307,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9079/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9079/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9079/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134099,7 +136325,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10041/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10041/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134117,7 +136343,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9080-9085/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9080-9085/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9080-9085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134135,7 +136361,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10035-10040/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10035-10040/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10035-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134153,7 +136379,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10005-10009/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10005-10009/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10005-10009/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134171,7 +136397,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10100-10110/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10100-10110/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10100-10110/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134187,7 +136413,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" at_fn_check_prepare_trace "rhbz1404076.at:70" ( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134204,7 +136430,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10001-10004/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10001-10004/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10001-10004/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134223,7 +136449,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10016-10019/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10016-10019/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10016-10019/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134242,7 +136468,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10005/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10005/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134260,7 +136486,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10003-10030/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10003-10030/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10003-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134278,7 +136504,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10004-10005/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10004-10005/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10004-10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134296,7 +136522,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10009-10010/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10009-10010/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10009-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134314,14 +136540,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" @@ -134337,7 +136563,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=8070-8080/udp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=8070-8080/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=8070-8080/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134356,7 +136582,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9050-10050/sctp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9050-10050/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9050-10050/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134375,7 +136601,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/dccp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134395,7 +136621,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=8080-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=8080-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134414,7 +136640,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134433,7 +136659,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085-8087/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085-8087/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8085-8087/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134452,7 +136678,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134471,7 +136697,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8089/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8089/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8089/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134490,7 +136716,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8081-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8081-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8081-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134509,7 +136735,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=webcache/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=webcache/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=webcache/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134527,7 +136753,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8091/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8091/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8091/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134545,7 +136771,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/udp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134563,14 +136789,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" @@ -134585,7 +136811,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10000-10010/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10000-10010/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10000-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134604,7 +136830,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134622,7 +136848,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9010-9020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9010-9020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134640,7 +136866,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10050-10060/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10050-10060/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134658,7 +136884,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9999/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9999/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9999/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134676,7 +136902,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10011/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10011/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10011/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134694,7 +136920,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9095-10000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9095-10000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9095-10000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134712,7 +136938,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9090-9094/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9090-9094/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9090-9094/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134730,7 +136956,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9099-10001/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9099-10001/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=9099-10001/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134749,7 +136975,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10005-10020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10005-10020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10005-10020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134767,7 +136993,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10021-10022/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10021-10022/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10021-10022/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134785,7 +137011,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10010-10015/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10010-10015/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134804,7 +137030,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9080-10040/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9080-10040/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9080-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134822,7 +137048,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9079-10041/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9079-10041/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9079-10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134840,7 +137066,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9093-10025/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9093-10025/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=9093-10025/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134859,7 +137085,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10010-10015/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10010-10015/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134875,7 +137101,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" at_fn_check_prepare_trace "rhbz1404076.at:71" ( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134892,7 +137118,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9090-10030/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9090-10030/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=9090-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134911,14 +137137,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" @@ -134933,7 +137159,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134951,7 +137177,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9010-9020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9010-9020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134969,7 +137195,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10050-10060/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10050-10060/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -134987,7 +137213,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9079/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9079/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9079/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135005,7 +137231,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10041/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10041/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135023,7 +137249,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9080-9085/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9080-9085/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9080-9085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135041,7 +137267,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10035-10040/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10035-10040/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10035-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135059,7 +137285,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10005-10009/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10005-10009/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10005-10009/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135077,7 +137303,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10100-10110/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10100-10110/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10100-10110/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135093,7 +137319,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" at_fn_check_prepare_trace "rhbz1404076.at:71" ( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135110,7 +137336,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10001-10004/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10001-10004/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10001-10004/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135129,7 +137355,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10016-10019/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10016-10019/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10016-10019/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135148,7 +137374,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10005/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10005/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135166,7 +137392,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10003-10030/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10003-10030/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10003-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135184,7 +137410,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10004-10005/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10004-10005/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10004-10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135202,7 +137428,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10009-10010/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10009-10010/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10009-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135220,14 +137446,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" @@ -135243,7 +137469,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=8070-8080/udp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=8070-8080/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=8070-8080/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135262,7 +137488,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9050-10050/sctp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9050-10050/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9050-10050/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135281,7 +137507,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9000/dccp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9000/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9000/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135301,7 +137527,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=8080-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=8080-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135320,7 +137546,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135339,7 +137565,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085-8087/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085-8087/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8085-8087/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135358,7 +137584,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8080-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8080-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135377,7 +137603,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8080-8089/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8080-8089/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8080-8089/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135396,7 +137622,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8081-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8081-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8081-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135415,7 +137641,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=webcache/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=webcache/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=webcache/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135433,7 +137659,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8091/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8091/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8091/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135451,7 +137677,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085/udp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8085/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135469,14 +137695,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" @@ -135491,7 +137717,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10000-10010/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10000-10010/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10000-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135510,7 +137736,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135528,7 +137754,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9010-9020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9010-9020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135546,7 +137772,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10050-10060/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10050-10060/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135564,7 +137790,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9999/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9999/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9999/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135582,7 +137808,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10011/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10011/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10011/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135600,7 +137826,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9095-10000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9095-10000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9095-10000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135618,7 +137844,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9090-9094/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9090-9094/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9090-9094/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135636,7 +137862,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9099-10001/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9099-10001/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=9099-10001/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135655,7 +137881,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10005-10020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10005-10020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10005-10020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135673,7 +137899,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10021-10022/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10021-10022/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10021-10022/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135691,7 +137917,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10010-10015/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10010-10015/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135710,7 +137936,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9080-10040/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9080-10040/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9080-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135728,7 +137954,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9079-10041/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9079-10041/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9079-10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135746,7 +137972,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9093-10025/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9093-10025/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=9093-10025/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135765,7 +137991,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10010-10015/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10010-10015/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135781,7 +138007,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" at_fn_check_prepare_trace "rhbz1404076.at:72" ( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135798,7 +138024,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9090-10030/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9090-10030/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=9090-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135817,14 +138043,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" @@ -135839,7 +138065,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135857,7 +138083,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9010-9020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9010-9020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135875,7 +138101,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10050-10060/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10050-10060/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135893,7 +138119,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9079/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9079/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9079/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135911,7 +138137,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10041/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10041/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135929,7 +138155,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9080-9085/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9080-9085/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9080-9085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135947,7 +138173,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10035-10040/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10035-10040/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10035-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135965,7 +138191,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10005-10009/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10005-10009/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10005-10009/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135983,7 +138209,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10100-10110/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10100-10110/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10100-10110/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -135999,7 +138225,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" at_fn_check_prepare_trace "rhbz1404076.at:72" ( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136016,7 +138242,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10001-10004/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10001-10004/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10001-10004/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136035,7 +138261,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10016-10019/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10016-10019/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10016-10019/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136054,7 +138280,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10005/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10005/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136072,7 +138298,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10003-10030/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10003-10030/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10003-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136090,7 +138316,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10004-10005/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10004-10005/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10004-10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136108,7 +138334,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10009-10010/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10009-10010/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10009-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136126,14 +138352,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" @@ -136149,7 +138375,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8070-8080/udp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8070-8080/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8070-8080/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136168,7 +138394,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9050-10050/sctp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9050-10050/sctp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9050-10050/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136187,7 +138413,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/dccp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136207,7 +138433,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8080-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8080-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136226,7 +138452,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136245,7 +138471,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085-8087/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085-8087/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085-8087/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136264,7 +138490,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136283,7 +138509,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8089/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8089/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8089/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136302,7 +138528,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8081-8090/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8081-8090/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8081-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136321,7 +138547,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=webcache/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=webcache/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=webcache/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136339,7 +138565,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8091/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8091/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8091/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136357,7 +138583,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/udp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136375,14 +138601,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" @@ -136397,7 +138623,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10000-10010/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10000-10010/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10000-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136416,7 +138642,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136434,7 +138660,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9010-9020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9010-9020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136452,7 +138678,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10050-10060/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10050-10060/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136470,7 +138696,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9999/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9999/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9999/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136488,7 +138714,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10011/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10011/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10011/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136506,7 +138732,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9095-10000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9095-10000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9095-10000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136524,7 +138750,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9090-9094/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9090-9094/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9090-9094/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136542,7 +138768,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9099-10001/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9099-10001/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9099-10001/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136561,7 +138787,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10005-10020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10005-10020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10005-10020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136579,7 +138805,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10021-10022/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10021-10022/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10021-10022/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136597,7 +138823,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10010-10015/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10010-10015/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136616,7 +138842,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9080-10040/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9080-10040/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9080-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136634,7 +138860,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9079-10041/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9079-10041/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9079-10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136652,7 +138878,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9093-10025/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9093-10025/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9093-10025/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136671,7 +138897,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10010-10015/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10010-10015/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136687,7 +138913,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" at_fn_check_prepare_trace "rhbz1404076.at:73" ( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136704,7 +138930,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9090-10030/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9090-10030/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9090-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136723,14 +138949,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" @@ -136745,7 +138971,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9000/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9000/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136763,7 +138989,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9010-9020/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9010-9020/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136781,7 +139007,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10050-10060/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10050-10060/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136799,7 +139025,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9079/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9079/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9079/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136817,7 +139043,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10041/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10041/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136835,7 +139061,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9080-9085/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9080-9085/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9080-9085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136853,7 +139079,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10035-10040/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10035-10040/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10035-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136871,7 +139097,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10005-10009/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10005-10009/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10005-10009/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136889,7 +139115,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10100-10110/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10100-10110/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10100-10110/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136905,7 +139131,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" at_fn_check_prepare_trace "rhbz1404076.at:73" ( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136922,7 +139148,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10001-10004/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10001-10004/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10001-10004/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136941,7 +139167,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10016-10019/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10016-10019/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10016-10019/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136960,7 +139186,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10005/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10005/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136978,7 +139204,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10003-10030/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10003-10030/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10003-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -136996,7 +139222,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10004-10005/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10004-10005/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10004-10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137014,7 +139240,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10009-10010/tcp " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10009-10010/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10009-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137032,14 +139258,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" @@ -137055,7 +139281,7 @@ $at_traceon; } if test x"-e '/WARNING: ALREADY_ENABLED:/d' -e '/WARNING: NOT_ENABLED:/d'" != x"ignore"; then - $as_echo "rhbz1404076.at:76" >"$at_check_line_file" + printf "%s\n" "rhbz1404076.at:76" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: ALREADY_ENABLED:/d' -e '/WARNING: NOT_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:76" fi @@ -137066,13 +139292,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_117 -#AT_START_118 -at_fn_group_banner 118 'gh366.at:1' \ +#AT_STOP_124 +#AT_START_125 +at_fn_group_banner 125 'gh366.at:1' \ "service destination multiple IP versions" " " 5 at_xfail=no ( - $as_echo "118. $at_setup_line: testing $at_desc ..." + printf "%s\n" "125. $at_setup_line: testing $at_desc ..." $at_traceon @@ -137090,6 +139316,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -137106,7 +139333,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh366.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh366.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137120,7 +139347,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh366.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh366.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh366.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137136,7 +139363,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh366.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh366.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137200,7 +139427,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh366.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh366.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137291,7 +139518,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh366.at:1" >"$at_check_line_file" + printf "%s\n" "gh366.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh366.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -137310,7 +139537,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh366.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh366.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137331,7 +139558,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh366.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh366.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh366.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137348,7 +139575,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh366.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137363,7 +139590,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh366.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137380,7 +139607,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -137388,7 +139615,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh366.at:1" >"$at_check_line_file" + printf "%s\n" "gh366.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh366.at:1" fi echo "$!" > firewalld.pid @@ -137405,7 +139632,7 @@ at_fn_check_skip 99 "$at_srcdir/gh366.at:1" fi sleep 1 done - $as_echo "gh366.at:1" >"$at_check_line_file" + printf "%s\n" "gh366.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh366.at:1" @@ -137419,7 +139646,7 @@ at_fn_check_skip 99 "$at_srcdir/gh366.at:1" { set +x -$as_echo "$at_srcdir/gh366.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-service=mdns " +printf "%s\n" "$at_srcdir/gh366.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-service=mdns " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-service=mdns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137441,7 +139668,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh366.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -137454,7 +139681,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -137483,7 +139710,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --remove-service=mdns " +printf "%s\n" "$at_srcdir/gh366.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --remove-service=mdns " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --remove-service=mdns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137503,7 +139730,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule=\"rule service name=\"mdns\" accept\" " +printf "%s\n" "$at_srcdir/gh366.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule=\"rule service name=\"mdns\" accept\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:29" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule="rule service name="mdns" accept" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137525,7 +139752,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh366.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -137538,7 +139765,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -137568,7 +139795,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule='rule family=\"ipv4\" destination address=\"10.10.10.0/24\" service name=\"mdns\" accept' " +printf "%s\n" "$at_srcdir/gh366.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule='rule family=\"ipv4\" destination address=\"10.10.10.0/24\" service name=\"mdns\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule='rule family="ipv4" destination address="10.10.10.0/24" service name="mdns" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137588,7 +139815,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_RULE: Destination conflict with service/d'" != x"ignore"; then - $as_echo "gh366.at:36" >"$at_check_line_file" + printf "%s\n" "gh366.at:36" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_RULE: Destination conflict with service/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh366.at:36" fi @@ -137599,13 +139826,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_118 -#AT_START_119 -at_fn_group_banner 119 'rhbz1601610.at:1' \ +#AT_STOP_125 +#AT_START_126 +at_fn_group_banner 126 'rhbz1601610.at:1' \ "ipset duplicate entries" " " 5 at_xfail=no ( - $as_echo "119. $at_setup_line: testing $at_desc ..." + printf "%s\n" "126. $at_setup_line: testing $at_desc ..." $at_traceon @@ -137623,6 +139850,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -137639,7 +139867,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137653,7 +139881,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1601610.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137669,7 +139897,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1601610.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137733,7 +139961,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137824,7 +140052,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1601610.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -137843,7 +140071,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137864,7 +140092,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1601610.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137881,7 +140109,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137896,7 +140124,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137913,7 +140141,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -137921,7 +140149,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1601610.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" fi echo "$!" > firewalld.pid @@ -137938,7 +140166,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" fi sleep 1 done - $as_echo "rhbz1601610.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" @@ -137951,7 +140179,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" { set +x -$as_echo "$at_srcdir/rhbz1601610.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/rhbz1601610.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137966,7 +140194,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " +printf "%s\n" "$at_srcdir/rhbz1601610.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -137979,29 +140207,29 @@ $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "rhbz1601610.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft flush set inet firewalld_check_ipset foobar >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1601610.at:4" - $as_echo "rhbz1601610.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout { type ipv4_addr \; timeout 600s \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1601610.at:4" - $as_echo "rhbz1601610.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_size { type ipv4_addr \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1601610.at:4" - $as_echo "rhbz1601610.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout_size { type ipv4_addr \; timeout 600s \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1601610.at:4" - $as_echo "rhbz1601610.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_interval_concat { type ipv4_addr . inet_service \; flags interval \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1601610.at:4" - $as_echo "rhbz1601610.at:4" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -j '{"nftables": [{"add": {"element": {"family": "inet", "table": "firewalld_check_ipset", "name": "foobar_interval_concat", "elem": [{"concat": [{"prefix": {"addr": "10.10.10.0", "len": 24}}, {"range": ["1234", "2000"]}]}]}}}]}' >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1601610.at:4" { set +x -$as_echo "$at_srcdir/rhbz1601610.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/rhbz1601610.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138023,7 +140251,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --new-ipset=foobar --permanent --type=hash:net " +printf "%s\n" "$at_srcdir/rhbz1601610.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --new-ipset=foobar --permanent --type=hash:net " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --new-ipset=foobar --permanent --type=hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138043,7 +140271,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1601610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138062,7 +140290,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1601610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138083,7 +140311,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.1.0/22 " +printf "%s\n" "$at_srcdir/rhbz1601610.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.1.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.1.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138102,7 +140330,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 " +printf "%s\n" "$at_srcdir/rhbz1601610.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138121,13 +140349,13 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.2.0/22 " +printf "%s\n" "$at_srcdir/rhbz1601610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.2.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.2.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "Warning: ALREADY_ENABLED: '10.1.0.0/22' already is in 'foobar' +echo >>"$at_stderr"; printf "%s\n" "Warning: ALREADY_ENABLED: '10.1.0.0/22' already is in 'foobar' " | \ $at_diff - "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" @@ -138142,7 +140370,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.2.0.0/22 " +printf "%s\n" "$at_srcdir/rhbz1601610.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.2.0.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.2.0.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138161,14 +140389,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " +printf "%s\n" "$at_srcdir/rhbz1601610.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "10.1.0.0/22 +echo >>"$at_stdout"; printf "%s\n" "10.1.0.0/22 10.2.0.0/22 " | \ $at_diff - "$at_stdout" || at_failed=: @@ -138185,7 +140413,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1601610.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -138198,7 +140426,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr flags interval @@ -138224,7 +140452,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=10.1.1.0/22 " +printf "%s\n" "$at_srcdir/rhbz1601610.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=10.1.1.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:36" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=10.1.1.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138243,7 +140471,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.1.0/22 " +printf "%s\n" "$at_srcdir/rhbz1601610.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.1.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:37" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.1.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138262,7 +140490,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 " +printf "%s\n" "$at_srcdir/rhbz1601610.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:38" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138281,7 +140509,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.2.0.0/22 " +printf "%s\n" "$at_srcdir/rhbz1601610.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.2.0.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:39" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.2.0.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138300,14 +140528,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " +printf "%s\n" "$at_srcdir/rhbz1601610.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:40" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "10.2.0.0/22 +echo >>"$at_stdout"; printf "%s\n" "10.2.0.0/22 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:40" @@ -138323,7 +140551,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1601610.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -138336,7 +140564,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr flags interval @@ -138362,7 +140590,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --add-entry=10.1.1.0/22 " +printf "%s\n" "$at_srcdir/rhbz1601610.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --add-entry=10.1.1.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:59" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --add-entry=10.1.1.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138381,14 +140609,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries " +printf "%s\n" "$at_srcdir/rhbz1601610.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:60" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "10.1.0.0/22 +echo >>"$at_stdout"; printf "%s\n" "10.1.0.0/22 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:60" @@ -138402,7 +140630,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --remove-entry=10.1.1.0/22 " +printf "%s\n" "$at_srcdir/rhbz1601610.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --remove-entry=10.1.1.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:63" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --remove-entry=10.1.1.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138421,14 +140649,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries " +printf "%s\n" "$at_srcdir/rhbz1601610.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:64" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:64" @@ -138443,7 +140671,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=10.3.0.0/22 " +printf "%s\n" "$at_srcdir/rhbz1601610.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=10.3.0.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:68" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=10.3.0.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138462,7 +140690,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --runtime-to-permanent " +printf "%s\n" "$at_srcdir/rhbz1601610.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --runtime-to-permanent " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:69" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138482,7 +140710,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1601610.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138501,7 +140729,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1601610.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138523,7 +140751,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1601610.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -138536,7 +140764,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr flags interval @@ -138559,7 +140787,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:89: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1601610.at:89: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1601610.at:89" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138576,7 +140804,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1601610.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:90" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138595,7 +140823,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1601610.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:90" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138617,7 +140845,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1601610.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -138630,7 +140858,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr flags interval @@ -138655,7 +140883,7 @@ $at_traceon; } if test x"-e '/ERROR: COMMAND_FAILED:.*already added.*/d' -e '/ERROR: COMMAND_FAILED:.*element.*exists/d' -e '/Kernel support protocol versions/d' -e '/WARNING: ALREADY_ENABLED:/d'" != x"ignore"; then - $as_echo "rhbz1601610.at:108" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:108" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: COMMAND_FAILED:.*already added.*/d' -e '/ERROR: COMMAND_FAILED:.*element.*exists/d' -e '/Kernel support protocol versions/d' -e '/WARNING: ALREADY_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:108" fi @@ -138666,13 +140894,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_119 -#AT_START_120 -at_fn_group_banner 120 'gh303.at:1' \ +#AT_STOP_126 +#AT_START_127 +at_fn_group_banner 127 'gh303.at:1' \ "unicode in XML" " " 5 at_xfail=no ( - $as_echo "120. $at_setup_line: testing $at_desc ..." + printf "%s\n" "127. $at_setup_line: testing $at_desc ..." $at_traceon @@ -138690,6 +140918,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -138706,7 +140935,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh303.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh303.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138720,7 +140949,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh303.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh303.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh303.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138736,7 +140965,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh303.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh303.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh303.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138800,7 +141029,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh303.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh303.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138891,7 +141120,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh303.at:1" >"$at_check_line_file" + printf "%s\n" "gh303.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh303.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -138910,7 +141139,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh303.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh303.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138931,7 +141160,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh303.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh303.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh303.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138948,7 +141177,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh303.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh303.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138963,7 +141192,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh303.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh303.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -138980,7 +141209,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -138988,7 +141217,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh303.at:1" >"$at_check_line_file" + printf "%s\n" "gh303.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh303.at:1" fi echo "$!" > firewalld.pid @@ -139005,7 +141234,7 @@ at_fn_check_skip 99 "$at_srcdir/gh303.at:1" fi sleep 1 done - $as_echo "gh303.at:1" >"$at_check_line_file" + printf "%s\n" "gh303.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh303.at:1" @@ -139014,7 +141243,7 @@ at_fn_check_skip 99 "$at_srcdir/gh303.at:1" { set +x -$as_echo "$at_srcdir/gh303.at:4: mkdir -p ./services" +printf "%s\n" "$at_srcdir/gh303.at:4: mkdir -p ./services" at_fn_check_prepare_trace "gh303.at:4" ( $at_check_trace; mkdir -p ./services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139027,7 +141256,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh303.at:5: cat < ./services/unicode-service-test.xml +printf "%s\n" "$at_srcdir/gh303.at:5: cat < ./services/unicode-service-test.xml unicode-service-test @@ -139069,7 +141298,7 @@ export LC_ALL test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -139077,7 +141306,7 @@ export LC_ALL env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh303.at:17" >"$at_check_line_file" + printf "%s\n" "gh303.at:17" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh303.at:17" fi echo "$!" > firewalld.pid @@ -139094,7 +141323,7 @@ at_fn_check_skip 99 "$at_srcdir/gh303.at:17" fi sleep 1 done - $as_echo "gh303.at:17" >"$at_check_line_file" + printf "%s\n" "gh303.at:17" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh303.at:17" @@ -139104,7 +141333,7 @@ at_fn_check_skip 99 "$at_srcdir/gh303.at:17" { set +x -$as_echo "$at_srcdir/gh303.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-service=unicode-service-test " +printf "%s\n" "$at_srcdir/gh303.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-service=unicode-service-test " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-service=unicode-service-test ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139124,7 +141353,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh303.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh303.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139143,7 +141372,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh303.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh303.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139163,7 +141392,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh303.at:22" >"$at_check_line_file" + printf "%s\n" "gh303.at:22" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh303.at:22" fi @@ -139174,13 +141403,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_120 -#AT_START_121 -at_fn_group_banner 121 'gh335.at:1' \ +#AT_STOP_127 +#AT_START_128 +at_fn_group_banner 128 'gh335.at:1' \ "forward-port toaddr enables IP forwarding" " " 5 at_xfail=no ( - $as_echo "121. $at_setup_line: testing $at_desc ..." + printf "%s\n" "128. $at_setup_line: testing $at_desc ..." $at_traceon @@ -139198,6 +141427,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -139214,7 +141444,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh335.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh335.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139228,7 +141458,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh335.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh335.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh335.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139244,7 +141474,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh335.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh335.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139308,7 +141538,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh335.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh335.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139399,7 +141629,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh335.at:1" >"$at_check_line_file" + printf "%s\n" "gh335.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh335.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -139418,7 +141648,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh335.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh335.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139439,7 +141669,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh335.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh335.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh335.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139456,7 +141686,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh335.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139471,7 +141701,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh335.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139488,7 +141718,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -139496,7 +141726,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh335.at:1" >"$at_check_line_file" + printf "%s\n" "gh335.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh335.at:1" fi echo "$!" > firewalld.pid @@ -139513,7 +141743,7 @@ at_fn_check_skip 99 "$at_srcdir/gh335.at:1" fi sleep 1 done - $as_echo "gh335.at:1" >"$at_check_line_file" + printf "%s\n" "gh335.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh335.at:1" @@ -139523,7 +141753,7 @@ at_fn_check_skip 99 "$at_srcdir/gh335.at:1" { set +x -$as_echo "$at_srcdir/gh335.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " +printf "%s\n" "$at_srcdir/gh335.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139542,7 +141772,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " +printf "%s\n" "$at_srcdir/gh335.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139565,7 +141795,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/gh335.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139582,7 +141812,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139597,7 +141827,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139615,7 +141845,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh335.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139634,7 +141864,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh335.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139656,7 +141886,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139675,7 +141905,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139698,7 +141928,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321:toaddr=\"1234:5678::4321\" " +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321:toaddr=\"1234:5678::4321\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321:toaddr="1234:5678::4321" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139715,7 +141945,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139734,7 +141964,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139758,7 +141988,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139777,7 +142007,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139798,7 +142028,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " +printf "%s\n" "$at_srcdir/gh335.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139817,7 +142047,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " +printf "%s\n" "$at_srcdir/gh335.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139840,7 +142070,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\" to-addr=\"10.10.10.10\"' " +printf "%s\n" "$at_srcdir/gh335.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\" to-addr=\"10.10.10.10\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:30" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port="12345" protocol="tcp" to-port="54321" to-addr="10.10.10.10"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139857,7 +142087,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:31" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139872,7 +142102,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139890,7 +142120,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh335.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139909,7 +142139,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh335.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139931,7 +142161,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139950,7 +142180,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139973,7 +142203,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\" to-addr=\"1234:5678::4321\"' " +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\" to-addr=\"1234:5678::4321\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port="12345" protocol="tcp" to-port="54321" to-addr="1234:5678::4321"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -139990,7 +142220,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140009,7 +142239,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140033,7 +142263,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140052,7 +142282,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140073,7 +142303,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " +printf "%s\n" "$at_srcdir/gh335.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:49" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140092,7 +142322,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " +printf "%s\n" "$at_srcdir/gh335.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:50" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140116,7 +142346,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321 " +printf "%s\n" "$at_srcdir/gh335.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:54" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140133,7 +142363,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140148,7 +142378,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:56" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140166,7 +142396,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\"' " +printf "%s\n" "$at_srcdir/gh335.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port="12345" protocol="tcp" to-port="54321"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140183,7 +142413,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:59" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140198,7 +142428,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:60" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140219,7 +142449,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\"' " +printf "%s\n" "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:62" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port="12345" protocol="tcp" to-port="54321"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140236,7 +142466,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:62" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140251,7 +142481,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +printf "%s\n" "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:62" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140270,7 +142500,7 @@ $at_traceon; } if test x"-e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then - $as_echo "gh335.at:68" >"$at_check_line_file" + printf "%s\n" "gh335.at:68" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh335.at:68" fi @@ -140281,13 +142511,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_121 -#AT_START_122 -at_fn_group_banner 122 'gh482.at:1' \ +#AT_STOP_128 +#AT_START_129 +at_fn_group_banner 129 'gh482.at:1' \ "remove forward-port after reload" " " 5 at_xfail=no ( - $as_echo "122. $at_setup_line: testing $at_desc ..." + printf "%s\n" "129. $at_setup_line: testing $at_desc ..." $at_traceon @@ -140305,6 +142535,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -140321,7 +142552,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh482.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh482.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140335,7 +142566,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh482.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh482.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh482.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140351,7 +142582,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh482.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh482.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140415,7 +142646,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh482.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh482.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140506,7 +142737,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh482.at:1" >"$at_check_line_file" + printf "%s\n" "gh482.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh482.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -140525,7 +142756,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh482.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh482.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140546,7 +142777,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh482.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh482.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh482.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140563,7 +142794,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh482.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140578,7 +142809,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh482.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140595,7 +142826,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -140603,7 +142834,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh482.at:1" >"$at_check_line_file" + printf "%s\n" "gh482.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh482.at:1" fi echo "$!" > firewalld.pid @@ -140620,7 +142851,7 @@ at_fn_check_skip 99 "$at_srcdir/gh482.at:1" fi sleep 1 done - $as_echo "gh482.at:1" >"$at_check_line_file" + printf "%s\n" "gh482.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh482.at:1" @@ -140632,7 +142863,7 @@ at_fn_check_skip 99 "$at_srcdir/gh482.at:1" { set +x -$as_echo "$at_srcdir/gh482.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " +printf "%s\n" "$at_srcdir/gh482.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140651,7 +142882,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " +printf "%s\n" "$at_srcdir/gh482.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140671,7 +142902,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " +printf "%s\n" "$at_srcdir/gh482.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140691,7 +142922,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh482.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140710,7 +142941,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh482.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140730,7 +142961,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " +printf "%s\n" "$at_srcdir/gh482.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140749,7 +142980,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " +printf "%s\n" "$at_srcdir/gh482.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140769,7 +143000,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-forward-port=port=1234:proto=tcp:toport=4321 " +printf "%s\n" "$at_srcdir/gh482.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-forward-port=port=1234:proto=tcp:toport=4321 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-forward-port=port=1234:proto=tcp:toport=4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140789,7 +143020,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh482.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140808,7 +143039,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh482.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140828,7 +143059,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-forward-port=port=1234:proto=tcp:toport=4321 " +printf "%s\n" "$at_srcdir/gh482.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-forward-port=port=1234:proto=tcp:toport=4321 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-forward-port=port=1234:proto=tcp:toport=4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140847,7 +143078,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-forward-port=port=1234:proto=tcp:toport=4321 " +printf "%s\n" "$at_srcdir/gh482.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-forward-port=port=1234:proto=tcp:toport=4321 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-forward-port=port=1234:proto=tcp:toport=4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140866,7 +143097,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh482.at:17" >"$at_check_line_file" + printf "%s\n" "gh482.at:17" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh482.at:17" fi @@ -140877,13 +143108,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_122 -#AT_START_123 -at_fn_group_banner 123 'gh478.at:1' \ +#AT_STOP_129 +#AT_START_130 +at_fn_group_banner 130 'gh478.at:1' \ "rich rule marks every packet" " " 5 at_xfail=no ( - $as_echo "123. $at_setup_line: testing $at_desc ..." + printf "%s\n" "130. $at_setup_line: testing $at_desc ..." $at_traceon @@ -140901,6 +143132,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -140917,7 +143149,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh478.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh478.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140931,7 +143163,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh478.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh478.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh478.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -140947,7 +143179,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh478.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh478.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh478.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141011,7 +143243,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh478.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh478.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141102,7 +143334,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh478.at:1" >"$at_check_line_file" + printf "%s\n" "gh478.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh478.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -141121,7 +143353,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh478.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh478.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141142,7 +143374,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh478.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh478.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh478.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141159,7 +143391,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh478.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh478.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141174,7 +143406,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh478.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh478.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141191,7 +143423,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -141199,7 +143431,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh478.at:1" >"$at_check_line_file" + printf "%s\n" "gh478.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh478.at:1" fi echo "$!" > firewalld.pid @@ -141216,7 +143448,7 @@ at_fn_check_skip 99 "$at_srcdir/gh478.at:1" fi sleep 1 done - $as_echo "gh478.at:1" >"$at_check_line_file" + printf "%s\n" "gh478.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh478.at:1" @@ -141228,7 +143460,7 @@ at_fn_check_skip 99 "$at_srcdir/gh478.at:1" { set +x -$as_echo "$at_srcdir/gh478.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule port port=1234 protocol=tcp mark set=10' " +printf "%s\n" "$at_srcdir/gh478.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule port port=1234 protocol=tcp mark set=10' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule port port=1234 protocol=tcp mark set=10' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141247,7 +143479,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh478.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule protocol value=icmp mark set=11' " +printf "%s\n" "$at_srcdir/gh478.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule protocol value=icmp mark set=11' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule protocol value=icmp mark set=11' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141266,7 +143498,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh478.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule source-port port=4321 protocol=tcp mark set=12' " +printf "%s\n" "$at_srcdir/gh478.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule source-port port=4321 protocol=tcp mark set=12' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule source-port port=4321 protocol=tcp mark set=12' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141288,7 +143520,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh478.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh478.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -141301,7 +143533,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PRE_public_allow { tcp dport 1234 mark set 0x0000000a meta l4proto icmp mark set 0x0000000b @@ -141329,7 +143561,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh478.at:28" >"$at_check_line_file" + printf "%s\n" "gh478.at:28" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh478.at:28" fi @@ -141340,13 +143572,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_123 -#AT_START_124 -at_fn_group_banner 124 'gh453.at:1' \ +#AT_STOP_130 +#AT_START_131 +at_fn_group_banner 131 'gh453.at:1' \ "nftables helper objects" " " 5 at_xfail=no ( - $as_echo "124. $at_setup_line: testing $at_desc ..." + printf "%s\n" "131. $at_setup_line: testing $at_desc ..." $at_traceon @@ -141364,6 +143596,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -141380,7 +143613,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh453.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh453.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh453.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141394,7 +143627,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh453.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh453.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh453.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141410,7 +143643,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh453.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh453.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh453.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141474,7 +143707,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh453.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh453.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh453.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141565,7 +143798,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh453.at:1" >"$at_check_line_file" + printf "%s\n" "gh453.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh453.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -141584,7 +143817,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh453.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141605,7 +143838,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh453.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh453.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh453.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141622,7 +143855,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh453.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141637,7 +143870,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh453.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141654,7 +143887,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -141662,7 +143895,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh453.at:1" >"$at_check_line_file" + printf "%s\n" "gh453.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh453.at:1" fi echo "$!" > firewalld.pid @@ -141679,7 +143912,7 @@ at_fn_check_skip 99 "$at_srcdir/gh453.at:1" fi sleep 1 done - $as_echo "gh453.at:1" >"$at_check_line_file" + printf "%s\n" "gh453.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh453.at:1" @@ -141691,7 +143924,7 @@ at_fn_check_skip 99 "$at_srcdir/gh453.at:1" { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ct_helper " +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ct_helper " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh453.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check_ct_helper ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141704,12 +143937,12 @@ $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "gh453.at:1" >"$at_check_line_file" + printf "%s\n" "gh453.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add ct helper inet firewalld helper-ftp-tcp { type \"ftp\" protocol tcp \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh453.at:1" { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ct_helper " +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ct_helper " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh453.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_ct_helper ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141729,7 +143962,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-automatic-helpers=no " +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-automatic-helpers=no " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh453.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --set-automatic-helpers=no ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141749,7 +143982,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftp " +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh453.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141766,14 +143999,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list ruleset | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } |grep -A3 \"ct helper helper-ftp-tcp\" " +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list ruleset | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } |grep -A3 \"ct helper helper-ftp-tcp\" " at_fn_check_prepare_notrace 'a $(...) command substitution' "gh453.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list ruleset | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } |grep -A3 "ct helper helper-ftp-tcp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ct helper helper-ftp-tcp { +echo >>"$at_stdout"; printf "%s\n" "ct helper helper-ftp-tcp { type \"ftp\" protocol tcp l3proto inet } @@ -141790,7 +144023,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -141803,7 +144036,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -141827,7 +144060,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=sip " +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=sip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh453.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141844,14 +144077,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list ruleset | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } |grep -A3 \"ct helper helper-sip-tcp\" " +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list ruleset | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } |grep -A3 \"ct helper helper-sip-tcp\" " at_fn_check_prepare_notrace 'a $(...) command substitution' "gh453.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list ruleset | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } |grep -A3 "ct helper helper-sip-tcp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ct helper helper-sip-tcp { +echo >>"$at_stdout"; printf "%s\n" "ct helper helper-sip-tcp { type \"sip\" protocol tcp l3proto inet } @@ -141864,14 +144097,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list ruleset | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } |grep -A3 \"ct helper helper-sip-udp\" " +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list ruleset | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } |grep -A3 \"ct helper helper-sip-udp\" " at_fn_check_prepare_notrace 'a $(...) command substitution' "gh453.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list ruleset | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } |grep -A3 "ct helper helper-sip-udp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ct helper helper-sip-udp { +echo >>"$at_stdout"; printf "%s\n" "ct helper helper-sip-udp { type \"sip\" protocol udp l3proto inet } @@ -141888,7 +144121,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh453.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -141901,7 +144134,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -141928,7 +144161,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh453.at:1" >"$at_check_line_file" + printf "%s\n" "gh453.at:1" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh453.at:1" fi @@ -141939,13 +144172,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_124 -#AT_START_125 -at_fn_group_banner 125 'gh258.at:1' \ +#AT_STOP_131 +#AT_START_132 +at_fn_group_banner 132 'gh258.at:1' \ "zone dispatch layout" " " 5 at_xfail=no ( - $as_echo "125. $at_setup_line: testing $at_desc ..." + printf "%s\n" "132. $at_setup_line: testing $at_desc ..." $at_traceon @@ -141963,6 +144196,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -141979,7 +144213,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh258.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh258.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -141993,7 +144227,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh258.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh258.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh258.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142009,7 +144243,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh258.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh258.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142073,7 +144307,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh258.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh258.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142164,7 +144398,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh258.at:1" >"$at_check_line_file" + printf "%s\n" "gh258.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh258.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -142183,7 +144417,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh258.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh258.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142204,7 +144438,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh258.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh258.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh258.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142221,7 +144455,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh258.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142236,7 +144470,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh258.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142253,7 +144487,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -142261,7 +144495,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh258.at:1" >"$at_check_line_file" + printf "%s\n" "gh258.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh258.at:1" fi echo "$!" > firewalld.pid @@ -142278,7 +144512,7 @@ at_fn_check_skip 99 "$at_srcdir/gh258.at:1" fi sleep 1 done - $as_echo "gh258.at:1" >"$at_check_line_file" + printf "%s\n" "gh258.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh258.at:1" @@ -142290,7 +144524,7 @@ at_fn_check_skip 99 "$at_srcdir/gh258.at:1" { set +x -$as_echo "$at_srcdir/gh258.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-source=\"1.2.3.0/24\" " +printf "%s\n" "$at_srcdir/gh258.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-source=\"1.2.3.0/24\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-source="1.2.3.0/24" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142312,7 +144546,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=\"dead:beef::/54\" " +printf "%s\n" "$at_srcdir/gh258.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=\"dead:beef::/54\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source="dead:beef::/54" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142333,7 +144567,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=dummy0 " +printf "%s\n" "$at_srcdir/gh258.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=dummy0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142352,7 +144586,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=dummy1 " +printf "%s\n" "$at_srcdir/gh258.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=dummy1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=dummy1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142373,7 +144607,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh258.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142392,7 +144626,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh258.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -142415,7 +144649,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142428,7 +144662,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT { ct state established,related accept ct status dnat accept @@ -142455,7 +144689,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142468,7 +144702,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { ip6 saddr dead:beef::/54 jump filter_IN_policy_allow-host-ipv6 ip6 saddr dead:beef::/54 jump filter_IN_public @@ -142504,7 +144738,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142517,7 +144751,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD { ct state established,related accept ct status dnat accept @@ -142545,7 +144779,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142558,7 +144792,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { ip6 saddr dead:beef::/54 ip6 daddr dead:beef::/54 jump filter_FWD_public ip6 saddr dead:beef::/54 ip6 daddr dead:beef::/54 reject with icmpx admin-prohibited @@ -142631,7 +144865,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142644,7 +144878,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_PREROUTING { icmpv6 type { nd-router-advert, nd-neighbor-solicit } accept meta nfproto ipv6 fib saddr . mark . iif oif missing drop @@ -142671,7 +144905,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142684,7 +144918,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_PREROUTING { } } @@ -142708,7 +144942,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142721,7 +144955,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING { jump mangle_PREROUTING_POLICIES } @@ -142743,7 +144977,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142756,7 +144990,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { ip6 saddr dead:beef::/54 jump mangle_PRE_policy_allow-host-ipv6 ip6 saddr dead:beef::/54 ip6 daddr dead:beef::/54 jump mangle_PRE_public @@ -142808,7 +145042,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142821,7 +145055,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING { jump nat_PREROUTING_POLICIES } @@ -142843,7 +145077,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142856,7 +145090,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { ip6 saddr dead:beef::/54 jump nat_PRE_policy_allow-host-ipv6 ip6 saddr dead:beef::/54 ip6 daddr dead:beef::/54 jump nat_PRE_public @@ -142908,7 +145142,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142921,7 +145155,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING { jump nat_POSTROUTING_POLICIES } @@ -142943,7 +145177,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh258.at:224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -142956,7 +145190,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { ip6 saddr dead:beef::/54 ip6 daddr dead:beef::/54 jump nat_POST_public ip6 saddr dead:beef::/54 ip6 daddr dead:beef::/54 return @@ -143095,7 +145329,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh258.at:595" >"$at_check_line_file" + printf "%s\n" "gh258.at:595" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh258.at:595" fi @@ -143106,13 +145340,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_125 -#AT_START_126 -at_fn_group_banner 126 'rhbz1715977.at:1' \ +#AT_STOP_132 +#AT_START_133 +at_fn_group_banner 133 'rhbz1715977.at:1' \ "rich rule src/dst with service destination" " " 5 at_xfail=no ( - $as_echo "126. $at_setup_line: testing $at_desc ..." + printf "%s\n" "133. $at_setup_line: testing $at_desc ..." $at_traceon @@ -143130,6 +145364,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -143146,7 +145381,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143160,7 +145395,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1715977.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143176,7 +145411,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1715977.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143240,7 +145475,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143331,7 +145566,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1715977.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1715977.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -143350,7 +145585,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143371,7 +145606,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1715977.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143388,7 +145623,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143403,7 +145638,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143420,7 +145655,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -143428,7 +145663,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1715977.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1715977.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" fi echo "$!" > firewalld.pid @@ -143445,7 +145680,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" fi sleep 1 done - $as_echo "rhbz1715977.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1715977.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" @@ -143457,7 +145692,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" { set +x -$as_echo "$at_srcdir/rhbz1715977.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 " +printf "%s\n" "$at_srcdir/rhbz1715977.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143476,7 +145711,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"ssh\" accept' " +printf "%s\n" "$at_srcdir/rhbz1715977.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"ssh\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.122.235/32" service name="ssh" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143496,7 +145731,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1715977.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143515,7 +145750,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1715977.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143537,7 +145772,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1715977.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -143550,7 +145785,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_internal_allow { tcp dport 22 accept ip daddr 224.0.0.251 udp dport 5353 accept @@ -143584,7 +145819,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.111.222/32\" source address=\"10.10.10.0/24\" service name=\"ssh\" accept' " +printf "%s\n" "$at_srcdir/rhbz1715977.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.111.222/32\" source address=\"10.10.10.0/24\" service name=\"ssh\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:36" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.111.222/32" source address="10.10.10.0/24" service name="ssh" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143605,7 +145840,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1715977.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -143618,7 +145853,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_internal_allow { tcp dport 22 accept ip daddr 224.0.0.251 udp dport 5353 accept @@ -143653,7 +145888,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 service name=\"ssdp\" accept' " +printf "%s\n" "$at_srcdir/rhbz1715977.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 service name=\"ssdp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:68" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 service name="ssdp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143674,7 +145909,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1715977.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -143687,7 +145922,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_internal_allow { tcp dport 22 accept ip daddr 224.0.0.251 udp dport 5353 accept @@ -143723,7 +145958,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"mdns\" accept' " +printf "%s\n" "$at_srcdir/rhbz1715977.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"mdns\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:102" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.122.235/32" service name="mdns" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143742,7 +145977,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"mdns\" accept' " +printf "%s\n" "$at_srcdir/rhbz1715977.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"mdns\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:103" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.122.235/32" service name="mdns" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143762,7 +145997,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1715977.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:104" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143781,7 +146016,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1715977.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:104" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143801,7 +146036,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_RULE: Destination conflict with service/d'" != x"ignore"; then - $as_echo "rhbz1715977.at:106" >"$at_check_line_file" + printf "%s\n" "rhbz1715977.at:106" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_RULE: Destination conflict with service/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:106" fi @@ -143812,13 +146047,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_126 -#AT_START_127 -at_fn_group_banner 127 'rhbz1723610.at:1' \ +#AT_STOP_133 +#AT_START_134 +at_fn_group_banner 134 'rhbz1723610.at:1' \ "direct remove-rules per family" " " 5 at_xfail=no ( - $as_echo "127. $at_setup_line: testing $at_desc ..." + printf "%s\n" "134. $at_setup_line: testing $at_desc ..." $at_traceon @@ -143836,6 +146071,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -143852,7 +146088,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143866,7 +146102,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1723610.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143882,7 +146118,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1723610.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -143946,7 +146182,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144037,7 +146273,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1723610.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1723610.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -144056,7 +146292,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144077,7 +146313,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1723610.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144094,7 +146330,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144109,7 +146345,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144126,7 +146362,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -144134,7 +146370,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1723610.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1723610.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" fi echo "$!" > firewalld.pid @@ -144151,7 +146387,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" fi sleep 1 done - $as_echo "rhbz1723610.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1723610.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" @@ -144160,7 +146396,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" - $as_echo "rhbz1723610.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1723610.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1723610.at:3" @@ -144170,7 +146406,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" { set +x -$as_echo "$at_srcdir/rhbz1723610.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144189,7 +146425,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144208,7 +146444,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144227,7 +146463,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144246,7 +146482,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144265,7 +146501,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144285,7 +146521,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1723610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144304,7 +146540,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1723610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144324,7 +146560,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144343,7 +146579,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144362,7 +146598,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144382,7 +146618,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv6 filter INPUT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv6 filter INPUT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv6 filter INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144401,7 +146637,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv4 filter INPUT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv4 filter INPUT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv4 filter INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144420,7 +146656,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144439,7 +146675,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144458,7 +146694,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144478,7 +146714,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1723610.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144497,7 +146733,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1723610.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144517,7 +146753,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:22" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144536,7 +146772,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:23" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144555,7 +146791,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:24" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144574,7 +146810,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144593,7 +146829,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --remove-rules ipv4 filter OUTPUT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --remove-rules ipv4 filter OUTPUT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --remove-rules ipv4 filter OUTPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144612,7 +146848,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144631,7 +146867,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144650,7 +146886,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:29" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144669,7 +146905,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1723610.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:30" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144688,7 +146924,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1723610.at:32" >"$at_check_line_file" + printf "%s\n" "rhbz1723610.at:32" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:32" fi @@ -144699,13 +146935,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_127 -#AT_START_128 -at_fn_group_banner 128 'rhbz1734765.at:1' \ +#AT_STOP_134 +#AT_START_135 +at_fn_group_banner 135 'rhbz1734765.at:1' \ "zone sources ordered by name" " " 5 at_xfail=no ( - $as_echo "128. $at_setup_line: testing $at_desc ..." + printf "%s\n" "135. $at_setup_line: testing $at_desc ..." $at_traceon @@ -144723,6 +146959,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -144739,7 +146976,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144753,7 +146990,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1734765.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144769,7 +147006,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1734765.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144833,7 +147070,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144924,7 +147161,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1734765.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1734765.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -144943,7 +147180,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144964,7 +147201,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1734765.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144981,7 +147218,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -144996,7 +147233,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145013,7 +147250,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -145021,7 +147258,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1734765.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1734765.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" fi echo "$!" > firewalld.pid @@ -145038,7 +147275,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" fi sleep 1 done - $as_echo "rhbz1734765.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1734765.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" @@ -145049,7 +147286,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" - $as_echo "rhbz1734765.at:7" >"$at_check_line_file" + printf "%s\n" "rhbz1734765.at:7" >"$at_check_line_file" (test -n "$FW_IN_CONTAINER" -a "(" "$(cat /proc/sys/net/core/rmem_max 2>/dev/null || cat /.host/proc/sys/net/core/rmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_max 2>/dev/null || cat /.host/proc/sys/net/core/wmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_default 2>/dev/null || cat /.host/proc/sys/net/core/wmem_default 2>/dev/null || echo 0)" -lt 4096000 ")" ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1734765.at:7" @@ -145060,7 +147297,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" { set +x -$as_echo "$at_srcdir/rhbz1734765.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_00 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_00 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_00 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145079,7 +147316,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_05 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_05 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_05 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145098,7 +147335,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_02 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_02 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_02 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145117,7 +147354,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_03 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_03 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_03 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145136,7 +147373,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_01 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_01 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_01 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145155,7 +147392,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_04 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_04 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_04 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145174,7 +147411,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_010 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_010 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_010 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145193,7 +147430,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_011 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_011 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_011 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145212,7 +147449,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_012 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_012 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_012 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145232,7 +147469,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv4' --type hash:ip " +printf "%s\n" "$at_srcdir/rhbz1734765.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv4' --type hash:ip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv4' --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145251,7 +147488,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv6' --type hash:ip --family=inet6 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv6' --type hash:ip --family=inet6 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv6' --type hash:ip --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145270,7 +147507,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv4 --add-entry '192.0.2.12' " +printf "%s\n" "$at_srcdir/rhbz1734765.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv4 --add-entry '192.0.2.12' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv4 --add-entry '192.0.2.12' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145289,7 +147526,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv6 --add-entry '::2' " +printf "%s\n" "$at_srcdir/rhbz1734765.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv6 --add-entry '::2' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:22" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv6 --add-entry '::2' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145309,7 +147546,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_011 --add-source ipset:ipsetv4 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_011 --add-source ipset:ipsetv4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:24" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_011 --add-source ipset:ipsetv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145328,7 +147565,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source=\"10.1.1.0/24\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source=\"10.1.1.0/24\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source="10.1.1.0/24" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145347,7 +147584,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source=\"10.1.0.0/16\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source=\"10.1.0.0/16\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source="10.1.0.0/16" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145366,7 +147603,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source=\"10.2.0.0/16\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source=\"10.2.0.0/16\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source="10.2.0.0/16" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145385,7 +147622,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source=\"10.1.1.1\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source=\"10.1.1.1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source="10.1.1.1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145404,7 +147641,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source=\"10.2.2.0/24\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source=\"10.2.2.0/24\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:29" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source="10.2.2.0/24" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145423,7 +147660,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source=\"10.0.0.0/8\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source=\"10.0.0.0/8\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:30" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source="10.0.0.0/8" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145445,7 +147682,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source=\"1234:5678::1:1:0/112\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source=\"1234:5678::1:1:0/112\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source="1234:5678::1:1:0/112" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145464,7 +147701,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source=\"1234:5678::1:0:0/96\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source=\"1234:5678::1:0:0/96\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source="1234:5678::1:0:0/96" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145483,7 +147720,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source=\"1234:5678::2:0:0/96\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source=\"1234:5678::2:0:0/96\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source="1234:5678::2:0:0/96" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145502,7 +147739,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source=\"1234:5678::2:2:0/112\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source=\"1234:5678::2:2:0/112\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source="1234:5678::2:2:0/112" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145521,7 +147758,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source=\"1234:5678::0:0:0/80\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source=\"1234:5678::0:0:0/80\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source="1234:5678::0:0:0/80" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145540,7 +147777,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source=\"1234:5678::1:1:1\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source=\"1234:5678::1:1:1\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source="1234:5678::1:1:1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145562,7 +147799,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:40" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145581,7 +147818,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=trusted --add-interface=foobar1 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=trusted --add-interface=foobar1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:41" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=trusted --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145602,7 +147839,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1734765.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:43" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145621,7 +147858,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1734765.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:43" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145644,7 +147881,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1734765.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld ipsetv4; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -145657,7 +147894,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set ipsetv4 { type ipv4_addr flags interval @@ -145681,7 +147918,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1734765.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld ipsetv6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -145694,7 +147931,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set ipsetv6 { type ipv6_addr flags interval @@ -145717,7 +147954,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source=\"10.10.10.10\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source=\"10.10.10.10\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:64" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source="10.10.10.10" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145736,7 +147973,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-source=\"20.20.20.20\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-source=\"20.20.20.20\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:65" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-source="20.20.20.20" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145758,7 +147995,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source=\"1234:5678::10:10:10\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source=\"1234:5678::10:10:10\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:66" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source="1234:5678::10:10:10" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145777,7 +148014,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-source=\"1234:5678::20:20:20\" " +printf "%s\n" "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-source=\"1234:5678::20:20:20\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:66" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-source="1234:5678::20:20:20" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145796,7 +148033,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_012 --add-source ipset:ipsetv6 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_012 --add-source ipset:ipsetv6 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:66" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_012 --add-source ipset:ipsetv6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145817,7 +148054,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-interface=foobar2 " +printf "%s\n" "$at_srcdir/rhbz1734765.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-interface=foobar2 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-interface=foobar2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -145839,7 +148076,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1734765.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -145852,7 +148089,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { ip saddr 10.1.1.1 jump filter_IN_policy_allow-host-ipv6 ip saddr 10.1.1.1 jump filter_IN_foobar_00 @@ -145939,7 +148176,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1734765.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -145952,7 +148189,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { ip saddr 10.1.1.1 ip daddr 10.1.1.1 jump nat_POST_foobar_00 ip saddr 10.1.1.1 ip daddr 10.1.1.1 return @@ -146622,7 +148859,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1734765.at:879" >"$at_check_line_file" + printf "%s\n" "rhbz1734765.at:879" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:879" fi @@ -146633,13 +148870,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_128 -#AT_START_129 -at_fn_group_banner 129 'gh509.at:1' \ +#AT_STOP_135 +#AT_START_136 +at_fn_group_banner 136 'gh509.at:1' \ "missing firewalld.conf file" " " 5 at_xfail=no ( - $as_echo "129. $at_setup_line: testing $at_desc ..." + printf "%s\n" "136. $at_setup_line: testing $at_desc ..." $at_traceon @@ -146657,6 +148894,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -146673,7 +148911,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh509.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh509.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh509.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -146687,7 +148925,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh509.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh509.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh509.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -146703,7 +148941,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh509.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh509.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh509.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -146767,7 +149005,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh509.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh509.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh509.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -146858,7 +149096,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh509.at:1" >"$at_check_line_file" + printf "%s\n" "gh509.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh509.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -146877,7 +149115,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh509.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh509.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh509.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -146898,7 +149136,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh509.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh509.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh509.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -146915,7 +149153,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh509.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh509.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh509.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -146930,7 +149168,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh509.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh509.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh509.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -146947,7 +149185,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -146955,7 +149193,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh509.at:1" >"$at_check_line_file" + printf "%s\n" "gh509.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh509.at:1" fi echo "$!" > firewalld.pid @@ -146972,7 +149210,7 @@ at_fn_check_skip 99 "$at_srcdir/gh509.at:1" fi sleep 1 done - $as_echo "gh509.at:1" >"$at_check_line_file" + printf "%s\n" "gh509.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh509.at:1" @@ -146988,13 +149226,13 @@ at_fn_check_skip 99 "$at_srcdir/gh509.at:1" else : - $as_echo "gh509.at:1" >"$at_check_line_file" + printf "%s\n" "gh509.at:1" >"$at_check_line_file" at_fn_check_skip 77 "$at_srcdir/gh509.at:1" fi { set +x -$as_echo "$at_srcdir/gh509.at:1: if ! rm ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh509.at:1: if ! rm ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh509.at:1" ( $at_check_trace; if ! rm ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147017,7 +149255,7 @@ $at_traceon; } test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -147025,7 +149263,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh509.at:1" >"$at_check_line_file" + printf "%s\n" "gh509.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh509.at:1" fi echo "$!" > firewalld.pid @@ -147042,7 +149280,7 @@ at_fn_check_skip 99 "$at_srcdir/gh509.at:1" fi sleep 1 done - $as_echo "gh509.at:1" >"$at_check_line_file" + printf "%s\n" "gh509.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh509.at:1" @@ -147051,7 +149289,7 @@ at_fn_check_skip 99 "$at_srcdir/gh509.at:1" if test x"-e '/ERROR: Failed to load/d' -e '/WARNING:.*No such file or directory:.*/d' -e '/WARNING: Using fallback firewalld configuration settings/d'" != x"ignore"; then - $as_echo "gh509.at:1" >"$at_check_line_file" + printf "%s\n" "gh509.at:1" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: Failed to load/d' -e '/WARNING:.*No such file or directory:.*/d' -e '/WARNING: Using fallback firewalld configuration settings/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh509.at:1" fi @@ -147062,13 +149300,13 @@ at_fn_check_skip 99 "$at_srcdir/gh509.at:1" $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_129 -#AT_START_130 -at_fn_group_banner 130 'gh567.at:1' \ +#AT_STOP_136 +#AT_START_137 +at_fn_group_banner 137 'gh567.at:1' \ "rich rule source w/ mark action" " " 5 at_xfail=no ( - $as_echo "130. $at_setup_line: testing $at_desc ..." + printf "%s\n" "137. $at_setup_line: testing $at_desc ..." $at_traceon @@ -147086,6 +149324,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -147102,7 +149341,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh567.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh567.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147116,7 +149355,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh567.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh567.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh567.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147132,7 +149371,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh567.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh567.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh567.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147196,7 +149435,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh567.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh567.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147287,7 +149526,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh567.at:1" >"$at_check_line_file" + printf "%s\n" "gh567.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh567.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -147306,7 +149545,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh567.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh567.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147327,7 +149566,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh567.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh567.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh567.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147344,7 +149583,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh567.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh567.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147359,7 +149598,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh567.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh567.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147376,7 +149615,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -147384,7 +149623,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh567.at:1" >"$at_check_line_file" + printf "%s\n" "gh567.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh567.at:1" fi echo "$!" > firewalld.pid @@ -147401,7 +149640,7 @@ at_fn_check_skip 99 "$at_srcdir/gh567.at:1" fi sleep 1 done - $as_echo "gh567.at:1" >"$at_check_line_file" + printf "%s\n" "gh567.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh567.at:1" @@ -147413,7 +149652,7 @@ at_fn_check_skip 99 "$at_srcdir/gh567.at:1" { set +x -$as_echo "$at_srcdir/gh567.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/gh567.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147428,7 +149667,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh567.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " +printf "%s\n" "$at_srcdir/gh567.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147441,29 +149680,29 @@ $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "gh567.at:3" >"$at_check_line_file" + printf "%s\n" "gh567.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft flush set inet firewalld_check_ipset foobar >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh567.at:3" - $as_echo "gh567.at:3" >"$at_check_line_file" + printf "%s\n" "gh567.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout { type ipv4_addr \; timeout 600s \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh567.at:3" - $as_echo "gh567.at:3" >"$at_check_line_file" + printf "%s\n" "gh567.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_size { type ipv4_addr \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh567.at:3" - $as_echo "gh567.at:3" >"$at_check_line_file" + printf "%s\n" "gh567.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout_size { type ipv4_addr \; timeout 600s \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh567.at:3" - $as_echo "gh567.at:3" >"$at_check_line_file" + printf "%s\n" "gh567.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_interval_concat { type ipv4_addr . inet_service \; flags interval \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh567.at:3" - $as_echo "gh567.at:3" >"$at_check_line_file" + printf "%s\n" "gh567.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -j '{"nftables": [{"add": {"element": {"family": "inet", "table": "firewalld_check_ipset", "name": "foobar_interval_concat", "elem": [{"concat": [{"prefix": {"addr": "10.10.10.0", "len": 24}}, {"range": ["1234", "2000"]}]}]}}}]}' >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh567.at:3" { set +x -$as_echo "$at_srcdir/gh567.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/gh567.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147485,7 +149724,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh567.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=Teste --type=hash:net " +printf "%s\n" "$at_srcdir/gh567.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=Teste --type=hash:net " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=Teste --type=hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147504,7 +149743,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh567.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule \"rule family=ipv4 source ipset=Teste mark set=2\" " +printf "%s\n" "$at_srcdir/gh567.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule \"rule family=ipv4 source ipset=Teste mark set=2\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule "rule family=ipv4 source ipset=Teste mark set=2" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147524,7 +149763,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh567.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh567.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147543,7 +149782,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh567.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh567.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147563,7 +149802,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh567.at:9" >"$at_check_line_file" + printf "%s\n" "gh567.at:9" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh567.at:9" fi @@ -147574,13 +149813,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_130 -#AT_START_131 -at_fn_group_banner 131 'rhbz1779835.at:1' \ +#AT_STOP_137 +#AT_START_138 +at_fn_group_banner 138 'rhbz1779835.at:1' \ "ipv6 address with brackets" " " 5 at_xfail=no ( - $as_echo "131. $at_setup_line: testing $at_desc ..." + printf "%s\n" "138. $at_setup_line: testing $at_desc ..." $at_traceon @@ -147598,6 +149837,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -147614,7 +149854,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147628,7 +149868,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1779835.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147644,7 +149884,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1779835.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147708,7 +149948,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147799,7 +150039,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1779835.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -147818,7 +150058,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147839,7 +150079,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1779835.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147856,7 +150096,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147871,7 +150111,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147888,7 +150128,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -147896,7 +150136,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1779835.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" fi echo "$!" > firewalld.pid @@ -147913,7 +150153,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" fi sleep 1 done - $as_echo "rhbz1779835.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" @@ -147925,7 +150165,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" { set +x -$as_echo "$at_srcdir/rhbz1779835.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/rhbz1779835.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147940,7 +150180,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " +printf "%s\n" "$at_srcdir/rhbz1779835.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -147953,29 +150193,29 @@ $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "rhbz1779835.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft flush set inet firewalld_check_ipset foobar >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:3" - $as_echo "rhbz1779835.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout { type ipv4_addr \; timeout 600s \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:3" - $as_echo "rhbz1779835.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_size { type ipv4_addr \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:3" - $as_echo "rhbz1779835.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout_size { type ipv4_addr \; timeout 600s \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:3" - $as_echo "rhbz1779835.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_interval_concat { type ipv4_addr . inet_service \; flags interval \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:3" - $as_echo "rhbz1779835.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -j '{"nftables": [{"add": {"element": {"family": "inet", "table": "firewalld_check_ipset", "name": "foobar_interval_concat", "elem": [{"concat": [{"prefix": {"addr": "10.10.10.0", "len": 24}}, {"range": ["1234", "2000"]}]}]}}}]}' >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:3" { set +x -$as_echo "$at_srcdir/rhbz1779835.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/rhbz1779835.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148002,7 +150242,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --family=inet6 " +printf "%s\n" "$at_srcdir/rhbz1779835.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --family=inet6 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148021,7 +150261,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry='[1234::4321]' " +printf "%s\n" "$at_srcdir/rhbz1779835.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry='[1234::4321]' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry='[1234::4321]' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148040,7 +150280,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar2 --type=hash:net --family=inet6 " +printf "%s\n" "$at_srcdir/rhbz1779835.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar2 --type=hash:net --family=inet6 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar2 --type=hash:net --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148059,7 +150299,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar2 --add-entry='[1234::]/64' " +printf "%s\n" "$at_srcdir/rhbz1779835.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar2 --add-entry='[1234::]/64' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar2 --add-entry='[1234::]/64' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148079,7 +150319,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1779835.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148098,7 +150338,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1779835.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148118,7 +150358,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1779835.at:14" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:14" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:14" fi @@ -148129,13 +150369,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_131 -#AT_START_132 -at_fn_group_banner 132 'rhbz1779835.at:16' \ +#AT_STOP_138 +#AT_START_139 +at_fn_group_banner 139 'rhbz1779835.at:16' \ "ipv6 address with brackets" " " 5 at_xfail=no ( - $as_echo "132. $at_setup_line: testing $at_desc ..." + printf "%s\n" "139. $at_setup_line: testing $at_desc ..." $at_traceon @@ -148153,6 +150393,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -148169,7 +150410,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:16" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148183,7 +150424,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1779835.at:16" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148199,7 +150440,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1779835.at:16" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148263,7 +150504,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:16" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148354,7 +150595,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1779835.at:16" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:16" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -148373,7 +150614,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148394,7 +150635,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1779835.at:16" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148411,7 +150652,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148426,7 +150667,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148443,7 +150684,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -148451,7 +150692,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1779835.at:16" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:16" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" fi echo "$!" > firewalld.pid @@ -148468,7 +150709,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" fi sleep 1 done - $as_echo "rhbz1779835.at:16" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:16" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" @@ -148485,7 +150726,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" { set +x -$as_echo "$at_srcdir/rhbz1779835.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-source='[::1234]' " +printf "%s\n" "$at_srcdir/rhbz1779835.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-source='[::1234]' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:22" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-source='[::1234]' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148504,7 +150745,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-source='[1234::]/64' " +printf "%s\n" "$at_srcdir/rhbz1779835.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-source='[1234::]/64' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:23" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-source='[1234::]/64' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148524,7 +150765,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-forward-port=port=1234:proto=tcp:toport=4321:toaddr=[::1234] " +printf "%s\n" "$at_srcdir/rhbz1779835.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-forward-port=port=1234:proto=tcp:toport=4321:toaddr=[::1234] " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-forward-port=port=1234:proto=tcp:toport=4321:toaddr=[::1234] ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148543,7 +150784,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] forward-port port=\"1234\" protocol=tcp to-port=\"4321\" to-addr=\"[::1234]\"' " +printf "%s\n" "$at_srcdir/rhbz1779835.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] forward-port port=\"1234\" protocol=tcp to-port=\"4321\" to-addr=\"[::1234]\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] forward-port port="1234" protocol=tcp to-port="4321" to-addr="[::1234]"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148562,7 +150803,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 forward-port port=\"1234\" protocol=tcp to-port=\"4321\" to-addr=\"[::1234]\"' " +printf "%s\n" "$at_srcdir/rhbz1779835.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 forward-port port=\"1234\" protocol=tcp to-port=\"4321\" to-addr=\"[::1234]\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 forward-port port="1234" protocol=tcp to-port="4321" to-addr="[::1234]"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148582,7 +150823,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] accept' " +printf "%s\n" "$at_srcdir/rhbz1779835.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:31" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148601,7 +150842,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 accept' " +printf "%s\n" "$at_srcdir/rhbz1779835.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148620,7 +150861,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[::4321] accept' " +printf "%s\n" "$at_srcdir/rhbz1779835.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[::4321] accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[::4321] accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148639,7 +150880,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[1234::]/64 accept' " +printf "%s\n" "$at_srcdir/rhbz1779835.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[1234::]/64 accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:34" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[1234::]/64 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148658,7 +150899,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1779835.at:36" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:36" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:36" fi @@ -148669,13 +150910,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_132 -#AT_START_133 -at_fn_group_banner 133 'gh330.at:1' \ +#AT_STOP_139 +#AT_START_140 +at_fn_group_banner 140 'gh330.at:1' \ "ipset cleanup on reload/stop" " " 5 at_xfail=no ( - $as_echo "133. $at_setup_line: testing $at_desc ..." + printf "%s\n" "140. $at_setup_line: testing $at_desc ..." $at_traceon @@ -148693,6 +150934,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -148709,7 +150951,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh330.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh330.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148723,7 +150965,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh330.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh330.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh330.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148739,7 +150981,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh330.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh330.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148803,7 +151045,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh330.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh330.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148894,7 +151136,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh330.at:1" >"$at_check_line_file" + printf "%s\n" "gh330.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh330.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -148913,7 +151155,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh330.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh330.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148934,7 +151176,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh330.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh330.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh330.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148951,7 +151193,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh330.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148966,7 +151208,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh330.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -148983,7 +151225,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -148991,7 +151233,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh330.at:1" >"$at_check_line_file" + printf "%s\n" "gh330.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh330.at:1" fi echo "$!" > firewalld.pid @@ -149008,7 +151250,7 @@ at_fn_check_skip 99 "$at_srcdir/gh330.at:1" fi sleep 1 done - $as_echo "gh330.at:1" >"$at_check_line_file" + printf "%s\n" "gh330.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh330.at:1" @@ -149017,7 +151259,7 @@ at_fn_check_skip 99 "$at_srcdir/gh330.at:1" { set +x -$as_echo "$at_srcdir/gh330.at:4: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh330.at:4: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh330.at:4" ( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149033,7 +151275,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " +printf "%s\n" "$at_srcdir/gh330.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149052,7 +151294,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh330.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149072,7 +151314,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh330.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149091,7 +151333,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh330.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149111,7 +151353,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " +printf "%s\n" "$at_srcdir/gh330.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149135,7 +151377,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh330.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -149148,7 +151390,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr flags interval @@ -149171,7 +151413,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh330.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149190,7 +151432,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh330.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149215,7 +151457,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh330.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -149240,7 +151482,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:30: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh330.at:30: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf" at_fn_check_prepare_trace "gh330.at:30" ( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149256,7 +151498,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " +printf "%s\n" "$at_srcdir/gh330.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:31" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149275,7 +151517,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh330.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149295,7 +151537,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh330.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149314,7 +151556,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh330.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149334,7 +151576,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 10.10.10.10 " +printf "%s\n" "$at_srcdir/gh330.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:34" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149358,7 +151600,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh330.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -149371,7 +151613,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr flags interval @@ -149394,7 +151636,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh330.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149413,7 +151655,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh330.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149438,7 +151680,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh330.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -149451,7 +151693,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr flags interval @@ -149473,7 +151715,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " +printf "%s\n" "$at_srcdir/gh330.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149492,7 +151734,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 4.3.2.1 " +printf "%s\n" "$at_srcdir/gh330.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 4.3.2.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 4.3.2.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149512,7 +151754,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh330.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149531,7 +151773,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh330.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149556,7 +151798,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh330.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -149569,7 +151811,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr flags interval @@ -149592,7 +151834,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " +printf "%s\n" "$at_srcdir/gh330.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:94" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149611,7 +151853,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh330.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:95" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149630,7 +151872,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 6.6.6.6 " +printf "%s\n" "$at_srcdir/gh330.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 6.6.6.6 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:96" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 6.6.6.6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149650,7 +151892,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh330.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:97" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149669,7 +151911,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh330.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:97" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149694,7 +151936,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh330.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -149707,7 +151949,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr flags interval @@ -149730,7 +151972,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " +printf "%s\n" "$at_srcdir/gh330.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:117" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149747,7 +151989,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:120: sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh330.at:120: sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf" at_fn_check_prepare_trace "gh330.at:120" ( $at_check_trace; sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149763,7 +152005,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " +printf "%s\n" "$at_srcdir/gh330.at:121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:121" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149782,7 +152024,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh330.at:122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:122" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149808,7 +152050,7 @@ $at_traceon; } test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -149816,7 +152058,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh330.at:123" >"$at_check_line_file" + printf "%s\n" "gh330.at:123" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh330.at:123" fi echo "$!" > firewalld.pid @@ -149833,7 +152075,7 @@ at_fn_check_skip 99 "$at_srcdir/gh330.at:123" fi sleep 1 done - $as_echo "gh330.at:123" >"$at_check_line_file" + printf "%s\n" "gh330.at:123" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh330.at:123" @@ -149842,7 +152084,7 @@ at_fn_check_skip 99 "$at_srcdir/gh330.at:123" { set +x -$as_echo "$at_srcdir/gh330.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " +printf "%s\n" "$at_srcdir/gh330.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:124" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -149875,7 +152117,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh330.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -149888,7 +152130,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr flags interval @@ -149907,7 +152149,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -149915,7 +152157,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh330.at:142" >"$at_check_line_file" + printf "%s\n" "gh330.at:142" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh330.at:142" fi echo "$!" > firewalld.pid @@ -149932,7 +152174,7 @@ at_fn_check_skip 99 "$at_srcdir/gh330.at:142" fi sleep 1 done - $as_echo "gh330.at:142" >"$at_check_line_file" + printf "%s\n" "gh330.at:142" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh330.at:142" @@ -149940,7 +152182,7 @@ at_fn_check_skip 99 "$at_srcdir/gh330.at:142" if test x"" != x"ignore"; then - $as_echo "gh330.at:144" >"$at_check_line_file" + printf "%s\n" "gh330.at:144" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh330.at:144" fi @@ -149951,13 +152193,13 @@ at_fn_check_skip 99 "$at_srcdir/gh330.at:142" $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_133 -#AT_START_134 -at_fn_group_banner 134 'gh599.at:1' \ +#AT_STOP_140 +#AT_START_141 +at_fn_group_banner 141 'gh599.at:1' \ "writing to log after copytruncate" " " 5 at_xfail=no ( - $as_echo "134. $at_setup_line: testing $at_desc ..." + printf "%s\n" "141. $at_setup_line: testing $at_desc ..." $at_traceon @@ -149975,6 +152217,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -149991,7 +152234,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh599.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh599.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150005,7 +152248,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh599.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh599.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh599.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150021,7 +152264,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh599.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh599.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh599.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150085,7 +152328,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh599.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh599.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150176,7 +152419,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh599.at:1" >"$at_check_line_file" + printf "%s\n" "gh599.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh599.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -150195,7 +152438,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh599.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh599.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150216,7 +152459,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh599.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh599.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh599.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150233,7 +152476,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh599.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh599.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150248,7 +152491,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh599.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh599.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150265,7 +152508,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -150273,7 +152516,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh599.at:1" >"$at_check_line_file" + printf "%s\n" "gh599.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh599.at:1" fi echo "$!" > firewalld.pid @@ -150290,7 +152533,7 @@ at_fn_check_skip 99 "$at_srcdir/gh599.at:1" fi sleep 1 done - $as_echo "gh599.at:1" >"$at_check_line_file" + printf "%s\n" "gh599.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh599.at:1" @@ -150298,19 +152541,19 @@ at_fn_check_skip 99 "$at_srcdir/gh599.at:1" -$as_echo "gh599.at:4" >"$at_check_line_file" +printf "%s\n" "gh599.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which truncate >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh599.at:4" -$as_echo "gh599.at:5" >"$at_check_line_file" +printf "%s\n" "gh599.at:5" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which wc >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh599.at:5" -$as_echo "gh599.at:6" >"$at_check_line_file" +printf "%s\n" "gh599.at:6" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which expr >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh599.at:6" { set +x -$as_echo "$at_srcdir/gh599.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} truncate -s 0 ./firewalld.log " +printf "%s\n" "$at_srcdir/gh599.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} truncate -s 0 ./firewalld.log " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} truncate -s 0 ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150328,7 +152571,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh599.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=this_does_not_exist " +printf "%s\n" "$at_srcdir/gh599.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=this_does_not_exist " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=this_does_not_exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150346,7 +152589,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh599.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} expr \$(cat ./firewalld.log | wc -c) \">\" 0 " +printf "%s\n" "$at_srcdir/gh599.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} expr \$(cat ./firewalld.log | wc -c) \">\" 0 " at_fn_check_prepare_notrace 'a $(...) command substitution' "gh599.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} expr $(cat ./firewalld.log | wc -c) ">" 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150363,7 +152606,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_SERVICE: this_does_not_exist/d'" != x"ignore"; then - $as_echo "gh599.at:17" >"$at_check_line_file" + printf "%s\n" "gh599.at:17" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE: this_does_not_exist/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh599.at:17" fi @@ -150374,13 +152617,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_134 -#AT_START_135 -at_fn_group_banner 135 'rhbz1843398.at:1' \ +#AT_STOP_141 +#AT_START_142 +at_fn_group_banner 142 'rhbz1843398.at:1' \ "rich rule source mac" " " 5 at_xfail=no ( - $as_echo "135. $at_setup_line: testing $at_desc ..." + printf "%s\n" "142. $at_setup_line: testing $at_desc ..." $at_traceon @@ -150398,6 +152641,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -150414,7 +152658,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150428,7 +152672,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1843398.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150444,7 +152688,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1843398.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150508,7 +152752,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150599,7 +152843,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1843398.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1843398.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -150618,7 +152862,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150639,7 +152883,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1843398.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150656,7 +152900,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150671,7 +152915,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150688,7 +152932,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -150696,7 +152940,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1843398.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1843398.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" fi echo "$!" > firewalld.pid @@ -150713,7 +152957,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" fi sleep 1 done - $as_echo "rhbz1843398.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1843398.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" @@ -150725,7 +152969,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" { set +x -$as_echo "$at_srcdir/rhbz1843398.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source mac=\"11:22:33:44:55:66\" reject' " +printf "%s\n" "$at_srcdir/rhbz1843398.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source mac=\"11:22:33:44:55:66\" reject' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source mac="11:22:33:44:55:66" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150744,7 +152988,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1843398.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule source mac=\"11:22:33:44:55:66\" reject' " +printf "%s\n" "$at_srcdir/rhbz1843398.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule source mac=\"11:22:33:44:55:66\" reject' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule source mac="11:22:33:44:55:66" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150764,7 +153008,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1843398.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1843398.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150783,7 +153027,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1843398.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1843398.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150803,7 +153047,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1843398.at:8" >"$at_check_line_file" + printf "%s\n" "rhbz1843398.at:8" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:8" fi @@ -150814,13 +153058,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_135 -#AT_START_136 -at_fn_group_banner 136 'rhbz1839781.at:1' \ +#AT_STOP_142 +#AT_START_143 +at_fn_group_banner 143 'rhbz1839781.at:1' \ "service RH-Satellite-6" " " 5 at_xfail=no ( - $as_echo "136. $at_setup_line: testing $at_desc ..." + printf "%s\n" "143. $at_setup_line: testing $at_desc ..." $at_traceon @@ -150838,6 +153082,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -150854,7 +153099,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150868,7 +153113,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1839781.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150884,7 +153129,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1839781.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -150948,7 +153193,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151039,7 +153284,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1839781.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1839781.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -151058,7 +153303,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151079,7 +153324,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1839781.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151096,7 +153341,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151111,7 +153356,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151128,7 +153373,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -151136,7 +153381,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1839781.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1839781.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" fi echo "$!" > firewalld.pid @@ -151153,7 +153398,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" fi sleep 1 done - $as_echo "rhbz1839781.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1839781.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" @@ -151165,7 +153410,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" { set +x -$as_echo "$at_srcdir/rhbz1839781.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface dummy0 " +printf "%s\n" "$at_srcdir/rhbz1839781.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface dummy0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151184,7 +153429,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1839781.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6 " +printf "%s\n" "$at_srcdir/rhbz1839781.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151206,7 +153451,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1839781.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1839781.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_trusted_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -151219,7 +153464,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_trusted_allow { tcp dport 53 accept udp dport 53 accept @@ -151261,7 +153506,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1839781.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --remove-service RH-Satellite-6 " +printf "%s\n" "$at_srcdir/rhbz1839781.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --remove-service RH-Satellite-6 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:62" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --remove-service RH-Satellite-6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151280,7 +153525,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1839781.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6-capsule " +printf "%s\n" "$at_srcdir/rhbz1839781.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6-capsule " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:63" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6-capsule ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151302,7 +153547,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1839781.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1839781.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_trusted_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -151315,7 +153560,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_trusted_allow { tcp dport 53 accept udp dport 53 accept @@ -151357,7 +153602,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1839781.at:123" >"$at_check_line_file" + printf "%s\n" "rhbz1839781.at:123" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:123" fi @@ -151368,13 +153613,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_136 -#AT_START_137 -at_fn_group_banner 137 'rhbz1689429.at:1' \ +#AT_STOP_143 +#AT_START_144 +at_fn_group_banner 144 'rhbz1689429.at:1' \ "rich rule invalid priority" " " 5 at_xfail=no ( - $as_echo "137. $at_setup_line: testing $at_desc ..." + printf "%s\n" "144. $at_setup_line: testing $at_desc ..." $at_traceon @@ -151392,6 +153637,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -151408,7 +153654,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151422,7 +153668,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1689429.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151438,7 +153684,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1689429.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151502,7 +153748,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151593,7 +153839,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1689429.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1689429.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -151612,7 +153858,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151633,7 +153879,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1689429.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151650,7 +153896,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151665,7 +153911,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151682,7 +153928,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -151690,7 +153936,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1689429.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1689429.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" fi echo "$!" > firewalld.pid @@ -151707,7 +153953,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" fi sleep 1 done - $as_echo "rhbz1689429.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1689429.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" @@ -151719,13 +153965,13 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" { set +x -$as_echo "$at_srcdir/rhbz1689429.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=foo accept' " +printf "%s\n" "$at_srcdir/rhbz1689429.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=foo accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=foo accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "Error: INVALID_PRIORITY: invalid 'priority' attribute value 'foo'. +echo >>"$at_stderr"; printf "%s\n" "Error: INVALID_PRIORITY: invalid 'priority' attribute value 'foo'. " | \ $at_diff - "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: @@ -151740,13 +153986,13 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1689429.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=foo accept' " +printf "%s\n" "$at_srcdir/rhbz1689429.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=foo accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=foo accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "Error: INVALID_PRIORITY: invalid 'priority' attribute value 'foo'. +echo >>"$at_stderr"; printf "%s\n" "Error: INVALID_PRIORITY: invalid 'priority' attribute value 'foo'. " | \ $at_diff - "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: @@ -151762,7 +154008,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1689429.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1689429.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151781,7 +154027,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1689429.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1689429.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151801,7 +154047,7 @@ $at_traceon; } if test x"ignore" != x"ignore"; then - $as_echo "rhbz1689429.at:12" >"$at_check_line_file" + printf "%s\n" "rhbz1689429.at:12" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:12" fi @@ -151812,13 +154058,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_137 -#AT_START_138 -at_fn_group_banner 138 'rhbz1483921.at:1' \ +#AT_STOP_144 +#AT_START_145 +at_fn_group_banner 145 'rhbz1483921.at:1' \ "direct and zone mutually exclusive" " " 5 at_xfail=no ( - $as_echo "138. $at_setup_line: testing $at_desc ..." + printf "%s\n" "145. $at_setup_line: testing $at_desc ..." $at_traceon @@ -151836,6 +154082,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -151852,7 +154099,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151866,7 +154113,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1483921.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151882,7 +154129,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1483921.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -151946,7 +154193,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152037,7 +154284,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1483921.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1483921.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -152056,7 +154303,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152077,7 +154324,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1483921.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152094,7 +154341,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152109,7 +154356,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152126,7 +154373,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -152134,7 +154381,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1483921.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1483921.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" fi echo "$!" > firewalld.pid @@ -152151,7 +154398,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" fi sleep 1 done - $as_echo "rhbz1483921.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1483921.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" @@ -152160,7 +154407,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" - $as_echo "rhbz1483921.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1483921.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1483921.at:3" @@ -152170,7 +154417,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" { set +x -$as_echo "$at_srcdir/rhbz1483921.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --permanent --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 " +printf "%s\n" "$at_srcdir/rhbz1483921.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --permanent --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --permanent --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152190,7 +154437,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1483921.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 " +printf "%s\n" "$at_srcdir/rhbz1483921.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152209,7 +154456,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1483921.at:9" >"$at_check_line_file" + printf "%s\n" "rhbz1483921.at:9" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:9" fi @@ -152220,13 +154467,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_138 -#AT_START_139 -at_fn_group_banner 139 'rhbz1541077.at:1' \ +#AT_STOP_145 +#AT_START_146 +at_fn_group_banner 146 'rhbz1541077.at:1' \ "hash:mac and family mutually exclusive" " " 5 at_xfail=no ( - $as_echo "139. $at_setup_line: testing $at_desc ..." + printf "%s\n" "146. $at_setup_line: testing $at_desc ..." $at_traceon @@ -152244,6 +154491,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -152260,7 +154508,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152274,7 +154522,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1541077.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152290,7 +154538,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1541077.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152354,7 +154602,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152445,7 +154693,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1541077.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1541077.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -152464,7 +154712,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152485,7 +154733,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1541077.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152502,7 +154750,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152517,7 +154765,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152534,7 +154782,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -152542,7 +154790,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1541077.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1541077.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" fi echo "$!" > firewalld.pid @@ -152559,7 +154807,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" fi sleep 1 done - $as_echo "rhbz1541077.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1541077.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" @@ -152571,7 +154819,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" { set +x -$as_echo "$at_srcdir/rhbz1541077.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset hashmacv6 --type hash:mac --family inet6 " +printf "%s\n" "$at_srcdir/rhbz1541077.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset hashmacv6 --type hash:mac --family inet6 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset hashmacv6 --type hash:mac --family inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152590,7 +154838,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1541077.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --new-ipset hashmacv6 --type hash:mac --family inet6 " +printf "%s\n" "$at_srcdir/rhbz1541077.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --new-ipset hashmacv6 --type hash:mac --family inet6 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --new-ipset hashmacv6 --type hash:mac --family inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152613,7 +154861,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rhbz1541077.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset hashmacv6 --type hash:mac --family inet6" +printf "%s\n" "$at_srcdir/rhbz1541077.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset hashmacv6 --type hash:mac --family inet6" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset hashmacv6 --type hash:mac --family inet6" "rhbz1541077.at:7" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset hashmacv6 --type hash:mac --family inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152630,7 +154878,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1541077.at:9" >"$at_check_line_file" + printf "%s\n" "rhbz1541077.at:9" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:9" fi @@ -152641,13 +154889,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_139 -#AT_START_140 -at_fn_group_banner 140 'rhbz1855140.at:1' \ +#AT_STOP_146 +#AT_START_147 +at_fn_group_banner 147 'rhbz1855140.at:1' \ "rich rule icmptypes with one family" " " 5 at_xfail=no ( - $as_echo "140. $at_setup_line: testing $at_desc ..." + printf "%s\n" "147. $at_setup_line: testing $at_desc ..." $at_traceon @@ -152665,6 +154913,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -152681,7 +154930,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152695,7 +154944,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1855140.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152711,7 +154960,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1855140.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152775,7 +155024,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152866,7 +155115,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1855140.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1855140.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -152885,7 +155134,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152906,7 +155155,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1855140.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152923,7 +155172,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152938,7 +155187,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -152955,7 +155204,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -152963,7 +155212,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1855140.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1855140.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" fi echo "$!" > firewalld.pid @@ -152980,7 +155229,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" fi sleep 1 done - $as_echo "rhbz1855140.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1855140.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" @@ -152992,7 +155241,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" { set +x -$as_echo "$at_srcdir/rhbz1855140.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"echo-request\" accept' " +printf "%s\n" "$at_srcdir/rhbz1855140.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"echo-request\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name="echo-request" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153011,7 +155260,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"neighbour-advertisement\" accept' " +printf "%s\n" "$at_srcdir/rhbz1855140.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"neighbour-advertisement\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name="neighbour-advertisement" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153030,7 +155279,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"timestamp-request\" accept' " +printf "%s\n" "$at_srcdir/rhbz1855140.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"timestamp-request\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name="timestamp-request" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153049,7 +155298,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule 'rule icmp-type name=bad-header mark set=0x86/0x86' " +printf "%s\n" "$at_srcdir/rhbz1855140.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule 'rule icmp-type name=bad-header mark set=0x86/0x86' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule 'rule icmp-type name=bad-header mark set=0x86/0x86' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153069,7 +155318,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1855140.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153088,7 +155337,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1855140.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153110,7 +155359,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1855140.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -153123,7 +155372,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PRE_public_allow { icmpv6 parameter-problem icmpv6 code 0 mark set mark & 0x00000086 ^ 0x00000086 } @@ -153145,7 +155394,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1855140.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -153158,7 +155407,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -153196,7 +155445,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' " +printf "%s\n" "$at_srcdir/rhbz1855140.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:46" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153215,7 +155464,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' " +printf "%s\n" "$at_srcdir/rhbz1855140.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153234,7 +155483,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' " +printf "%s\n" "$at_srcdir/rhbz1855140.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:48" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153256,7 +155505,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' " +printf "%s\n" "$at_srcdir/rhbz1855140.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:49" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153277,7 +155526,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_ICMPTYPE:/d'" != x"ignore"; then - $as_echo "rhbz1855140.at:53" >"$at_check_line_file" + printf "%s\n" "rhbz1855140.at:53" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ICMPTYPE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:53" fi @@ -153288,13 +155537,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_140 -#AT_START_141 -at_fn_group_banner 141 'rhbz1871298.at:1' \ +#AT_STOP_147 +#AT_START_148 +at_fn_group_banner 148 'rhbz1871298.at:1' \ "rich rule parsing bottleneck" " " 5 at_xfail=no ( - $as_echo "141. $at_setup_line: testing $at_desc ..." + printf "%s\n" "148. $at_setup_line: testing $at_desc ..." $at_traceon @@ -153312,6 +155561,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -153328,7 +155578,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153342,7 +155592,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1871298.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153358,7 +155608,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1871298.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153422,7 +155672,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153513,7 +155763,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1871298.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1871298.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -153532,7 +155782,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153553,7 +155803,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1871298.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153570,7 +155820,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153585,7 +155835,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153602,7 +155852,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -153610,7 +155860,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1871298.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1871298.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:1" fi echo "$!" > firewalld.pid @@ -153627,7 +155877,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:1" fi sleep 1 done - $as_echo "rhbz1871298.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1871298.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:1" @@ -153635,13 +155885,13 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:1" -$as_echo "rhbz1871298.at:4" >"$at_check_line_file" +printf "%s\n" "rhbz1871298.at:4" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which timeout >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1871298.at:4" { set +x -$as_echo "$at_srcdir/rhbz1871298.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} mkdir -p ./zones " +printf "%s\n" "$at_srcdir/rhbz1871298.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} mkdir -p ./zones " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153656,7 +155906,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1871298.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo '' > ./zones/foobar.xml " +printf "%s\n" "$at_srcdir/rhbz1871298.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo '' > ./zones/foobar.xml " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo '' > ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153671,7 +155921,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1871298.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"\" >> ./zones/foobar.xml " +printf "%s\n" "$at_srcdir/rhbz1871298.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"\" >> ./zones/foobar.xml " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "" >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153686,7 +155936,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1871298.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"foobar\" >> ./zones/foobar.xml " +printf "%s\n" "$at_srcdir/rhbz1871298.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"foobar\" >> ./zones/foobar.xml " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "foobar" >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153701,7 +155951,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1871298.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh -c 'for I in \$(seq 10000); do echo \"\" >> ./zones/foobar.xml; done' " +printf "%s\n" "$at_srcdir/rhbz1871298.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh -c 'for I in \$(seq 10000); do echo \"\" >> ./zones/foobar.xml; done' " at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1871298.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c 'for I in $(seq 10000); do echo "" >> ./zones/foobar.xml; done' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153716,7 +155966,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1871298.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"\" >> ./zones/foobar.xml " +printf "%s\n" "$at_srcdir/rhbz1871298.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"\" >> ./zones/foobar.xml " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "" >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153735,7 +155985,7 @@ if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then fi { set +x -$as_echo "$at_srcdir/rhbz1871298.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} timeout 120 firewall-offline-cmd --system-config ./ \$FIREWALL_OFFLINE_CMD_ARGS --check-config " +printf "%s\n" "$at_srcdir/rhbz1871298.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} timeout 120 firewall-offline-cmd --system-config ./ \$FIREWALL_OFFLINE_CMD_ARGS --check-config " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} timeout 120 firewall-offline-cmd --system-config ./ $FIREWALL_OFFLINE_CMD_ARGS --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153752,7 +156002,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1871298.at:18" >"$at_check_line_file" + printf "%s\n" "rhbz1871298.at:18" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:18" fi @@ -153763,13 +156013,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_141 -#AT_START_142 -at_fn_group_banner 142 'rhbz1596304.at:1' \ +#AT_STOP_148 +#AT_START_149 +at_fn_group_banner 149 'rhbz1596304.at:1' \ "rich rules strip non-printable characters" " " 5 at_xfail=no ( - $as_echo "142. $at_setup_line: testing $at_desc ..." + printf "%s\n" "149. $at_setup_line: testing $at_desc ..." $at_traceon @@ -153787,6 +156037,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -153803,7 +156054,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153817,7 +156068,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1596304.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153833,7 +156084,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1596304.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153897,7 +156148,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -153988,7 +156239,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1596304.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1596304.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -154007,7 +156258,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154028,7 +156279,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1596304.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154045,7 +156296,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154060,7 +156311,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154077,7 +156328,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -154085,7 +156336,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1596304.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1596304.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" fi echo "$!" > firewalld.pid @@ -154102,7 +156353,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" fi sleep 1 done - $as_echo "rhbz1596304.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1596304.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" @@ -154114,7 +156365,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" { set +x -$as_echo "$at_srcdir/rhbz1596304.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-rich-rule 'rule family=\"ipv4\" source address=\"104.243.250.0/22 \" port port=80 protocol=tcp accept' " +printf "%s\n" "$at_srcdir/rhbz1596304.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-rich-rule 'rule family=\"ipv4\" source address=\"104.243.250.0/22 \" port port=80 protocol=tcp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-rich-rule 'rule family="ipv4" source address="104.243.250.0/22 " port port=80 protocol=tcp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154134,7 +156385,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1596304.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1596304.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154153,7 +156404,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1596304.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1596304.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154173,14 +156424,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1596304.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/rhbz1596304.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1596304.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default, active) +echo >>"$at_stdout"; printf "%s\n" "public (default, active) target: default ingress-priority: 0 egress-priority: 0 @@ -154209,7 +156460,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1596304.at:26" >"$at_check_line_file" + printf "%s\n" "rhbz1596304.at:26" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:26" fi @@ -154220,13 +156471,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_142 -#AT_START_143 -at_fn_group_banner 143 'gh703.at:1' \ +#AT_STOP_149 +#AT_START_150 +at_fn_group_banner 150 'gh703.at:1' \ "add source with mac address" " " 5 at_xfail=no ( - $as_echo "143. $at_setup_line: testing $at_desc ..." + printf "%s\n" "150. $at_setup_line: testing $at_desc ..." $at_traceon @@ -154244,6 +156495,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -154260,7 +156512,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh703.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh703.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154274,7 +156526,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh703.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh703.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh703.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154290,7 +156542,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh703.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh703.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh703.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154354,7 +156606,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh703.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh703.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154445,7 +156697,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh703.at:1" >"$at_check_line_file" + printf "%s\n" "gh703.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh703.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -154464,7 +156716,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh703.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh703.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154485,7 +156737,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh703.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh703.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh703.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154502,7 +156754,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh703.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh703.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154517,7 +156769,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh703.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh703.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154534,7 +156786,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -154542,7 +156794,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh703.at:1" >"$at_check_line_file" + printf "%s\n" "gh703.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh703.at:1" fi echo "$!" > firewalld.pid @@ -154559,7 +156811,7 @@ at_fn_check_skip 99 "$at_srcdir/gh703.at:1" fi sleep 1 done - $as_echo "gh703.at:1" >"$at_check_line_file" + printf "%s\n" "gh703.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh703.at:1" @@ -154571,7 +156823,7 @@ at_fn_check_skip 99 "$at_srcdir/gh703.at:1" { set +x -$as_echo "$at_srcdir/gh703.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-source=34:7e:5c:3a:4c:32 " +printf "%s\n" "$at_srcdir/gh703.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-source=34:7e:5c:3a:4c:32 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-source=34:7e:5c:3a:4c:32 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154593,7 +156845,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh703.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh703.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -154606,7 +156858,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { ether daddr 34:7e:5c:3a:4c:32 ether saddr 34:7e:5c:3a:4c:32 jump nat_POST_home ether daddr 34:7e:5c:3a:4c:32 ether saddr 34:7e:5c:3a:4c:32 return @@ -154634,7 +156886,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh703.at:23" >"$at_check_line_file" + printf "%s\n" "gh703.at:23" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh703.at:23" fi @@ -154645,13 +156897,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_143 -#AT_START_144 -at_fn_group_banner 144 'ipset_netmask_allowed.at:1' \ +#AT_STOP_150 +#AT_START_151 +at_fn_group_banner 151 'ipset_netmask_allowed.at:1' \ "ipset netmask allowed type hash:ip" " " 5 at_xfail=no ( - $as_echo "144. $at_setup_line: testing $at_desc ..." + printf "%s\n" "151. $at_setup_line: testing $at_desc ..." $at_traceon @@ -154669,6 +156921,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -154685,7 +156938,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154699,7 +156952,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "ipset_netmask_allowed.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154715,7 +156968,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "ipset_netmask_allowed.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154779,7 +157032,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154870,7 +157123,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "ipset_netmask_allowed.at:1" >"$at_check_line_file" + printf "%s\n" "ipset_netmask_allowed.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -154889,7 +157142,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154910,7 +157163,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "ipset_netmask_allowed.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154927,7 +157180,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154942,7 +157195,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -154959,7 +157212,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -154967,7 +157220,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "ipset_netmask_allowed.at:1" >"$at_check_line_file" + printf "%s\n" "ipset_netmask_allowed.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" fi echo "$!" > firewalld.pid @@ -154984,7 +157237,7 @@ at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" fi sleep 1 done - $as_echo "ipset_netmask_allowed.at:1" >"$at_check_line_file" + printf "%s\n" "ipset_netmask_allowed.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" @@ -154996,7 +157249,7 @@ at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:ip " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:ip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155016,7 +157269,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155035,7 +157288,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155056,7 +157309,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/24 " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155075,7 +157328,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/24 " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155095,7 +157348,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 4.3.2.1/32 " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 4.3.2.1/32 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 4.3.2.1/32 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155114,7 +157367,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 4.3.2.1/32 " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 4.3.2.1/32 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 4.3.2.1/32 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155134,7 +157387,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.0/22 " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155153,7 +157406,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.0/22 " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.0/22 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155172,7 +157425,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/30 " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/30 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:22" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/30 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155191,7 +157444,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/30 " +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/30 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:23" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/30 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155210,7 +157463,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_ENTRY:/d'" != x"ignore"; then - $as_echo "ipset_netmask_allowed.at:25" >"$at_check_line_file" + printf "%s\n" "ipset_netmask_allowed.at:25" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ENTRY:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:25" fi @@ -155221,13 +157474,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_144 -#AT_START_145 -at_fn_group_banner 145 'rhbz1940928.at:1' \ +#AT_STOP_151 +#AT_START_152 +at_fn_group_banner 152 'rhbz1940928.at:1' \ "direct -s/-d multiple addresses" " " 5 at_xfail=no ( - $as_echo "145. $at_setup_line: testing $at_desc ..." + printf "%s\n" "152. $at_setup_line: testing $at_desc ..." $at_traceon @@ -155245,6 +157498,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -155261,7 +157515,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155275,7 +157529,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1940928.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155291,7 +157545,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1940928.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155355,7 +157609,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155446,7 +157700,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1940928.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1940928.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -155465,7 +157719,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155486,7 +157740,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1940928.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155503,7 +157757,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155518,7 +157772,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155535,7 +157789,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -155543,7 +157797,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1940928.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1940928.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" fi echo "$!" > firewalld.pid @@ -155560,7 +157814,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" fi sleep 1 done - $as_echo "rhbz1940928.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1940928.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" @@ -155569,14 +157823,14 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" - $as_echo "rhbz1940928.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1940928.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1940928.at:3" { set +x -$as_echo "$at_srcdir/rhbz1940928.at:7: sed -i 's/^IndividualCalls.*/IndividualCalls=no/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1940928.at:7: sed -i 's/^IndividualCalls.*/IndividualCalls=no/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1940928.at:7" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=no/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155593,7 +157847,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1940928.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155612,7 +157866,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1940928.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155633,7 +157887,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1940928.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155652,7 +157906,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1940928.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155671,7 +157925,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1940928.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155690,7 +157944,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 9 -j DROP " +printf "%s\n" "$at_srcdir/rhbz1940928.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 9 -j DROP " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 9 -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155710,20 +157964,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rhbz1940928.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1940928.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT 6 -- 0.0.0.0/0 10.0.0.0/8 ACCEPT 6 -- 0.0.0.0/0 172.16.0.0/16 ACCEPT 6 -- 0.0.0.0/0 192.168.0.0/24 @@ -155745,7 +157999,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1940928.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155765,20 +158019,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rhbz1940928.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1940928.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT 132 -- 0.0.0.0/0 10.0.0.0/8 ACCEPT 132 -- 0.0.0.0/0 172.16.0.0/16 ACCEPT 132 -- 0.0.0.0/0 192.168.0.0/24 @@ -155803,7 +158057,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1940928.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155822,7 +158076,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1940928.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:43" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155841,7 +158095,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1940928.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:44" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155860,7 +158114,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +printf "%s\n" "$at_srcdir/rhbz1940928.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:45" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155879,7 +158133,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 9 -j DROP " +printf "%s\n" "$at_srcdir/rhbz1940928.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 9 -j DROP " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:46" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 9 -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155900,13 +158154,13 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rhbz1940928.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1940928.at:49" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155925,7 +158179,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1940928.at:52" >"$at_check_line_file" + printf "%s\n" "rhbz1940928.at:52" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:52" fi @@ -155936,13 +158190,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_145 -#AT_START_146 -at_fn_group_banner 146 'rhbz1936896.at:1' \ +#AT_STOP_152 +#AT_START_153 +at_fn_group_banner 153 'rhbz1936896.at:1' \ "ipset type hash:net,net" " " 5 at_xfail=no ( - $as_echo "146. $at_setup_line: testing $at_desc ..." + printf "%s\n" "153. $at_setup_line: testing $at_desc ..." $at_traceon @@ -155960,6 +158214,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -155976,7 +158231,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -155990,7 +158245,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1936896.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156006,7 +158261,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1936896.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156070,7 +158325,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156161,7 +158416,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1936896.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -156180,7 +158435,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156201,7 +158456,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1936896.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156218,7 +158473,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156233,7 +158488,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156250,7 +158505,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -156258,7 +158513,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1936896.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" fi echo "$!" > firewalld.pid @@ -156275,7 +158530,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" fi sleep 1 done - $as_echo "rhbz1936896.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" @@ -156287,7 +158542,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" { set +x -$as_echo "$at_srcdir/rhbz1936896.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/rhbz1936896.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156302,7 +158557,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1936896.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " +printf "%s\n" "$at_srcdir/rhbz1936896.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \\; } " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar { type ipv4_addr \; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156315,29 +158570,29 @@ $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "rhbz1936896.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft flush set inet firewalld_check_ipset foobar >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1936896.at:3" - $as_echo "rhbz1936896.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout { type ipv4_addr \; timeout 600s \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1936896.at:3" - $as_echo "rhbz1936896.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_size { type ipv4_addr \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1936896.at:3" - $as_echo "rhbz1936896.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_timeout_size { type ipv4_addr \; timeout 600s \; size 100000 \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1936896.at:3" - $as_echo "rhbz1936896.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add set inet firewalld_check_ipset foobar_interval_concat { type ipv4_addr . inet_service \; flags interval \; } >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1936896.at:3" - $as_echo "rhbz1936896.at:3" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -j '{"nftables": [{"add": {"element": {"family": "inet", "table": "firewalld_check_ipset", "name": "foobar_interval_concat", "elem": [{"concat": [{"prefix": {"addr": "10.10.10.0", "len": 24}}, {"range": ["1234", "2000"]}]}]}}}]}' >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz1936896.at:3" { set +x -$as_echo "$at_srcdir/rhbz1936896.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " +printf "%s\n" "$at_srcdir/rhbz1936896.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_ipset " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156359,7 +158614,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1936896.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset testset --type hash:net,net " +printf "%s\n" "$at_srcdir/rhbz1936896.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset testset --type hash:net,net " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset testset --type hash:net,net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156378,7 +158633,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1936896.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=testset --add-entry=192.168.0.0/24,10.0.1.0/24 " +printf "%s\n" "$at_srcdir/rhbz1936896.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=testset --add-entry=192.168.0.0/24,10.0.1.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=testset --add-entry=192.168.0.0/24,10.0.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156398,7 +158653,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1936896.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1936896.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156417,7 +158672,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1936896.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1936896.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156437,14 +158692,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1936896.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset=testset | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/rhbz1936896.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset=testset | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1936896.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-ipset=testset | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "testset +echo >>"$at_stdout"; printf "%s\n" "testset type: hash:net,net options: entries: 192.168.0.0/24,10.0.1.0/24 @@ -156468,7 +158723,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1936896.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz1936896.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld testset; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -156481,7 +158736,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set testset { type ipv4_addr . ipv4_addr flags interval @@ -156503,7 +158758,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1936896.at:32" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:32" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:32" fi @@ -156514,13 +158769,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_146 -#AT_START_147 -at_fn_group_banner 147 'gh795.at:1' \ +#AT_STOP_153 +#AT_START_154 +at_fn_group_banner 154 'gh795.at:1' \ "ipset entry delete w/ timeout=0" " " 5 at_xfail=no ( - $as_echo "147. $at_setup_line: testing $at_desc ..." + printf "%s\n" "154. $at_setup_line: testing $at_desc ..." $at_traceon @@ -156538,6 +158793,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -156554,7 +158810,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh795.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh795.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156568,7 +158824,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh795.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh795.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh795.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156584,7 +158840,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh795.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh795.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156648,7 +158904,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh795.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh795.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156739,7 +158995,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh795.at:1" >"$at_check_line_file" + printf "%s\n" "gh795.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh795.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -156758,7 +159014,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh795.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh795.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156779,7 +159035,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh795.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh795.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh795.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156796,7 +159052,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh795.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156811,7 +159067,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh795.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156828,7 +159084,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -156836,7 +159092,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh795.at:1" >"$at_check_line_file" + printf "%s\n" "gh795.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh795.at:1" fi echo "$!" > firewalld.pid @@ -156853,7 +159109,7 @@ at_fn_check_skip 99 "$at_srcdir/gh795.at:1" fi sleep 1 done - $as_echo "gh795.at:1" >"$at_check_line_file" + printf "%s\n" "gh795.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh795.at:1" @@ -156865,7 +159121,7 @@ at_fn_check_skip 99 "$at_srcdir/gh795.at:1" { set +x -$as_echo "$at_srcdir/gh795.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type=hash:ip --option=timeout=0 " +printf "%s\n" "$at_srcdir/gh795.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type=hash:ip --option=timeout=0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type=hash:ip --option=timeout=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156884,7 +159140,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh795.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156903,7 +159159,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh795.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156922,7 +159178,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh795.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156941,14 +159197,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries " +printf "%s\n" "$at_srcdir/gh795.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1.2.3.4 +echo >>"$at_stdout"; printf "%s\n" "1.2.3.4 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:8" @@ -156962,7 +159218,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh795.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -156981,14 +159237,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries " +printf "%s\n" "$at_srcdir/gh795.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:12" @@ -157003,7 +159259,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh795.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157022,7 +159278,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh795.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157042,7 +159298,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh795.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157061,13 +159317,13 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh795.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "Warning: ALREADY_ENABLED: '1.2.3.4' already is in 'foobar' +echo >>"$at_stderr"; printf "%s\n" "Warning: ALREADY_ENABLED: '1.2.3.4' already is in 'foobar' " | \ $at_diff - "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" @@ -157082,7 +159338,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh795.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157101,7 +159357,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh795.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157120,14 +159376,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --get-entries " +printf "%s\n" "$at_srcdir/gh795.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --get-entries " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:22" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1.2.3.4 +echo >>"$at_stdout"; printf "%s\n" "1.2.3.4 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:22" @@ -157144,7 +159400,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh795.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -157157,7 +159413,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { set foobar { type ipv4_addr flags interval @@ -157184,7 +159440,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 " +printf "%s\n" "$at_srcdir/gh795.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:43" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157203,14 +159459,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --get-entries " +printf "%s\n" "$at_srcdir/gh795.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --get-entries " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:44" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:44" @@ -157224,7 +159480,7 @@ $at_traceon; } if test x"-e '/WARNING: ALREADY_ENABLED:/d'" != x"ignore"; then - $as_echo "gh795.at:48" >"$at_check_line_file" + printf "%s\n" "gh795.at:48" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: ALREADY_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh795.at:48" fi @@ -157235,13 +159491,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_147 -#AT_START_148 -at_fn_group_banner 148 'rhbz1914935.at:1' \ +#AT_STOP_154 +#AT_START_155 +at_fn_group_banner 155 'rhbz1914935.at:1' \ "zone overlapping ports" " " 5 at_xfail=no ( - $as_echo "148. $at_setup_line: testing $at_desc ..." + printf "%s\n" "155. $at_setup_line: testing $at_desc ..." $at_traceon @@ -157259,6 +159515,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -157275,7 +159532,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157289,7 +159546,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1914935.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157305,7 +159562,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1914935.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157369,7 +159626,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157460,7 +159717,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1914935.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1914935.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -157479,7 +159736,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157500,7 +159757,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1914935.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157517,7 +159774,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157532,7 +159789,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157549,7 +159806,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -157557,7 +159814,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1914935.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1914935.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" fi echo "$!" > firewalld.pid @@ -157574,7 +159831,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" fi sleep 1 done - $as_echo "rhbz1914935.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1914935.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" @@ -157583,7 +159840,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" { set +x -$as_echo "$at_srcdir/rhbz1914935.at:4: mkdir -p ./zones" +printf "%s\n" "$at_srcdir/rhbz1914935.at:4: mkdir -p ./zones" at_fn_check_prepare_trace "rhbz1914935.at:4" ( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157610,7 +159867,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1914935.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1914935.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157629,7 +159886,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1914935.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -157646,50 +159903,20 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:15: grep \"WARNING: ALREADY_ENABLED: '1234:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:15" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '1234:tcp' already in 'foobar'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:15" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:16: grep \"WARNING: ALREADY_ENABLED: '2000-3000:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:16" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '2000-3000:tcp' already in 'foobar'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:16" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:17" +printf "%s\n" "$at_srcdir/rhbz1914935.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1024-65535/tcp +echo >>"$at_stdout"; printf "%s\n" "1024-65535/tcp " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -157711,15 +159938,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1914935.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:29" +printf "%s\n" "$at_srcdir/rhbz1914935.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:29" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -157730,15 +159957,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:29" +printf "%s\n" "$at_srcdir/rhbz1914935.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:29" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -157747,50 +159974,20 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:30: grep \"WARNING: ALREADY_ENABLED: '1234:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:30" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '1234:tcp' already in 'foobar'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:30" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:31: grep \"WARNING: ALREADY_ENABLED: '2000-3000:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:31" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '2000-3000:tcp' already in 'foobar'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:31" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-source-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:32" +printf "%s\n" "$at_srcdir/rhbz1914935.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-source-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1024-65535/tcp +echo >>"$at_stdout"; printf "%s\n" "1024-65535/tcp " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:32" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -157811,15 +160008,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1914935.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:44" +printf "%s\n" "$at_srcdir/rhbz1914935.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:39" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:39" $at_failed && at_fn_log_failure $at_traceon; } @@ -157830,15 +160027,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:44" +printf "%s\n" "$at_srcdir/rhbz1914935.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:39" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:39" $at_failed && at_fn_log_failure $at_traceon; } @@ -157847,35 +160044,20 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:45: grep \"WARNING: ALREADY_ENABLED: '1500-2500:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:45" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '1500-2500:tcp' already in 'foobar'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1914935.at:45" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:46" +printf "%s\n" "$at_srcdir/rhbz1914935.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:40" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1024-2500/tcp +echo >>"$at_stdout"; printf "%s\n" "1024-2500/tcp " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:46" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:40" $at_failed && at_fn_log_failure $at_traceon; } @@ -157896,15 +160078,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1914935.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:58" +printf "%s\n" "$at_srcdir/rhbz1914935.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:51" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -157915,15 +160097,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:58" +printf "%s\n" "$at_srcdir/rhbz1914935.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:51" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -157932,35 +160114,20 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:59: grep \"WARNING: ALREADY_ENABLED: '1500-2500:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:59" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '1500-2500:tcp' already in 'foobar'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1914935.at:59" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-source-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:60" +printf "%s\n" "$at_srcdir/rhbz1914935.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-source-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1024-2500/tcp +echo >>"$at_stdout"; printf "%s\n" "1024-2500/tcp " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:60" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -157971,9 +160138,9 @@ $at_traceon; } if test x"-e '/WARNING: ALREADY_ENABLED:/d'" != x"ignore"; then - $as_echo "rhbz1914935.at:64" >"$at_check_line_file" + printf "%s\n" "rhbz1914935.at:56" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: ALREADY_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:64" + && at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:56" fi @@ -157982,13 +160149,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_148 -#AT_START_149 -at_fn_group_banner 149 'gh696.at:1' \ +#AT_STOP_155 +#AT_START_156 +at_fn_group_banner 156 'gh696.at:1' \ "icmp-block-inversion no log blocked" " " 5 at_xfail=no ( - $as_echo "149. $at_setup_line: testing $at_desc ..." + printf "%s\n" "156. $at_setup_line: testing $at_desc ..." $at_traceon @@ -158006,6 +160173,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -158022,7 +160190,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh696.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh696.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158036,7 +160204,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh696.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh696.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh696.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158052,7 +160220,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh696.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh696.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158116,7 +160284,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh696.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh696.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158207,7 +160375,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh696.at:1" >"$at_check_line_file" + printf "%s\n" "gh696.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh696.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -158226,7 +160394,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh696.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh696.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158247,7 +160415,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh696.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh696.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh696.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158264,7 +160432,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh696.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158279,7 +160447,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh696.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158296,7 +160464,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -158304,7 +160472,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh696.at:1" >"$at_check_line_file" + printf "%s\n" "gh696.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh696.at:1" fi echo "$!" > firewalld.pid @@ -158321,7 +160489,7 @@ at_fn_check_skip 99 "$at_srcdir/gh696.at:1" fi sleep 1 done - $as_echo "gh696.at:1" >"$at_check_line_file" + printf "%s\n" "gh696.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh696.at:1" @@ -158333,7 +160501,7 @@ at_fn_check_skip 99 "$at_srcdir/gh696.at:1" { set +x -$as_echo "$at_srcdir/gh696.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --remove-icmp-block-inversion " +printf "%s\n" "$at_srcdir/gh696.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --remove-icmp-block-inversion " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --remove-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158352,7 +160520,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block echo-request " +printf "%s\n" "$at_srcdir/gh696.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158372,7 +160540,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh696.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158391,7 +160559,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh696.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158414,7 +160582,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh696.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -158427,7 +160595,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_deny { icmp echo-request reject with icmpx admin-prohibited icmpv6 echo-request reject with icmpx admin-prohibited @@ -158456,7 +160624,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied all " +printf "%s\n" "$at_srcdir/gh696.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied all " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-log-denied all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158478,7 +160646,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh696.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -158491,7 +160659,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_deny { icmp echo-request log prefix \"filter_zone_public_HOST_ICMP_BLOCK: \" icmp echo-request reject with icmpx admin-prohibited @@ -158523,7 +160691,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block-inversion " +printf "%s\n" "$at_srcdir/gh696.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block-inversion " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158542,7 +160710,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied off " +printf "%s\n" "$at_srcdir/gh696.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied off " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:54" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-log-denied off ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158564,7 +160732,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh696.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -158577,7 +160745,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -158608,7 +160776,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied all " +printf "%s\n" "$at_srcdir/gh696.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied all " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:79" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-log-denied all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158630,7 +160798,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:81: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh696.at:81: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -158643,7 +160811,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -158673,7 +160841,7 @@ $at_traceon; } if test x"-d '/WARNING: NOT_ENABLED: icmp-block-inversion/d'" != x"ignore"; then - $as_echo "gh696.at:102" >"$at_check_line_file" + printf "%s\n" "gh696.at:102" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -d '/WARNING: NOT_ENABLED: icmp-block-inversion/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh696.at:102" fi @@ -158684,13 +160852,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_149 -#AT_START_150 -at_fn_group_banner 150 'rhbz1917766.at:1' \ +#AT_STOP_156 +#AT_START_157 +at_fn_group_banner 157 'rhbz1917766.at:1' \ "rich rule source with netmask" " " 5 at_xfail=no ( - $as_echo "150. $at_setup_line: testing $at_desc ..." + printf "%s\n" "157. $at_setup_line: testing $at_desc ..." $at_traceon @@ -158708,6 +160876,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -158724,7 +160893,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158738,7 +160907,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz1917766.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158754,7 +160923,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1917766.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158818,7 +160987,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158909,7 +161078,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1917766.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1917766.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -158928,7 +161097,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158949,7 +161118,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz1917766.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158966,7 +161135,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158981,7 +161150,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -158998,7 +161167,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -159006,7 +161175,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1917766.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1917766.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" fi echo "$!" > firewalld.pid @@ -159023,7 +161192,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" fi sleep 1 done - $as_echo "rhbz1917766.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1917766.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" @@ -159036,7 +161205,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" { set +x -$as_echo "$at_srcdir/rhbz1917766.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-rich-rule='rule family=ipv4 source address=\"192.168.1.0/255.255.255.0\" accept' " +printf "%s\n" "$at_srcdir/rhbz1917766.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-rich-rule='rule family=ipv4 source address=\"192.168.1.0/255.255.255.0\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-rich-rule='rule family=ipv4 source address="192.168.1.0/255.255.255.0" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159055,7 +161224,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1917766.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule family=ipv4 source address=\"192.168.1.0/255.255.255.0\" accept' " +printf "%s\n" "$at_srcdir/rhbz1917766.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule family=ipv4 source address=\"192.168.1.0/255.255.255.0\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule family=ipv4 source address="192.168.1.0/255.255.255.0" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159088,7 +161257,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz1917766.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz1917766.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159107,7 +161276,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1917766.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz1917766.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159127,7 +161296,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1917766.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --add-interface foobar0 " +printf "%s\n" "$at_srcdir/rhbz1917766.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:22" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159146,7 +161315,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1917766.at:24" >"$at_check_line_file" + printf "%s\n" "rhbz1917766.at:24" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:24" fi @@ -159157,13 +161326,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_150 -#AT_START_151 -at_fn_group_banner 151 'rhbz2014383.at:1' \ +#AT_STOP_157 +#AT_START_158 +at_fn_group_banner 158 'rhbz2014383.at:1' \ "same source in two zone xml" " " 5 at_xfail=no ( - $as_echo "151. $at_setup_line: testing $at_desc ..." + printf "%s\n" "158. $at_setup_line: testing $at_desc ..." $at_traceon @@ -159181,6 +161350,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -159197,7 +161367,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159211,7 +161381,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz2014383.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159227,7 +161397,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz2014383.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159291,7 +161461,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159382,7 +161552,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz2014383.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2014383.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -159401,7 +161571,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159422,7 +161592,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz2014383.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159439,7 +161609,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159454,7 +161624,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159471,7 +161641,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -159479,7 +161649,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz2014383.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2014383.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" fi echo "$!" > firewalld.pid @@ -159496,7 +161666,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" fi sleep 1 done - $as_echo "rhbz2014383.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2014383.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" @@ -159505,7 +161675,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" { set +x -$as_echo "$at_srcdir/rhbz2014383.at:4: mkdir -p ./zones" +printf "%s\n" "$at_srcdir/rhbz2014383.at:4: mkdir -p ./zones" at_fn_check_prepare_trace "rhbz2014383.at:4" ( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159546,7 +161716,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz2014383.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +printf "%s\n" "$at_srcdir/rhbz2014383.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159591,7 +161761,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz2014383.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +printf "%s\n" "$at_srcdir/rhbz2014383.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:54" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159610,7 +161780,7 @@ $at_traceon; } if test x"ignore" != x"ignore"; then - $as_echo "rhbz2014383.at:56" >"$at_check_line_file" + printf "%s\n" "rhbz2014383.at:56" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:56" fi @@ -159621,13 +161791,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_151 -#AT_START_152 -at_fn_group_banner 152 'gh874.at:1' \ +#AT_STOP_158 +#AT_START_159 +at_fn_group_banner 159 'gh874.at:1' \ "policy masquerade w/ ingress interface" " " 5 at_xfail=no ( - $as_echo "152. $at_setup_line: testing $at_desc ..." + printf "%s\n" "159. $at_setup_line: testing $at_desc ..." $at_traceon @@ -159645,6 +161815,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -159661,7 +161832,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh874.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh874.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159675,7 +161846,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh874.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh874.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh874.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159691,7 +161862,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh874.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh874.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159755,7 +161926,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh874.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh874.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159846,7 +162017,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh874.at:1" >"$at_check_line_file" + printf "%s\n" "gh874.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh874.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -159865,7 +162036,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh874.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh874.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159886,7 +162057,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh874.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh874.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh874.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159903,7 +162074,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh874.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159918,7 +162089,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh874.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159935,7 +162106,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -159943,7 +162114,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh874.at:1" >"$at_check_line_file" + printf "%s\n" "gh874.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh874.at:1" fi echo "$!" > firewalld.pid @@ -159960,7 +162131,7 @@ at_fn_check_skip 99 "$at_srcdir/gh874.at:1" fi sleep 1 done - $as_echo "gh874.at:1" >"$at_check_line_file" + printf "%s\n" "gh874.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh874.at:1" @@ -159972,7 +162143,7 @@ at_fn_check_skip 99 "$at_srcdir/gh874.at:1" { set +x -$as_echo "$at_srcdir/gh874.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone foobar_zone " +printf "%s\n" "$at_srcdir/gh874.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone foobar_zone " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone foobar_zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -159991,7 +162162,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar_policy " +printf "%s\n" "$at_srcdir/gh874.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar_policy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar_policy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160010,7 +162181,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-masquerade " +printf "%s\n" "$at_srcdir/gh874.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160029,7 +162200,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-ingress-zone foobar_zone " +printf "%s\n" "$at_srcdir/gh874.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-ingress-zone foobar_zone " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-ingress-zone foobar_zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160048,7 +162219,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/gh874.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160068,7 +162239,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh874.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160087,7 +162258,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh874.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160109,7 +162280,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar_zone --add-interface foobar0 " +printf "%s\n" "$at_srcdir/gh874.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar_zone --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar_zone --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160128,7 +162299,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -i '2a \\ +printf "%s\n" "$at_srcdir/gh874.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -i '2a \\ ' ./zones/foobar_zone.xml " @@ -160152,7 +162323,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +printf "%s\n" "$at_srcdir/gh874.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160172,7 +162343,7 @@ $at_traceon; } if test x"ignore" != x"ignore"; then - $as_echo "gh874.at:33" >"$at_check_line_file" + printf "%s\n" "gh874.at:33" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh874.at:33" fi @@ -160183,13 +162354,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_152 -#AT_START_153 -at_fn_group_banner 153 'gh881.at:1' \ +#AT_STOP_159 +#AT_START_160 +at_fn_group_banner 160 'gh881.at:1' \ "ipset entry overlap detect perf" " " 5 at_xfail=no ( - $as_echo "153. $at_setup_line: testing $at_desc ..." + printf "%s\n" "160. $at_setup_line: testing $at_desc ..." $at_traceon @@ -160207,6 +162378,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -160223,7 +162395,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh881.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh881.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160237,7 +162409,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh881.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh881.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh881.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160253,7 +162425,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh881.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh881.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh881.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160317,7 +162489,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh881.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh881.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160408,7 +162580,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh881.at:1" >"$at_check_line_file" + printf "%s\n" "gh881.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh881.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -160427,7 +162599,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh881.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh881.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160448,7 +162620,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh881.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh881.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh881.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160465,7 +162637,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh881.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh881.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160480,7 +162652,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh881.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh881.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160497,7 +162669,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -160505,7 +162677,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh881.at:1" >"$at_check_line_file" + printf "%s\n" "gh881.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh881.at:1" fi echo "$!" > firewalld.pid @@ -160522,7 +162694,7 @@ at_fn_check_skip 99 "$at_srcdir/gh881.at:1" fi sleep 1 done - $as_echo "gh881.at:1" >"$at_check_line_file" + printf "%s\n" "gh881.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh881.at:1" @@ -160533,7 +162705,7 @@ at_fn_check_skip 99 "$at_srcdir/gh881.at:1" : >./deny_cidr { set +x -$as_echo "$at_srcdir/gh881.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh -c ' +printf "%s\n" "$at_srcdir/gh881.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh -c ' for I in \$(seq 250); do for J in \$(seq 250); do echo \"10.\${I}.\${J}.0/24\" >> ./deny_cidr @@ -160560,7 +162732,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh881.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"10.254.0.0/16\" >> ./deny_cidr " +printf "%s\n" "$at_srcdir/gh881.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"10.254.0.0/16\" >> ./deny_cidr " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "10.254.0.0/16" >> ./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160578,7 +162750,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh881.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=deny_set --type=hash:net --option=family=inet --option=hashsize=16384 --option=maxelem=62503 " +printf "%s\n" "$at_srcdir/gh881.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=deny_set --type=hash:net --option=family=inet --option=hashsize=16384 --option=maxelem=62503 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=deny_set --type=hash:net --option=family=inet --option=hashsize=16384 --option=maxelem=62503 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160595,7 +162767,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh881.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +printf "%s\n" "$at_srcdir/gh881.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160617,7 +162789,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh881.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +printf "%s\n" "$at_srcdir/gh881.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160640,7 +162812,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh881.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +printf "%s\n" "$at_srcdir/gh881.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:36" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160662,7 +162834,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh881.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +printf "%s\n" "$at_srcdir/gh881.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160683,7 +162855,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh881.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +printf "%s\n" "$at_srcdir/gh881.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160705,7 +162877,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh881.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +printf "%s\n" "$at_srcdir/gh881.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160724,7 +162896,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh881.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +printf "%s\n" "$at_srcdir/gh881.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:57" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160743,7 +162915,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh881.at:59" >"$at_check_line_file" + printf "%s\n" "gh881.at:59" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh881.at:59" fi @@ -160754,13 +162926,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_153 -#AT_START_154 -at_fn_group_banner 154 'service_includes_for_builtin.at:1' \ +#AT_STOP_160 +#AT_START_161 +at_fn_group_banner 161 'service_includes_for_builtin.at:1' \ "service include for built-in" " " 5 at_xfail=no ( - $as_echo "154. $at_setup_line: testing $at_desc ..." + printf "%s\n" "161. $at_setup_line: testing $at_desc ..." $at_traceon @@ -160778,6 +162950,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -160794,7 +162967,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_includes_for_builtin.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160808,7 +162981,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "service_includes_for_builtin.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160824,7 +162997,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "service_includes_for_builtin.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160888,7 +163061,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_includes_for_builtin.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -160979,7 +163152,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "service_includes_for_builtin.at:1" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -160998,7 +163171,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_includes_for_builtin.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161019,7 +163192,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "service_includes_for_builtin.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161036,7 +163209,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_includes_for_builtin.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161051,7 +163224,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_includes_for_builtin.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161068,7 +163241,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -161076,7 +163249,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "service_includes_for_builtin.at:1" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" fi echo "$!" > firewalld.pid @@ -161093,7 +163266,7 @@ at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" fi sleep 1 done - $as_echo "service_includes_for_builtin.at:1" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" @@ -161102,12 +163275,12 @@ at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" - $as_echo "service_includes_for_builtin.at:6" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:6" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:6" { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getServiceByName \"ssh\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161131,12 +163304,12 @@ SERVICE_OBJ=$(sed -e "s/.*config\/service\/\([^']\+\)['].*/\1/" ./stdout) export SERVICE_OBJ - $as_echo "service_includes_for_builtin.at:13" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:13" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:13" { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161149,7 +163322,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(@as [],) +echo >>"$at_stdout"; printf "%s\n" "(@as [],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:13" @@ -161159,12 +163332,12 @@ $at_traceon; } - $as_echo "service_includes_for_builtin.at:16" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:16" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:16" { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.setIncludes '[\"https\", \"http\"]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161185,12 +163358,12 @@ $at_traceon; } - $as_echo "service_includes_for_builtin.at:17" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:17" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:17" { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161203,7 +163376,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['https', 'http'],) +echo >>"$at_stdout"; printf "%s\n" "(['https', 'http'],) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:17" @@ -161213,12 +163386,12 @@ $at_traceon; } - $as_echo "service_includes_for_builtin.at:20" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:20" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:20" { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.addInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161239,12 +163412,12 @@ $at_traceon; } - $as_echo "service_includes_for_builtin.at:21" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:21" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:21" { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161257,7 +163430,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:21" @@ -161267,12 +163440,12 @@ $at_traceon; } - $as_echo "service_includes_for_builtin.at:24" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:24" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:24" { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.removeInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161293,12 +163466,12 @@ $at_traceon; } - $as_echo "service_includes_for_builtin.at:25" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:25" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:25" { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161311,7 +163484,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:25" @@ -161324,7 +163497,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "service_includes_for_builtin.at:29" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:29" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:29" fi @@ -161335,13 +163508,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_154 -#AT_START_155 -at_fn_group_banner 155 'gh940.at:1' \ +#AT_STOP_161 +#AT_START_162 +at_fn_group_banner 162 'gh940.at:1' \ "log prefix" " " 5 at_xfail=no ( - $as_echo "155. $at_setup_line: testing $at_desc ..." + printf "%s\n" "162. $at_setup_line: testing $at_desc ..." $at_traceon @@ -161359,6 +163532,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -161375,7 +163549,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh940.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh940.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161389,7 +163563,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh940.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh940.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh940.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161405,7 +163579,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh940.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh940.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161469,7 +163643,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh940.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh940.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161560,7 +163734,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh940.at:1" >"$at_check_line_file" + printf "%s\n" "gh940.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh940.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -161579,7 +163753,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh940.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh940.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161600,7 +163774,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh940.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh940.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh940.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161617,7 +163791,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh940.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161632,7 +163806,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh940.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161649,7 +163823,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -161657,7 +163831,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh940.at:1" >"$at_check_line_file" + printf "%s\n" "gh940.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh940.at:1" fi echo "$!" > firewalld.pid @@ -161674,7 +163848,7 @@ at_fn_check_skip 99 "$at_srcdir/gh940.at:1" fi sleep 1 done - $as_echo "gh940.at:1" >"$at_check_line_file" + printf "%s\n" "gh940.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh940.at:1" @@ -161683,7 +163857,7 @@ at_fn_check_skip 99 "$at_srcdir/gh940.at:1" { set +x -$as_echo "$at_srcdir/gh940.at:4: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh940.at:4: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh940.at:4" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161696,7 +163870,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:5: sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh940.at:5: sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf" at_fn_check_prepare_trace "gh940.at:5" ( $at_check_trace; sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161713,7 +163887,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar0 " +printf "%s\n" "$at_srcdir/gh940.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161730,7 +163904,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:9: mkdir -p ./policies" +printf "%s\n" "$at_srcdir/gh940.at:9: mkdir -p ./policies" at_fn_check_prepare_trace "gh940.at:9" ( $at_check_trace; mkdir -p ./policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161762,7 +163936,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh940.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +printf "%s\n" "$at_srcdir/gh940.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161782,7 +163956,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh940.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161801,7 +163975,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh940.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -161825,7 +163999,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh940.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_log-denied; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161838,7 +164012,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_log-denied { jump filter_IN_policy_log-denied_pre jump filter_IN_policy_log-denied_log @@ -161866,7 +164040,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh940.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161879,7 +164053,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar0\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar0\" jump filter_IN_public @@ -161918,7 +164092,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh940.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_log-denied_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161931,7 +164105,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_log-denied_deny { icmp echo-request log prefix \"filter_log-denied_ICMP_BLOCK: \" icmp echo-request reject with icmpx admin-prohibited @@ -161965,7 +164139,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh940.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_log-denied_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -161978,7 +164152,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_log-denied_log { tcp dport 6667 log prefix \"Dropped IRC Packet: \" } @@ -162005,7 +164179,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh940.at:116" >"$at_check_line_file" + printf "%s\n" "gh940.at:116" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh940.at:116" fi @@ -162016,13 +164190,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_155 -#AT_START_156 -at_fn_group_banner 156 'build_policy_split_wildcard.at:1' \ +#AT_STOP_162 +#AT_START_163 +at_fn_group_banner 163 'build_policy_split_wildcard.at:1' \ "build policy split wildcards" " " 5 at_xfail=no ( - $as_echo "156. $at_setup_line: testing $at_desc ..." + printf "%s\n" "163. $at_setup_line: testing $at_desc ..." $at_traceon @@ -162040,6 +164214,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -162056,7 +164231,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162070,7 +164245,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "build_policy_split_wildcard.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162086,7 +164261,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "build_policy_split_wildcard.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162150,7 +164325,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162241,7 +164416,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "build_policy_split_wildcard.at:1" >"$at_check_line_file" + printf "%s\n" "build_policy_split_wildcard.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -162260,7 +164435,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162281,7 +164456,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "build_policy_split_wildcard.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162298,7 +164473,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162313,7 +164488,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162330,7 +164505,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -162338,7 +164513,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "build_policy_split_wildcard.at:1" >"$at_check_line_file" + printf "%s\n" "build_policy_split_wildcard.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" fi echo "$!" > firewalld.pid @@ -162355,7 +164530,7 @@ at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" fi sleep 1 done - $as_echo "build_policy_split_wildcard.at:1" >"$at_check_line_file" + printf "%s\n" "build_policy_split_wildcard.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" @@ -162367,7 +164542,7 @@ at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162386,7 +164561,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162405,7 +164580,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162424,7 +164599,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162443,7 +164618,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar1 " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162462,7 +164637,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar2 " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar2 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162481,7 +164656,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar3 " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar3 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162501,7 +164676,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162520,7 +164695,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162541,7 +164716,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface tun+ " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface tun+ " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-interface tun+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162562,7 +164737,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -162575,7 +164750,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar0\" oifname \"foobar0\" jump filter_FWD_internal iifname \"foobar0\" oifname \"foobar0\" reject with icmpx admin-prohibited @@ -162675,7 +164850,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-interface tun+ " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-interface tun+ " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:106" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-interface tun+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162696,7 +164871,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface tun+ " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface tun+ " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:111" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface tun+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162717,7 +164892,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -162730,7 +164905,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar0\" oifname \"foobar0\" jump filter_FWD_internal iifname \"foobar0\" oifname \"foobar0\" reject with icmpx admin-prohibited @@ -162830,7 +165005,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface net+ " +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface net+ " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:201" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-interface net+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -162851,7 +165026,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -162864,7 +165039,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar0\" oifname \"foobar0\" jump filter_FWD_internal iifname \"foobar0\" oifname \"foobar0\" reject with icmpx admin-prohibited @@ -162993,7 +165168,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "build_policy_split_wildcard.at:319" >"$at_check_line_file" + printf "%s\n" "build_policy_split_wildcard.at:319" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:319" fi @@ -163004,13 +165179,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_156 -#AT_START_157 -at_fn_group_banner 157 'gh1011.at:1' \ +#AT_STOP_163 +#AT_START_164 +at_fn_group_banner 164 'gh1011.at:1' \ "remove entries results in empty" " " 5 at_xfail=no ( - $as_echo "157. $at_setup_line: testing $at_desc ..." + printf "%s\n" "164. $at_setup_line: testing $at_desc ..." $at_traceon @@ -163028,6 +165203,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -163044,7 +165220,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh1011.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1011.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163058,7 +165234,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh1011.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1011.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh1011.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163074,7 +165250,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1011.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1011.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh1011.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163138,7 +165314,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh1011.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh1011.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163229,7 +165405,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh1011.at:1" >"$at_check_line_file" + printf "%s\n" "gh1011.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1011.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -163248,7 +165424,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh1011.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1011.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163269,7 +165445,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh1011.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1011.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh1011.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163286,7 +165462,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1011.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1011.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163301,7 +165477,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1011.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh1011.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163318,7 +165494,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -163326,7 +165502,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh1011.at:1" >"$at_check_line_file" + printf "%s\n" "gh1011.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1011.at:1" fi echo "$!" > firewalld.pid @@ -163343,7 +165519,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1011.at:1" fi sleep 1 done - $as_echo "gh1011.at:1" >"$at_check_line_file" + printf "%s\n" "gh1011.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh1011.at:1" @@ -163355,7 +165531,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1011.at:1" { set +x -$as_echo "$at_srcdir/gh1011.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " +printf "%s\n" "$at_srcdir/gh1011.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163378,7 +165554,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh1011.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/gh1011.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163397,7 +165573,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1011.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entries-from-file ./empty " +printf "%s\n" "$at_srcdir/gh1011.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entries-from-file ./empty " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entries-from-file ./empty ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163418,7 +165594,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1011.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh1011.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163437,7 +165613,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1011.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh1011.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163457,7 +165633,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1011.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/gh1011.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163476,7 +165652,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1011.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entries-from-file ./empty " +printf "%s\n" "$at_srcdir/gh1011.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entries-from-file ./empty " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --remove-entries-from-file ./empty ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163495,7 +165671,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh1011.at:15" >"$at_check_line_file" + printf "%s\n" "gh1011.at:15" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh1011.at:15" fi @@ -163506,13 +165682,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_157 -#AT_START_158 -at_fn_group_banner 158 'rhbz2181406.at:1' \ +#AT_STOP_164 +#AT_START_165 +at_fn_group_banner 165 'rhbz2181406.at:1' \ "rich rule limit" " " 5 at_xfail=no ( - $as_echo "158. $at_setup_line: testing $at_desc ..." + printf "%s\n" "165. $at_setup_line: testing $at_desc ..." $at_traceon @@ -163530,6 +165706,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -163546,7 +165723,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163560,7 +165737,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz2181406.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163576,7 +165753,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz2181406.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163640,7 +165817,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163731,7 +165908,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz2181406.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2181406.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -163750,7 +165927,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163771,7 +165948,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz2181406.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163788,7 +165965,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163803,7 +165980,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163820,7 +165997,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -163828,7 +166005,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz2181406.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2181406.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" fi echo "$!" > firewalld.pid @@ -163845,7 +166022,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" fi sleep 1 done - $as_echo "rhbz2181406.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2181406.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" @@ -163857,7 +166034,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" { set +x -$as_echo "$at_srcdir/rhbz2181406.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=ssh log limit value=\"2/d\"' " +printf "%s\n" "$at_srcdir/rhbz2181406.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=ssh log limit value=\"2/d\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=ssh log limit value="2/d"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163876,7 +166053,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2181406.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=ssh audit limit value=\"5/m\" accept' " +printf "%s\n" "$at_srcdir/rhbz2181406.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=ssh audit limit value=\"5/m\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=ssh audit limit value="5/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163896,7 +166073,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2181406.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=http accept limit value=\"2/d\"' " +printf "%s\n" "$at_srcdir/rhbz2181406.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=http accept limit value=\"2/d\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=http accept limit value="2/d"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163915,7 +166092,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2181406.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=http accept limit value=\"5/m\"' " +printf "%s\n" "$at_srcdir/rhbz2181406.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=http accept limit value=\"5/m\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=http accept limit value="5/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -163937,7 +166114,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2181406.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz2181406.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -163950,7 +166127,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_log { ip saddr 10.10.10.10 tcp dport 22 limit rate 2/day log ip6 daddr fc00::10:10:10:10 tcp dport 22 limit rate 5/minute log level audit @@ -163973,7 +166150,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2181406.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rhbz2181406.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -163986,7 +166163,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -164024,7 +166201,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz2181406.at:49" >"$at_check_line_file" + printf "%s\n" "rhbz2181406.at:49" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:49" fi @@ -164035,13 +166212,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_158 -#AT_START_159 -at_fn_group_banner 159 'ipset_scale.at:1' \ +#AT_STOP_165 +#AT_START_166 +at_fn_group_banner 166 'ipset_scale.at:1' \ "ipset scale" " " 5 at_xfail=no ( - $as_echo "159. $at_setup_line: testing $at_desc ..." + printf "%s\n" "166. $at_setup_line: testing $at_desc ..." $at_traceon @@ -164059,6 +166236,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -164075,7 +166253,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/ipset_scale.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164089,7 +166267,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/ipset_scale.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "ipset_scale.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164105,7 +166283,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/ipset_scale.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "ipset_scale.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164169,7 +166347,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/ipset_scale.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164260,7 +166438,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "ipset_scale.at:1" >"$at_check_line_file" + printf "%s\n" "ipset_scale.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -164279,7 +166457,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/ipset_scale.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164300,7 +166478,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/ipset_scale.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "ipset_scale.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164317,7 +166495,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/ipset_scale.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164332,7 +166510,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/ipset_scale.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164349,7 +166527,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -164357,7 +166535,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "ipset_scale.at:1" >"$at_check_line_file" + printf "%s\n" "ipset_scale.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" fi echo "$!" > firewalld.pid @@ -164374,7 +166552,7 @@ at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" fi sleep 1 done - $as_echo "ipset_scale.at:1" >"$at_check_line_file" + printf "%s\n" "ipset_scale.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" @@ -164386,7 +166564,7 @@ at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" - $as_echo "ipset_scale.at:6" >"$at_check_line_file" + printf "%s\n" "ipset_scale.at:6" >"$at_check_line_file" (test -n "$FW_IN_CONTAINER" -a "(" "$(cat /proc/sys/net/core/rmem_max 2>/dev/null || cat /.host/proc/sys/net/core/rmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_max 2>/dev/null || cat /.host/proc/sys/net/core/wmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_default 2>/dev/null || cat /.host/proc/sys/net/core/wmem_default 2>/dev/null || echo 0)" -lt 4096000 ")" ) \ && at_fn_check_skip 77 "$at_srcdir/ipset_scale.at:6" @@ -164394,7 +166572,7 @@ at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" { set +x -$as_echo "$at_srcdir/ipset_scale.at:8: touch ./entries" +printf "%s\n" "$at_srcdir/ipset_scale.at:8: touch ./entries" at_fn_check_prepare_trace "ipset_scale.at:8" ( $at_check_trace; touch ./entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164407,7 +166585,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_scale.at:9: sh -c ' +printf "%s\n" "$at_srcdir/ipset_scale.at:9: sh -c ' for I in \$(seq 250); do for J in \$(seq 250); do echo \"10.10.\${I}.\${J}/32\" >> ./entries @@ -164436,7 +166614,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_scale.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " +printf "%s\n" "$at_srcdir/ipset_scale.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164455,7 +166633,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_scale.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entries-from-file ./entries " +printf "%s\n" "$at_srcdir/ipset_scale.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entries-from-file ./entries " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entries-from-file ./entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164476,7 +166654,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_scale.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/ipset_scale.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164495,7 +166673,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_scale.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/ipset_scale.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164515,7 +166693,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "ipset_scale.at:22" >"$at_check_line_file" + printf "%s\n" "ipset_scale.at:22" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:22" fi @@ -164526,13 +166704,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_159 -#AT_START_160 -at_fn_group_banner 160 'gh1129.at:1' \ +#AT_STOP_166 +#AT_START_167 +at_fn_group_banner 167 'gh1129.at:1' \ "switch backend to iptables and reload" " " 5 at_xfail=no ( - $as_echo "160. $at_setup_line: testing $at_desc ..." + printf "%s\n" "167. $at_setup_line: testing $at_desc ..." $at_traceon @@ -164550,6 +166728,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -164566,7 +166745,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh1129.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1129.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164580,7 +166759,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh1129.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1129.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh1129.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164596,7 +166775,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1129.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1129.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh1129.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164660,7 +166839,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh1129.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh1129.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164751,7 +166930,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh1129.at:1" >"$at_check_line_file" + printf "%s\n" "gh1129.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1129.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -164770,7 +166949,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164791,7 +166970,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh1129.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1129.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh1129.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164808,7 +166987,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164823,7 +167002,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164840,7 +167019,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -164848,7 +167027,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh1129.at:1" >"$at_check_line_file" + printf "%s\n" "gh1129.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1129.at:1" fi echo "$!" > firewalld.pid @@ -164865,19 +167044,19 @@ at_fn_check_skip 99 "$at_srcdir/gh1129.at:1" fi sleep 1 done - $as_echo "gh1129.at:1" >"$at_check_line_file" + printf "%s\n" "gh1129.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh1129.at:1" -$as_echo "gh1129.at:1" >"$at_check_line_file" +printf "%s\n" "gh1129.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v nft >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/gh1129.at:1" { set +x -$as_echo "$at_srcdir/gh1129.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1129.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" at_fn_check_prepare_trace "gh1129.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164894,7 +167073,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164913,7 +167092,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164932,7 +167111,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld " +printf "%s\n" "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164947,7 +167126,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld_policy_drop " +printf "%s\n" "$at_srcdir/gh1129.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld_policy_drop " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld_policy_drop ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -164964,7 +167143,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh1129.at:1" >"$at_check_line_file" + printf "%s\n" "gh1129.at:1" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh1129.at:1" fi @@ -164975,13 +167154,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_160 -#AT_START_161 -at_fn_group_banner 161 'gh1146.at:1' \ +#AT_STOP_167 +#AT_START_168 +at_fn_group_banner 168 'gh1146.at:1' \ "policy with mixed family zone source" " " 5 at_xfail=no ( - $as_echo "161. $at_setup_line: testing $at_desc ..." + printf "%s\n" "168. $at_setup_line: testing $at_desc ..." $at_traceon @@ -164999,6 +167178,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -165015,7 +167195,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh1146.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1146.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165029,7 +167209,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh1146.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1146.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh1146.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165045,7 +167225,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1146.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh1146.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165109,7 +167289,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh1146.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh1146.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165200,7 +167380,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh1146.at:1" >"$at_check_line_file" + printf "%s\n" "gh1146.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -165219,7 +167399,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh1146.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1146.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165240,7 +167420,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh1146.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1146.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh1146.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165257,7 +167437,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1146.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165272,7 +167452,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh1146.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165289,7 +167469,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -165297,7 +167477,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh1146.at:1" >"$at_check_line_file" + printf "%s\n" "gh1146.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" fi echo "$!" > firewalld.pid @@ -165314,7 +167494,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" fi sleep 1 done - $as_echo "gh1146.at:1" >"$at_check_line_file" + printf "%s\n" "gh1146.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" @@ -165326,7 +167506,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" { set +x -$as_echo "$at_srcdir/gh1146.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface dummy1 " +printf "%s\n" "$at_srcdir/gh1146.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface dummy1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface dummy1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165345,7 +167525,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.11.11.0/24 " +printf "%s\n" "$at_srcdir/gh1146.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.11.11.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.11.11.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165367,7 +167547,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source fc00:1111:1111:1111::/64 " +printf "%s\n" "$at_srcdir/gh1146.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source fc00:1111:1111:1111::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source fc00:1111:1111:1111::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165388,7 +167568,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy2 " +printf "%s\n" "$at_srcdir/gh1146.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy2 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165407,7 +167587,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.22.22.0/24 " +printf "%s\n" "$at_srcdir/gh1146.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.22.22.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.22.22.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165429,7 +167609,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source fc00:2222:2222:2222::/64 " +printf "%s\n" "$at_srcdir/gh1146.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source fc00:2222:2222:2222::/64 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-source fc00:2222:2222:2222::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165451,7 +167631,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " +printf "%s\n" "$at_srcdir/gh1146.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165470,7 +167650,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " +printf "%s\n" "$at_srcdir/gh1146.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165489,7 +167669,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " +printf "%s\n" "$at_srcdir/gh1146.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165510,7 +167690,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh1146.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165529,7 +167709,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh1146.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165552,7 +167732,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh1146.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -165565,7 +167745,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { ip saddr 10.11.11.0/24 ip daddr 10.11.11.0/24 jump filter_FWD_internal ip saddr 10.11.11.0/24 ip daddr 10.11.11.0/24 reject with icmpx admin-prohibited @@ -165683,7 +167863,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh1146.at:242" >"$at_check_line_file" + printf "%s\n" "gh1146.at:242" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh1146.at:242" fi @@ -165694,13 +167874,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_161 -#AT_START_162 -at_fn_group_banner 162 'gh1152.at:1' \ +#AT_STOP_168 +#AT_START_169 +at_fn_group_banner 169 'gh1152.at:1' \ "list-all identical content" " " 5 at_xfail=no ( - $as_echo "162. $at_setup_line: testing $at_desc ..." + printf "%s\n" "169. $at_setup_line: testing $at_desc ..." $at_traceon @@ -165718,6 +167898,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -165734,7 +167915,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh1152.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1152.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165748,7 +167929,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh1152.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1152.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh1152.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165764,7 +167945,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1152.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh1152.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165828,7 +168009,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh1152.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh1152.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165919,7 +168100,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh1152.at:1" >"$at_check_line_file" + printf "%s\n" "gh1152.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -165938,7 +168119,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh1152.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1152.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165959,7 +168140,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh1152.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1152.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh1152.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165976,7 +168157,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1152.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -165991,7 +168172,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh1152.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -166008,7 +168189,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -166016,7 +168197,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh1152.at:1" >"$at_check_line_file" + printf "%s\n" "gh1152.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" fi echo "$!" > firewalld.pid @@ -166033,7 +168214,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" fi sleep 1 done - $as_echo "gh1152.at:1" >"$at_check_line_file" + printf "%s\n" "gh1152.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" @@ -166045,7 +168226,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" { set +x -$as_echo "$at_srcdir/gh1152.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone block --add-interface dummy0 " +printf "%s\n" "$at_srcdir/gh1152.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone block --add-interface dummy0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone block --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -166065,14 +168246,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/gh1152.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block +echo >>"$at_stdout"; printf "%s\n" "block target: %%REJECT%% ingress-priority: 0 egress-priority: 0 @@ -166232,14 +168413,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/gh1152.at:152: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" +printf "%s\n" "$at_srcdir/gh1152.at:152: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:152" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-all-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block +echo >>"$at_stdout"; printf "%s\n" "block target: %%REJECT%% ingress-priority: 0 egress-priority: 0 @@ -166395,7 +168576,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " +printf "%s\n" "$at_srcdir/gh1152.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:299" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -166414,7 +168595,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-service http " +printf "%s\n" "$at_srcdir/gh1152.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-service http " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:300" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -166433,14 +168614,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/gh1152.at:301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:301" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 priority: -15000 target: CONTINUE ingress-zones: ANY @@ -166455,8 +168636,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept foobar priority: -1 target: CONTINUE @@ -166486,14 +168667,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/gh1152.at:333: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" +printf "%s\n" "$at_srcdir/gh1152.at:333: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:333" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 priority: -15000 target: CONTINUE ingress-zones: ANY @@ -166508,8 +168689,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept foobar priority: -1 target: CONTINUE @@ -166536,7 +168717,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh1152.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:366" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -166555,7 +168736,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh1152.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:366" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -166575,14 +168756,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/gh1152.at:367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:367" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block (active) +echo >>"$at_stdout"; printf "%s\n" "block (active) target: %%REJECT%% ingress-priority: 0 egress-priority: 0 @@ -166739,14 +168920,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/gh1152.at:513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:513" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 (active) +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 (active) priority: -15000 target: CONTINUE ingress-zones: ANY @@ -166761,8 +168942,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept foobar priority: -1 target: CONTINUE @@ -166790,14 +168971,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones " +printf "%s\n" "$at_srcdir/gh1152.at:546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:546" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block +echo >>"$at_stdout"; printf "%s\n" "block interfaces: dummy0 public (default) " | \ @@ -166814,14 +168995,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:552: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +printf "%s\n" "$at_srcdir/gh1152.at:552: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:552" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 ingress-zones: ANY egress-zones: HOST " | \ @@ -166837,7 +169018,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh1152.at:558" >"$at_check_line_file" + printf "%s\n" "gh1152.at:558" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh1152.at:558" fi @@ -166848,13 +169029,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_162 -#AT_START_163 -at_fn_group_banner 163 'rhbz2222044.at:1' \ +#AT_STOP_169 +#AT_START_170 +at_fn_group_banner 170 'rhbz2222044.at:1' \ "duplicate rules after restart" " " 5 at_xfail=no ( - $as_echo "163. $at_setup_line: testing $at_desc ..." + printf "%s\n" "170. $at_setup_line: testing $at_desc ..." $at_traceon @@ -166872,6 +169053,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -166888,7 +169070,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -166902,7 +169084,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rhbz2222044.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -166918,7 +169100,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz2222044.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -166982,7 +169164,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167073,7 +169255,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz2222044.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2222044.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -167092,7 +169274,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167113,7 +169295,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rhbz2222044.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167130,7 +169312,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167145,7 +169327,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167162,7 +169344,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -167170,7 +169352,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz2222044.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2222044.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" fi echo "$!" > firewalld.pid @@ -167187,30 +169369,84 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" fi sleep 1 done - $as_echo "rhbz2222044.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2222044.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" -$as_echo "rhbz2222044.at:3" >"$at_check_line_file" +printf "%s\n" "rhbz2222044.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v wc >/dev/null 2>&1 ) \ && at_fn_check_skip 77 "$at_srcdir/rhbz2222044.at:3" +{ set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:7: sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz2222044.at:7" +( $at_check_trace; sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/rhbz2222044.at:20: sed -i 's/^CleanupOnExit.*/CleanupOnExit=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz2222044.at:20" +printf "%s\n" "$at_srcdir/rhbz2222044.at:25: sed -i 's/^CleanupOnExit.*/CleanupOnExit=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz2222044.at:25" ( $at_check_trace; sed -i 's/^CleanupOnExit.*/CleanupOnExit=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:20" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -167219,15 +169455,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:21" +printf "%s\n" "$at_srcdir/rhbz2222044.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -167238,15 +169474,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:21" +printf "%s\n" "$at_srcdir/rhbz2222044.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -167259,17 +169495,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:23" +printf "%s\n" "$at_srcdir/rhbz2222044.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | wc -l ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "331 +echo >>"$at_stdout"; printf "%s\n" "332 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:23" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -167286,7 +169522,7 @@ $at_traceon; } test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -167294,8 +169530,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz2222044.at:24" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:24" + printf "%s\n" "rhbz2222044.at:29" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:29" fi echo "$!" > firewalld.pid @@ -167311,66 +169547,26 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:24" fi sleep 1 done - $as_echo "rhbz2222044.at:24" >"$at_check_line_file" + printf "%s\n" "rhbz2222044.at:29" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:24" - - - - - - { set +x -$as_echo "$at_srcdir/rhbz2222044.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | wc -l -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "331 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:25" -$at_failed && at_fn_log_failure -$at_traceon; } - - + && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:29" { set +x -$as_echo "$at_srcdir/rhbz2222044.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:27" +printf "%s\n" "$at_srcdir/rhbz2222044.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:30" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | wc -l ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "331 +echo >>"$at_stdout"; printf "%s\n" "332 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:27" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz2222044.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:30" $at_failed && at_fn_log_failure $at_traceon; } @@ -167381,62 +169577,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:28" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz2222044.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:29" +printf "%s\n" "$at_srcdir/rhbz2222044.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | wc -l ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "331 +echo >>"$at_stdout"; printf "%s\n" "332 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:29" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:32" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/rhbz2222044.at:32: sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz2222044.at:32" -( $at_check_trace; sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:32" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz2222044.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rhbz2222044.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167455,7 +169617,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rhbz2222044.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167474,19 +169636,93 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:34" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | wc -l +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "332 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:34" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + +{ set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:37: sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz2222044.at:37" +( $at_check_trace; sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:37" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:38" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/rhbz2222044.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:35" +printf "%s\n" "$at_srcdir/rhbz2222044.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:38" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:40" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | wc -l ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "331 +echo >>"$at_stdout"; printf "%s\n" "332 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:35" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:40" $at_failed && at_fn_log_failure $at_traceon; } @@ -167503,7 +169739,7 @@ $at_traceon; } test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -167511,8 +169747,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz2222044.at:36" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:36" + printf "%s\n" "rhbz2222044.at:41" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:41" fi echo "$!" > firewalld.pid @@ -167528,26 +169764,26 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:36" fi sleep 1 done - $as_echo "rhbz2222044.at:36" >"$at_check_line_file" + printf "%s\n" "rhbz2222044.at:41" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:36" + && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:41" { set +x -$as_echo "$at_srcdir/rhbz2222044.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:37" +printf "%s\n" "$at_srcdir/rhbz2222044.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | wc -l ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "331 +echo >>"$at_stdout"; printf "%s\n" "332 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:37" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -167558,17 +169794,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:39" +printf "%s\n" "$at_srcdir/rhbz2222044.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:44" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | wc -l ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "331 +echo >>"$at_stdout"; printf "%s\n" "332 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:39" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -167579,15 +169815,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:40" +printf "%s\n" "$at_srcdir/rhbz2222044.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:45" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:40" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:45" $at_failed && at_fn_log_failure $at_traceon; } @@ -167598,15 +169834,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:40" +printf "%s\n" "$at_srcdir/rhbz2222044.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:45" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:40" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:45" $at_failed && at_fn_log_failure $at_traceon; } @@ -167618,17 +169854,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:41" +printf "%s\n" "$at_srcdir/rhbz2222044.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:46" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | wc -l ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "331 +echo >>"$at_stdout"; printf "%s\n" "332 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:41" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -167639,9 +169875,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz2222044.at:44" >"$at_check_line_file" + printf "%s\n" "rhbz2222044.at:49" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:44" + && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:49" fi @@ -167650,13 +169886,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_163 -#AT_START_164 -at_fn_group_banner 164 'gh1229.at:1' \ +#AT_STOP_170 +#AT_START_171 +at_fn_group_banner 171 'gh1229.at:1' \ "policy dispatch with egress-zone=ANY" " " 5 at_xfail=no ( - $as_echo "164. $at_setup_line: testing $at_desc ..." + printf "%s\n" "171. $at_setup_line: testing $at_desc ..." $at_traceon @@ -167674,6 +169910,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -167690,7 +169927,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh1229.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1229.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167704,7 +169941,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh1229.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1229.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh1229.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167720,7 +169957,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1229.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh1229.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167784,7 +170021,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh1229.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh1229.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167875,7 +170112,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh1229.at:1" >"$at_check_line_file" + printf "%s\n" "gh1229.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -167894,7 +170131,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh1229.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1229.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167915,7 +170152,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh1229.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1229.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh1229.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167932,7 +170169,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1229.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167947,7 +170184,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh1229.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -167964,7 +170201,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -167972,7 +170209,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh1229.at:1" >"$at_check_line_file" + printf "%s\n" "gh1229.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" fi echo "$!" > firewalld.pid @@ -167989,7 +170226,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" fi sleep 1 done - $as_echo "gh1229.at:1" >"$at_check_line_file" + printf "%s\n" "gh1229.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" @@ -168001,7 +170238,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" { set +x -$as_echo "$at_srcdir/gh1229.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar-int " +printf "%s\n" "$at_srcdir/gh1229.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar-int " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar-int ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168020,7 +170257,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface foobar-ext " +printf "%s\n" "$at_srcdir/gh1229.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface foobar-ext " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone external --add-interface foobar-ext ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168040,7 +170277,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " +printf "%s\n" "$at_srcdir/gh1229.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168059,7 +170296,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " +printf "%s\n" "$at_srcdir/gh1229.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168078,7 +170315,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/gh1229.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168098,7 +170335,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy raboof " +printf "%s\n" "$at_srcdir/gh1229.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy raboof " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy raboof ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168117,7 +170354,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/gh1229.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168136,7 +170373,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone internal " +printf "%s\n" "$at_srcdir/gh1229.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone internal " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168157,7 +170394,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh1229.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168176,7 +170413,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh1229.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168197,7 +170434,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar-public " +printf "%s\n" "$at_srcdir/gh1229.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar-public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface foobar-public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168216,7 +170453,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface foobar-trusted " +printf "%s\n" "$at_srcdir/gh1229.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface foobar-trusted " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface foobar-trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168235,7 +170472,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/gh1229.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168257,7 +170494,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/gh1229.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -168270,7 +170507,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump filter_FWD_trusted ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 accept @@ -168381,7 +170618,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh1229.at:262" >"$at_check_line_file" + printf "%s\n" "gh1229.at:262" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh1229.at:262" fi @@ -168392,13 +170629,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_164 -#AT_START_165 -at_fn_group_banner 165 'gh1278.at:1' \ +#AT_STOP_171 +#AT_START_172 +at_fn_group_banner 172 'gh1278.at:1' \ "policy dispatch update if active" " " 5 at_xfail=no ( - $as_echo "165. $at_setup_line: testing $at_desc ..." + printf "%s\n" "172. $at_setup_line: testing $at_desc ..." $at_traceon @@ -168416,6 +170653,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -168432,7 +170670,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh1278.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1278.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168446,7 +170684,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh1278.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/gh1278.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "gh1278.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168462,7 +170700,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1278.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "gh1278.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168526,7 +170764,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh1278.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/gh1278.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168617,7 +170855,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh1278.at:1" >"$at_check_line_file" + printf "%s\n" "gh1278.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -168636,7 +170874,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/gh1278.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1278.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168657,7 +170895,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/gh1278.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/gh1278.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "gh1278.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168674,7 +170912,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/gh1278.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168689,7 +170927,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/gh1278.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168706,7 +170944,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -168714,7 +170952,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh1278.at:1" >"$at_check_line_file" + printf "%s\n" "gh1278.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" fi echo "$!" > firewalld.pid @@ -168731,7 +170969,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" fi sleep 1 done - $as_echo "gh1278.at:1" >"$at_check_line_file" + printf "%s\n" "gh1278.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" @@ -168744,7 +170982,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" { set +x -$as_echo "$at_srcdir/gh1278.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy host_fwd " +printf "%s\n" "$at_srcdir/gh1278.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy host_fwd " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy host_fwd ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168763,7 +171001,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-ingress-zone HOST " +printf "%s\n" "$at_srcdir/gh1278.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-ingress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168782,7 +171020,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/gh1278.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168802,7 +171040,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fwd_out " +printf "%s\n" "$at_srcdir/gh1278.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fwd_out " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy fwd_out ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168821,7 +171059,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-ingress-zone internal " +printf "%s\n" "$at_srcdir/gh1278.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-ingress-zone internal " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168840,7 +171078,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/gh1278.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168860,7 +171098,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy port_fwd " +printf "%s\n" "$at_srcdir/gh1278.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy port_fwd " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy port_fwd ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168879,7 +171117,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/gh1278.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168898,7 +171136,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/gh1278.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168919,7 +171157,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh1278.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168938,7 +171176,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh1278.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168959,7 +171197,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 " +printf "%s\n" "$at_srcdir/gh1278.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168978,7 +171216,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 " +printf "%s\n" "$at_srcdir/gh1278.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -168999,7 +171237,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy many_zones " +printf "%s\n" "$at_srcdir/gh1278.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy many_zones " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy many_zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169018,7 +171256,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone trusted " +printf "%s\n" "$at_srcdir/gh1278.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone trusted " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169037,7 +171275,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone dmz " +printf "%s\n" "$at_srcdir/gh1278.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone dmz " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone dmz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169056,7 +171294,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone external " +printf "%s\n" "$at_srcdir/gh1278.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone external " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone external ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169075,7 +171313,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone home " +printf "%s\n" "$at_srcdir/gh1278.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone home " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:29" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone home ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169095,7 +171333,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone trusted --add-interface dummy0 " +printf "%s\n" "$at_srcdir/gh1278.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone trusted --add-interface dummy0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:31" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone trusted --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169114,7 +171352,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy1 " +printf "%s\n" "$at_srcdir/gh1278.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169134,7 +171372,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/gh1278.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169153,7 +171391,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/gh1278.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169174,7 +171412,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --add-interface dummy2 " +printf "%s\n" "$at_srcdir/gh1278.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --add-interface dummy2 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:35" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --add-interface dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169193,7 +171431,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone dmz --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/gh1278.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone dmz --add-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:36" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone dmz --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169212,7 +171450,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone dmz --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/gh1278.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone dmz --remove-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:37" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone dmz --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169231,7 +171469,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --remove-interface dummy2 " +printf "%s\n" "$at_srcdir/gh1278.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --remove-interface dummy2 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:38" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --remove-interface dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -169250,7 +171488,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "gh1278.at:40" >"$at_check_line_file" + printf "%s\n" "gh1278.at:40" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/gh1278.at:40" fi @@ -169261,13 +171499,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_165 -#AT_START_166 -at_fn_group_banner 166 'python.at:3' \ - "firewalld_misc.py" " " 6 +#AT_STOP_172 +#AT_START_173 +at_fn_group_banner 173 'gh1406.at:1' \ + "ipset iface" " " 5 at_xfail=no ( - $as_echo "166. $at_setup_line: testing $at_desc ..." + printf "%s\n" "173. $at_setup_line: testing $at_desc ..." $at_traceon @@ -169285,6 +171523,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -169301,29 +171540,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/python.at:3: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" +printf "%s\n" "$at_srcdir/gh1406.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/python.at:3: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "python.at:3" +printf "%s\n" "$at_srcdir/gh1406.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh1406.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169331,15 +171570,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:3: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:3" +printf "%s\n" "$at_srcdir/gh1406.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh1406.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169395,15 +171634,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/python.at:3: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" +printf "%s\n" "$at_srcdir/gh1406.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169486,8 +171725,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "python.at:3" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:3" + printf "%s\n" "gh1406.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1406.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -169505,15 +171744,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/python.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" +printf "%s\n" "$at_srcdir/gh1406.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169526,15 +171765,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/python.at:3: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:3" +printf "%s\n" "$at_srcdir/gh1406.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "gh1406.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169543,30 +171782,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" +printf "%s\n" "$at_srcdir/gh1406.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" +printf "%s\n" "$at_srcdir/gh1406.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169575,7 +171814,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -169583,8 +171822,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "python.at:3" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:3" + printf "%s\n" "gh1406.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1406.at:1" fi echo "$!" > firewalld.pid @@ -169600,34 +171839,269 @@ at_fn_check_skip 99 "$at_srcdir/python.at:3" fi sleep 1 done - $as_echo "python.at:3" >"$at_check_line_file" + printf "%s\n" "gh1406.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/python.at:3" + && at_fn_check_skip 99 "$at_srcdir/gh1406.at:1" + + + { set +x -$as_echo "$at_srcdir/python.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_misc.py " -at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_misc.py +printf "%s\n" "$at_srcdir/gh1406.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net,iface " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net,iface ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/python.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:4" $at_failed && at_fn_log_failure $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "python.at:6" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/python.at:6" + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.10.10.0/24,dummy0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.10.10.0/24,dummy0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source ipset:foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source ipset:foobar +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy blah " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy blah +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy blah --add-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy blah --add-ingress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy blah --add-egress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy blah --add-egress-zone internal +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:10" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1406.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_INPUT_POLICIES { +ip saddr . iifname @foobar jump filter_IN_policy_allow-host-ipv6 +ip saddr . iifname @foobar jump filter_IN_internal +ip saddr . iifname @foobar reject with icmpx admin-prohibited +jump filter_IN_policy_allow-host-ipv6 +jump filter_IN_public +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:13" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1406.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_OUTPUT_POLICIES { +ip daddr . oifname @foobar jump filter_OUT_policy_blah +ip daddr . oifname @foobar jump filter_OUT_internal +ip daddr . oifname @foobar return +jump filter_OUT_public +return +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:25" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "gh1406.at:62" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh1406.at:62" fi @@ -169636,13 +172110,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_166 -#AT_START_167 -at_fn_group_banner 167 'python.at:8' \ - "firewalld_config.py" " " 6 +#AT_STOP_173 +#AT_START_174 +at_fn_group_banner 174 'RHEL-67103.at:1' \ + "rich rule invalid ipset" " " 5 at_xfail=no ( - $as_echo "167. $at_setup_line: testing $at_desc ..." + printf "%s\n" "174. $at_setup_line: testing $at_desc ..." $at_traceon @@ -169660,6 +172134,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -169676,29 +172151,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/python.at:8: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/python.at:8: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "python.at:8" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "RHEL-67103.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169706,15 +172181,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:8: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:8" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "RHEL-67103.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169770,15 +172245,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/python.at:8: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169861,8 +172336,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "python.at:8" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:8" + printf "%s\n" "RHEL-67103.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/RHEL-67103.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -169880,15 +172355,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/python.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169901,15 +172376,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/python.at:8: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:8" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "RHEL-67103.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169918,30 +172393,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -169950,7 +172425,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -169958,8 +172433,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "python.at:8" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:8" + printf "%s\n" "RHEL-67103.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/RHEL-67103.at:1" fi echo "$!" > firewalld.pid @@ -169975,34 +172450,252 @@ at_fn_check_skip 99 "$at_srcdir/python.at:8" fi sleep 1 done - $as_echo "python.at:8" >"$at_check_line_file" + printf "%s\n" "RHEL-67103.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/python.at:8" + && at_fn_check_skip 99 "$at_srcdir/RHEL-67103.at:1" + + + { set +x -$as_echo "$at_srcdir/python.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_config.py " -at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_config.py +printf "%s\n" "$at_srcdir/RHEL-67103.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset thisexists --type=hash:net " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset thisexists --type=hash:net +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/RHEL-67103.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule=\"rule family=ipv4 source ipset=thisexists accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule="rule family=ipv4 source ipset=thisexists accept" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/RHEL-67103.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule=\"rule family=ipv4 destination ipset=thisexists accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule="rule family=ipv4 destination ipset=thisexists accept" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/RHEL-67103.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/RHEL-67103.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/RHEL-67103.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule=\"rule family=ipv4 source ipset=doesnotexist accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule="rule family=ipv4 source ipset=doesnotexist accept" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/python.at:10" +at_fn_check_status 135 $at_status "$at_srcdir/RHEL-67103.at:11" $at_failed && at_fn_log_failure $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "python.at:11" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/python.at:11" + + + + { set +x +printf "%s\n" "$at_srcdir/RHEL-67103.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule=\"rule family=ipv4 source ipset=doesnotexist accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule="rule family=ipv4 source ipset=doesnotexist accept" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 135 $at_status "$at_srcdir/RHEL-67103.at:12" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/RHEL-67103.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule=\"rule family=ipv4 destination ipset=doesnotexist accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule="rule family=ipv4 destination ipset=doesnotexist accept" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 135 $at_status "$at_srcdir/RHEL-67103.at:13" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/RHEL-67103.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule=\"rule family=ipv4 destination ipset=doesnotexist accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule="rule family=ipv4 destination ipset=doesnotexist accept" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 135 $at_status "$at_srcdir/RHEL-67103.at:14" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + +cat >./zones/broken.xml <<'_ATEOF' + + +broken + + + + + + + + + + +_ATEOF + + + + + + { set +x +printf "%s\n" "$at_srcdir/RHEL-67103.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 135 $at_status "$at_srcdir/RHEL-67103.at:32" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/RHEL-67103.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:32" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + if test x"-e '/ERROR: INVALID_IPSET/d'" != x"ignore"; then + printf "%s\n" "RHEL-67103.at:34" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_IPSET/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/RHEL-67103.at:34" fi @@ -170011,13 +172704,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_167 -#AT_START_168 -at_fn_group_banner 168 'python.at:13' \ - "firewalld_rich.py" " " 6 +#AT_STOP_174 +#AT_START_175 +at_fn_group_banner 175 'python.at:3' \ + "firewalld_misc.py" " " 6 at_xfail=no ( - $as_echo "168. $at_setup_line: testing $at_desc ..." + printf "%s\n" "175. $at_setup_line: testing $at_desc ..." $at_traceon @@ -170035,6 +172728,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -170051,29 +172745,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/python.at:13: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" +printf "%s\n" "$at_srcdir/python.at:3: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/python.at:13: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "python.at:13" +printf "%s\n" "$at_srcdir/python.at:3: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "python.at:3" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } @@ -170081,15 +172775,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:13: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:13" +printf "%s\n" "$at_srcdir/python.at:3: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:3" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } @@ -170145,15 +172839,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/python.at:13: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" +printf "%s\n" "$at_srcdir/python.at:3: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } @@ -170236,8 +172930,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "python.at:13" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:13" + printf "%s\n" "python.at:3" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:3" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -170255,15 +172949,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/python.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" +printf "%s\n" "$at_srcdir/python.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } @@ -170276,15 +172970,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/python.at:13: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:13" +printf "%s\n" "$at_srcdir/python.at:3: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:3" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } @@ -170293,30 +172987,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" +printf "%s\n" "$at_srcdir/python.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" +printf "%s\n" "$at_srcdir/python.at:3: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } @@ -170325,7 +173019,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -170333,8 +173027,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "python.at:13" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:13" + printf "%s\n" "python.at:3" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:3" fi echo "$!" > firewalld.pid @@ -170350,24 +173044,24 @@ at_fn_check_skip 99 "$at_srcdir/python.at:13" fi sleep 1 done - $as_echo "python.at:13" >"$at_check_line_file" + printf "%s\n" "python.at:3" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/python.at:13" + && at_fn_check_skip 99 "$at_srcdir/python.at:3" { set +x -$as_echo "$at_srcdir/python.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_rich.py " -at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_rich.py +printf "%s\n" "$at_srcdir/python.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_misc.py " +at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_misc.py ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/python.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -170375,9 +173069,9 @@ $at_traceon; } if test x"ignore" != x"ignore"; then - $as_echo "python.at:16" >"$at_check_line_file" + printf "%s\n" "python.at:6" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/python.at:16" + && at_fn_check_skip 99 "$at_srcdir/python.at:6" fi @@ -170386,13 +173080,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_168 -#AT_START_169 -at_fn_group_banner 169 'python.at:18' \ - "firewalld_direct.py" " " 6 +#AT_STOP_175 +#AT_START_176 +at_fn_group_banner 176 'python.at:8' \ + "firewalld_config.py" " " 6 at_xfail=no ( - $as_echo "169. $at_setup_line: testing $at_desc ..." + printf "%s\n" "176. $at_setup_line: testing $at_desc ..." $at_traceon @@ -170410,6 +173104,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -170426,29 +173121,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/python.at:18: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" +printf "%s\n" "$at_srcdir/python.at:8: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/python.at:18: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "python.at:18" +printf "%s\n" "$at_srcdir/python.at:8: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "python.at:8" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -170456,15 +173151,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:18: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:18" +printf "%s\n" "$at_srcdir/python.at:8: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:8" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -170520,15 +173215,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/python.at:18: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" +printf "%s\n" "$at_srcdir/python.at:8: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -170611,8 +173306,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "python.at:18" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:18" + printf "%s\n" "python.at:8" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:8" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -170630,15 +173325,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/python.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" +printf "%s\n" "$at_srcdir/python.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -170651,15 +173346,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/python.at:18: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:18" +printf "%s\n" "$at_srcdir/python.at:8: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:8" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -170668,30 +173363,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" +printf "%s\n" "$at_srcdir/python.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" +printf "%s\n" "$at_srcdir/python.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -170700,7 +173395,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -170708,8 +173403,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "python.at:18" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:18" + printf "%s\n" "python.at:8" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:8" fi echo "$!" > firewalld.pid @@ -170725,31 +173420,24 @@ at_fn_check_skip 99 "$at_srcdir/python.at:18" fi sleep 1 done - $as_echo "python.at:18" >"$at_check_line_file" + printf "%s\n" "python.at:8" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/python.at:18" - - - - + && at_fn_check_skip 99 "$at_srcdir/python.at:8" - $as_echo "python.at:20" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/python.at:20" { set +x -$as_echo "$at_srcdir/python.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_direct.py " -at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_direct.py +printf "%s\n" "$at_srcdir/python.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_config.py " +at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_config.py ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/python.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -170757,9 +173445,9 @@ $at_traceon; } if test x"ignore" != x"ignore"; then - $as_echo "python.at:22" >"$at_check_line_file" + printf "%s\n" "python.at:11" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/python.at:22" + && at_fn_check_skip 99 "$at_srcdir/python.at:11" fi @@ -170768,13 +173456,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_169 -#AT_START_170 -at_fn_group_banner 170 'rfc3964_ipv4.at:1' \ - "RFC3964_IPv4" " " 7 +#AT_STOP_176 +#AT_START_177 +at_fn_group_banner 177 'python.at:13' \ + "firewalld_rich.py" " " 6 at_xfail=no ( - $as_echo "170. $at_setup_line: testing $at_desc ..." + printf "%s\n" "177. $at_setup_line: testing $at_desc ..." $at_traceon @@ -170792,6 +173480,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -170808,29 +173497,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/python.at:13: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/python.at:13: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "python.at:13" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -170838,15 +173527,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/python.at:13: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:13" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -170902,15 +173591,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/python.at:13: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -170993,8 +173682,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rfc3964_ipv4.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" + printf "%s\n" "python.at:13" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:13" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -171012,15 +173701,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/python.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -171033,15 +173722,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/python.at:13: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:13" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -171050,30 +173739,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/python.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/python.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -171082,7 +173771,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -171090,8 +173779,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rfc3964_ipv4.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" + printf "%s\n" "python.at:13" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:13" fi echo "$!" > firewalld.pid @@ -171107,322 +173796,34 @@ at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" fi sleep 1 done - $as_echo "rfc3964_ipv4.at:1" >"$at_check_line_file" + printf "%s\n" "python.at:13" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" - - - - - -{ set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:4: sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf" -at_fn_check_prepare_trace "rfc3964_ipv4.at:4" -( $at_check_trace; sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - -{ set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:5: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "rfc3964_ipv4.at:5" -( $at_check_trace; sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=yes/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:5" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_FORWARD { -ct state established,related accept -ct status dnat accept -iifname \"lo\" accept -ct state invalid log prefix \"STATE_INVALID_DROP: \" -ct state invalid drop -ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } log prefix \"RFC3964_IPv4_REJECT: \" reject with icmpv6 addr-unreachable -jump filter_FORWARD_POLICIES -log prefix \"FINAL_REJECT: \" -reject with icmpx admin-prohibited -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_OUTPUT { -ct state established,related accept -oifname \"lo\" accept -ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } log prefix \"RFC3964_IPv4_REJECT: \" reject with icmpv6 addr-unreachable -jump filter_OUTPUT_POLICIES -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:23" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - - -{ set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:72: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=no/' ./firewalld.conf" -at_fn_check_prepare_trace "rfc3964_ipv4.at:72" -( $at_check_trace; sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=no/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:75" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_FORWARD { -ct state established,related accept -ct status dnat accept -iifname \"lo\" accept -ct state invalid log prefix \"STATE_INVALID_DROP: \" -ct state invalid drop -jump filter_FORWARD_POLICIES -log prefix \"FINAL_REJECT: \" -reject with icmpx admin-prohibited -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:75" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - + && at_fn_check_skip 99 "$at_srcdir/python.at:13" { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:89" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/python.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_rich.py " +at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_rich.py ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_OUTPUT { -ct state established,related accept -oifname \"lo\" accept -jump filter_OUTPUT_POLICIES -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:89" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:15" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - - - - - - - - - if test x"" != x"ignore"; then - $as_echo "rfc3964_ipv4.at:117" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:117" + if test x"ignore" != x"ignore"; then + printf "%s\n" "python.at:16" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/python.at:16" fi @@ -171431,13 +173832,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_170 -#AT_START_171 -at_fn_group_banner 171 'service_include.at:1' \ - "service include" " " 7 +#AT_STOP_177 +#AT_START_178 +at_fn_group_banner 178 'python.at:18' \ + "firewalld_direct.py" " " 6 at_xfail=no ( - $as_echo "171. $at_setup_line: testing $at_desc ..." + printf "%s\n" "178. $at_setup_line: testing $at_desc ..." $at_traceon @@ -171455,6 +173856,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -171471,29 +173873,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/service_include.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:1" +printf "%s\n" "$at_srcdir/python.at:18: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/service_include.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "service_include.at:1" +printf "%s\n" "$at_srcdir/python.at:18: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "python.at:18" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -171501,15 +173903,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "service_include.at:1" +printf "%s\n" "$at_srcdir/python.at:18: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:18" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -171565,7 +173967,1056 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/service_include.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/python.at:18: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "python.at:18" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:18" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + cat >./nft_rule_index.nft <<'_ATEOF' + + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/python.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + + else + : + + { set +x +printf "%s\n" "$at_srcdir/python.at:18: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:18" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +$at_failed && at_fn_log_failure +$at_traceon; } + + + fi + + + { set +x +printf "%s\n" "$at_srcdir/python.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + { set +x +printf "%s\n" "$at_srcdir/python.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "python.at:18" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:18" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "python.at:18" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/python.at:18" + + + + + + + printf "%s\n" "python.at:20" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/python.at:20" + + + + { set +x +printf "%s\n" "$at_srcdir/python.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_direct.py " +at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_direct.py +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:21" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + if test x"ignore" != x"ignore"; then + printf "%s\n" "python.at:22" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/python.at:22" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_178 +#AT_START_179 +at_fn_group_banner 179 'rfc3964_ipv4.at:1' \ + "RFC3964_IPv4" " " 7 +at_xfail=no +( + printf "%s\n" "179. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rfc3964_ipv4.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "rfc3964_ipv4.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + + else + : + + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf + + fi + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rfc3964_ipv4.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + cat >./nft_rule_index.nft <<'_ATEOF' + + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + + else + : + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rfc3964_ipv4.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + fi + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rfc3964_ipv4.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rfc3964_ipv4.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" + + + + + +{ set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:4: sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf" +at_fn_check_prepare_trace "rfc3964_ipv4.at:4" +( $at_check_trace; sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:5: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rfc3964_ipv4.at:5" +( $at_check_trace; sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_FORWARD { +ct state established,related accept +ct status dnat accept +iifname \"lo\" accept +ct state invalid log prefix \"STATE_INVALID_DROP: \" +ct state invalid drop +ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } log prefix \"RFC3964_IPv4_REJECT: \" reject with icmpv6 addr-unreachable +jump filter_FORWARD_POLICIES +log prefix \"FINAL_REJECT: \" +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:23" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_OUTPUT { +ct state established,related accept +ct status dnat accept +oifname \"lo\" accept +ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } log prefix \"RFC3964_IPv4_REJECT: \" reject with icmpv6 addr-unreachable +jump filter_OUTPUT_POLICIES +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:23" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + +{ set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:73: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rfc3964_ipv4.at:73" +( $at_check_trace; sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:74" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:74" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:74" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:74" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:76" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_FORWARD { +ct state established,related accept +ct status dnat accept +iifname \"lo\" accept +ct state invalid log prefix \"STATE_INVALID_DROP: \" +ct state invalid drop +jump filter_FORWARD_POLICIES +log prefix \"FINAL_REJECT: \" +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:76" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_OUTPUT { +ct state established,related accept +ct status dnat accept +oifname \"lo\" accept +jump filter_OUTPUT_POLICIES +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:90" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "rfc3964_ipv4.at:119" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:119" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_179 +#AT_START_180 +at_fn_group_banner 180 'service_include.at:1' \ + "service include" " " 7 +at_xfail=no +( + printf "%s\n" "180. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/service_include.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/service_include.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "service_include.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "service_include.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + + else + : + + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf + + fi + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/service_include.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171656,7 +175107,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "service_include.at:1" >"$at_check_line_file" + printf "%s\n" "service_include.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/service_include.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -171675,7 +175126,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/service_include.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/service_include.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171696,7 +175147,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/service_include.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/service_include.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "service_include.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171713,7 +175164,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/service_include.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171728,7 +175179,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/service_include.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171745,7 +175196,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -171753,7 +175204,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "service_include.at:1" >"$at_check_line_file" + printf "%s\n" "service_include.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/service_include.at:1" fi echo "$!" > firewalld.pid @@ -171770,7 +175221,7 @@ at_fn_check_skip 99 "$at_srcdir/service_include.at:1" fi sleep 1 done - $as_echo "service_include.at:1" >"$at_check_line_file" + printf "%s\n" "service_include.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/service_include.at:1" @@ -171779,7 +175230,7 @@ at_fn_check_skip 99 "$at_srcdir/service_include.at:1" { set +x -$as_echo "$at_srcdir/service_include.at:4: mkdir -p ./services" +printf "%s\n" "$at_srcdir/service_include.at:4: mkdir -p ./services" at_fn_check_prepare_trace "service_include.at:4" ( $at_check_trace; mkdir -p ./services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171792,7 +175243,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:5: cat < ./services/my-service-with-include.xml +printf "%s\n" "$at_srcdir/service_include.at:5: cat < ./services/my-service-with-include.xml my-service-with-include @@ -171827,7 +175278,7 @@ $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:17: cat < ./services/recursive-service.xml +printf "%s\n" "$at_srcdir/service_include.at:17: cat < ./services/recursive-service.xml recursive-service @@ -171860,7 +175311,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/service_include.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171879,7 +175330,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/service_include.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:26" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171900,7 +175351,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-interface=foobar0 " +printf "%s\n" "$at_srcdir/service_include.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-interface=foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171919,7 +175370,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-service=my-service-with-include " +printf "%s\n" "$at_srcdir/service_include.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-service=my-service-with-include " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:29" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --add-service=my-service-with-include ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171938,14 +175389,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --list-services " +printf "%s\n" "$at_srcdir/service_include.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --list-services " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:30" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=drop --list-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "my-service-with-include +echo >>"$at_stdout"; printf "%s\n" "my-service-with-include " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:30" @@ -171960,7 +175411,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-service=recursive-service " +printf "%s\n" "$at_srcdir/service_include.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-service=recursive-service " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:35" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --add-service=recursive-service ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171979,7 +175430,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --remove-service=recursive-service " +printf "%s\n" "$at_srcdir/service_include.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --remove-service=recursive-service " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:36" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --remove-service=recursive-service ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -171998,7 +175449,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --add-rich-rule='rule service name=recursive-service log' " +printf "%s\n" "$at_srcdir/service_include.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --add-rich-rule='rule service name=recursive-service log' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:37" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=drop --add-rich-rule='rule service name=recursive-service log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172017,14 +175468,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --list-rich-rules " +printf "%s\n" "$at_srcdir/service_include.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --list-rich-rules " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:38" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=drop --list-rich-rules ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "rule service name=\"recursive-service\" log +echo >>"$at_stdout"; printf "%s\n" "rule service name=\"recursive-service\" log " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:38" @@ -172041,7 +175492,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service_include.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_drop_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -172054,7 +175505,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_drop_allow { ip daddr 239.255.255.250 udp dport 1900 accept ip6 daddr ff02::c udp dport 1900 accept @@ -172080,7 +175531,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/service_include.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_drop_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -172093,7 +175544,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_drop_log { ip daddr 239.255.255.250 udp dport 1900 log ip6 daddr ff02::c udp dport 1900 log @@ -172130,7 +175581,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=recursive-service " +printf "%s\n" "$at_srcdir/service_include.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=recursive-service " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:86" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=recursive-service ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172149,7 +175600,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --add-include=ssh " +printf "%s\n" "$at_srcdir/service_include.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --add-include=ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:87" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --add-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172168,7 +175619,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh " +printf "%s\n" "$at_srcdir/service_include.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:88" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172184,7 +175635,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:89: grep '' ./services/my-service-with-include.xml " +printf "%s\n" "$at_srcdir/service_include.at:89: grep '' ./services/my-service-with-include.xml " at_fn_check_prepare_trace "service_include.at:89" ( $at_check_trace; grep '' ./services/my-service-with-include.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172200,7 +175651,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --remove-include=ssh " +printf "%s\n" "$at_srcdir/service_include.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --remove-include=ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:90" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --remove-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172219,7 +175670,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh " +printf "%s\n" "$at_srcdir/service_include.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:91" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172235,7 +175686,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:92: grep '' ./services/my-service-with-include.xml " +printf "%s\n" "$at_srcdir/service_include.at:92: grep '' ./services/my-service-with-include.xml " at_fn_check_prepare_trace "service_include.at:92" ( $at_check_trace; grep '' ./services/my-service-with-include.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172251,14 +175702,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --get-includes " +printf "%s\n" "$at_srcdir/service_include.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --get-includes " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:93" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --get-includes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "mdns recursive-service ssdp +echo >>"$at_stdout"; printf "%s\n" "mdns recursive-service ssdp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:93" @@ -172272,14 +175723,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/service_include.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:96" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-service=my-service-with-include | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "my-service-with-include +echo >>"$at_stdout"; printf "%s\n" "my-service-with-include ports: 12345/tcp protocols: source-ports: @@ -172300,14 +175751,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/service_include.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:106" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-service=my-service-with-include | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "my-service-with-include +echo >>"$at_stdout"; printf "%s\n" "my-service-with-include ports: 12345/tcp protocols: source-ports: @@ -172332,7 +175783,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service" +printf "%s\n" "$at_srcdir/service_include.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service" "service_include.at:118" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172352,7 +175803,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:119: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh" +printf "%s\n" "$at_srcdir/service_include.at:119: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh" "service_include.at:119" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172372,7 +175823,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:120: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" +printf "%s\n" "$at_srcdir/service_include.at:120: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" "service_include.at:120" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172386,7 +175837,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:121: grep '' ./services/my-service-with-include.xml " +printf "%s\n" "$at_srcdir/service_include.at:121: grep '' ./services/my-service-with-include.xml " at_fn_check_prepare_trace "service_include.at:121" ( $at_check_trace; grep '' ./services/my-service-with-include.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172405,7 +175856,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:122: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh" +printf "%s\n" "$at_srcdir/service_include.at:122: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh" "service_include.at:122" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172425,7 +175876,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:123: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" +printf "%s\n" "$at_srcdir/service_include.at:123: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" "service_include.at:123" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172439,7 +175890,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:124: grep '' ./services/my-service-with-include.xml " +printf "%s\n" "$at_srcdir/service_include.at:124: grep '' ./services/my-service-with-include.xml " at_fn_check_prepare_trace "service_include.at:124" ( $at_check_trace; grep '' ./services/my-service-with-include.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172458,14 +175909,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:125: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes" +printf "%s\n" "$at_srcdir/service_include.at:125: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes" "service_include.at:125" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "mdns recursive-service ssdp +echo >>"$at_stdout"; printf "%s\n" "mdns recursive-service ssdp " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:125" @@ -172480,14 +175931,14 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:128: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" +printf "%s\n" "$at_srcdir/service_include.at:128: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:128" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "my-service-with-include +echo >>"$at_stdout"; printf "%s\n" "my-service-with-include ports: 12345/tcp protocols: source-ports: @@ -172507,7 +175958,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --add-include=does-not-exist " +printf "%s\n" "$at_srcdir/service_include.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --add-include=does-not-exist " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:140" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --add-include=does-not-exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172529,7 +175980,7 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/service_include.at:141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist" +printf "%s\n" "$at_srcdir/service_include.at:141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist" at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist" "service_include.at:141" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172546,7 +175997,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_SERVICE:/d'" != x"ignore"; then - $as_echo "service_include.at:143" >"$at_check_line_file" + printf "%s\n" "service_include.at:143" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/service_include.at:143" fi @@ -172557,13 +176008,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_171 -#AT_START_172 -at_fn_group_banner 172 'helpers_custom.at:1' \ +#AT_STOP_180 +#AT_START_181 +at_fn_group_banner 181 'helpers_custom.at:1' \ "customer helpers" " " 7 at_xfail=no ( - $as_echo "172. $at_setup_line: testing $at_desc ..." + printf "%s\n" "181. $at_setup_line: testing $at_desc ..." $at_traceon @@ -172581,6 +176032,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -172597,7 +176049,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/helpers_custom.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172611,7 +176063,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/helpers_custom.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "helpers_custom.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172627,7 +176079,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/helpers_custom.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "helpers_custom.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172691,7 +176143,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/helpers_custom.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172782,7 +176234,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "helpers_custom.at:1" >"$at_check_line_file" + printf "%s\n" "helpers_custom.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -172801,7 +176253,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/helpers_custom.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172822,7 +176274,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/helpers_custom.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "helpers_custom.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172839,7 +176291,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/helpers_custom.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172854,7 +176306,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/helpers_custom.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172871,7 +176323,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -172879,7 +176331,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "helpers_custom.at:1" >"$at_check_line_file" + printf "%s\n" "helpers_custom.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" fi echo "$!" > firewalld.pid @@ -172896,7 +176348,7 @@ at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" fi sleep 1 done - $as_echo "helpers_custom.at:1" >"$at_check_line_file" + printf "%s\n" "helpers_custom.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" @@ -172908,7 +176360,7 @@ at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" { set +x -$as_echo "$at_srcdir/helpers_custom.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-helper=\"ftptest\" --module=\"nf_conntrack_ftp\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-helper=\"ftptest\" --module=\"nf_conntrack_ftp\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-helper="ftptest" --module="nf_conntrack_ftp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172927,7 +176379,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --helper=ftptest --add-port=\"2121/tcp\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --helper=ftptest --add-port=\"2121/tcp\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --helper=ftptest --add-port="2121/tcp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172947,7 +176399,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-service=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-service=\"ftptest\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-service="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172966,7 +176418,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module=\"ftptest\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -172985,7 +176437,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module=\"ftptest\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173004,7 +176456,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port=\"2121/tcp\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port=\"2121/tcp\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port="2121/tcp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173023,14 +176475,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/helpers_custom.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftptest +echo >>"$at_stdout"; printf "%s\n" "ftptest ports: 2121/tcp protocols: source-ports: @@ -173052,7 +176504,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/helpers_custom.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173071,7 +176523,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/helpers_custom.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173091,14 +176543,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/helpers_custom.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:22" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftptest +echo >>"$at_stdout"; printf "%s\n" "ftptest ports: 2121/tcp protocols: source-ports: @@ -173120,7 +176572,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " +printf "%s\n" "$at_srcdir/helpers_custom.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=ftptest ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173142,7 +176594,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/helpers_custom.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -173155,7 +176607,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -173191,7 +176643,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-module=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-module=\"ftptest\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:62" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173210,7 +176662,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module=\"ftptest\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:63" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173229,7 +176681,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper=\"ftptest\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:64" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173248,14 +176700,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/helpers_custom.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:65" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftptest +echo >>"$at_stdout"; printf "%s\n" "ftptest ports: 2121/tcp protocols: source-ports: @@ -173277,7 +176729,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/helpers_custom.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:75" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173296,7 +176748,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/helpers_custom.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:75" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173316,14 +176768,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/helpers_custom.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:76" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftptest +echo >>"$at_stdout"; printf "%s\n" "ftptest ports: 2121/tcp protocols: source-ports: @@ -173345,7 +176797,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " +printf "%s\n" "$at_srcdir/helpers_custom.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:87" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=ftptest ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173367,7 +176819,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/helpers_custom.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -173380,7 +176832,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -173416,7 +176868,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module=\"ftptest\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:116" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173435,7 +176887,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-helper=\"ftptest\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-helper=\"ftptest\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:117" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-helper="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173454,7 +176906,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper=\"ftp\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper=\"ftp\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper="ftp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173473,7 +176925,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port=\"21/tcp\" " +printf "%s\n" "$at_srcdir/helpers_custom.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port=\"21/tcp\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:119" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port="21/tcp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173493,7 +176945,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/helpers_custom.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:120" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173512,7 +176964,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/helpers_custom.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:120" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173533,7 +176985,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " +printf "%s\n" "$at_srcdir/helpers_custom.at:122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:122" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=ftptest ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173555,7 +177007,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/helpers_custom.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -173568,7 +177020,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -173605,7 +177057,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "helpers_custom.at:156" >"$at_check_line_file" + printf "%s\n" "helpers_custom.at:156" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:156" fi @@ -173616,13 +177068,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_172 -#AT_START_173 -at_fn_group_banner 173 'policy.at:5' \ +#AT_STOP_181 +#AT_START_182 +at_fn_group_banner 182 'policy.at:5' \ "policy - xml" " " 7 at_xfail=no ( - $as_echo "173. $at_setup_line: testing $at_desc ..." + printf "%s\n" "182. $at_setup_line: testing $at_desc ..." $at_traceon @@ -173640,6 +177092,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -173656,7 +177109,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173670,7 +177123,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:5" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173686,7 +177139,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:5" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173750,7 +177203,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:5: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy.at:5: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173841,7 +177294,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:5" >"$at_check_line_file" + printf "%s\n" "policy.at:5" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:5" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -173860,7 +177313,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173881,7 +177334,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:5: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:5: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:5" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173898,7 +177351,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173913,7 +177366,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -173930,7 +177383,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -173938,7 +177391,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:5" >"$at_check_line_file" + printf "%s\n" "policy.at:5" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:5" fi echo "$!" > firewalld.pid @@ -173955,7 +177408,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:5" fi sleep 1 done - $as_echo "policy.at:5" >"$at_check_line_file" + printf "%s\n" "policy.at:5" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy.at:5" @@ -173964,7 +177417,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:5" { set +x -$as_echo "$at_srcdir/policy.at:8: mkdir -p ./policies" +printf "%s\n" "$at_srcdir/policy.at:8: mkdir -p ./policies" at_fn_check_prepare_trace "policy.at:8" ( $at_check_trace; mkdir -p ./policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174041,7 +177494,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +printf "%s\n" "$at_srcdir/policy.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:70" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174061,7 +177514,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/policy.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174080,7 +177533,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/policy.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174100,7 +177553,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy.at:73" >"$at_check_line_file" + printf "%s\n" "policy.at:73" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/policy.at:73" fi @@ -174111,13 +177564,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_173 -#AT_START_174 -at_fn_group_banner 174 'policy.at:79' \ +#AT_STOP_182 +#AT_START_183 +at_fn_group_banner 183 'policy.at:79' \ "policy - create" " " 7 at_xfail=no ( - $as_echo "174. $at_setup_line: testing $at_desc ..." + printf "%s\n" "183. $at_setup_line: testing $at_desc ..." $at_traceon @@ -174135,6 +177588,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -174151,7 +177605,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:79: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:79: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:79" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174165,7 +177619,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:79: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:79: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:79" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174181,7 +177635,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:79: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:79: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:79" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174245,7 +177699,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:79: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy.at:79: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:79" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174336,7 +177790,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:79" >"$at_check_line_file" + printf "%s\n" "policy.at:79" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:79" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -174355,7 +177809,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:79" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174376,7 +177830,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:79: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:79: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:79" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174393,7 +177847,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:79" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174408,7 +177862,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:79" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174425,7 +177879,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -174433,7 +177887,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:79" >"$at_check_line_file" + printf "%s\n" "policy.at:79" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:79" fi echo "$!" > firewalld.pid @@ -174450,7 +177904,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:79" fi sleep 1 done - $as_echo "policy.at:79" >"$at_check_line_file" + printf "%s\n" "policy.at:79" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy.at:79" @@ -174462,7 +177916,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:79" { set +x -$as_echo "$at_srcdir/policy.at:83: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost " +printf "%s\n" "$at_srcdir/policy.at:83: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:83" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174481,7 +177935,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy hostToWorld " +printf "%s\n" "$at_srcdir/policy.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy hostToWorld " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:84" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy hostToWorld ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174500,7 +177954,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy zoneToZone " +printf "%s\n" "$at_srcdir/policy.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy zoneToZone " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:85" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy zoneToZone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174519,14 +177973,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-policies " +printf "%s\n" "$at_srcdir/policy.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-policies " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:86" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 hostToWorld worldToHost zoneToZone +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 hostToWorld worldToHost zoneToZone " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:86" @@ -174541,7 +177995,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/policy.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:89" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174560,7 +178014,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/policy.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:89" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174580,14 +178034,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-policies " +printf "%s\n" "$at_srcdir/policy.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-policies " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:90" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 hostToWorld worldToHost zoneToZone +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 hostToWorld worldToHost zoneToZone " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:90" @@ -174601,7 +178055,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy.at:94" >"$at_check_line_file" + printf "%s\n" "policy.at:94" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/policy.at:94" fi @@ -174612,13 +178066,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_174 -#AT_START_175 -at_fn_group_banner 175 'policy.at:96' \ +#AT_STOP_183 +#AT_START_184 +at_fn_group_banner 184 'policy.at:96' \ "policy - name" " " 7 at_xfail=no ( - $as_echo "175. $at_setup_line: testing $at_desc ..." + printf "%s\n" "184. $at_setup_line: testing $at_desc ..." $at_traceon @@ -174636,6 +178090,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -174652,7 +178107,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:96: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:96: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:96" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174666,7 +178121,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:96: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:96: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:96" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174682,7 +178137,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:96: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:96: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:96" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174746,7 +178201,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:96: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy.at:96: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:96" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174837,7 +178292,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:96" >"$at_check_line_file" + printf "%s\n" "policy.at:96" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:96" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -174856,7 +178311,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:96" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174877,7 +178332,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:96: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:96: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:96" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174894,7 +178349,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:96" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174909,7 +178364,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:96" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174926,7 +178381,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -174934,7 +178389,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:96" >"$at_check_line_file" + printf "%s\n" "policy.at:96" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:96" fi echo "$!" > firewalld.pid @@ -174951,7 +178406,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:96" fi sleep 1 done - $as_echo "policy.at:96" >"$at_check_line_file" + printf "%s\n" "policy.at:96" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy.at:96" @@ -174963,7 +178418,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:96" { set +x -$as_echo "$at_srcdir/policy.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy 123456789012345678 " +printf "%s\n" "$at_srcdir/policy.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy 123456789012345678 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:100" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy 123456789012345678 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -174982,7 +178437,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy 1234567890123456789 " +printf "%s\n" "$at_srcdir/policy.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy 1234567890123456789 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:101" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy 1234567890123456789 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175002,7 +178457,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy public " +printf "%s\n" "$at_srcdir/policy.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:104" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175021,7 +178476,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone allow-host-ipv6 " +printf "%s\n" "$at_srcdir/policy.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone allow-host-ipv6 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:105" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone allow-host-ipv6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175040,7 +178495,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_NAME:/d' -e '/ERROR: NAME_CONFLICT:/d'" != x"ignore"; then - $as_echo "policy.at:107" >"$at_check_line_file" + printf "%s\n" "policy.at:107" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_NAME:/d' -e '/ERROR: NAME_CONFLICT:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/policy.at:107" fi @@ -175051,13 +178506,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_175 -#AT_START_176 -at_fn_group_banner 176 'policy.at:109' \ +#AT_STOP_184 +#AT_START_185 +at_fn_group_banner 185 'policy.at:109' \ "policy - list" " " 7 at_xfail=no ( - $as_echo "176. $at_setup_line: testing $at_desc ..." + printf "%s\n" "185. $at_setup_line: testing $at_desc ..." $at_traceon @@ -175075,6 +178530,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -175091,7 +178547,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:109: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:109: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:109" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175105,7 +178561,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:109: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:109: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:109" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175121,7 +178577,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:109: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:109: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:109" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175185,7 +178641,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:109: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy.at:109: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:109" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175276,7 +178732,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:109" >"$at_check_line_file" + printf "%s\n" "policy.at:109" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:109" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -175295,7 +178751,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:109" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175316,7 +178772,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:109: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:109: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:109" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175333,7 +178789,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:109" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175348,7 +178804,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:109" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175365,7 +178821,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -175373,7 +178829,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:109" >"$at_check_line_file" + printf "%s\n" "policy.at:109" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:109" fi echo "$!" > firewalld.pid @@ -175390,7 +178846,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:109" fi sleep 1 done - $as_echo "policy.at:109" >"$at_check_line_file" + printf "%s\n" "policy.at:109" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy.at:109" @@ -175402,14 +178858,14 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:109" { set +x -$as_echo "$at_srcdir/policy.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-policy allow-host-ipv6 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/policy.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-policy allow-host-ipv6 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:112" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-policy allow-host-ipv6 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 (active) +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 (active) priority: -15000 target: CONTINUE ingress-zones: ANY @@ -175424,8 +178880,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:112" @@ -175439,14 +178895,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-policy allow-host-ipv6 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/policy.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-policy allow-host-ipv6 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:131" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-policy allow-host-ipv6 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 priority: -15000 target: CONTINUE ingress-zones: ANY @@ -175461,8 +178917,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:131" @@ -175477,14 +178933,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/policy.at:151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:151" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 (active) +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 (active) priority: -15000 target: CONTINUE ingress-zones: ANY @@ -175499,8 +178955,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:151" @@ -175514,14 +178970,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/policy.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:170" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 priority: -15000 target: CONTINUE ingress-zones: ANY @@ -175536,8 +178992,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:170" @@ -175552,14 +179008,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/policy.at:190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:190" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 (active) +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 (active) priority: -15000 target: CONTINUE ingress-zones: ANY @@ -175574,8 +179030,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:190" @@ -175589,14 +179045,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:209: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +printf "%s\n" "$at_srcdir/policy.at:209: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:209" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 priority: -15000 target: CONTINUE ingress-zones: ANY @@ -175611,8 +179067,8 @@ icmp-blocks: rich rules: rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:209" @@ -175626,7 +179082,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy.at:229" >"$at_check_line_file" + printf "%s\n" "policy.at:229" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/policy.at:229" fi @@ -175637,13 +179093,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_176 -#AT_START_177 -at_fn_group_banner 177 'policy.at:231' \ +#AT_STOP_185 +#AT_START_186 +at_fn_group_banner 186 'policy.at:231' \ "policy - options" " " 7 at_xfail=no ( - $as_echo "177. $at_setup_line: testing $at_desc ..." + printf "%s\n" "186. $at_setup_line: testing $at_desc ..." $at_traceon @@ -175661,6 +179117,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -175677,7 +179134,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:231: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:231: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:231" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175691,7 +179148,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:231: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:231: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:231" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175707,7 +179164,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:231: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:231: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:231" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175771,7 +179228,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:231: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy.at:231: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:231" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175862,7 +179319,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:231" >"$at_check_line_file" + printf "%s\n" "policy.at:231" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:231" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -175881,7 +179338,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:231" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175902,7 +179359,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:231: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:231: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:231" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175919,7 +179376,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:231" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175934,7 +179391,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:231" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -175951,7 +179408,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -175959,7 +179416,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:231" >"$at_check_line_file" + printf "%s\n" "policy.at:231" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:231" fi echo "$!" > firewalld.pid @@ -175976,7 +179433,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:231" fi sleep 1 done - $as_echo "policy.at:231" >"$at_check_line_file" + printf "%s\n" "policy.at:231" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy.at:231" @@ -175988,7 +179445,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:231" { set +x -$as_echo "$at_srcdir/policy.at:235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --zone public " +printf "%s\n" "$at_srcdir/policy.at:235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:235" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176007,7 +179464,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --zone public " +printf "%s\n" "$at_srcdir/policy.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:236" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176027,7 +179484,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-interface foobar0 " +printf "%s\n" "$at_srcdir/policy.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:239" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176046,7 +179503,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-interface foobar0 " +printf "%s\n" "$at_srcdir/policy.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:240" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176065,7 +179522,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-interface foobar0 " +printf "%s\n" "$at_srcdir/policy.at:241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:241" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176084,7 +179541,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-interface foobar0 " +printf "%s\n" "$at_srcdir/policy.at:242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:242" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176103,7 +179560,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-interface foobar0 " +printf "%s\n" "$at_srcdir/policy.at:243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:243" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176122,7 +179579,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-interface foobar0 " +printf "%s\n" "$at_srcdir/policy.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:244" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176141,7 +179598,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-interfaces " +printf "%s\n" "$at_srcdir/policy.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-interfaces " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:245" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-interfaces ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176160,7 +179617,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-interfaces " +printf "%s\n" "$at_srcdir/policy.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-interfaces " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:246" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-interfaces ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176180,7 +179637,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/policy.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:249" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176199,7 +179656,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/policy.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:250" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176218,7 +179675,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/policy.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:251" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176237,7 +179694,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/policy.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:252" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176256,7 +179713,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/policy.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:253" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176275,7 +179732,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:254: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/policy.at:254: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:254" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176294,7 +179751,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-sources " +printf "%s\n" "$at_srcdir/policy.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:255" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176313,7 +179770,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-sources " +printf "%s\n" "$at_srcdir/policy.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-sources " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:256" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176333,7 +179790,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-forward " +printf "%s\n" "$at_srcdir/policy.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:259" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176352,7 +179809,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-forward " +printf "%s\n" "$at_srcdir/policy.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:260" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176371,7 +179828,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-forward " +printf "%s\n" "$at_srcdir/policy.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:261" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176390,7 +179847,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-forward " +printf "%s\n" "$at_srcdir/policy.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:262" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176409,7 +179866,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-forward " +printf "%s\n" "$at_srcdir/policy.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:263" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176428,7 +179885,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-forward " +printf "%s\n" "$at_srcdir/policy.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-forward " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:264" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176448,7 +179905,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-egress-zone public " +printf "%s\n" "$at_srcdir/policy.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:267" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176467,7 +179924,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:268: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-egress-zone public " +printf "%s\n" "$at_srcdir/policy.at:268: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:268" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176486,7 +179943,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-egress-zone public " +printf "%s\n" "$at_srcdir/policy.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:269" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176505,7 +179962,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:270: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-egress-zones " +printf "%s\n" "$at_srcdir/policy.at:270: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-egress-zones " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:270" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-egress-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176524,7 +179981,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-egress-zone public " +printf "%s\n" "$at_srcdir/policy.at:271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:271" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176543,7 +180000,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-egress-zone public " +printf "%s\n" "$at_srcdir/policy.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:272" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176562,7 +180019,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-egress-zone public " +printf "%s\n" "$at_srcdir/policy.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:273" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176581,7 +180038,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-egress-zones " +printf "%s\n" "$at_srcdir/policy.at:274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-egress-zones " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:274" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-egress-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176600,7 +180057,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:275: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-ingress-zone public " +printf "%s\n" "$at_srcdir/policy.at:275: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-ingress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:275" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176619,7 +180076,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-ingress-zone public " +printf "%s\n" "$at_srcdir/policy.at:276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-ingress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:276" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176638,7 +180095,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-ingress-zone public " +printf "%s\n" "$at_srcdir/policy.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-ingress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:277" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176657,7 +180114,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ingress-zones " +printf "%s\n" "$at_srcdir/policy.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ingress-zones " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:278" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ingress-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176676,7 +180133,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-ingress-zone public " +printf "%s\n" "$at_srcdir/policy.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-ingress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:279" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176695,7 +180152,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-ingress-zone public " +printf "%s\n" "$at_srcdir/policy.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-ingress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:280" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176714,7 +180171,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-ingress-zone public " +printf "%s\n" "$at_srcdir/policy.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-ingress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:281" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176733,7 +180190,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ingress-zones " +printf "%s\n" "$at_srcdir/policy.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ingress-zones " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:282" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ingress-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176752,7 +180209,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy.at:284" >"$at_check_line_file" + printf "%s\n" "policy.at:284" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/policy.at:284" fi @@ -176763,13 +180220,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_177 -#AT_START_178 -at_fn_group_banner 178 'policy.at:286' \ +#AT_STOP_186 +#AT_START_187 +at_fn_group_banner 187 'policy.at:286' \ "policy - priority" " " 7 at_xfail=no ( - $as_echo "178. $at_setup_line: testing $at_desc ..." + printf "%s\n" "187. $at_setup_line: testing $at_desc ..." $at_traceon @@ -176787,6 +180244,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -176803,7 +180261,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:286: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:286: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:286" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176817,7 +180275,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:286: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:286: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:286" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176833,7 +180291,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:286: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:286: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:286" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176897,7 +180355,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:286: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy.at:286: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:286" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -176988,7 +180446,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:286" >"$at_check_line_file" + printf "%s\n" "policy.at:286" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:286" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -177007,7 +180465,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:286" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177028,7 +180486,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:286: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:286: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:286" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177045,7 +180503,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:286" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177060,7 +180518,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:286" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177077,7 +180535,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -177085,7 +180543,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:286" >"$at_check_line_file" + printf "%s\n" "policy.at:286" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:286" fi echo "$!" > firewalld.pid @@ -177102,7 +180560,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:286" fi sleep 1 done - $as_echo "policy.at:286" >"$at_check_line_file" + printf "%s\n" "policy.at:286" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy.at:286" @@ -177114,7 +180572,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:286" { set +x -$as_echo "$at_srcdir/policy.at:289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy0 " +printf "%s\n" "$at_srcdir/policy.at:289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:289" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177134,7 +180592,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost " +printf "%s\n" "$at_srcdir/policy.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:292" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177153,7 +180611,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:293: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:293: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:293" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177172,7 +180630,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:294" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177191,7 +180649,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -1 " +printf "%s\n" "$at_srcdir/policy.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:295" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177210,14 +180668,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --get-priority " +printf "%s\n" "$at_srcdir/policy.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --get-priority " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:296" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-1 +echo >>"$at_stdout"; printf "%s\n" "-1 " | \ $at_diff - "$at_stdout" || at_failed=: at_fn_check_status 0 $at_status "$at_srcdir/policy.at:296" @@ -177232,7 +180690,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/policy.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:299" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177251,7 +180709,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/policy.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:299" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177273,7 +180731,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -177286,7 +180744,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"dummy0\" jump filter_IN_policy_allow-host-ipv6 iifname \"dummy0\" jump filter_IN_policy_worldToHost @@ -177320,7 +180778,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:336: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 1 " +printf "%s\n" "$at_srcdir/policy.at:336: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:336" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177340,7 +180798,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/policy.at:337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:337" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177359,7 +180817,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/policy.at:337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:337" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177381,7 +180839,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:338: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:338: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -177394,7 +180852,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"dummy0\" jump filter_IN_policy_allow-host-ipv6 iifname \"dummy0\" jump filter_IN_public @@ -177428,7 +180886,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy first " +printf "%s\n" "$at_srcdir/policy.at:374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy first " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy first ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177447,7 +180905,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy first --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177466,7 +180924,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:376" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy first --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177485,7 +180943,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy second " +printf "%s\n" "$at_srcdir/policy.at:377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy second " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:377" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy second ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177504,7 +180962,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:378" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy second --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177523,7 +180981,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:379" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy second --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177542,7 +181000,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy third " +printf "%s\n" "$at_srcdir/policy.at:380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy third " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:380" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy third ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177561,7 +181019,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:381" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy third --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177580,7 +181038,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy third --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177599,7 +181057,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fourth " +printf "%s\n" "$at_srcdir/policy.at:383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fourth " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:383" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy fourth ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177618,7 +181076,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:384: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:384: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:384" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fourth --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177637,7 +181095,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:385" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fourth --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177656,7 +181114,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fifth " +printf "%s\n" "$at_srcdir/policy.at:386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fifth " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:386" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy fifth ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177675,7 +181133,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:387: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/policy.at:387: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:387" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fifth --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177694,7 +181152,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:388: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/policy.at:388: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:388" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fifth --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177713,7 +181171,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --set-priority -100 " +printf "%s\n" "$at_srcdir/policy.at:390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --set-priority -100 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:390" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fourth --set-priority -100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177732,7 +181190,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --set-priority -5000 " +printf "%s\n" "$at_srcdir/policy.at:391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --set-priority -5000 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:391" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy second --set-priority -5000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177751,7 +181209,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --set-priority -10000 " +printf "%s\n" "$at_srcdir/policy.at:392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --set-priority -10000 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:392" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy first --set-priority -10000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177770,7 +181228,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --set-priority -1000 " +printf "%s\n" "$at_srcdir/policy.at:393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --set-priority -1000 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:393" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy third --set-priority -1000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177789,7 +181247,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --set-priority -10 " +printf "%s\n" "$at_srcdir/policy.at:394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --set-priority -10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:394" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fifth --set-priority -10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177809,7 +181267,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/policy.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177828,7 +181286,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/policy.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177850,7 +181308,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -177863,7 +181321,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"dummy0\" jump filter_IN_policy_allow-host-ipv6 iifname \"dummy0\" jump filter_IN_policy_first @@ -177907,7 +181365,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:462: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 0 " +printf "%s\n" "$at_srcdir/policy.at:462: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:462" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177925,7 +181383,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:463: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32769 " +printf "%s\n" "$at_srcdir/policy.at:463: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32769 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:463" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32769 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177944,7 +181402,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:464: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32768 " +printf "%s\n" "$at_srcdir/policy.at:464: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32768 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:464" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177963,7 +181421,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:465: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32768 " +printf "%s\n" "$at_srcdir/policy.at:465: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32768 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:465" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -177982,7 +181440,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:466: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32767 " +printf "%s\n" "$at_srcdir/policy.at:466: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32767 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:466" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32767 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178001,7 +181459,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_PRIORITY/d'" != x"ignore"; then - $as_echo "policy.at:468" >"$at_check_line_file" + printf "%s\n" "policy.at:468" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_PRIORITY/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/policy.at:468" fi @@ -178012,13 +181470,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_178 -#AT_START_179 -at_fn_group_banner 179 'policy.at:470' \ +#AT_STOP_187 +#AT_START_188 +at_fn_group_banner 188 'policy.at:470' \ "policy - zones" " " 7 at_xfail=no ( - $as_echo "179. $at_setup_line: testing $at_desc ..." + printf "%s\n" "188. $at_setup_line: testing $at_desc ..." $at_traceon @@ -178036,6 +181494,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -178052,7 +181511,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:470: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:470: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:470" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178066,7 +181525,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:470: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:470: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:470" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178082,7 +181541,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:470: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:470: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:470" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178146,7 +181605,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:470: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy.at:470: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:470" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178237,7 +181696,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:470" >"$at_check_line_file" + printf "%s\n" "policy.at:470" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:470" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -178256,7 +181715,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:470: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:470: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:470" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178277,7 +181736,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:470: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:470: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:470" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178294,7 +181753,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:470: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:470: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:470" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178309,7 +181768,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:470: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy.at:470: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:470" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178326,7 +181785,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -178334,7 +181793,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:470" >"$at_check_line_file" + printf "%s\n" "policy.at:470" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:470" fi echo "$!" > firewalld.pid @@ -178351,7 +181810,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:470" fi sleep 1 done - $as_echo "policy.at:470" >"$at_check_line_file" + printf "%s\n" "policy.at:470" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy.at:470" @@ -178363,7 +181822,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:470" { set +x -$as_echo "$at_srcdir/policy.at:473: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 " +printf "%s\n" "$at_srcdir/policy.at:473: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:473" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178382,7 +181841,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 " +printf "%s\n" "$at_srcdir/policy.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:474" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178402,7 +181861,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:476: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/policy.at:476: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:476" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178421,7 +181880,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:477: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 " +printf "%s\n" "$at_srcdir/policy.at:477: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:477" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178441,7 +181900,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:478: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/policy.at:478: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:478" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178460,7 +181919,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:478: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/policy.at:478: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:478" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178481,7 +181940,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:481: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:481: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:481" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178500,7 +181959,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:482: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:482: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:482" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178519,7 +181978,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:483: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:483: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:483" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178538,7 +181997,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:484: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:484: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:484" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178557,7 +182016,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:485: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:485: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:485" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178576,7 +182035,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:486: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:486: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:486" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178595,7 +182054,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:487: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:487: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:487" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178614,7 +182073,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:488: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:488: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:488" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178633,7 +182092,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:489: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:489: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:489" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178652,7 +182111,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:490: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:490: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:490" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178671,7 +182130,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:491: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:491: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:491" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178690,7 +182149,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:492: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:492: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:492" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178709,7 +182168,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:493: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:493: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"internal\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:493" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178728,7 +182187,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:494: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:494: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"internal\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:494" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178747,7 +182206,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:495: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:495: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:495" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178766,7 +182225,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:496: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:496: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:496" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178785,7 +182244,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:497: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:497: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:497" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178804,7 +182263,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:498: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:498: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:498" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178823,7 +182282,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:499: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:499: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:499" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178842,7 +182301,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:500: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:500: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"internal\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:500" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178861,7 +182320,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:501: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:501: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:501" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178880,7 +182339,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:502: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:502: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:502" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178899,7 +182358,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:503: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:503: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:503" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178918,7 +182377,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:504: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:504: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:504" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178937,7 +182396,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:505: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:505: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:505" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178956,7 +182415,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:506: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:506: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:506" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178975,7 +182434,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:507: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:507: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:507" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -178994,7 +182453,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:508: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:508: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:508" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179013,7 +182472,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:509: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:509: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:509" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179032,7 +182491,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:510: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:510: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:510" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179051,7 +182510,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:511: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:511: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:511" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179070,7 +182529,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:512: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:512: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:512" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179089,7 +182548,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:513" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179108,7 +182567,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:514: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:514: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"internal\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:514" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179127,7 +182586,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:515: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:515: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:515" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179146,7 +182605,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:516: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:516: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:516" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179165,7 +182624,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:517: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:517: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:517" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179184,7 +182643,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:518: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:518: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:518" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179203,7 +182662,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:519: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:519: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:519" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179222,7 +182681,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:520: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:520: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:520" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179242,7 +182701,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:523: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:523: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:523" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179261,7 +182720,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:524: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:524: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:524" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179280,7 +182739,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:525" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179299,7 +182758,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:526: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:526: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:526" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179318,7 +182777,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:527: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:527: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:527" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179337,7 +182796,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:528: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:528: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:528" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179356,7 +182815,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:529: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:529: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:529" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179375,7 +182834,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:530: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:530: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:530" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179394,7 +182853,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:531: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:531: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:531" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179413,7 +182872,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:532: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:532: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"internal\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:532" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179432,7 +182891,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:533: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:533: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:533" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179451,7 +182910,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:534: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:534: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:534" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179470,7 +182929,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:535: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:535: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:535" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179489,7 +182948,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:536: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:536: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"internal\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:536" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179508,7 +182967,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:537: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:537: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:537" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179527,7 +182986,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:538: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:538: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:538" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179546,7 +183005,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:539: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:539: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:539" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179565,7 +183024,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:540" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179584,7 +183043,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:541: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:541: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:541" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179603,7 +183062,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:542: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:542: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:542" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179622,7 +183081,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:543: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:543: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:543" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179641,7 +183100,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:544: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:544: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:544" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179660,7 +183119,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:545: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:545: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:545" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179679,7 +183138,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"internal\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:546" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179698,7 +183157,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:547: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:547: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:547" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179717,7 +183176,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:548: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:548: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:548" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179736,7 +183195,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:549: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:549: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:549" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179755,7 +183214,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:550: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:550: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"internal\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:550" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179775,7 +183234,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:553: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:553: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:553" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179794,7 +183253,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:554" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179813,7 +183272,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:555: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:555: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:555" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179832,7 +183291,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:556: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:556: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:556" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179851,7 +183310,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:557: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:557: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:557" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179870,7 +183329,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:558: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:558: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:558" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179889,7 +183348,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:559: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:559: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:559" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179908,7 +183367,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:560: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:560: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:560" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179927,7 +183386,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:561: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:561: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:561" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179946,7 +183405,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:562: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:562: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:562" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179965,7 +183424,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:563: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:563: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:563" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -179984,7 +183443,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:564: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +printf "%s\n" "$at_srcdir/policy.at:564: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:564" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180004,7 +183463,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:567: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:567: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:567" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180023,7 +183482,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:568: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:568: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:568" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180042,7 +183501,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:569: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:569: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:569" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180061,7 +183520,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:570: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:570: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:570" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180080,7 +183539,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:571" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180099,7 +183558,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:572: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:572: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:572" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180118,7 +183577,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:573: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:573: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:573" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180137,7 +183596,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:574" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180156,7 +183615,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:575: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:575: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:575" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180175,7 +183634,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:576: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:576: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:576" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180194,7 +183653,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:577: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:577: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:577" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180213,7 +183672,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:578: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:578: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:578" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180233,7 +183692,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:581: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:581: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:581" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180252,7 +183711,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:582: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:582: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:582" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180271,7 +183730,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:583: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:583: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:583" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180290,7 +183749,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:584: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:584: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:584" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180309,7 +183768,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:585: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:585: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:585" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180328,7 +183787,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:586: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " +printf "%s\n" "$at_srcdir/policy.at:586: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:586" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180348,7 +183807,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:589: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"does_not_exist\" " +printf "%s\n" "$at_srcdir/policy.at:589: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"does_not_exist\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:589" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="does_not_exist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180367,7 +183826,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:590: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"does_not_exist\" " +printf "%s\n" "$at_srcdir/policy.at:590: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"does_not_exist\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:590" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="does_not_exist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180386,7 +183845,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:591: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"does_not_exist\" " +printf "%s\n" "$at_srcdir/policy.at:591: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"does_not_exist\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:591" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="does_not_exist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180405,7 +183864,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:592: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"does_not_exist\" " +printf "%s\n" "$at_srcdir/policy.at:592: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"does_not_exist\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:592" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="does_not_exist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180425,7 +183884,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:597: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:597: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:597" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180445,7 +183904,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/policy.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:598" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180464,7 +183923,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/policy.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:598" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180484,14 +183943,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:599: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +printf "%s\n" "$at_srcdir/policy.at:599: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:599" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 ingress-zones: ANY egress-zones: HOST " | \ @@ -180509,7 +183968,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:604: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:604: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -180522,7 +183981,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_internal iifname \"foobar1\" oifname \"foobar1\" reject with icmpx admin-prohibited @@ -180565,7 +184024,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:668: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"internal\" " +printf "%s\n" "$at_srcdir/policy.at:668: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"internal\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:668" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180585,7 +184044,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/policy.at:669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:669" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180604,7 +184063,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/policy.at:669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:669" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180624,14 +184083,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:670: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +printf "%s\n" "$at_srcdir/policy.at:670: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:670" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 ingress-zones: ANY egress-zones: HOST foobar @@ -180652,7 +184111,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:678: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:678: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -180665,7 +184124,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_internal iifname \"foobar1\" oifname \"foobar1\" reject with icmpx admin-prohibited @@ -180710,7 +184169,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:748: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " +printf "%s\n" "$at_srcdir/policy.at:748: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:748" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180730,7 +184189,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/policy.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:749" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180749,7 +184208,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/policy.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:749" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180769,14 +184228,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +printf "%s\n" "$at_srcdir/policy.at:750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:750" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 ingress-zones: ANY egress-zones: HOST " | \ @@ -180794,7 +184253,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:755: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:755: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -180807,7 +184266,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_internal iifname \"foobar1\" oifname \"foobar1\" reject with icmpx admin-prohibited @@ -180850,7 +184309,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_ZONE:/d'" != x"ignore"; then - $as_echo "policy.at:820" >"$at_check_line_file" + printf "%s\n" "policy.at:820" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ZONE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/policy.at:820" fi @@ -180861,13 +184320,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_179 -#AT_START_180 -at_fn_group_banner 180 'policy.at:822' \ +#AT_STOP_188 +#AT_START_189 +at_fn_group_banner 189 'policy.at:822' \ "policy - dispatch" " " 7 at_xfail=no ( - $as_echo "180. $at_setup_line: testing $at_desc ..." + printf "%s\n" "189. $at_setup_line: testing $at_desc ..." $at_traceon @@ -180885,6 +184344,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -180901,7 +184361,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:822: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:822: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:822" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180915,7 +184375,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:822: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/policy.at:822: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "policy.at:822" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180931,7 +184391,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:822: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:822: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:822" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -180995,7 +184455,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:822: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/policy.at:822: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:822" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -181086,7 +184546,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:822" >"$at_check_line_file" + printf "%s\n" "policy.at:822" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:822" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -181105,7 +184565,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:822" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -181126,7 +184586,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:822: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/policy.at:822: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "policy.at:822" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -181143,7 +184603,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/policy.at:822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:822" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -181158,7 +184618,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/policy.at:822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:822" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -181175,7 +184635,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -181183,7 +184643,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:822" >"$at_check_line_file" + printf "%s\n" "policy.at:822" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/policy.at:822" fi echo "$!" > firewalld.pid @@ -181200,7 +184660,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:822" fi sleep 1 done - $as_echo "policy.at:822" >"$at_check_line_file" + printf "%s\n" "policy.at:822" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/policy.at:822" @@ -181212,7 +184672,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:822" { set +x -$as_echo "$at_srcdir/policy.at:825: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 " +printf "%s\n" "$at_srcdir/policy.at:825: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:825" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -181231,7 +184691,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:826: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 " +printf "%s\n" "$at_srcdir/policy.at:826: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:826" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -181251,7 +184711,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/policy.at:828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:828" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -181270,7 +184730,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:829: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 " +printf "%s\n" "$at_srcdir/policy.at:829: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:829" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -181290,7 +184750,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:830: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/policy.at:830: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:830" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -181309,7 +184769,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:830: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/policy.at:830: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:830" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -181330,14 +184790,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:832: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +printf "%s\n" "$at_srcdir/policy.at:832: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:832" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 ingress-zones: ANY egress-zones: HOST " | \ @@ -181362,7 +184822,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:851: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:851: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -181375,7 +184835,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING { jump nat_PREROUTING_POLICIES } @@ -181403,7 +184863,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:868: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:868: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -181416,7 +184876,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT { jump nat_OUTPUT_POLICIES } @@ -181444,7 +184904,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:884: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:884: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -181457,7 +184917,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING { jump nat_POSTROUTING_POLICIES } @@ -181485,7 +184945,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:900: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:900: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -181498,7 +184958,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING { jump mangle_PREROUTING_POLICIES } @@ -181526,7 +184986,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:921: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:921: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -181539,7 +184999,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT { ct state established,related accept ct status dnat accept @@ -181572,7 +185032,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:950: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:950: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -181585,7 +185045,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD { ct state established,related accept ct status dnat accept @@ -181619,7 +185079,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:981: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:981: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -181632,9 +185092,10 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT { ct state established,related accept +ct status dnat accept oifname \"lo\" accept ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable jump filter_OUTPUT_POLICIES @@ -181662,15 +185123,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1007: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1007" +printf "%s\n" "$at_srcdir/policy.at:1008: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1008" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1007" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1008" $at_failed && at_fn_log_failure $at_traceon; } @@ -181681,15 +185142,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1008: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1008" +printf "%s\n" "$at_srcdir/policy.at:1009: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1009" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1008" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1009" $at_failed && at_fn_log_failure $at_traceon; } @@ -181700,14 +185161,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1009: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1009" +printf "%s\n" "$at_srcdir/policy.at:1010: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1010" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 ingress-zones: ANY egress-zones: HOST foobar @@ -181715,7 +185176,7 @@ foobar egress-zones: HOST " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1009" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1010" $at_failed && at_fn_log_failure $at_traceon; } @@ -181728,11 +185189,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1018: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1019: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1018" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1019" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -181741,7 +185202,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar1\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar1\" jump filter_IN_internal @@ -181758,7 +185219,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1018" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1019" $at_failed && at_fn_log_failure $at_traceon; } @@ -181779,11 +185240,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1062: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1063: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1062" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1063" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -181792,7 +185253,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { oifname \"foobar1\" jump filter_OUT_internal oifname \"foobar1\" return @@ -181804,7 +185265,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1062" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1063" $at_failed && at_fn_log_failure $at_traceon; } @@ -181825,11 +185286,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1091: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1092: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1091" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1092" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -181838,7 +185299,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_internal iifname \"foobar1\" oifname \"foobar1\" reject with icmpx admin-prohibited @@ -181862,7 +185323,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1091" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1092" $at_failed && at_fn_log_failure $at_traceon; } @@ -181889,11 +185350,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1183" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1184" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -181902,7 +185363,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { iifname \"foobar1\" jump mangle_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump mangle_PRE_internal @@ -181917,7 +185378,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1183" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1184" $at_failed && at_fn_log_failure $at_traceon; } @@ -181938,11 +185399,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1221" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1222" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -181951,7 +185412,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar1\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump nat_PRE_internal @@ -181966,7 +185427,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1221" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1222" $at_failed && at_fn_log_failure $at_traceon; } @@ -181987,11 +185448,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1259" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1260" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182000,7 +185461,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump nat_POST_internal iifname \"foobar1\" oifname \"foobar1\" return @@ -182024,7 +185485,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1259" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1260" $at_failed && at_fn_log_failure $at_traceon; } @@ -182045,11 +185506,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1300" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1301" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182058,7 +185519,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { oifname \"foobar1\" jump nat_OUT_internal oifname \"foobar1\" return @@ -182070,7 +185531,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1300" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1301" $at_failed && at_fn_log_failure $at_traceon; } @@ -182089,15 +185550,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1328: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1328" +printf "%s\n" "$at_srcdir/policy.at:1329: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1329" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1328" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1329" $at_failed && at_fn_log_failure $at_traceon; } @@ -182108,15 +185569,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1329: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1329" +printf "%s\n" "$at_srcdir/policy.at:1330: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1330" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1329" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1330" $at_failed && at_fn_log_failure $at_traceon; } @@ -182128,15 +185589,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1333" +printf "%s\n" "$at_srcdir/policy.at:1334: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1334" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1333" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1334" $at_failed && at_fn_log_failure $at_traceon; } @@ -182147,15 +185608,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1334: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1334" +printf "%s\n" "$at_srcdir/policy.at:1335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1335" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1334" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1335" $at_failed && at_fn_log_failure $at_traceon; } @@ -182168,11 +185629,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1336: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1336" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1337" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182181,7 +185642,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar1\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar1\" jump filter_IN_policy_foobar @@ -182199,7 +185660,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1336" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1337" $at_failed && at_fn_log_failure $at_traceon; } @@ -182220,11 +185681,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1384: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1383" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1384" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182233,7 +185694,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { oifname \"foobar1\" jump filter_OUT_internal oifname \"foobar1\" return @@ -182245,7 +185706,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1384" $at_failed && at_fn_log_failure $at_traceon; } @@ -182266,11 +185727,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1412: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1413: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1412" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1413" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182279,7 +185740,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_internal iifname \"foobar1\" oifname \"foobar1\" reject with icmpx admin-prohibited @@ -182303,7 +185764,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1412" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1413" $at_failed && at_fn_log_failure $at_traceon; } @@ -182330,11 +185791,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1506: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1507: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1506" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1507" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182343,7 +185804,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { iifname \"foobar1\" jump mangle_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump mangle_PRE_policy_foobar @@ -182361,7 +185822,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1506" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1507" $at_failed && at_fn_log_failure $at_traceon; } @@ -182382,11 +185843,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1553: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1553" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1554" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182395,7 +185856,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar1\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump nat_PRE_policy_foobar @@ -182413,7 +185874,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1553" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1554" $at_failed && at_fn_log_failure $at_traceon; } @@ -182434,11 +185895,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1600: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1601: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1600" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1601" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182447,7 +185908,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump nat_POST_internal iifname \"foobar1\" oifname \"foobar1\" return @@ -182471,7 +185932,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1600" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1601" $at_failed && at_fn_log_failure $at_traceon; } @@ -182492,11 +185953,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1641: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1642: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1641" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1642" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182505,7 +185966,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { oifname \"foobar1\" jump nat_OUT_internal oifname \"foobar1\" return @@ -182517,7 +185978,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1641" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1642" $at_failed && at_fn_log_failure $at_traceon; } @@ -182536,15 +185997,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1669" +printf "%s\n" "$at_srcdir/policy.at:1670: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1670" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1669" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1670" $at_failed && at_fn_log_failure $at_traceon; } @@ -182555,15 +186016,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1670: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1670" +printf "%s\n" "$at_srcdir/policy.at:1671: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1671" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1670" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1671" $at_failed && at_fn_log_failure $at_traceon; } @@ -182575,15 +186036,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1674: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1674" +printf "%s\n" "$at_srcdir/policy.at:1675: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1675" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1674" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1675" $at_failed && at_fn_log_failure $at_traceon; } @@ -182594,15 +186055,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1675: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1675" +printf "%s\n" "$at_srcdir/policy.at:1676: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1676" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1675" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1676" $at_failed && at_fn_log_failure $at_traceon; } @@ -182615,11 +186076,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1677: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1678: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1677" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1678" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182628,7 +186089,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar1\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar1\" jump filter_IN_internal @@ -182643,7 +186104,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1677" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1678" $at_failed && at_fn_log_failure $at_traceon; } @@ -182664,11 +186125,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1715: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1716: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1715" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1716" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182677,7 +186138,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { oifname \"foobar1\" jump filter_OUT_internal oifname \"foobar1\" return @@ -182691,7 +186152,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1715" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1716" $at_failed && at_fn_log_failure $at_traceon; } @@ -182712,11 +186173,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1751: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1750" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1751" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182725,7 +186186,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_internal iifname \"foobar1\" oifname \"foobar1\" reject with icmpx admin-prohibited @@ -182749,7 +186210,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1750" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1751" $at_failed && at_fn_log_failure $at_traceon; } @@ -182776,11 +186237,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1838: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1839: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1838" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1839" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182789,7 +186250,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { iifname \"foobar1\" jump mangle_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump mangle_PRE_internal @@ -182804,7 +186265,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1838" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1839" $at_failed && at_fn_log_failure $at_traceon; } @@ -182825,11 +186286,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1876: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1877: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1876" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1877" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182838,7 +186299,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar1\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump nat_PRE_internal @@ -182853,7 +186314,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1876" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1877" $at_failed && at_fn_log_failure $at_traceon; } @@ -182874,11 +186335,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1914: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1915: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1914" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1915" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182887,7 +186348,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump nat_POST_internal iifname \"foobar1\" oifname \"foobar1\" return @@ -182911,7 +186372,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1914" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1915" $at_failed && at_fn_log_failure $at_traceon; } @@ -182932,11 +186393,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1955: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1956: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1955" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1956" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -182945,7 +186406,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { oifname \"foobar1\" jump nat_OUT_internal oifname \"foobar1\" return @@ -182959,7 +186420,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1955" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1956" $at_failed && at_fn_log_failure $at_traceon; } @@ -182978,15 +186439,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1989: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1989" +printf "%s\n" "$at_srcdir/policy.at:1990: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1990" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1989" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1990" $at_failed && at_fn_log_failure $at_traceon; } @@ -182997,15 +186458,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1990: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1990" +printf "%s\n" "$at_srcdir/policy.at:1991: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1991" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1990" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1991" $at_failed && at_fn_log_failure $at_traceon; } @@ -183017,15 +186478,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1994: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1994" +printf "%s\n" "$at_srcdir/policy.at:1995: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1995" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1994" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1995" $at_failed && at_fn_log_failure $at_traceon; } @@ -183036,15 +186497,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1995: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1995" +printf "%s\n" "$at_srcdir/policy.at:1996: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1996" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1995" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1996" $at_failed && at_fn_log_failure $at_traceon; } @@ -183057,11 +186518,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1997: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:1998: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1997" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1998" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183070,7 +186531,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar1\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar1\" jump filter_IN_internal @@ -183085,7 +186546,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1997" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1998" $at_failed && at_fn_log_failure $at_traceon; } @@ -183106,11 +186567,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2035: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2036: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2035" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2036" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183119,7 +186580,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { oifname \"foobar1\" jump filter_OUT_policy_foobar oifname \"foobar1\" jump filter_OUT_internal @@ -183134,7 +186595,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2035" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2036" $at_failed && at_fn_log_failure $at_traceon; } @@ -183155,11 +186616,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2073: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2074: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2073" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2074" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183168,7 +186629,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_internal iifname \"foobar1\" oifname \"foobar1\" reject with icmpx admin-prohibited @@ -183192,7 +186653,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2073" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2074" $at_failed && at_fn_log_failure $at_traceon; } @@ -183219,11 +186680,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2162: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2161" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2162" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183232,7 +186693,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { iifname \"foobar1\" jump mangle_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump mangle_PRE_internal @@ -183247,7 +186708,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2161" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2162" $at_failed && at_fn_log_failure $at_traceon; } @@ -183268,11 +186729,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2199: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2200: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2199" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2200" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183281,7 +186742,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar1\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump nat_PRE_internal @@ -183296,7 +186757,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2199" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2200" $at_failed && at_fn_log_failure $at_traceon; } @@ -183317,11 +186778,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2237: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2238: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2237" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2238" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183330,7 +186791,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump nat_POST_internal iifname \"foobar1\" oifname \"foobar1\" return @@ -183354,7 +186815,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2237" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2238" $at_failed && at_fn_log_failure $at_traceon; } @@ -183375,11 +186836,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2278" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2279" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183388,7 +186849,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { oifname \"foobar1\" jump nat_OUT_policy_foobar oifname \"foobar1\" jump nat_OUT_internal @@ -183403,7 +186864,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2278" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2279" $at_failed && at_fn_log_failure $at_traceon; } @@ -183422,15 +186883,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2315: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2315" +printf "%s\n" "$at_srcdir/policy.at:2316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2316" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2315" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2316" $at_failed && at_fn_log_failure $at_traceon; } @@ -183441,15 +186902,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2316" +printf "%s\n" "$at_srcdir/policy.at:2317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2317" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2316" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2317" $at_failed && at_fn_log_failure $at_traceon; } @@ -183461,15 +186922,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2320" +printf "%s\n" "$at_srcdir/policy.at:2321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2321" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2320" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2321" $at_failed && at_fn_log_failure $at_traceon; } @@ -183480,15 +186941,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2321" +printf "%s\n" "$at_srcdir/policy.at:2322: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2322" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2321" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2322" $at_failed && at_fn_log_failure $at_traceon; } @@ -183501,11 +186962,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2323" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2324" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183514,7 +186975,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar1\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar1\" jump filter_IN_internal @@ -183529,7 +186990,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2323" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2324" $at_failed && at_fn_log_failure $at_traceon; } @@ -183550,11 +187011,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2361: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2361" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2362" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183563,7 +187024,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { oifname \"foobar1\" jump filter_OUT_internal oifname \"foobar1\" return @@ -183575,7 +187036,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2361" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2362" $at_failed && at_fn_log_failure $at_traceon; } @@ -183596,11 +187057,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2390" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2391" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183609,7 +187070,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_policy_foobar iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_internal @@ -183641,7 +187102,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2390" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2391" $at_failed && at_fn_log_failure $at_traceon; } @@ -183668,11 +187129,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2508: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2509: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2508" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2509" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183681,7 +187142,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { iifname \"foobar1\" jump mangle_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump mangle_PRE_policy_foobar @@ -183699,7 +187160,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2508" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2509" $at_failed && at_fn_log_failure $at_traceon; } @@ -183720,11 +187181,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2555: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2556: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2555" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2556" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183733,7 +187194,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar1\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump nat_PRE_policy_foobar @@ -183751,7 +187212,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2555" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2556" $at_failed && at_fn_log_failure $at_traceon; } @@ -183772,11 +187233,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2602: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2603: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2602" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2603" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183785,7 +187246,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump nat_POST_policy_foobar iifname \"foobar1\" oifname \"foobar1\" jump nat_POST_internal @@ -183817,7 +187278,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2602" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2603" $at_failed && at_fn_log_failure $at_traceon; } @@ -183838,11 +187299,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2657: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2658: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2657" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2658" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183851,7 +187312,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { oifname \"foobar1\" jump nat_OUT_internal oifname \"foobar1\" return @@ -183863,7 +187324,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2657" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2658" $at_failed && at_fn_log_failure $at_traceon; } @@ -183882,15 +187343,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2685: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2685" +printf "%s\n" "$at_srcdir/policy.at:2686: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2686" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2685" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2686" $at_failed && at_fn_log_failure $at_traceon; } @@ -183901,15 +187362,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2686: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2686" +printf "%s\n" "$at_srcdir/policy.at:2687: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2687" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2686" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2687" $at_failed && at_fn_log_failure $at_traceon; } @@ -183921,15 +187382,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2690: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2690" +printf "%s\n" "$at_srcdir/policy.at:2691: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2691" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2690" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2691" $at_failed && at_fn_log_failure $at_traceon; } @@ -183940,15 +187401,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2691: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2691" +printf "%s\n" "$at_srcdir/policy.at:2692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2692" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2691" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2692" $at_failed && at_fn_log_failure $at_traceon; } @@ -183961,11 +187422,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2693: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2694: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2693" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2694" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -183974,7 +187435,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar1\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar1\" jump filter_IN_internal @@ -183989,7 +187450,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2693" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2694" $at_failed && at_fn_log_failure $at_traceon; } @@ -184010,11 +187471,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2731: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2732: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2731" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2732" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184023,7 +187484,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { oifname \"foobar1\" jump filter_OUT_internal oifname \"foobar1\" return @@ -184035,7 +187496,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2731" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2732" $at_failed && at_fn_log_failure $at_traceon; } @@ -184056,11 +187517,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2760: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2761: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2760" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2761" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184069,7 +187530,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_internal iifname \"foobar1\" oifname \"foobar1\" reject with icmpx admin-prohibited @@ -184098,7 +187559,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2760" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2761" $at_failed && at_fn_log_failure $at_traceon; } @@ -184125,11 +187586,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2869: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2870: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2869" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2870" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184138,7 +187599,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { iifname \"foobar1\" jump mangle_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump mangle_PRE_internal @@ -184153,7 +187614,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2869" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2870" $at_failed && at_fn_log_failure $at_traceon; } @@ -184174,11 +187635,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2907: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2908: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2907" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2908" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184187,7 +187648,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar1\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump nat_PRE_internal @@ -184202,7 +187663,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2907" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2908" $at_failed && at_fn_log_failure $at_traceon; } @@ -184223,11 +187684,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2945: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2946: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2945" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2946" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184236,7 +187697,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump nat_POST_internal iifname \"foobar1\" oifname \"foobar1\" return @@ -184265,7 +187726,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2945" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2946" $at_failed && at_fn_log_failure $at_traceon; } @@ -184286,11 +187747,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2995: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:2996: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2995" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2996" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184299,7 +187760,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { oifname \"foobar1\" jump nat_OUT_internal oifname \"foobar1\" return @@ -184311,7 +187772,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2995" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2996" $at_failed && at_fn_log_failure $at_traceon; } @@ -184330,15 +187791,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3023: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3023" +printf "%s\n" "$at_srcdir/policy.at:3024: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3024" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3023" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3024" $at_failed && at_fn_log_failure $at_traceon; } @@ -184349,15 +187810,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3024: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3024" +printf "%s\n" "$at_srcdir/policy.at:3025: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3025" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3024" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3025" $at_failed && at_fn_log_failure $at_traceon; } @@ -184368,15 +187829,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3025: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3025" +printf "%s\n" "$at_srcdir/policy.at:3026: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3026" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3025" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3026" $at_failed && at_fn_log_failure $at_traceon; } @@ -184388,15 +187849,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3029: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3029" +printf "%s\n" "$at_srcdir/policy.at:3030: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3030" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3029" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3030" $at_failed && at_fn_log_failure $at_traceon; } @@ -184407,15 +187868,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3030: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3030" +printf "%s\n" "$at_srcdir/policy.at:3031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3031" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3030" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3031" $at_failed && at_fn_log_failure $at_traceon; } @@ -184426,15 +187887,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3031" +printf "%s\n" "$at_srcdir/policy.at:3032: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3032" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3031" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3032" $at_failed && at_fn_log_failure $at_traceon; } @@ -184447,11 +187908,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3033: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3034: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3033" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3034" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184460,7 +187921,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { ip saddr 10.10.10.0/24 jump filter_IN_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 jump filter_IN_internal @@ -184475,7 +187936,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3033" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3034" $at_failed && at_fn_log_failure $at_traceon; } @@ -184496,11 +187957,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3068: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3069: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3068" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3069" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184509,7 +187970,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { ip daddr 10.10.10.0/24 jump filter_OUT_internal ip daddr 10.10.10.0/24 return @@ -184521,7 +187982,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3068" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3069" $at_failed && at_fn_log_failure $at_traceon; } @@ -184542,11 +188003,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3095: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3096: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3095" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3096" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184555,7 +188016,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump filter_FWD_policy_foobar ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump filter_FWD_internal @@ -184582,7 +188043,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3095" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3096" $at_failed && at_fn_log_failure $at_traceon; } @@ -184609,11 +188070,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3179: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3179" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3180" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184622,7 +188083,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump mangle_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump mangle_PRE_policy_foobar @@ -184646,7 +188107,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3179" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3180" $at_failed && at_fn_log_failure $at_traceon; } @@ -184667,11 +188128,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3233: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3232" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3233" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184680,7 +188141,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump nat_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_PRE_policy_foobar @@ -184704,7 +188165,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3232" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3233" $at_failed && at_fn_log_failure $at_traceon; } @@ -184725,11 +188186,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3285" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3286" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184738,7 +188199,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_POST_policy_foobar ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_POST_internal @@ -184765,7 +188226,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3285" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3286" $at_failed && at_fn_log_failure $at_traceon; } @@ -184786,11 +188247,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3336: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3335" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3336" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184799,7 +188260,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { ip daddr 10.10.10.0/24 jump nat_OUT_internal ip daddr 10.10.10.0/24 return @@ -184811,7 +188272,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3335" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3336" $at_failed && at_fn_log_failure $at_traceon; } @@ -184830,15 +188291,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3361: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3361" +printf "%s\n" "$at_srcdir/policy.at:3362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3362" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3361" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3362" $at_failed && at_fn_log_failure $at_traceon; } @@ -184849,15 +188310,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3362" +printf "%s\n" "$at_srcdir/policy.at:3363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3363" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3362" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3363" $at_failed && at_fn_log_failure $at_traceon; } @@ -184868,15 +188329,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3363" +printf "%s\n" "$at_srcdir/policy.at:3364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3364" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3363" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3364" $at_failed && at_fn_log_failure $at_traceon; } @@ -184888,15 +188349,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3367" +printf "%s\n" "$at_srcdir/policy.at:3368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3368" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3367" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3368" $at_failed && at_fn_log_failure $at_traceon; } @@ -184907,15 +188368,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3368" +printf "%s\n" "$at_srcdir/policy.at:3369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3369" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3368" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3369" $at_failed && at_fn_log_failure $at_traceon; } @@ -184926,15 +188387,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3369" +printf "%s\n" "$at_srcdir/policy.at:3370: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3370" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3369" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3370" $at_failed && at_fn_log_failure $at_traceon; } @@ -184947,11 +188408,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3371: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3371" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3372" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -184960,7 +188421,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar1\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar1\" jump filter_IN_internal @@ -184975,7 +188436,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3371" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3372" $at_failed && at_fn_log_failure $at_traceon; } @@ -184996,11 +188457,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3409: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3410: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3409" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3410" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185009,7 +188470,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { oifname \"foobar1\" jump filter_OUT_internal oifname \"foobar1\" return @@ -185021,7 +188482,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3409" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3410" $at_failed && at_fn_log_failure $at_traceon; } @@ -185042,11 +188503,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3438: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3439: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3438" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3439" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185055,7 +188516,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_policy_foobar iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_internal @@ -185082,7 +188543,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3438" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3439" $at_failed && at_fn_log_failure $at_traceon; } @@ -185109,11 +188570,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3537: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3538: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3537" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3538" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185122,7 +188583,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { iifname \"foobar1\" jump mangle_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump mangle_PRE_policy_foobar @@ -185138,7 +188599,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3537" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3538" $at_failed && at_fn_log_failure $at_traceon; } @@ -185159,11 +188620,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3578: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3579: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3578" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3579" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185172,7 +188633,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar1\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump nat_PRE_policy_foobar @@ -185188,7 +188649,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3578" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3579" $at_failed && at_fn_log_failure $at_traceon; } @@ -185209,11 +188670,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3619: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3620: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3619" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3620" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185222,7 +188683,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump nat_POST_policy_foobar iifname \"foobar1\" oifname \"foobar1\" jump nat_POST_internal @@ -185249,7 +188710,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3619" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3620" $at_failed && at_fn_log_failure $at_traceon; } @@ -185270,11 +188731,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3663: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3664: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3663" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3664" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185283,7 +188744,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { oifname \"foobar1\" jump nat_OUT_internal oifname \"foobar1\" return @@ -185295,7 +188756,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3663" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3664" $at_failed && at_fn_log_failure $at_traceon; } @@ -185314,15 +188775,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3691: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3691" +printf "%s\n" "$at_srcdir/policy.at:3692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3692" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3691" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3692" $at_failed && at_fn_log_failure $at_traceon; } @@ -185333,15 +188794,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3692" +printf "%s\n" "$at_srcdir/policy.at:3693: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3693" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3692" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3693" $at_failed && at_fn_log_failure $at_traceon; } @@ -185352,15 +188813,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3693: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3693" +printf "%s\n" "$at_srcdir/policy.at:3694: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3694" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3693" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3694" $at_failed && at_fn_log_failure $at_traceon; } @@ -185372,15 +188833,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3697: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3697" +printf "%s\n" "$at_srcdir/policy.at:3698: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3698" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3697" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3698" $at_failed && at_fn_log_failure $at_traceon; } @@ -185391,15 +188852,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3698: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3698" +printf "%s\n" "$at_srcdir/policy.at:3699: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3699" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3698" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3699" $at_failed && at_fn_log_failure $at_traceon; } @@ -185410,15 +188871,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3699: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3699" +printf "%s\n" "$at_srcdir/policy.at:3700: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3700" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3699" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3700" $at_failed && at_fn_log_failure $at_traceon; } @@ -185431,11 +188892,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3701: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3702: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3701" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3702" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185444,7 +188905,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { ip saddr 10.10.10.0/24 jump filter_IN_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 jump filter_IN_internal @@ -185459,7 +188920,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3701" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3702" $at_failed && at_fn_log_failure $at_traceon; } @@ -185480,11 +188941,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3736: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3737: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3736" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3737" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185493,7 +188954,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { ip daddr 10.10.10.0/24 jump filter_OUT_internal ip daddr 10.10.10.0/24 return @@ -185505,7 +188966,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3736" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3737" $at_failed && at_fn_log_failure $at_traceon; } @@ -185526,11 +188987,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3763: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3764: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3763" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3764" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185539,7 +189000,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump filter_FWD_policy_foobar ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump filter_FWD_internal @@ -185566,7 +189027,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3763" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3764" $at_failed && at_fn_log_failure $at_traceon; } @@ -185593,11 +189054,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3846: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3847: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3846" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3847" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185606,7 +189067,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump mangle_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump mangle_PRE_policy_foobar @@ -185629,7 +189090,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3846" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3847" $at_failed && at_fn_log_failure $at_traceon; } @@ -185650,11 +189111,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3897: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3898: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3897" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3898" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185663,7 +189124,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump nat_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_PRE_policy_foobar @@ -185686,7 +189147,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3897" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3898" $at_failed && at_fn_log_failure $at_traceon; } @@ -185707,11 +189168,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3948: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:3949: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3948" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3949" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185720,7 +189181,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_POST_policy_foobar ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_POST_internal @@ -185747,7 +189208,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3948" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3949" $at_failed && at_fn_log_failure $at_traceon; } @@ -185768,11 +189229,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3999: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4000: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3999" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4000" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185781,7 +189242,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { ip daddr 10.10.10.0/24 jump nat_OUT_internal ip daddr 10.10.10.0/24 return @@ -185793,7 +189254,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3999" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4000" $at_failed && at_fn_log_failure $at_traceon; } @@ -185812,15 +189273,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4025: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4025" +printf "%s\n" "$at_srcdir/policy.at:4026: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4026" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4025" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4026" $at_failed && at_fn_log_failure $at_traceon; } @@ -185831,15 +189292,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4026: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4026" +printf "%s\n" "$at_srcdir/policy.at:4027: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4027" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4026" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4027" $at_failed && at_fn_log_failure $at_traceon; } @@ -185850,15 +189311,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4027: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4027" +printf "%s\n" "$at_srcdir/policy.at:4028: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4028" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4027" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4028" $at_failed && at_fn_log_failure $at_traceon; } @@ -185870,15 +189331,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4032: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4032" +printf "%s\n" "$at_srcdir/policy.at:4033: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4033" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4032" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4033" $at_failed && at_fn_log_failure $at_traceon; } @@ -185889,15 +189350,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4033: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4033" +printf "%s\n" "$at_srcdir/policy.at:4034: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4034" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4033" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4034" $at_failed && at_fn_log_failure $at_traceon; } @@ -185908,15 +189369,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4034: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4034" +printf "%s\n" "$at_srcdir/policy.at:4035: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4035" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4034" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4035" $at_failed && at_fn_log_failure $at_traceon; } @@ -185929,11 +189390,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4036: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4037: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4036" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4037" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185942,7 +189403,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar1\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar1\" jump filter_IN_internal @@ -185957,7 +189418,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4036" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4037" $at_failed && at_fn_log_failure $at_traceon; } @@ -185978,11 +189439,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4074: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4075: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4074" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4075" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -185991,7 +189452,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { oifname \"foobar1\" jump filter_OUT_internal oifname \"foobar1\" return @@ -186003,7 +189464,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4074" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4075" $at_failed && at_fn_log_failure $at_traceon; } @@ -186024,11 +189485,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4103" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4104" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186037,7 +189498,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump filter_FWD_internal iifname \"foobar1\" oifname \"foobar1\" reject with icmpx admin-prohibited @@ -186063,7 +189524,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4103" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4104" $at_failed && at_fn_log_failure $at_traceon; } @@ -186090,11 +189551,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4199: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4200: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4199" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4200" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186103,7 +189564,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { iifname \"foobar1\" jump mangle_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump mangle_PRE_internal @@ -186118,7 +189579,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4199" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4200" $at_failed && at_fn_log_failure $at_traceon; } @@ -186139,11 +189600,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4237: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4238: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4237" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4238" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186152,7 +189613,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar1\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar1\" jump nat_PRE_internal @@ -186167,7 +189628,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4237" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4238" $at_failed && at_fn_log_failure $at_traceon; } @@ -186188,11 +189649,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4275: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4275" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4276" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186201,7 +189662,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { iifname \"foobar1\" oifname \"foobar1\" jump nat_POST_internal iifname \"foobar1\" oifname \"foobar1\" return @@ -186227,7 +189688,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4275" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4276" $at_failed && at_fn_log_failure $at_traceon; } @@ -186248,11 +189709,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4318: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4318" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4319" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186261,7 +189722,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { oifname \"foobar1\" jump nat_OUT_internal oifname \"foobar1\" return @@ -186273,7 +189734,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4318" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4319" $at_failed && at_fn_log_failure $at_traceon; } @@ -186292,15 +189753,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4346" +printf "%s\n" "$at_srcdir/policy.at:4347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4347" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4346" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4347" $at_failed && at_fn_log_failure $at_traceon; } @@ -186311,15 +189772,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4347" +printf "%s\n" "$at_srcdir/policy.at:4348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4348" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4347" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4348" $at_failed && at_fn_log_failure $at_traceon; } @@ -186330,15 +189791,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4348" +printf "%s\n" "$at_srcdir/policy.at:4349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4349" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4348" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4349" $at_failed && at_fn_log_failure $at_traceon; } @@ -186349,15 +189810,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4349" +printf "%s\n" "$at_srcdir/policy.at:4350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4350" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4349" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4350" $at_failed && at_fn_log_failure $at_traceon; } @@ -186369,15 +189830,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4354" +printf "%s\n" "$at_srcdir/policy.at:4355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4355" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4354" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4355" $at_failed && at_fn_log_failure $at_traceon; } @@ -186388,15 +189849,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4355" +printf "%s\n" "$at_srcdir/policy.at:4356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4356" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4355" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4356" $at_failed && at_fn_log_failure $at_traceon; } @@ -186407,15 +189868,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4356" +printf "%s\n" "$at_srcdir/policy.at:4357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4357" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4356" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4357" $at_failed && at_fn_log_failure $at_traceon; } @@ -186426,15 +189887,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4357" +printf "%s\n" "$at_srcdir/policy.at:4358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4358" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4357" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4358" $at_failed && at_fn_log_failure $at_traceon; } @@ -186447,11 +189908,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4360: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4359" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4360" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186460,7 +189921,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { ip saddr 10.10.10.0/24 jump filter_IN_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 jump filter_IN_public @@ -186475,7 +189936,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4359" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4360" $at_failed && at_fn_log_failure $at_traceon; } @@ -186496,11 +189957,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4394" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4395" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186509,7 +189970,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { ip daddr 10.10.10.0/24 jump filter_OUT_public ip daddr 10.10.10.0/24 return @@ -186521,7 +189982,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4394" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4395" $at_failed && at_fn_log_failure $at_traceon; } @@ -186542,11 +190003,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4421: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4422: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4421" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4422" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186555,7 +190016,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump filter_FWD_public ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited @@ -186581,7 +190042,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4421" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4422" $at_failed && at_fn_log_failure $at_traceon; } @@ -186608,11 +190069,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4504: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4505: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4504" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4505" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186621,7 +190082,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump mangle_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump mangle_PRE_public @@ -186644,7 +190105,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4504" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4505" $at_failed && at_fn_log_failure $at_traceon; } @@ -186665,11 +190126,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4556: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4557: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4556" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4557" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186678,7 +190139,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump nat_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_PRE_public @@ -186701,7 +190162,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4556" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4557" $at_failed && at_fn_log_failure $at_traceon; } @@ -186722,11 +190183,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4608: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4609: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4608" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4609" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186735,7 +190196,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_POST_public ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 return @@ -186761,7 +190222,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4608" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4609" $at_failed && at_fn_log_failure $at_traceon; } @@ -186782,11 +190243,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4655: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4656: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4655" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4656" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186795,7 +190256,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { ip daddr 10.10.10.0/24 jump nat_OUT_public ip daddr 10.10.10.0/24 return @@ -186807,7 +190268,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4655" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4656" $at_failed && at_fn_log_failure $at_traceon; } @@ -186826,15 +190287,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4681: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4681" +printf "%s\n" "$at_srcdir/policy.at:4682: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4682" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4681" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4682" $at_failed && at_fn_log_failure $at_traceon; } @@ -186845,15 +190306,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4682: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4682" +printf "%s\n" "$at_srcdir/policy.at:4683: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4683" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4682" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4683" $at_failed && at_fn_log_failure $at_traceon; } @@ -186864,15 +190325,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4683: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4683" +printf "%s\n" "$at_srcdir/policy.at:4684: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4684" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4683" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4684" $at_failed && at_fn_log_failure $at_traceon; } @@ -186883,15 +190344,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4684: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4684" +printf "%s\n" "$at_srcdir/policy.at:4685: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4685" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4684" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4685" $at_failed && at_fn_log_failure $at_traceon; } @@ -186903,15 +190364,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4689: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4689" +printf "%s\n" "$at_srcdir/policy.at:4690: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4690" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4689" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4690" $at_failed && at_fn_log_failure $at_traceon; } @@ -186922,15 +190383,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4690: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4690" +printf "%s\n" "$at_srcdir/policy.at:4691: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4691" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4690" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4691" $at_failed && at_fn_log_failure $at_traceon; } @@ -186941,15 +190402,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4691: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4691" +printf "%s\n" "$at_srcdir/policy.at:4692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4692" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4691" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4692" $at_failed && at_fn_log_failure $at_traceon; } @@ -186960,15 +190421,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4692" +printf "%s\n" "$at_srcdir/policy.at:4693: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4693" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4692" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4693" $at_failed && at_fn_log_failure $at_traceon; } @@ -186981,11 +190442,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4694: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4695: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4694" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4695" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -186994,7 +190455,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { ip saddr 10.10.10.0/24 jump filter_IN_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 jump filter_IN_internal @@ -187009,7 +190470,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4694" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4695" $at_failed && at_fn_log_failure $at_traceon; } @@ -187030,11 +190491,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4730: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4729" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4730" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187043,7 +190504,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { ip daddr 10.10.10.0/24 jump filter_OUT_internal ip daddr 10.10.10.0/24 return @@ -187055,7 +190516,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4729" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4730" $at_failed && at_fn_log_failure $at_traceon; } @@ -187076,11 +190537,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4756: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4757: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4756" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4757" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187089,7 +190550,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump filter_FWD_internal ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited @@ -187115,7 +190576,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4756" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4757" $at_failed && at_fn_log_failure $at_traceon; } @@ -187142,11 +190603,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4836: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4837: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4836" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4837" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187155,7 +190616,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump mangle_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump mangle_PRE_internal @@ -187176,7 +190637,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4836" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4837" $at_failed && at_fn_log_failure $at_traceon; } @@ -187197,11 +190658,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4883: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4884: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4883" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4884" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187210,7 +190671,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump nat_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_PRE_internal @@ -187231,7 +190692,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4883" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4884" $at_failed && at_fn_log_failure $at_traceon; } @@ -187252,11 +190713,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4930: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4931: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4930" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4931" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187265,7 +190726,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_POST_internal ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 return @@ -187291,7 +190752,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4930" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4931" $at_failed && at_fn_log_failure $at_traceon; } @@ -187312,11 +190773,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4979: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:4980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4979" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4980" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187325,7 +190786,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { ip daddr 10.10.10.0/24 jump nat_OUT_internal ip daddr 10.10.10.0/24 return @@ -187337,7 +190798,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4979" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4980" $at_failed && at_fn_log_failure $at_traceon; } @@ -187356,15 +190817,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5005: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5005" +printf "%s\n" "$at_srcdir/policy.at:5006: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5006" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5005" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5006" $at_failed && at_fn_log_failure $at_traceon; } @@ -187375,15 +190836,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5006: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5006" +printf "%s\n" "$at_srcdir/policy.at:5007: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5007" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5006" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5007" $at_failed && at_fn_log_failure $at_traceon; } @@ -187394,15 +190855,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5007: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5007" +printf "%s\n" "$at_srcdir/policy.at:5008: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5008" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5007" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5008" $at_failed && at_fn_log_failure $at_traceon; } @@ -187413,15 +190874,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5008: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5008" +printf "%s\n" "$at_srcdir/policy.at:5009: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5009" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5008" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5009" $at_failed && at_fn_log_failure $at_traceon; } @@ -187433,15 +190894,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5013" +printf "%s\n" "$at_srcdir/policy.at:5014: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5014" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5013" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5014" $at_failed && at_fn_log_failure $at_traceon; } @@ -187452,15 +190913,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5014: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=10.20.20.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5014" +printf "%s\n" "$at_srcdir/policy.at:5015: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=10.20.20.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5015" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=10.20.20.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5014" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5015" $at_failed && at_fn_log_failure $at_traceon; } @@ -187471,15 +190932,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5015: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5015" +printf "%s\n" "$at_srcdir/policy.at:5016: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5016" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5015" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5016" $at_failed && at_fn_log_failure $at_traceon; } @@ -187490,15 +190951,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5016: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5016" +printf "%s\n" "$at_srcdir/policy.at:5017: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5017" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5016" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5017" $at_failed && at_fn_log_failure $at_traceon; } @@ -187511,11 +190972,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5018: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5019: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5018" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5019" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187524,7 +190985,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { ip saddr 10.10.10.0/24 jump filter_IN_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 jump filter_IN_internal @@ -187539,7 +191000,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5018" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5019" $at_failed && at_fn_log_failure $at_traceon; } @@ -187560,11 +191021,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5050: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5050" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5051" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187573,7 +191034,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_OUTPUT_POLICIES { ip daddr 10.10.10.0/24 jump filter_OUT_internal ip daddr 10.10.10.0/24 return @@ -187585,7 +191046,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5050" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5051" $at_failed && at_fn_log_failure $at_traceon; } @@ -187606,11 +191067,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5075: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5076: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5075" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5076" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187619,7 +191080,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump filter_FWD_internal ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited @@ -187645,7 +191106,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5075" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5076" $at_failed && at_fn_log_failure $at_traceon; } @@ -187672,11 +191133,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5147" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5148" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld mangle_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187685,7 +191146,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump mangle_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump mangle_PRE_internal @@ -187714,7 +191175,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5147" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5148" $at_failed && at_fn_log_failure $at_traceon; } @@ -187735,11 +191196,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5207: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5208: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5207" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5208" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187748,7 +191209,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump nat_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_PRE_internal @@ -187777,7 +191238,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5207" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5208" $at_failed && at_fn_log_failure $at_traceon; } @@ -187798,11 +191259,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5268: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5267" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5268" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187811,7 +191272,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POSTROUTING_POLICIES { ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_POST_internal ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 return @@ -187837,7 +191298,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5267" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5268" $at_failed && at_fn_log_failure $at_traceon; } @@ -187858,11 +191319,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5320" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5321" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -187871,7 +191332,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUTPUT_POLICIES { ip daddr 10.10.10.0/24 jump nat_OUT_internal ip daddr 10.10.10.0/24 return @@ -187883,7 +191344,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5320" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5321" $at_failed && at_fn_log_failure $at_traceon; } @@ -187902,15 +191363,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5344" +printf "%s\n" "$at_srcdir/policy.at:5345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5345" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5344" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5345" $at_failed && at_fn_log_failure $at_traceon; } @@ -187921,15 +191382,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5345" +printf "%s\n" "$at_srcdir/policy.at:5346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5346" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5345" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5346" $at_failed && at_fn_log_failure $at_traceon; } @@ -187940,15 +191401,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5346" +printf "%s\n" "$at_srcdir/policy.at:5347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5347" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5346" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5347" $at_failed && at_fn_log_failure $at_traceon; } @@ -187959,15 +191420,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=10.20.20.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5347" +printf "%s\n" "$at_srcdir/policy.at:5348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=10.20.20.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5348" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source=10.20.20.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5347" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5348" $at_failed && at_fn_log_failure $at_traceon; } @@ -187978,9 +191439,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy.at:5349" >"$at_check_line_file" + printf "%s\n" "policy.at:5350" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:5349" + && at_fn_check_skip 99 "$at_srcdir/policy.at:5350" fi @@ -187989,13 +191450,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_180 -#AT_START_181 -at_fn_group_banner 181 'policy.at:5351' \ +#AT_STOP_189 +#AT_START_190 +at_fn_group_banner 190 'policy.at:5352' \ "policy - interfaces/sources" " " 7 at_xfail=no ( - $as_echo "181. $at_setup_line: testing $at_desc ..." + printf "%s\n" "190. $at_setup_line: testing $at_desc ..." $at_traceon @@ -188013,6 +191474,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -188029,29 +191491,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:5351: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:5352: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5352" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:5351: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:5352: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:5352" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } @@ -188059,15 +191521,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5351: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:5352: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:5352" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } @@ -188123,15 +191585,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:5351: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:5352: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5352" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } @@ -188214,8 +191676,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:5351" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:5351" + printf "%s\n" "policy.at:5352" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:5352" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -188233,15 +191695,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:5351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:5352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5352" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } @@ -188254,15 +191716,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:5351: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:5352: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:5352" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } @@ -188271,30 +191733,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:5352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5352" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:5352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5352" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } @@ -188303,7 +191765,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -188311,8 +191773,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:5351" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:5351" + printf "%s\n" "policy.at:5352" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:5352" fi echo "$!" > firewalld.pid @@ -188328,9 +191790,9 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:5351" fi sleep 1 done - $as_echo "policy.at:5351" >"$at_check_line_file" + printf "%s\n" "policy.at:5352" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:5351" + && at_fn_check_skip 99 "$at_srcdir/policy.at:5352" @@ -188340,15 +191802,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:5351" { set +x -$as_echo "$at_srcdir/policy.at:5354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5354" +printf "%s\n" "$at_srcdir/policy.at:5355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5355" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5354" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5355" $at_failed && at_fn_log_failure $at_traceon; } @@ -188359,15 +191821,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5355" +printf "%s\n" "$at_srcdir/policy.at:5356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5356" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5355" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5356" $at_failed && at_fn_log_failure $at_traceon; } @@ -188378,15 +191840,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5356" +printf "%s\n" "$at_srcdir/policy.at:5357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5357" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5356" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5357" $at_failed && at_fn_log_failure $at_traceon; } @@ -188397,15 +191859,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5357" +printf "%s\n" "$at_srcdir/policy.at:5358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5358" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5357" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5358" $at_failed && at_fn_log_failure $at_traceon; } @@ -188417,15 +191879,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5358" +printf "%s\n" "$at_srcdir/policy.at:5359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5359" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5358" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5359" $at_failed && at_fn_log_failure $at_traceon; } @@ -188436,15 +191898,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5358" +printf "%s\n" "$at_srcdir/policy.at:5359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5359" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5358" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5359" $at_failed && at_fn_log_failure $at_traceon; } @@ -188458,11 +191920,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5360: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5359" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5360" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -188471,7 +191933,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar0\" oifname \"foobar0\" jump filter_FWD_internal iifname \"foobar0\" oifname \"foobar0\" reject with icmpx admin-prohibited @@ -188486,7 +191948,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5359" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5360" $at_failed && at_fn_log_failure $at_traceon; } @@ -188506,15 +191968,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5400: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5400" +printf "%s\n" "$at_srcdir/policy.at:5401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5401" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5400" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5401" $at_failed && at_fn_log_failure $at_traceon; } @@ -188527,11 +191989,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5402: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5401" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5402" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -188540,7 +192002,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar0\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar0\" jump nat_PRE_policy_foobar @@ -188556,7 +192018,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5401" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5402" $at_failed && at_fn_log_failure $at_traceon; } @@ -188577,11 +192039,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5441: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5442: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5441" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5442" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -188590,7 +192052,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar0\" oifname \"foobar0\" jump filter_FWD_internal iifname \"foobar0\" oifname \"foobar0\" reject with icmpx admin-prohibited @@ -188616,7 +192078,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5441" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5442" $at_failed && at_fn_log_failure $at_traceon; } @@ -188636,15 +192098,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5514: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5514" +printf "%s\n" "$at_srcdir/policy.at:5515: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5515" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface foobar2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5514" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5515" $at_failed && at_fn_log_failure $at_traceon; } @@ -188657,11 +192119,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5515: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5516: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5515" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5516" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -188670,7 +192132,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar0\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar0\" jump nat_PRE_policy_foobar @@ -188689,7 +192151,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5515" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5516" $at_failed && at_fn_log_failure $at_traceon; } @@ -188710,11 +192172,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5564: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5565: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5564" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5565" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -188723,7 +192185,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar0\" oifname \"foobar0\" jump filter_FWD_internal iifname \"foobar0\" oifname \"foobar0\" reject with icmpx admin-prohibited @@ -188764,7 +192226,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5564" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5565" $at_failed && at_fn_log_failure $at_traceon; } @@ -188784,15 +192246,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5682: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-interface foobar2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5682" +printf "%s\n" "$at_srcdir/policy.at:5683: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-interface foobar2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5683" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-interface foobar2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5682" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5683" $at_failed && at_fn_log_failure $at_traceon; } @@ -188805,11 +192267,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5683: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5684: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5683" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5684" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -188818,7 +192280,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar0\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar0\" jump nat_PRE_policy_foobar @@ -188834,7 +192296,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5683" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5684" $at_failed && at_fn_log_failure $at_traceon; } @@ -188855,11 +192317,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5723: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5724: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5723" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5724" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -188868,7 +192330,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar0\" oifname \"foobar0\" jump filter_FWD_internal iifname \"foobar0\" oifname \"foobar0\" reject with icmpx admin-prohibited @@ -188894,7 +192356,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5723" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5724" $at_failed && at_fn_log_failure $at_traceon; } @@ -188914,15 +192376,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5797: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-interface foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5797" +printf "%s\n" "$at_srcdir/policy.at:5798: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-interface foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5798" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5797" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5798" $at_failed && at_fn_log_failure $at_traceon; } @@ -188935,11 +192397,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5798: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5799: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5798" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5799" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -188948,7 +192410,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { iifname \"foobar0\" jump nat_PRE_policy_allow-host-ipv6 iifname \"foobar0\" jump nat_PRE_policy_foobar @@ -188961,7 +192423,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5798" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5799" $at_failed && at_fn_log_failure $at_traceon; } @@ -188982,11 +192444,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5829: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5830: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5829" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5830" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -188995,7 +192457,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar0\" oifname \"foobar0\" jump filter_FWD_internal iifname \"foobar0\" oifname \"foobar0\" reject with icmpx admin-prohibited @@ -189010,7 +192472,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5829" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5830" $at_failed && at_fn_log_failure $at_traceon; } @@ -189030,15 +192492,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5870: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5870" +printf "%s\n" "$at_srcdir/policy.at:5871: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5871" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5870" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5871" $at_failed && at_fn_log_failure $at_traceon; } @@ -189051,11 +192513,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5871: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5872: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5871" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5872" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -189064,7 +192526,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump nat_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_PRE_public @@ -189087,7 +192549,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5871" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5872" $at_failed && at_fn_log_failure $at_traceon; } @@ -189110,15 +192572,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5925: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-source 1234::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5925" +printf "%s\n" "$at_srcdir/policy.at:5926: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-source 1234::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5926" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-source 1234::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5925" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5926" $at_failed && at_fn_log_failure $at_traceon; } @@ -189133,11 +192595,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5928: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5929: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5928" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5929" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -189147,7 +192609,7 @@ at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; tee stdout <"$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5928" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5929" $at_failed && at_fn_log_failure $at_traceon; } @@ -189158,15 +192620,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5929: grep 'iifname \"foobar0\" ip6 daddr 1234::/64 jump nat_PRE_policy_foobar' ./stdout" -at_fn_check_prepare_trace "policy.at:5929" +printf "%s\n" "$at_srcdir/policy.at:5930: grep 'iifname \"foobar0\" ip6 daddr 1234::/64 jump nat_PRE_policy_foobar' ./stdout" +at_fn_check_prepare_trace "policy.at:5930" ( $at_check_trace; grep 'iifname "foobar0" ip6 daddr 1234::/64 jump nat_PRE_policy_foobar' ./stdout ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5929" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5930" $at_failed && at_fn_log_failure $at_traceon; } @@ -189185,15 +192647,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5973: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-source 1234::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5973" +printf "%s\n" "$at_srcdir/policy.at:5974: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-source 1234::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5974" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-source 1234::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5973" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5974" $at_failed && at_fn_log_failure $at_traceon; } @@ -189208,11 +192670,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5976: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:5977: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5976" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5977" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld nat_PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -189221,7 +192683,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PREROUTING_POLICIES { ip saddr 10.10.10.0/24 jump nat_PRE_policy_allow-host-ipv6 ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump nat_PRE_public @@ -189244,7 +192706,7 @@ return } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5976" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5977" $at_failed && at_fn_log_failure $at_traceon; } @@ -189264,15 +192726,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6031" +printf "%s\n" "$at_srcdir/policy.at:6032: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6032" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6031" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6032" $at_failed && at_fn_log_failure $at_traceon; } @@ -189285,11 +192747,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6032: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:6033: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6032" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6033" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -189298,7 +192760,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar0\" oifname \"foobar0\" jump filter_FWD_internal iifname \"foobar0\" oifname \"foobar0\" reject with icmpx admin-prohibited @@ -189313,7 +192775,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6032" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6033" $at_failed && at_fn_log_failure $at_traceon; } @@ -189332,9 +192794,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy.at:6070" >"$at_check_line_file" + printf "%s\n" "policy.at:6071" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6070" + && at_fn_check_skip 99 "$at_srcdir/policy.at:6071" fi @@ -189343,13 +192805,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_181 -#AT_START_182 -at_fn_group_banner 182 'policy.at:6072' \ +#AT_STOP_190 +#AT_START_191 +at_fn_group_banner 191 'policy.at:6073' \ "policy - target" " " 7 at_xfail=no ( - $as_echo "182. $at_setup_line: testing $at_desc ..." + printf "%s\n" "191. $at_setup_line: testing $at_desc ..." $at_traceon @@ -189367,6 +192829,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -189383,29 +192846,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:6072: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6072" +printf "%s\n" "$at_srcdir/policy.at:6073: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6073" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:6072: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6072" +printf "%s\n" "$at_srcdir/policy.at:6073: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6073" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } @@ -189413,15 +192876,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6072: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6072" +printf "%s\n" "$at_srcdir/policy.at:6073: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6073" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } @@ -189477,15 +192940,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:6072: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6072" +printf "%s\n" "$at_srcdir/policy.at:6073: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6073" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } @@ -189568,8 +193031,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:6072" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6072" + printf "%s\n" "policy.at:6073" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6073" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -189587,15 +193050,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:6072: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6072" +printf "%s\n" "$at_srcdir/policy.at:6073: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6073" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } @@ -189608,15 +193071,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:6072: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6072" +printf "%s\n" "$at_srcdir/policy.at:6073: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6073" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } @@ -189625,30 +193088,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6072: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6072" +printf "%s\n" "$at_srcdir/policy.at:6073: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6073" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6072: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6072" +printf "%s\n" "$at_srcdir/policy.at:6073: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6073" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } @@ -189657,7 +193120,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -189665,8 +193128,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:6072" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6072" + printf "%s\n" "policy.at:6073" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6073" fi echo "$!" > firewalld.pid @@ -189682,9 +193145,9 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6072" fi sleep 1 done - $as_echo "policy.at:6072" >"$at_check_line_file" + printf "%s\n" "policy.at:6073" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6072" + && at_fn_check_skip 99 "$at_srcdir/policy.at:6073" @@ -189694,15 +193157,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6072" { set +x -$as_echo "$at_srcdir/policy.at:6075: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6075" +printf "%s\n" "$at_srcdir/policy.at:6076: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6076" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6075" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6076" $at_failed && at_fn_log_failure $at_traceon; } @@ -189714,15 +193177,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6077: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=CONTINUE " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6077" +printf "%s\n" "$at_srcdir/policy.at:6078: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=CONTINUE " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6078" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=CONTINUE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6077" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6078" $at_failed && at_fn_log_failure $at_traceon; } @@ -189733,15 +193196,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6078: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6078" +printf "%s\n" "$at_srcdir/policy.at:6079: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6079" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6078" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6079" $at_failed && at_fn_log_failure $at_traceon; } @@ -189752,15 +193215,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6079: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6079" +printf "%s\n" "$at_srcdir/policy.at:6080: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6080" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6079" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6080" $at_failed && at_fn_log_failure $at_traceon; } @@ -189771,15 +193234,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6080: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=REJECT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6080" +printf "%s\n" "$at_srcdir/policy.at:6081: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=REJECT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6081" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=REJECT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6080" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6081" $at_failed && at_fn_log_failure $at_traceon; } @@ -189790,15 +193253,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6081: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DENY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6081" +printf "%s\n" "$at_srcdir/policy.at:6082: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DENY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6082" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DENY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6081" +at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6082" $at_failed && at_fn_log_failure $at_traceon; } @@ -189809,15 +193272,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6082: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=default " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6082" +printf "%s\n" "$at_srcdir/policy.at:6083: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=default " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6083" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6082" +at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6083" $at_failed && at_fn_log_failure $at_traceon; } @@ -189829,15 +193292,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6085: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6085" +printf "%s\n" "$at_srcdir/policy.at:6086: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6086" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6085" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6086" $at_failed && at_fn_log_failure $at_traceon; } @@ -189848,15 +193311,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6086: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6086" +printf "%s\n" "$at_srcdir/policy.at:6087: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6087" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6086" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6087" $at_failed && at_fn_log_failure $at_traceon; } @@ -189867,15 +193330,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6087: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6087" +printf "%s\n" "$at_srcdir/policy.at:6088: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6088" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6087" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6088" $at_failed && at_fn_log_failure $at_traceon; } @@ -189886,15 +193349,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6088: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6088" +printf "%s\n" "$at_srcdir/policy.at:6089: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6089" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6088" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6089" $at_failed && at_fn_log_failure $at_traceon; } @@ -189906,15 +193369,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6089: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6089" +printf "%s\n" "$at_srcdir/policy.at:6090: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6090" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6089" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6090" $at_failed && at_fn_log_failure $at_traceon; } @@ -189925,15 +193388,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6089: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6089" +printf "%s\n" "$at_srcdir/policy.at:6090: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6090" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6089" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6090" $at_failed && at_fn_log_failure $at_traceon; } @@ -189947,11 +193410,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6090: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:6091: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6090" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6091" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -189960,7 +193423,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar { jump filter_IN_policy_foobar_pre jump filter_IN_policy_foobar_log @@ -189972,7 +193435,7 @@ accept } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6090" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6091" $at_failed && at_fn_log_failure $at_traceon; } @@ -189991,9 +193454,9 @@ $at_traceon; } if test x"ignore" != x"ignore"; then - $as_echo "policy.at:6119" >"$at_check_line_file" + printf "%s\n" "policy.at:6120" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6119" + && at_fn_check_skip 99 "$at_srcdir/policy.at:6120" fi @@ -190002,13 +193465,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_182 -#AT_START_183 -at_fn_group_banner 183 'policy.at:6121' \ +#AT_STOP_191 +#AT_START_192 +at_fn_group_banner 192 'policy.at:6122' \ "policy - from file" " " 7 at_xfail=no ( - $as_echo "183. $at_setup_line: testing $at_desc ..." + printf "%s\n" "192. $at_setup_line: testing $at_desc ..." $at_traceon @@ -190026,6 +193489,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -190042,29 +193506,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:6121: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6121" +printf "%s\n" "$at_srcdir/policy.at:6122: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6122" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:6121: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6121" +printf "%s\n" "$at_srcdir/policy.at:6122: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6122" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } @@ -190072,15 +193536,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6121: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6121" +printf "%s\n" "$at_srcdir/policy.at:6122: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6122" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } @@ -190136,15 +193600,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:6121: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6121" +printf "%s\n" "$at_srcdir/policy.at:6122: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6122" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } @@ -190227,8 +193691,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:6121" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6121" + printf "%s\n" "policy.at:6122" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6122" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -190246,15 +193710,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:6121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6121" +printf "%s\n" "$at_srcdir/policy.at:6122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6122" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } @@ -190267,15 +193731,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:6121: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6121" +printf "%s\n" "$at_srcdir/policy.at:6122: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6122" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } @@ -190284,30 +193748,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6121" +printf "%s\n" "$at_srcdir/policy.at:6122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6122" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6121" +printf "%s\n" "$at_srcdir/policy.at:6122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6122" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } @@ -190316,7 +193780,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -190324,8 +193788,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:6121" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6121" + printf "%s\n" "policy.at:6122" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6122" fi echo "$!" > firewalld.pid @@ -190341,9 +193805,9 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6121" fi sleep 1 done - $as_echo "policy.at:6121" >"$at_check_line_file" + printf "%s\n" "policy.at:6122" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6121" + && at_fn_check_skip 99 "$at_srcdir/policy.at:6122" @@ -190353,15 +193817,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6121" { set +x -$as_echo "$at_srcdir/policy.at:6124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6124" +printf "%s\n" "$at_srcdir/policy.at:6125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6125" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6124" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6125" $at_failed && at_fn_log_failure $at_traceon; } @@ -190369,15 +193833,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6125: ls \"./policies/allow-host-ipv6.xml\"" -at_fn_check_prepare_trace "policy.at:6125" +printf "%s\n" "$at_srcdir/policy.at:6126: ls \"./policies/allow-host-ipv6.xml\"" +at_fn_check_prepare_trace "policy.at:6126" ( $at_check_trace; ls "./policies/allow-host-ipv6.xml" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6125" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6126" $at_failed && at_fn_log_failure $at_traceon; } @@ -190385,15 +193849,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy-from-file \"./policies/allow-host-ipv6.xml\" --name my-allow-host-ipv6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6126" +printf "%s\n" "$at_srcdir/policy.at:6127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy-from-file \"./policies/allow-host-ipv6.xml\" --name my-allow-host-ipv6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6127" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy-from-file "./policies/allow-host-ipv6.xml" --name my-allow-host-ipv6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6126" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6127" $at_failed && at_fn_log_failure $at_traceon; } @@ -190401,15 +193865,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6127: ls \"./policies/my-allow-host-ipv6.xml\"" -at_fn_check_prepare_trace "policy.at:6127" +printf "%s\n" "$at_srcdir/policy.at:6128: ls \"./policies/my-allow-host-ipv6.xml\"" +at_fn_check_prepare_trace "policy.at:6128" ( $at_check_trace; ls "./policies/my-allow-host-ipv6.xml" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6127" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6128" $at_failed && at_fn_log_failure $at_traceon; } @@ -190417,17 +193881,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6128: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6128" +printf "%s\n" "$at_srcdir/policy.at:6129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6129" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 my-allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 my-allow-host-ipv6 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6128" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6129" $at_failed && at_fn_log_failure $at_traceon; } @@ -190439,15 +193903,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6131" +printf "%s\n" "$at_srcdir/policy.at:6132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6132" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6131" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6132" $at_failed && at_fn_log_failure $at_traceon; } @@ -190458,15 +193922,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6131" +printf "%s\n" "$at_srcdir/policy.at:6132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6132" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6131" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6132" $at_failed && at_fn_log_failure $at_traceon; } @@ -190478,17 +193942,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6132" +printf "%s\n" "$at_srcdir/policy.at:6133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6133" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 my-allow-host-ipv6 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 my-allow-host-ipv6 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6132" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6133" $at_failed && at_fn_log_failure $at_traceon; } @@ -190499,9 +193963,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy.at:6136" >"$at_check_line_file" + printf "%s\n" "policy.at:6137" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6136" + && at_fn_check_skip 99 "$at_srcdir/policy.at:6137" fi @@ -190510,13 +193974,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_183 -#AT_START_184 -at_fn_group_banner 184 'policy.at:6138' \ +#AT_STOP_192 +#AT_START_193 +at_fn_group_banner 193 'policy.at:6139' \ "policy - zone drifting not allowed" " " 7 at_xfail=no ( - $as_echo "184. $at_setup_line: testing $at_desc ..." + printf "%s\n" "193. $at_setup_line: testing $at_desc ..." $at_traceon @@ -190534,6 +193998,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -190550,29 +194015,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:6138: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6138" +printf "%s\n" "$at_srcdir/policy.at:6139: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6139" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:6138: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6138" +printf "%s\n" "$at_srcdir/policy.at:6139: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6139" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } @@ -190580,15 +194045,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6138: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6138" +printf "%s\n" "$at_srcdir/policy.at:6139: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6139" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } @@ -190644,15 +194109,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:6138: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6138" +printf "%s\n" "$at_srcdir/policy.at:6139: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6139" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } @@ -190735,8 +194200,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:6138" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6138" + printf "%s\n" "policy.at:6139" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6139" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -190754,15 +194219,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:6138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6138" +printf "%s\n" "$at_srcdir/policy.at:6139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6139" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } @@ -190775,15 +194240,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:6138: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6138" +printf "%s\n" "$at_srcdir/policy.at:6139: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6139" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } @@ -190792,30 +194257,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6138" +printf "%s\n" "$at_srcdir/policy.at:6139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6139" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6138" +printf "%s\n" "$at_srcdir/policy.at:6139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6139" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } @@ -190824,7 +194289,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -190832,8 +194297,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:6138" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6138" + printf "%s\n" "policy.at:6139" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6139" fi echo "$!" > firewalld.pid @@ -190849,9 +194314,9 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6138" fi sleep 1 done - $as_echo "policy.at:6138" >"$at_check_line_file" + printf "%s\n" "policy.at:6139" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6138" + && at_fn_check_skip 99 "$at_srcdir/policy.at:6139" @@ -190861,15 +194326,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6138" { set +x -$as_echo "$at_srcdir/policy.at:6141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6141" +printf "%s\n" "$at_srcdir/policy.at:6142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6142" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6141" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6142" $at_failed && at_fn_log_failure $at_traceon; } @@ -190880,15 +194345,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.0.0.0/8 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6142" +printf "%s\n" "$at_srcdir/policy.at:6143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.0.0.0/8 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6143" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6142" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6143" $at_failed && at_fn_log_failure $at_traceon; } @@ -190899,15 +194364,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.10.0.0/16 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6143" +printf "%s\n" "$at_srcdir/policy.at:6144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.10.0.0/16 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6144" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.10.0.0/16 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6143" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6144" $at_failed && at_fn_log_failure $at_traceon; } @@ -190918,15 +194383,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone trusted --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6144" +printf "%s\n" "$at_srcdir/policy.at:6145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone trusted --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6145" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone trusted --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6144" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6145" $at_failed && at_fn_log_failure $at_traceon; } @@ -190938,15 +194403,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6147" +printf "%s\n" "$at_srcdir/policy.at:6148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6148" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy policy-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6147" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6148" $at_failed && at_fn_log_failure $at_traceon; } @@ -190957,15 +194422,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6148" +printf "%s\n" "$at_srcdir/policy.at:6149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6149" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6148" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6149" $at_failed && at_fn_log_failure $at_traceon; } @@ -190976,15 +194441,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone trusted " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6149" +printf "%s\n" "$at_srcdir/policy.at:6150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone trusted " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6150" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6149" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6150" $at_failed && at_fn_log_failure $at_traceon; } @@ -190995,15 +194460,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-egress-zone external " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6150" +printf "%s\n" "$at_srcdir/policy.at:6151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-egress-zone external " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6151" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-egress-zone external ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6150" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6151" $at_failed && at_fn_log_failure $at_traceon; } @@ -191015,15 +194480,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6152" +printf "%s\n" "$at_srcdir/policy.at:6153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6153" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy policy-2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6152" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6153" $at_failed && at_fn_log_failure $at_traceon; } @@ -191034,15 +194499,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-ingress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6153" +printf "%s\n" "$at_srcdir/policy.at:6154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-ingress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6154" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6153" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6154" $at_failed && at_fn_log_failure $at_traceon; } @@ -191053,15 +194518,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-egress-zone external " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6154" +printf "%s\n" "$at_srcdir/policy.at:6155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-egress-zone external " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6155" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-egress-zone external ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6154" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6155" $at_failed && at_fn_log_failure $at_traceon; } @@ -191073,15 +194538,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6156: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6156" +printf "%s\n" "$at_srcdir/policy.at:6157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6157" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy policy-3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6156" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6157" $at_failed && at_fn_log_failure $at_traceon; } @@ -191092,15 +194557,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --set-priority 10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6157" +printf "%s\n" "$at_srcdir/policy.at:6158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --set-priority 10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6158" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-3 --set-priority 10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6157" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6158" $at_failed && at_fn_log_failure $at_traceon; } @@ -191111,15 +194576,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-ingress-zone trusted " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6158" +printf "%s\n" "$at_srcdir/policy.at:6159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-ingress-zone trusted " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6159" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-ingress-zone trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6158" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6159" $at_failed && at_fn_log_failure $at_traceon; } @@ -191130,15 +194595,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-egress-zone external " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6159" +printf "%s\n" "$at_srcdir/policy.at:6160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-egress-zone external " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6160" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-egress-zone external ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6159" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6160" $at_failed && at_fn_log_failure $at_traceon; } @@ -191151,15 +194616,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6161" +printf "%s\n" "$at_srcdir/policy.at:6162: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6162" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6161" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6162" $at_failed && at_fn_log_failure $at_traceon; } @@ -191170,15 +194635,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6161" +printf "%s\n" "$at_srcdir/policy.at:6162: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6162" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6161" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6162" $at_failed && at_fn_log_failure $at_traceon; } @@ -191193,11 +194658,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6168: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/policy.at:6169: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6168" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6169" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -191206,7 +194671,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { ip saddr 10.0.0.0/8 ip daddr 10.0.0.0/8 jump filter_FWD_internal ip saddr 10.0.0.0/8 ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited @@ -191267,7 +194732,7 @@ reject with icmpx admin-prohibited } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6168" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6169" $at_failed && at_fn_log_failure $at_traceon; } @@ -191286,9 +194751,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy.at:6298" >"$at_check_line_file" + printf "%s\n" "policy.at:6299" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6298" + && at_fn_check_skip 99 "$at_srcdir/policy.at:6299" fi @@ -191297,13 +194762,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_184 -#AT_START_185 -at_fn_group_banner 185 'policy.at:6300' \ +#AT_STOP_193 +#AT_START_194 +at_fn_group_banner 194 'policy.at:6301' \ "policy - multiple using same zone source" " " 7 at_xfail=no ( - $as_echo "185. $at_setup_line: testing $at_desc ..." + printf "%s\n" "194. $at_setup_line: testing $at_desc ..." $at_traceon @@ -191321,6 +194786,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -191337,29 +194803,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:6300: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6300" +printf "%s\n" "$at_srcdir/policy.at:6301: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6301" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:6300: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6300" +printf "%s\n" "$at_srcdir/policy.at:6301: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6301" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } @@ -191367,15 +194833,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6300: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6300" +printf "%s\n" "$at_srcdir/policy.at:6301: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6301" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } @@ -191431,15 +194897,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:6300: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6300" +printf "%s\n" "$at_srcdir/policy.at:6301: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6301" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } @@ -191522,8 +194988,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:6300" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6300" + printf "%s\n" "policy.at:6301" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6301" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -191541,15 +195007,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/policy.at:6300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6300" +printf "%s\n" "$at_srcdir/policy.at:6301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6301" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } @@ -191562,15 +195028,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/policy.at:6300: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6300" +printf "%s\n" "$at_srcdir/policy.at:6301: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6301" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } @@ -191579,30 +195045,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6300" +printf "%s\n" "$at_srcdir/policy.at:6301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6301" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6300" +printf "%s\n" "$at_srcdir/policy.at:6301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6301" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } @@ -191611,7 +195077,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -191619,8 +195085,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:6300" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6300" + printf "%s\n" "policy.at:6301" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6301" fi echo "$!" > firewalld.pid @@ -191636,9 +195102,9 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6300" fi sleep 1 done - $as_echo "policy.at:6300" >"$at_check_line_file" + printf "%s\n" "policy.at:6301" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6300" + && at_fn_check_skip 99 "$at_srcdir/policy.at:6301" @@ -191648,15 +195114,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6300" { set +x -$as_echo "$at_srcdir/policy.at:6303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6303" +printf "%s\n" "$at_srcdir/policy.at:6304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6304" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6303" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6304" $at_failed && at_fn_log_failure $at_traceon; } @@ -191667,15 +195133,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6304" +printf "%s\n" "$at_srcdir/policy.at:6305: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6305" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6304" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6305" $at_failed && at_fn_log_failure $at_traceon; } @@ -191686,15 +195152,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6305: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6305" +printf "%s\n" "$at_srcdir/policy.at:6306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6306" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6305" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6306" $at_failed && at_fn_log_failure $at_traceon; } @@ -191705,15 +195171,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy raboof " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6306" +printf "%s\n" "$at_srcdir/policy.at:6307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy raboof " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6307" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy raboof ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6306" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6307" $at_failed && at_fn_log_failure $at_traceon; } @@ -191724,15 +195190,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6307" +printf "%s\n" "$at_srcdir/policy.at:6308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6308" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6307" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6308" $at_failed && at_fn_log_failure $at_traceon; } @@ -191743,15 +195209,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6308" +printf "%s\n" "$at_srcdir/policy.at:6309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6309" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6308" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6309" $at_failed && at_fn_log_failure $at_traceon; } @@ -191763,15 +195229,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6309" +printf "%s\n" "$at_srcdir/policy.at:6310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6310" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6309" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6310" $at_failed && at_fn_log_failure $at_traceon; } @@ -191782,15 +195248,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6309" +printf "%s\n" "$at_srcdir/policy.at:6310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6310" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6309" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6310" $at_failed && at_fn_log_failure $at_traceon; } @@ -191803,15 +195269,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6311: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6311" +printf "%s\n" "$at_srcdir/policy.at:6312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6312" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6311" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6312" $at_failed && at_fn_log_failure $at_traceon; } @@ -191822,15 +195288,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6312" +printf "%s\n" "$at_srcdir/policy.at:6313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6313" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6312" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6313" $at_failed && at_fn_log_failure $at_traceon; } @@ -191841,9 +195307,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy.at:6314" >"$at_check_line_file" + printf "%s\n" "policy.at:6315" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6314" + && at_fn_check_skip 99 "$at_srcdir/policy.at:6315" fi @@ -191852,13 +195318,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_185 -#AT_START_186 -at_fn_group_banner 186 'services.at:1' \ +#AT_STOP_194 +#AT_START_195 +at_fn_group_banner 195 'services.at:1' \ "services" " " 7 at_xfail=no ( - $as_echo "186. $at_setup_line: testing $at_desc ..." + printf "%s\n" "195. $at_setup_line: testing $at_desc ..." $at_traceon @@ -191876,6 +195342,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -191892,7 +195359,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/services.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/services.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -191906,7 +195373,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/services.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/services.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "services.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -191922,7 +195389,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/services.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "services.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -191986,7 +195453,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/services.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/services.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192077,7 +195544,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "services.at:1" >"$at_check_line_file" + printf "%s\n" "services.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/services.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -192096,7 +195563,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/services.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/services.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192117,7 +195584,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/services.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/services.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "services.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192134,7 +195601,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/services.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192149,7 +195616,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/services.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192166,7 +195633,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -192174,7 +195641,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "services.at:1" >"$at_check_line_file" + printf "%s\n" "services.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/services.at:1" fi echo "$!" > firewalld.pid @@ -192191,7 +195658,7 @@ at_fn_check_skip 99 "$at_srcdir/services.at:1" fi sleep 1 done - $as_echo "services.at:1" >"$at_check_line_file" + printf "%s\n" "services.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/services.at:1" @@ -192203,7 +195670,7 @@ at_fn_check_skip 99 "$at_srcdir/services.at:1" { set +x -$as_echo "$at_srcdir/services.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/services.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192222,7 +195689,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/services.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192241,7 +195708,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/services.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192261,7 +195728,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service ssh " +printf "%s\n" "$at_srcdir/services.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192280,7 +195747,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +printf "%s\n" "$at_srcdir/services.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192299,7 +195766,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh " +printf "%s\n" "$at_srcdir/services.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192318,7 +195785,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +printf "%s\n" "$at_srcdir/services.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192338,7 +195805,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/services.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192357,7 +195824,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/services.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192377,7 +195844,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ssh " +printf "%s\n" "$at_srcdir/services.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192396,7 +195863,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +printf "%s\n" "$at_srcdir/services.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192417,7 +195884,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/services.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -192430,7 +195897,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_allow { tcp dport 22 accept ip saddr 10.10.10.0/24 tcp dport 22 accept @@ -192458,7 +195925,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ssh " +printf "%s\n" "$at_srcdir/services.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192478,7 +195945,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +printf "%s\n" "$at_srcdir/services.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:37" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192497,7 +195964,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh " +printf "%s\n" "$at_srcdir/services.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:38" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192516,7 +195983,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +printf "%s\n" "$at_srcdir/services.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:39" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192535,7 +196002,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-service ssh " +printf "%s\n" "$at_srcdir/services.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-service ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:40" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192554,7 +196021,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +printf "%s\n" "$at_srcdir/services.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:41" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192573,7 +196040,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ssh " +printf "%s\n" "$at_srcdir/services.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192592,7 +196059,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +printf "%s\n" "$at_srcdir/services.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:43" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192613,7 +196080,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-service ftp " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-service ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192632,7 +196099,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192651,7 +196118,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ftp " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192670,7 +196137,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192689,7 +196156,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192708,7 +196175,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192727,7 +196194,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192748,7 +196215,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -192761,7 +196228,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_allow { tcp dport 21 ct helper set \"helper-ftp-tcp\" tcp dport 21 accept @@ -192795,7 +196262,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ftp " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192814,7 +196281,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192833,7 +196300,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192852,7 +196319,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192871,7 +196338,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-service ftp " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-service ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192890,7 +196357,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192909,7 +196376,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ftp " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ftp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192928,7 +196395,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192949,7 +196416,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service does-not-exist " +printf "%s\n" "$at_srcdir/services.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service does-not-exist " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:90" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service does-not-exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192968,7 +196435,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-service does-not-exist " +printf "%s\n" "$at_srcdir/services.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-service does-not-exist " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:91" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-service does-not-exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -192988,7 +196455,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-interface raboof0 --add-service ssh " +printf "%s\n" "$at_srcdir/services.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-interface raboof0 --add-service ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:94" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-interface raboof0 --add-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193007,7 +196474,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-interface raboof0 --add-service ssh " +printf "%s\n" "$at_srcdir/services.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-interface raboof0 --add-service ssh " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:95" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-interface raboof0 --add-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193026,7 +196493,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_SERVICE/d'" != x"ignore"; then - $as_echo "services.at:97" >"$at_check_line_file" + printf "%s\n" "services.at:97" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/services.at:97" fi @@ -193037,13 +196504,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_186 -#AT_START_187 -at_fn_group_banner 187 'ports.at:1' \ +#AT_STOP_195 +#AT_START_196 +at_fn_group_banner 196 'ports.at:1' \ "ports" " " 7 at_xfail=no ( - $as_echo "187. $at_setup_line: testing $at_desc ..." + printf "%s\n" "196. $at_setup_line: testing $at_desc ..." $at_traceon @@ -193061,6 +196528,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -193077,7 +196545,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193091,7 +196559,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "ports.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193107,7 +196575,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "ports.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193171,7 +196639,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/ports.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/ports.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193262,7 +196730,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "ports.at:1" >"$at_check_line_file" + printf "%s\n" "ports.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/ports.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -193281,7 +196749,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193302,7 +196770,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/ports.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/ports.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "ports.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193319,7 +196787,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193334,7 +196802,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193351,7 +196819,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -193359,7 +196827,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "ports.at:1" >"$at_check_line_file" + printf "%s\n" "ports.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/ports.at:1" fi echo "$!" > firewalld.pid @@ -193376,7 +196844,7 @@ at_fn_check_skip 99 "$at_srcdir/ports.at:1" fi sleep 1 done - $as_echo "ports.at:1" >"$at_check_line_file" + printf "%s\n" "ports.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/ports.at:1" @@ -193388,7 +196856,7 @@ at_fn_check_skip 99 "$at_srcdir/ports.at:1" { set +x -$as_echo "$at_srcdir/ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193407,7 +196875,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193426,7 +196894,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193446,7 +196914,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/tcp " +printf "%s\n" "$at_srcdir/ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193465,7 +196933,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193484,7 +196952,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 4321/udp " +printf "%s\n" "$at_srcdir/ports.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 4321/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193503,7 +196971,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/ports.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=udp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193522,7 +196990,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp " +printf "%s\n" "$at_srcdir/ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193541,7 +197009,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193560,7 +197028,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 4321/udp " +printf "%s\n" "$at_srcdir/ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 4321/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193579,7 +197047,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/ports.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193599,7 +197067,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193618,7 +197086,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193638,7 +197106,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp " +printf "%s\n" "$at_srcdir/ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193657,7 +197125,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193676,7 +197144,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 4321/udp " +printf "%s\n" "$at_srcdir/ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 4321/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193695,7 +197163,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193716,7 +197184,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/ports.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -193729,7 +197197,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_allow { tcp dport 1234 accept udp dport 1234 accept @@ -193758,7 +197226,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/tcp " +printf "%s\n" "$at_srcdir/ports.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:44" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193777,7 +197245,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp " +printf "%s\n" "$at_srcdir/ports.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:45" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193796,7 +197264,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:46" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193815,7 +197283,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193834,7 +197302,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 4321/udp " +printf "%s\n" "$at_srcdir/ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 4321/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:48" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193853,7 +197321,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:49" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193872,7 +197340,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/tcp " +printf "%s\n" "$at_srcdir/ports.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:50" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193891,7 +197359,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp " +printf "%s\n" "$at_srcdir/ports.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:51" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193910,7 +197378,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193929,7 +197397,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193948,7 +197416,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 4321/udp " +printf "%s\n" "$at_srcdir/ports.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 4321/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:54" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193967,7 +197435,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -193988,7 +197456,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194007,7 +197475,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194026,7 +197494,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194045,7 +197513,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194064,7 +197532,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194083,7 +197551,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194102,7 +197570,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194123,7 +197591,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -194136,7 +197604,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_allow { udp dport 1234 accept sctp dport 4444 accept @@ -194163,7 +197631,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194182,7 +197650,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194201,7 +197669,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194220,7 +197688,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194239,7 +197707,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194258,7 +197726,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194277,7 +197745,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194296,7 +197764,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194317,7 +197785,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234 " +printf "%s\n" "$at_srcdir/ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:93" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194336,7 +197804,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234 " +printf "%s\n" "$at_srcdir/ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:94" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194355,7 +197823,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 123443/tcp " +printf "%s\n" "$at_srcdir/ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 123443/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:95" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 123443/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194374,7 +197842,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 123443/tcp " +printf "%s\n" "$at_srcdir/ports.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 123443/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:96" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 123443/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194393,7 +197861,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/bogus " +printf "%s\n" "$at_srcdir/ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/bogus " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:97" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/bogus ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194412,7 +197880,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/bogus " +printf "%s\n" "$at_srcdir/ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/bogus " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:98" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/bogus ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194432,7 +197900,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 accept' " +printf "%s\n" "$at_srcdir/ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:100" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194451,7 +197919,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 accept' " +printf "%s\n" "$at_srcdir/ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:101" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194470,7 +197938,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' " +printf "%s\n" "$at_srcdir/ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:102" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194489,7 +197957,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' " +printf "%s\n" "$at_srcdir/ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:103" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194508,7 +197976,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' " +printf "%s\n" "$at_srcdir/ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:104" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194527,7 +197995,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' " +printf "%s\n" "$at_srcdir/ports.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:105" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194546,7 +198014,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "ports.at:107" >"$at_check_line_file" + printf "%s\n" "ports.at:107" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/ports.at:107" fi @@ -194557,13 +198025,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_187 -#AT_START_188 -at_fn_group_banner 188 'source_ports.at:1' \ +#AT_STOP_196 +#AT_START_197 +at_fn_group_banner 197 'source_ports.at:1' \ "source ports" " " 7 at_xfail=no ( - $as_echo "188. $at_setup_line: testing $at_desc ..." + printf "%s\n" "197. $at_setup_line: testing $at_desc ..." $at_traceon @@ -194581,6 +198049,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -194597,7 +198066,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/source_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/source_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194611,7 +198080,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/source_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/source_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "source_ports.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194627,7 +198096,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/source_ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "source_ports.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194691,7 +198160,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/source_ports.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/source_ports.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194782,7 +198251,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "source_ports.at:1" >"$at_check_line_file" + printf "%s\n" "source_ports.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/source_ports.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -194801,7 +198270,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/source_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/source_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194822,7 +198291,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/source_ports.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/source_ports.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "source_ports.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194839,7 +198308,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/source_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194854,7 +198323,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/source_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194871,7 +198340,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -194879,7 +198348,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "source_ports.at:1" >"$at_check_line_file" + printf "%s\n" "source_ports.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/source_ports.at:1" fi echo "$!" > firewalld.pid @@ -194896,7 +198365,7 @@ at_fn_check_skip 99 "$at_srcdir/source_ports.at:1" fi sleep 1 done - $as_echo "source_ports.at:1" >"$at_check_line_file" + printf "%s\n" "source_ports.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/source_ports.at:1" @@ -194908,7 +198377,7 @@ at_fn_check_skip 99 "$at_srcdir/source_ports.at:1" { set +x -$as_echo "$at_srcdir/source_ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/source_ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194927,7 +198396,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/source_ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194946,7 +198415,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/source_ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194966,7 +198435,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -194985,7 +198454,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195004,7 +198473,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 4321/udp " +printf "%s\n" "$at_srcdir/source_ports.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 4321/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195023,7 +198492,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=udp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195042,7 +198511,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195061,7 +198530,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195080,7 +198549,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 4321/udp " +printf "%s\n" "$at_srcdir/source_ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 4321/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195099,7 +198568,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195119,7 +198588,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/source_ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195138,7 +198607,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/source_ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195158,7 +198627,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195177,7 +198646,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195196,7 +198665,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 4321/udp " +printf "%s\n" "$at_srcdir/source_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 4321/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195215,7 +198684,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195236,7 +198705,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/source_ports.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -195249,7 +198718,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_allow { tcp sport 1234 accept udp sport 1234 accept @@ -195278,7 +198747,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:44" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195297,7 +198766,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:45" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195316,7 +198785,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:46" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195335,7 +198804,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195354,7 +198823,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 4321/udp " +printf "%s\n" "$at_srcdir/source_ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 4321/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:48" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195373,7 +198842,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:49" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195392,7 +198861,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:50" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195411,7 +198880,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:51" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195430,7 +198899,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195449,7 +198918,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195468,7 +198937,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 4321/udp " +printf "%s\n" "$at_srcdir/source_ports.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 4321/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:54" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195487,7 +198956,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195508,7 +198977,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195527,7 +198996,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195546,7 +199015,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195565,7 +199034,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195584,7 +199053,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195603,7 +199072,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195622,7 +199091,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195643,7 +199112,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -195656,7 +199125,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_allow { udp sport 1234 accept sctp sport 4444 accept @@ -195683,7 +199152,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195702,7 +199171,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195721,7 +199190,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195740,7 +199209,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195759,7 +199228,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195778,7 +199247,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195797,7 +199266,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195816,7 +199285,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195837,7 +199306,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234 " +printf "%s\n" "$at_srcdir/source_ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:93" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195856,7 +199325,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234 " +printf "%s\n" "$at_srcdir/source_ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:94" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195875,7 +199344,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 123443/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 123443/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:95" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 123443/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195894,7 +199363,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 123443/tcp " +printf "%s\n" "$at_srcdir/source_ports.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 123443/tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:96" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 123443/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195913,7 +199382,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/bogus " +printf "%s\n" "$at_srcdir/source_ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/bogus " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:97" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/bogus ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195932,7 +199401,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/bogus " +printf "%s\n" "$at_srcdir/source_ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/bogus " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:98" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/bogus ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195952,7 +199421,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 accept' " +printf "%s\n" "$at_srcdir/source_ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:100" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195971,7 +199440,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 accept' " +printf "%s\n" "$at_srcdir/source_ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:101" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -195990,7 +199459,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:102" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196009,7 +199478,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' " +printf "%s\n" "$at_srcdir/source_ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:103" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196028,7 +199497,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' " +printf "%s\n" "$at_srcdir/source_ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:104" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196047,7 +199516,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' " +printf "%s\n" "$at_srcdir/source_ports.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:105" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196066,7 +199535,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "source_ports.at:107" >"$at_check_line_file" + printf "%s\n" "source_ports.at:107" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/source_ports.at:107" fi @@ -196077,13 +199546,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_188 -#AT_START_189 -at_fn_group_banner 189 'forward_ports.at:1' \ +#AT_STOP_197 +#AT_START_198 +at_fn_group_banner 198 'forward_ports.at:1' \ "forward ports" " " 7 at_xfail=no ( - $as_echo "189. $at_setup_line: testing $at_desc ..." + printf "%s\n" "198. $at_setup_line: testing $at_desc ..." $at_traceon @@ -196101,6 +199570,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -196117,7 +199587,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/forward_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196131,7 +199601,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/forward_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "forward_ports.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196147,7 +199617,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/forward_ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "forward_ports.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196211,7 +199681,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/forward_ports.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/forward_ports.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196302,7 +199772,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "forward_ports.at:1" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -196321,7 +199791,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/forward_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/forward_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196342,7 +199812,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/forward_ports.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/forward_ports.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "forward_ports.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196359,7 +199829,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/forward_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196374,7 +199844,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/forward_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196391,7 +199861,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -196399,7 +199869,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "forward_ports.at:1" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" fi echo "$!" > firewalld.pid @@ -196416,7 +199886,7 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" fi sleep 1 done - $as_echo "forward_ports.at:1" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" @@ -196428,7 +199898,7 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" { set +x -$as_echo "$at_srcdir/forward_ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/forward_ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196447,7 +199917,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196466,7 +199936,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196486,7 +199956,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196508,7 +199978,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +printf "%s\n" "$at_srcdir/forward_ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196529,7 +199999,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196548,7 +200018,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196570,7 +200040,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +printf "%s\n" "$at_srcdir/forward_ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196591,7 +200061,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196611,7 +200081,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/forward_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196630,7 +200100,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/forward_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196650,7 +200120,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196672,7 +200142,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +printf "%s\n" "$at_srcdir/forward_ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196693,7 +200163,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:24" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196714,7 +200184,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/forward_ports.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -196727,7 +200197,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PRE_policy_foobar_allow { meta nfproto ipv4 tcp dport 33 dnat ip to 10.10.10.10:33 meta nfproto ipv6 udp dport 44 dnat ip6 to [1234::4321]:4444 @@ -196755,7 +200225,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:41" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196774,7 +200244,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196796,7 +200266,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +printf "%s\n" "$at_srcdir/forward_ports.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:43" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196817,7 +200287,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:46" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196836,7 +200306,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196855,7 +200325,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:48" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196877,7 +200347,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +printf "%s\n" "$at_srcdir/forward_ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:49" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196898,7 +200368,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196919,7 +200389,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196938,7 +200408,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196957,7 +200427,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196976,7 +200446,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -196995,7 +200465,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197014,7 +200484,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197033,7 +200503,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197054,7 +200524,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -197067,7 +200537,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PRE_policy_foobar_allow { meta nfproto ipv4 tcp dport 33 dnat ip to 10.10.10.10:33 meta nfproto ipv4 udp dport 444 dnat ip to 10.44.44.44:4444 @@ -197094,7 +200564,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197113,7 +200583,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197132,7 +200602,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197151,7 +200621,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197170,7 +200640,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197189,7 +200659,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197208,7 +200678,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197227,7 +200697,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197248,7 +200718,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port 1234 " +printf "%s\n" "$at_srcdir/forward_ports.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port 1234 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:88" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197267,7 +200737,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port 1234 " +printf "%s\n" "$at_srcdir/forward_ports.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port 1234 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:89" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197286,7 +200756,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp " +printf "%s\n" "$at_srcdir/forward_ports.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:90" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197305,7 +200775,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp " +printf "%s\n" "$at_srcdir/forward_ports.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:91" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197324,7 +200794,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 " +printf "%s\n" "$at_srcdir/forward_ports.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:92" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197343,7 +200813,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 " +printf "%s\n" "$at_srcdir/forward_ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:93" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197362,7 +200832,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:94" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197381,7 +200851,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 " +printf "%s\n" "$at_srcdir/forward_ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:95" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197401,7 +200871,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' " +printf "%s\n" "$at_srcdir/forward_ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:97" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197420,7 +200890,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' " +printf "%s\n" "$at_srcdir/forward_ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:98" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197439,7 +200909,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' " +printf "%s\n" "$at_srcdir/forward_ports.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:99" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197458,7 +200928,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' " +printf "%s\n" "$at_srcdir/forward_ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:100" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197477,7 +200947,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' " +printf "%s\n" "$at_srcdir/forward_ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:101" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197496,7 +200966,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' " +printf "%s\n" "$at_srcdir/forward_ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:102" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197515,7 +200985,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' " +printf "%s\n" "$at_srcdir/forward_ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:103" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197534,7 +201004,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' " +printf "%s\n" "$at_srcdir/forward_ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:104" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197554,7 +201024,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:106" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197573,7 +201043,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:107" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197593,7 +201063,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:110" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197612,7 +201082,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:111" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197631,7 +201101,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:112" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197650,7 +201120,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:113" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197669,7 +201139,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:114" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197688,7 +201158,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:115" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197707,7 +201177,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:116" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197726,7 +201196,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:117" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197745,7 +201215,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197764,7 +201234,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:119" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197785,7 +201255,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/forward_ports.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -197798,7 +201268,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PRE_policy_foobar_allow { meta nfproto ipv4 tcp dport 22 dnat ip to 10.0.0.1:2222 meta nfproto ipv4 udp dport 444 dnat ip to 10.44.44.44:4444 @@ -197827,7 +201297,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:138" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197846,7 +201316,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:139" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197865,7 +201335,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:140" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197884,7 +201354,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:141" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197903,7 +201373,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:142" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197922,7 +201392,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:143" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197941,7 +201411,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:144" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197960,7 +201430,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:145" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197979,7 +201449,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:146" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -197998,7 +201468,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:147" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198018,7 +201488,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:150" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198037,7 +201507,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:151" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198056,7 +201526,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:152" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198075,7 +201545,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:153" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198094,7 +201564,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:154" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198113,7 +201583,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:155" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198133,7 +201603,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:157" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198152,7 +201622,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:158" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198171,7 +201641,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:159" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198190,7 +201660,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:160" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198210,7 +201680,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " +printf "%s\n" "$at_srcdir/forward_ports.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:163" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198229,7 +201699,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:164: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone internal " +printf "%s\n" "$at_srcdir/forward_ports.at:164: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone internal " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:164" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198248,7 +201718,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:165" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198267,7 +201737,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:166" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198286,7 +201756,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:167" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198305,7 +201775,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:168: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:168: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:168" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198324,7 +201794,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:169: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface foobar0 " +printf "%s\n" "$at_srcdir/forward_ports.at:169: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:169" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198343,7 +201813,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone internal " +printf "%s\n" "$at_srcdir/forward_ports.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone internal " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:170" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198362,7 +201832,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:171: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:171: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:171" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198381,7 +201851,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:172: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:172: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:172" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198400,7 +201870,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:173" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198419,7 +201889,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:174" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198439,7 +201909,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --remove-interface foobar0 " +printf "%s\n" "$at_srcdir/forward_ports.at:176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --remove-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:176" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198458,7 +201928,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-interface foobar0 " +printf "%s\n" "$at_srcdir/forward_ports.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:177" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198478,7 +201948,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/forward_ports.at:181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:181" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198497,7 +201967,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:182" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198516,7 +201986,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:183" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198535,7 +202005,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:184" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198554,7 +202024,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:185" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198573,7 +202043,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:186: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/forward_ports.at:186: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:186" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198592,7 +202062,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:187: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:187: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:187" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198611,7 +202081,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:188: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:188: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:188" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198630,7 +202100,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:189" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198649,7 +202119,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:190" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198670,7 +202140,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:191: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/forward_ports.at:191: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -198683,7 +202153,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PRE_policy_foobar_allow { meta nfproto ipv4 tcp dport 22 dnat ip to 10.0.0.1:2222 meta nfproto ipv4 udp dport 444 dnat ip to 10.44.44.44:4444 @@ -198707,7 +202177,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d'" != x"ignore"; then - $as_echo "forward_ports.at:204" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:204" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:204" fi @@ -198718,13 +202188,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_189 -#AT_START_190 -at_fn_group_banner 190 'forward_ports.at:207' \ +#AT_STOP_198 +#AT_START_199 +at_fn_group_banner 199 'forward_ports.at:207' \ "forward ports (OUTPUT)" " " 7 at_xfail=no ( - $as_echo "190. $at_setup_line: testing $at_desc ..." + printf "%s\n" "199. $at_setup_line: testing $at_desc ..." $at_traceon @@ -198742,6 +202212,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -198758,7 +202229,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/forward_ports.at:207: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:207: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:207" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198772,7 +202243,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/forward_ports.at:207: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:207: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "forward_ports.at:207" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198788,7 +202259,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:207: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/forward_ports.at:207: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "forward_ports.at:207" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198852,7 +202323,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/forward_ports.at:207: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/forward_ports.at:207: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:207" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198943,7 +202414,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "forward_ports.at:207" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:207" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -198962,7 +202433,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/forward_ports.at:207: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/forward_ports.at:207: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:207" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -198983,7 +202454,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/forward_ports.at:207: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/forward_ports.at:207: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "forward_ports.at:207" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199000,7 +202471,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:207: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/forward_ports.at:207: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:207" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199015,7 +202486,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:207: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/forward_ports.at:207: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:207" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199032,7 +202503,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -199040,7 +202511,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "forward_ports.at:207" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:207" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" fi echo "$!" > firewalld.pid @@ -199057,7 +202528,7 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" fi sleep 1 done - $as_echo "forward_ports.at:207" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:207" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" @@ -199069,7 +202540,7 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" { set +x -$as_echo "$at_srcdir/forward_ports.at:210: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/forward_ports.at:210: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:210" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199088,7 +202559,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone localhost " +printf "%s\n" "$at_srcdir/forward_ports.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone localhost " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:211" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199108,7 +202579,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/forward_ports.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199127,7 +202598,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/forward_ports.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:212" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199148,7 +202619,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:217" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199167,7 +202638,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:218" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199186,7 +202657,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:219: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:219: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:219" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199205,7 +202676,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:220" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199224,7 +202695,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:221" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199243,7 +202714,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:222" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199262,7 +202733,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:223" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199281,7 +202752,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:224" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199300,7 +202771,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:225" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199319,7 +202790,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:226" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199338,7 +202809,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:227" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199357,7 +202828,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:228" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199378,7 +202849,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/forward_ports.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUT_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -199391,7 +202862,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUT_policy_foobar_allow { meta nfproto ipv4 tcp dport 22 dnat ip to 10.0.0.1:2222 meta nfproto ipv4 udp dport 444 dnat ip to 10.44.44.44:4444 @@ -199416,7 +202887,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:242" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199435,7 +202906,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:243" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199454,7 +202925,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:244" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199473,7 +202944,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone ANY " +printf "%s\n" "$at_srcdir/forward_ports.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:245" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199493,7 +202964,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone localhost --add-source 127.0.0.0/8 " +printf "%s\n" "$at_srcdir/forward_ports.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone localhost --add-source 127.0.0.0/8 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:250" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone localhost --add-source 127.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199512,7 +202983,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:251" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199531,7 +203002,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone localhost " +printf "%s\n" "$at_srcdir/forward_ports.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone localhost " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:252" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199550,7 +203021,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:253" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199569,7 +203040,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:254: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:254: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:254" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199588,7 +203059,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:255" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199607,7 +203078,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:256" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199626,7 +203097,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone localhost --add-source 127.0.0.0/8 " +printf "%s\n" "$at_srcdir/forward_ports.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone localhost --add-source 127.0.0.0/8 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:257" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone localhost --add-source 127.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199645,7 +203116,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:258" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199664,7 +203135,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone localhost " +printf "%s\n" "$at_srcdir/forward_ports.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone localhost " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:259" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199683,7 +203154,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +printf "%s\n" "$at_srcdir/forward_ports.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:260" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199702,7 +203173,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +printf "%s\n" "$at_srcdir/forward_ports.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:261" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199721,7 +203192,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +printf "%s\n" "$at_srcdir/forward_ports.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:262" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199740,7 +203211,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +printf "%s\n" "$at_srcdir/forward_ports.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:263" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199761,7 +203232,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/forward_ports.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_OUT_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -199774,7 +203245,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_OUT_policy_foobar_allow { meta nfproto ipv4 tcp dport 22 dnat ip to 10.0.0.1:2222 meta nfproto ipv4 udp dport 444 dnat ip to 10.44.44.44:4444 @@ -199799,7 +203270,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone localhost --remove-source 127.0.0.0/8 " +printf "%s\n" "$at_srcdir/forward_ports.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone localhost --remove-source 127.0.0.0/8 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:277" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone localhost --remove-source 127.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199818,7 +203289,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:278" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199837,7 +203308,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone localhost " +printf "%s\n" "$at_srcdir/forward_ports.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone localhost " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:279" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199856,7 +203327,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone localhost --remove-source 127.0.0.0/8 " +printf "%s\n" "$at_srcdir/forward_ports.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone localhost --remove-source 127.0.0.0/8 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:280" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone localhost --remove-source 127.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199875,7 +203346,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST " +printf "%s\n" "$at_srcdir/forward_ports.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:281" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199894,7 +203365,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone localhost " +printf "%s\n" "$at_srcdir/forward_ports.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone localhost " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:282" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199913,7 +203384,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d'" != x"ignore"; then - $as_echo "forward_ports.at:284" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:284" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:284" fi @@ -199924,13 +203395,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_190 -#AT_START_191 -at_fn_group_banner 191 'forward_ports.at:287' \ +#AT_STOP_199 +#AT_START_200 +at_fn_group_banner 200 'forward_ports.at:287' \ "forward ports - logging and limiting" " " 7 at_xfail=no ( - $as_echo "191. $at_setup_line: testing $at_desc ..." + printf "%s\n" "200. $at_setup_line: testing $at_desc ..." $at_traceon @@ -199948,6 +203419,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -199964,7 +203436,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/forward_ports.at:287: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:287: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:287" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199978,7 +203450,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/forward_ports.at:287: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/forward_ports.at:287: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "forward_ports.at:287" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -199994,7 +203466,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:287: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/forward_ports.at:287: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "forward_ports.at:287" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200058,7 +203530,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/forward_ports.at:287: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/forward_ports.at:287: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:287" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200149,7 +203621,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "forward_ports.at:287" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:287" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/forward_ports.at:287" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -200168,7 +203640,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/forward_ports.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/forward_ports.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:287" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200189,7 +203661,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/forward_ports.at:287: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/forward_ports.at:287: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "forward_ports.at:287" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200206,7 +203678,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/forward_ports.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:287" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200221,7 +203693,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/forward_ports.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:287" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200238,7 +203710,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -200246,7 +203718,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "forward_ports.at:287" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:287" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/forward_ports.at:287" fi echo "$!" > firewalld.pid @@ -200263,7 +203735,7 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:287" fi sleep 1 done - $as_echo "forward_ports.at:287" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:287" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:287" @@ -200275,7 +203747,7 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:287" { set +x -$as_echo "$at_srcdir/forward_ports.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix=\"forward-port: \" level=\"info\" limit value=\"1/m\"' " +printf "%s\n" "$at_srcdir/forward_ports.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix=\"forward-port: \" level=\"info\" limit value=\"1/m\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:290" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix="forward-port: " level="info" limit value="1/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200294,7 +203766,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix=\"forward-port: \" level=\"info\" limit value=\"1/m\"' " +printf "%s\n" "$at_srcdir/forward_ports.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix=\"forward-port: \" level=\"info\" limit value=\"1/m\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:291" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix="forward-port: " level="info" limit value="1/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200316,7 +203788,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix=\"forward-port: \" queue-size=10 limit value=\"1/m\"' " +printf "%s\n" "$at_srcdir/forward_ports.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix=\"forward-port: \" queue-size=10 limit value=\"1/m\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:292" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix="forward-port: " queue-size=10 limit value="1/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200335,7 +203807,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix=\"forward-port: \" queue-size=10 limit value=\"1/m\"' " +printf "%s\n" "$at_srcdir/forward_ports.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix=\"forward-port: \" queue-size=10 limit value=\"1/m\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:292" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix="forward-port: " queue-size=10 limit value="1/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200359,7 +203831,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/forward_ports.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -200372,7 +203844,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PRE_public_log { meta nfproto ipv4 tcp dport 33 limit rate 1/minute log prefix \"forward-port: \" level info meta nfproto ipv6 udp dport 44 limit rate 1/minute log prefix \"forward-port: \" group 0 queue-threshold 10 @@ -200396,7 +203868,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/forward_ports.at:306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -200409,7 +203881,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_PRE_public_allow { meta nfproto ipv4 tcp dport 33 dnat ip to 10.10.10.10:33 meta nfproto ipv6 udp dport 44 dnat ip6 to [1234::4321]:4444 @@ -200445,7 +203917,7 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "forward_ports.at:330" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:330" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:330" fi @@ -200456,13 +203928,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_191 -#AT_START_192 -at_fn_group_banner 192 'masquerade.at:1' \ +#AT_STOP_200 +#AT_START_201 +at_fn_group_banner 201 'masquerade.at:1' \ "masquerade" " " 7 at_xfail=no ( - $as_echo "192. $at_setup_line: testing $at_desc ..." + printf "%s\n" "201. $at_setup_line: testing $at_desc ..." $at_traceon @@ -200480,6 +203952,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -200496,7 +203969,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/masquerade.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/masquerade.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200510,7 +203983,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/masquerade.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/masquerade.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "masquerade.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200526,7 +203999,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/masquerade.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "masquerade.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200590,7 +204063,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/masquerade.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/masquerade.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200681,7 +204154,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "masquerade.at:1" >"$at_check_line_file" + printf "%s\n" "masquerade.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -200700,7 +204173,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/masquerade.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/masquerade.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200721,7 +204194,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/masquerade.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/masquerade.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "masquerade.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200738,7 +204211,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/masquerade.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200753,7 +204226,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/masquerade.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200770,7 +204243,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -200778,7 +204251,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "masquerade.at:1" >"$at_check_line_file" + printf "%s\n" "masquerade.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" fi echo "$!" > firewalld.pid @@ -200795,7 +204268,7 @@ at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" fi sleep 1 done - $as_echo "masquerade.at:1" >"$at_check_line_file" + printf "%s\n" "masquerade.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" @@ -200807,7 +204280,7 @@ at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" { set +x -$as_echo "$at_srcdir/masquerade.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 " +printf "%s\n" "$at_srcdir/masquerade.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200827,7 +204300,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/masquerade.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200846,7 +204319,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/masquerade.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200865,7 +204338,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " +printf "%s\n" "$at_srcdir/masquerade.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200885,7 +204358,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200904,7 +204377,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200923,7 +204396,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200942,7 +204415,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200962,7 +204435,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/masquerade.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -200981,7 +204454,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/masquerade.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201001,7 +204474,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201020,7 +204493,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201041,7 +204514,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/masquerade.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POST_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -201054,7 +204527,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POST_policy_foobar_allow { meta nfproto ipv4 oifname != \"lo\" masquerade ip saddr 10.10.10.0/24 oifname != \"lo\" masquerade @@ -201081,7 +204554,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201100,7 +204573,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:33" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201119,7 +204592,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:34" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201138,7 +204611,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:35" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201157,7 +204630,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:36" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201176,7 +204649,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:37" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201195,7 +204668,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:38" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201214,7 +204687,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:39" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201235,7 +204708,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201254,7 +204727,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201273,7 +204746,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201292,7 +204765,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201311,7 +204784,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201330,7 +204803,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201349,7 +204822,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201370,7 +204843,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld nat_POST_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -201383,7 +204856,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain nat_POST_policy_foobar_allow { meta nfproto ipv4 oifname != \"lo\" masquerade ip6 saddr 1234::/64 oifname != \"lo\" masquerade @@ -201410,7 +204883,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201429,7 +204902,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201448,7 +204921,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201467,7 +204940,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201488,7 +204961,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_host " +printf "%s\n" "$at_srcdir/masquerade.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_host " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_host ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201507,7 +204980,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-ingress-zone internal " +printf "%s\n" "$at_srcdir/masquerade.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-ingress-zone internal " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201526,7 +204999,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/masquerade.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201546,7 +205019,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/masquerade.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:74" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201565,7 +205038,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/masquerade.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:74" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201585,7 +205058,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:75" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201604,7 +205077,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:76" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201623,7 +205096,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:77: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_host --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:77: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_host --add-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:77" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_host --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201642,7 +205115,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:78" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201661,7 +205134,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-ingress-zone internal " +printf "%s\n" "$at_srcdir/masquerade.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-ingress-zone internal " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:79" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201680,7 +205153,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:80: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-egress-zone HOST " +printf "%s\n" "$at_srcdir/masquerade.at:80: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:80" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201700,7 +205173,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_int_to_pub " +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_int_to_pub " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_int_to_pub ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201719,7 +205192,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface foobar1 " +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface foobar1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201738,7 +205211,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-ingress-zone internal " +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-ingress-zone internal " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201757,7 +205230,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-egress-zone public " +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201777,7 +205250,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201796,7 +205269,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201816,7 +205289,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201835,7 +205308,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201854,7 +205327,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201873,7 +205346,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201892,7 +205365,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-interface foobar1 " +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-interface foobar1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201913,7 +205386,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/masquerade.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:112" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201933,7 +205406,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/masquerade.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:113" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201952,7 +205425,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/masquerade.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:113" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201972,7 +205445,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:114" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -201991,7 +205464,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:115" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202010,7 +205483,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/masquerade.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:116" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202030,7 +205503,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202049,7 +205522,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface foobar1 " +printf "%s\n" "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface foobar1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202069,7 +205542,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202088,7 +205561,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202108,7 +205581,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202127,7 +205600,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202146,7 +205619,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-masquerade " +printf "%s\n" "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-masquerade " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202165,7 +205638,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +printf "%s\n" "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202184,7 +205657,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202203,7 +205676,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-interface foobar1 " +printf "%s\n" "$at_srcdir/masquerade.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-interface foobar1 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202223,7 +205696,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_ZONE:/d'" != x"ignore"; then - $as_echo "masquerade.at:132" >"$at_check_line_file" + printf "%s\n" "masquerade.at:132" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ZONE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/masquerade.at:132" fi @@ -202234,13 +205707,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_192 -#AT_START_193 -at_fn_group_banner 193 'protocols.at:1' \ +#AT_STOP_201 +#AT_START_202 +at_fn_group_banner 202 'protocols.at:1' \ "protocols" " " 7 at_xfail=no ( - $as_echo "193. $at_setup_line: testing $at_desc ..." + printf "%s\n" "202. $at_setup_line: testing $at_desc ..." $at_traceon @@ -202258,6 +205731,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -202274,7 +205748,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/protocols.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/protocols.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202288,7 +205762,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/protocols.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/protocols.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "protocols.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202304,7 +205778,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/protocols.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "protocols.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202368,7 +205842,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/protocols.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/protocols.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202459,7 +205933,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "protocols.at:1" >"$at_check_line_file" + printf "%s\n" "protocols.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/protocols.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -202478,7 +205952,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/protocols.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/protocols.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202499,7 +205973,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/protocols.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/protocols.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "protocols.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202516,7 +205990,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/protocols.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202531,7 +206005,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/protocols.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202548,7 +206022,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -202556,7 +206030,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "protocols.at:1" >"$at_check_line_file" + printf "%s\n" "protocols.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/protocols.at:1" fi echo "$!" > firewalld.pid @@ -202573,7 +206047,7 @@ at_fn_check_skip 99 "$at_srcdir/protocols.at:1" fi sleep 1 done - $as_echo "protocols.at:1" >"$at_check_line_file" + printf "%s\n" "protocols.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/protocols.at:1" @@ -202585,7 +206059,7 @@ at_fn_check_skip 99 "$at_srcdir/protocols.at:1" { set +x -$as_echo "$at_srcdir/protocols.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/protocols.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202604,7 +206078,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/protocols.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202623,7 +206097,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/protocols.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202643,7 +206117,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202662,7 +206136,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dccp " +printf "%s\n" "$at_srcdir/protocols.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202681,7 +206155,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol gre " +printf "%s\n" "$at_srcdir/protocols.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202700,7 +206174,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202719,7 +206193,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202738,7 +206212,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp " +printf "%s\n" "$at_srcdir/protocols.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202757,7 +206231,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol gre " +printf "%s\n" "$at_srcdir/protocols.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202776,7 +206250,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202796,7 +206270,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/protocols.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202815,7 +206289,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/protocols.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202835,7 +206309,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202854,7 +206328,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp " +printf "%s\n" "$at_srcdir/protocols.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202873,7 +206347,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol gre " +printf "%s\n" "$at_srcdir/protocols.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202892,7 +206366,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202913,7 +206387,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/protocols.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -202926,7 +206400,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_allow { meta l4proto sctp accept meta l4proto ipv6-icmp accept @@ -202955,7 +206429,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:44" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202974,7 +206448,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:45" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -202993,7 +206467,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp " +printf "%s\n" "$at_srcdir/protocols.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:46" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203012,7 +206486,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol dccp " +printf "%s\n" "$at_srcdir/protocols.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203031,7 +206505,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol gre " +printf "%s\n" "$at_srcdir/protocols.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:48" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203050,7 +206524,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:49" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203069,7 +206543,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:50" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203088,7 +206562,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:51" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203107,7 +206581,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp " +printf "%s\n" "$at_srcdir/protocols.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203126,7 +206600,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol dccp " +printf "%s\n" "$at_srcdir/protocols.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol dccp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203145,7 +206619,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol gre " +printf "%s\n" "$at_srcdir/protocols.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol gre " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:54" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203164,7 +206638,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203185,7 +206659,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203204,7 +206678,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203223,7 +206697,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203242,7 +206716,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203261,7 +206735,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203280,7 +206754,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203299,7 +206773,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203320,7 +206794,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -203333,7 +206807,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_allow { meta l4proto ipv6-icmp accept meta l4proto sctp accept @@ -203360,7 +206834,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203379,7 +206853,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203398,7 +206872,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203417,7 +206891,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203436,7 +206910,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203455,7 +206929,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203474,7 +206948,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203493,7 +206967,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203514,7 +206988,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dummy " +printf "%s\n" "$at_srcdir/protocols.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:93" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203533,7 +207007,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-protocol dummy " +printf "%s\n" "$at_srcdir/protocols.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-protocol dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:94" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-protocol dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203552,7 +207026,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value=\"dummy\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value=\"dummy\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:95" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value="dummy" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203571,7 +207045,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value=\"dummy\" accept' " +printf "%s\n" "$at_srcdir/protocols.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value=\"dummy\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:96" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value="dummy" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203590,7 +207064,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_PROTOCOL: dummy/d'" != x"ignore"; then - $as_echo "protocols.at:98" >"$at_check_line_file" + printf "%s\n" "protocols.at:98" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_PROTOCOL: dummy/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/protocols.at:98" fi @@ -203601,13 +207075,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_193 -#AT_START_194 -at_fn_group_banner 194 'rich_rules.at:1' \ +#AT_STOP_202 +#AT_START_203 +at_fn_group_banner 203 'rich_rules.at:1' \ "rich rules" " " 7 at_xfail=no ( - $as_echo "194. $at_setup_line: testing $at_desc ..." + printf "%s\n" "203. $at_setup_line: testing $at_desc ..." $at_traceon @@ -203625,6 +207099,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -203641,7 +207116,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rich_rules.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_rules.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203655,7 +207130,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rich_rules.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_rules.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rich_rules.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203671,7 +207146,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rich_rules.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rich_rules.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203735,7 +207210,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rich_rules.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rich_rules.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203826,7 +207301,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rich_rules.at:1" >"$at_check_line_file" + printf "%s\n" "rich_rules.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -203845,7 +207320,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rich_rules.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rich_rules.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203866,7 +207341,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rich_rules.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rich_rules.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rich_rules.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203883,7 +207358,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rich_rules.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203898,7 +207373,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rich_rules.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203915,7 +207390,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -203923,7 +207398,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rich_rules.at:1" >"$at_check_line_file" + printf "%s\n" "rich_rules.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" fi echo "$!" > firewalld.pid @@ -203940,7 +207415,7 @@ at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" fi sleep 1 done - $as_echo "rich_rules.at:1" >"$at_check_line_file" + printf "%s\n" "rich_rules.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" @@ -203952,7 +207427,7 @@ at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" { set +x -$as_echo "$at_srcdir/rich_rules.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/rich_rules.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203971,7 +207446,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/rich_rules.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -203990,7 +207465,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_rules.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204010,7 +207485,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rich_rules.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204029,7 +207504,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rich_rules.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204052,7 +207527,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -204065,7 +207540,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar { jump filter_IN_policy_foobar_pre jump filter_IN_policy_foobar_log @@ -204096,7 +207571,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.10 accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.10 accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.10 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204115,7 +207590,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 log accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 log accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:43" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 log accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204134,7 +207609,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 audit accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 audit accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:44" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204153,7 +207628,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.12 reject' " +printf "%s\n" "$at_srcdir/rich_rules.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.12 reject' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:45" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.12 reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204172,7 +207647,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.13 drop' " +printf "%s\n" "$at_srcdir/rich_rules.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.13 drop' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:46" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.13 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204191,7 +207666,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.10.10.14 accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.10.10.14 accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.10.10.14 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204210,7 +207685,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=1 source address=10.10.10.15 accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=1 source address=10.10.10.15 accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:48" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=1 source address=10.10.10.15 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204230,7 +207705,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=\"-100\" family=\"ipv4\" source address=\"10.0.0.10\" service name=\"bogusservice\" accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=\"-100\" family=\"ipv4\" source address=\"10.0.0.10\" service name=\"bogusservice\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:51" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority="-100" family="ipv4" source address="10.0.0.10" service name="bogusservice" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204251,7 +207726,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rich_rules.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204270,7 +207745,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rich_rules.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204292,7 +207767,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -204305,7 +207780,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_pre { ip saddr 10.10.10.14 accept } @@ -204330,7 +207805,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -204343,10 +207818,10 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_log { -ip saddr 10.10.10.11 log ip saddr 10.10.10.11 log level audit +ip saddr 10.10.10.11 log } } " | \ @@ -204369,7 +207844,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -204382,7 +207857,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_deny { ip saddr 10.10.10.12 reject with icmp port-unreachable ip saddr 10.10.10.13 drop @@ -204408,7 +207883,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -204421,7 +207896,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_allow { ip saddr 10.10.10.10 accept ip saddr 10.10.10.11 accept @@ -204447,7 +207922,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -204460,7 +207935,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_post { ip saddr 10.10.10.15 accept } @@ -204484,7 +207959,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.20.20.20 accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.20.20.20 accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:114" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.20.20.20 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204503,7 +207978,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-2 destination address=10.20.20.21 accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-2 destination address=10.20.20.21 accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:115" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-2 destination address=10.20.20.21 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204522,7 +207997,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-3 source address=10.20.20.22 destination address=10.20.20.23 drop' " +printf "%s\n" "$at_srcdir/rich_rules.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-3 source address=10.20.20.22 destination address=10.20.20.23 drop' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:116" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-3 source address=10.20.20.22 destination address=10.20.20.23 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204541,7 +208016,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv6 priority=-4 source address=1234::4321 destination address=1234::4444 drop' " +printf "%s\n" "$at_srcdir/rich_rules.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv6 priority=-4 source address=1234::4321 destination address=1234::4444 drop' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:117" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv6 priority=-4 source address=1234::4321 destination address=1234::4444 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204561,7 +208036,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rich_rules.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204580,7 +208055,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rich_rules.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204602,7 +208077,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -204615,7 +208090,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_pre { ip6 daddr 1234::4444 ip6 saddr 1234::4321 drop ip daddr 10.20.20.23 ip saddr 10.20.20.22 drop @@ -204646,7 +208121,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 icmp-type name=\"neighbour-advertisement\" accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 icmp-type name=\"neighbour-advertisement\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:142" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 icmp-type name="neighbour-advertisement" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204665,7 +208140,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 icmp-type name=\"echo-request\" accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 icmp-type name=\"echo-request\" accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:143" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 icmp-type name="echo-request" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204685,7 +208160,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rich_rules.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:144" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204704,7 +208179,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rich_rules.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:144" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204726,7 +208201,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -204739,16 +208214,16 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_pre { ip6 daddr 1234::4444 ip6 saddr 1234::4321 drop ip daddr 10.20.20.23 ip saddr 10.20.20.22 drop -ip daddr 10.20.20.21 accept icmp echo-request accept icmpv6 echo-request accept +ip daddr 10.20.20.21 accept +icmpv6 nd-neighbor-advert accept ip saddr 10.10.10.14 accept ip saddr 10.20.20.20 accept -icmpv6 nd-neighbor-advert accept } } " | \ @@ -204773,7 +208248,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:172: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_rules.at:172: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:172" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204793,7 +208268,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_rules.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:177" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204812,7 +208287,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:178: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " +printf "%s\n" "$at_srcdir/rich_rules.at:178: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:178" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204831,7 +208306,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:179: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " +printf "%s\n" "$at_srcdir/rich_rules.at:179: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:179" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204851,7 +208326,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rich_rules.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:180" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204870,7 +208345,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rich_rules.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:180" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204892,7 +208367,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PRE_policy_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -204905,7 +208380,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PRE_policy_foobar_pre { mark set mark & 0x0000ff00 ^ 0x00006600 mark set 0x000004d2 @@ -204932,7 +208407,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_rules.at:197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:197" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204952,7 +208427,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " +printf "%s\n" "$at_srcdir/rich_rules.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:202" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204972,7 +208447,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rich_rules.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:203" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -204991,7 +208466,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rich_rules.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:203" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205013,7 +208488,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:204: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:204: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PRE_policy_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -205026,7 +208501,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PRE_policy_foobar_pre { mark set mark & 0x0000ff00 ^ 0x00006600 mark set 0x000004d2 @@ -205053,7 +208528,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " +printf "%s\n" "$at_srcdir/rich_rules.at:220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:220" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205073,7 +208548,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/rich_rules.at:225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:225" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205092,7 +208567,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " +printf "%s\n" "$at_srcdir/rich_rules.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:226" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205112,7 +208587,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rich_rules.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:227" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205131,7 +208606,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rich_rules.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:227" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205153,7 +208628,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld mangle_PRE_policy_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -205166,7 +208641,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain mangle_PRE_policy_foobar_pre { mark set mark & 0x0000ff00 ^ 0x00006600 mark set 0x000004d2 @@ -205193,7 +208668,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public " +printf "%s\n" "$at_srcdir/rich_rules.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:244" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205212,7 +208687,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/rich_rules.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:245" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205231,7 +208706,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public " +printf "%s\n" "$at_srcdir/rich_rules.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:246" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205250,7 +208725,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:247: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source 10.10.10.0/24 " +printf "%s\n" "$at_srcdir/rich_rules.at:247: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source 10.10.10.0/24 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:247" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205269,7 +208744,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' " +printf "%s\n" "$at_srcdir/rich_rules.at:248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:248" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205288,7 +208763,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' " +printf "%s\n" "$at_srcdir/rich_rules.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:249" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205307,7 +208782,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " +printf "%s\n" "$at_srcdir/rich_rules.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:250" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205326,7 +208801,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " +printf "%s\n" "$at_srcdir/rich_rules.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:251" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205346,7 +208821,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 " +printf "%s\n" "$at_srcdir/rich_rules.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:256" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205365,7 +208840,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " +printf "%s\n" "$at_srcdir/rich_rules.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:257" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205384,7 +208859,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " +printf "%s\n" "$at_srcdir/rich_rules.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:258" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205403,7 +208878,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface foobar0 " +printf "%s\n" "$at_srcdir/rich_rules.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:259" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205422,7 +208897,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public " +printf "%s\n" "$at_srcdir/rich_rules.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:260" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205441,7 +208916,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-interface foobar0 " +printf "%s\n" "$at_srcdir/rich_rules.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:261" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205460,7 +208935,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone public " +printf "%s\n" "$at_srcdir/rich_rules.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:262" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205479,7 +208954,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " +printf "%s\n" "$at_srcdir/rich_rules.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:263" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205498,7 +208973,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface foobar0 " +printf "%s\n" "$at_srcdir/rich_rules.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:264" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205517,7 +208992,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:265: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public " +printf "%s\n" "$at_srcdir/rich_rules.at:265: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:265" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205537,7 +209012,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_rules.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:267" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205557,7 +209032,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " +printf "%s\n" "$at_srcdir/rich_rules.at:271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:271" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 log prefix="LOG: " level="warning"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205576,7 +209051,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:272" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205596,7 +209071,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rich_rules.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:273" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205615,7 +209090,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rich_rules.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:273" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205637,7 +209112,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -205650,7 +209125,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_post { ip saddr 10.10.10.15 accept log prefix \"LOG: \" @@ -205679,7 +209154,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " +printf "%s\n" "$at_srcdir/rich_rules.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:295" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32000 log prefix="LOG: " level="warning"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205698,7 +209173,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32001 audit accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32001 audit accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:296" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32001 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205718,7 +209193,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rich_rules.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:297" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205737,7 +209212,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rich_rules.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:297" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205758,7 +209233,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 nflog prefix=\"NFLOG: \" queue-size=10' " +printf "%s\n" "$at_srcdir/rich_rules.at:301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 nflog prefix=\"NFLOG: \" queue-size=10' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:301" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 nflog prefix="NFLOG: " queue-size=10' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205777,7 +209252,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' " +printf "%s\n" "$at_srcdir/rich_rules.at:302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:302" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205797,7 +209272,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rich_rules.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:303" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205816,7 +209291,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rich_rules.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:303" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205838,7 +209313,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_rules.at:304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -205851,7 +209326,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_post { ip saddr 10.10.10.15 accept log prefix \"NFLOG: \" group 0 queue-threshold 10 @@ -205880,7 +209355,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_ZONE:/d' -e "/ERROR: INVALID_SERVICE: Policy 'foobar': 'bogusservice' not among existing services/d"" != x"ignore"; then - $as_echo "rich_rules.at:326" >"$at_check_line_file" + printf "%s\n" "rich_rules.at:326" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ZONE:/d' -e "/ERROR: INVALID_SERVICE: Policy 'foobar': 'bogusservice' not among existing services/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rich_rules.at:326" fi @@ -205891,13 +209366,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_194 -#AT_START_195 -at_fn_group_banner 195 'icmp_blocks.at:1' \ +#AT_STOP_203 +#AT_START_204 +at_fn_group_banner 204 'icmp_blocks.at:1' \ "ICMP blocks" " " 7 at_xfail=no ( - $as_echo "195. $at_setup_line: testing $at_desc ..." + printf "%s\n" "204. $at_setup_line: testing $at_desc ..." $at_traceon @@ -205915,6 +209390,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -205931,7 +209407,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205945,7 +209421,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "icmp_blocks.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -205961,7 +209437,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "icmp_blocks.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206025,7 +209501,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206116,7 +209592,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "icmp_blocks.at:1" >"$at_check_line_file" + printf "%s\n" "icmp_blocks.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -206135,7 +209611,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206156,7 +209632,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "icmp_blocks.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206173,7 +209649,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206188,7 +209664,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206205,7 +209681,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -206213,7 +209689,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "icmp_blocks.at:1" >"$at_check_line_file" + printf "%s\n" "icmp_blocks.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" fi echo "$!" > firewalld.pid @@ -206230,7 +209706,7 @@ at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" fi sleep 1 done - $as_echo "icmp_blocks.at:1" >"$at_check_line_file" + printf "%s\n" "icmp_blocks.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" @@ -206242,7 +209718,7 @@ at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" { set +x -$as_echo "$at_srcdir/icmp_blocks.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +printf "%s\n" "$at_srcdir/icmp_blocks.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206261,7 +209737,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/icmp_blocks.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206280,7 +209756,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/icmp_blocks.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206300,7 +209776,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206319,7 +209795,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-reply " +printf "%s\n" "$at_srcdir/icmp_blocks.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-reply " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206338,7 +209814,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block redirect " +printf "%s\n" "$at_srcdir/icmp_blocks.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206360,7 +209836,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206381,7 +209857,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206400,7 +209876,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply " +printf "%s\n" "$at_srcdir/icmp_blocks.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206419,7 +209895,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block redirect " +printf "%s\n" "$at_srcdir/icmp_blocks.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206441,7 +209917,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:18" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206463,7 +209939,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/icmp_blocks.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206482,7 +209958,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/icmp_blocks.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206502,7 +209978,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:22" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206521,7 +209997,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply " +printf "%s\n" "$at_srcdir/icmp_blocks.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:23" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206540,7 +210016,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block redirect " +printf "%s\n" "$at_srcdir/icmp_blocks.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:24" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206562,7 +210038,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206585,7 +210061,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/icmp_blocks.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -206598,7 +210074,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_allow { } } @@ -206619,7 +210095,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/icmp_blocks.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -206632,7 +210108,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_deny { icmp echo-request reject with icmpx admin-prohibited icmpv6 echo-request reject with icmpx admin-prohibited @@ -206670,7 +210146,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:62" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206689,7 +210165,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:63" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206708,7 +210184,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply " +printf "%s\n" "$at_srcdir/icmp_blocks.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:64" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206727,7 +210203,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-reply " +printf "%s\n" "$at_srcdir/icmp_blocks.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-reply " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:65" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206746,7 +210222,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block redirect " +printf "%s\n" "$at_srcdir/icmp_blocks.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:66" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206768,7 +210244,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:67" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206787,7 +210263,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:67" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206808,7 +210284,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:71" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206827,7 +210303,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:72" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206846,7 +210322,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply " +printf "%s\n" "$at_srcdir/icmp_blocks.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:73" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206865,7 +210341,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-reply " +printf "%s\n" "$at_srcdir/icmp_blocks.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-reply " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:74" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206884,7 +210360,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block redirect " +printf "%s\n" "$at_srcdir/icmp_blocks.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block redirect " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:75" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206906,7 +210382,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:76" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206925,7 +210401,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:76" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206948,7 +210424,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206970,7 +210446,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -206991,7 +210467,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207013,7 +210489,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207034,7 +210510,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207053,7 +210529,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207075,7 +210551,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207098,7 +210574,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -207111,7 +210587,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_allow { } } @@ -207132,7 +210608,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -207145,7 +210621,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_foobar_deny { icmp echo-request reject with icmpx admin-prohibited icmpv6 echo-request reject with icmpx admin-prohibited @@ -207179,7 +210655,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207201,7 +210677,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207222,7 +210698,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207244,7 +210720,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207265,7 +210741,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207287,7 +210763,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207308,7 +210784,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207330,7 +210806,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207353,7 +210829,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block dummy " +printf "%s\n" "$at_srcdir/icmp_blocks.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:141" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207372,7 +210848,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block dummy " +printf "%s\n" "$at_srcdir/icmp_blocks.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block dummy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:142" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207394,7 +210870,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"dummy\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"dummy\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:143" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="dummy"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207413,7 +210889,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"dummy\"' " +printf "%s\n" "$at_srcdir/icmp_blocks.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"dummy\"' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:143" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="dummy"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207434,7 +210910,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_ICMPTYPE:/d'" != x"ignore"; then - $as_echo "icmp_blocks.at:148" >"$at_check_line_file" + printf "%s\n" "icmp_blocks.at:148" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ICMPTYPE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:148" fi @@ -207445,13 +210921,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_195 -#AT_START_196 -at_fn_group_banner 196 'rich_tcp_mss_clamp.at:5' \ +#AT_STOP_204 +#AT_START_205 +at_fn_group_banner 205 'rich_tcp_mss_clamp.at:5' \ "tcp-mss-clamp" " " 7 at_xfail=no ( - $as_echo "196. $at_setup_line: testing $at_desc ..." + printf "%s\n" "205. $at_setup_line: testing $at_desc ..." $at_traceon @@ -207469,6 +210945,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -207485,7 +210962,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:5" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207499,7 +210976,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:5" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207515,7 +210992,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:5" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207579,7 +211056,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:5" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207670,7 +211147,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" + printf "%s\n" "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -207689,7 +211166,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207710,7 +211187,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:5" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207727,7 +211204,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207742,7 +211219,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207759,7 +211236,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -207767,7 +211244,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" + printf "%s\n" "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" fi echo "$!" > firewalld.pid @@ -207784,7 +211261,7 @@ at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" fi sleep 1 done - $as_echo "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" + printf "%s\n" "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" @@ -207793,7 +211270,7 @@ at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:8: mkdir -p ./zones" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:8: mkdir -p ./zones" at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:8" ( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207821,7 +211298,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207852,7 +211329,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207883,7 +211360,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:44" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -207891,7 +211368,7 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:44" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -207899,23 +211376,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:44: grep \"WARNING: INVALID_RULE: thisdoesnotexist: rule tcp-mss-clamp value=\"thisdoesnotexist\" -\" ./firewalld.log" -at_fn_check_prepare_notrace 'an embedded newline' "rich_tcp_mss_clamp.at:44" -( $at_check_trace; grep "WARNING: INVALID_RULE: thisdoesnotexist: rule tcp-mss-clamp value="thisdoesnotexist" -" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:44" -$at_failed && at_fn_log_failure -$at_traceon; } - - - cat >./zones/tcp.xml <<'_ATEOF' @@ -207931,15 +211391,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:62" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:56" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:62" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:56" $at_failed && at_fn_log_failure $at_traceon; } @@ -207961,15 +211421,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:75" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:69" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:75" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:69" $at_failed && at_fn_log_failure $at_traceon; } @@ -207983,28 +211443,28 @@ $at_traceon; } fi { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:76: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" "rich_tcp_mss_clamp.at:76" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:70: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" "rich_tcp_mss_clamp.at:70" ( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:76" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:70" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:77: cat ./zones/tcp.xml" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:77" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:71: cat ./zones/tcp.xml" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:71" ( $at_check_trace; cat ./zones/tcp.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " @@ -208014,21 +211474,21 @@ echo >>"$at_stdout"; $as_echo " " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:77" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:71" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:89: rm ./zones/tcp.xml" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:89" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:83: rm ./zones/tcp.xml" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:83" ( $at_check_trace; rm ./zones/tcp.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:89" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:83" $at_failed && at_fn_log_failure $at_traceon; } @@ -208036,15 +211496,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:90" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:84" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:90" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:84" $at_failed && at_fn_log_failure $at_traceon; } @@ -208055,15 +211515,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:91" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:85" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:91" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:85" $at_failed && at_fn_log_failure $at_traceon; } @@ -208071,14 +211531,14 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:94: cat ./zones/public.xml" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:94" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:88: cat ./zones/public.xml" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:88" ( $at_check_trace; cat ./zones/public.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" " Public For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted. @@ -208091,7 +211551,7 @@ echo >>"$at_stdout"; $as_echo " " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:94" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:88" $at_failed && at_fn_log_failure $at_traceon; } @@ -208099,15 +211559,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:107" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:101" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule tcp-mss-clamp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:107" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:101" $at_failed && at_fn_log_failure $at_traceon; } @@ -208118,15 +211578,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=0' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:108" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=0' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:102" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=0' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:108" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:102" $at_failed && at_fn_log_failure $at_traceon; } @@ -208137,15 +211597,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=536' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:109" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=536' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:103" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=536' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:109" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:103" $at_failed && at_fn_log_failure $at_traceon; } @@ -208156,15 +211616,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=pmtu' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:110" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=pmtu' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:104" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=pmtu' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:110" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:104" $at_failed && at_fn_log_failure $at_traceon; } @@ -208176,15 +211636,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=0' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:113" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=0' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:107" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=0' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:113" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:107" $at_failed && at_fn_log_failure $at_traceon; } @@ -208195,15 +211655,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:114" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:108" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:114" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:108" $at_failed && at_fn_log_failure $at_traceon; } @@ -208214,15 +211674,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:115" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:109" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule tcp-mss-clamp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:115" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:109" $at_failed && at_fn_log_failure $at_traceon; } @@ -208233,15 +211693,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:116" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:110" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule tcp-mss-clamp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:116" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:110" $at_failed && at_fn_log_failure $at_traceon; } @@ -208252,15 +211712,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=536' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:117" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=536' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:111" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=536' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:117" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:111" $at_failed && at_fn_log_failure $at_traceon; } @@ -208271,15 +211731,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:118" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:112" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:118" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:112" $at_failed && at_fn_log_failure $at_traceon; } @@ -208290,15 +211750,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:119" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:113" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:119" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:113" $at_failed && at_fn_log_failure $at_traceon; } @@ -208309,15 +211769,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:120" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:114" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:120" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:114" $at_failed && at_fn_log_failure $at_traceon; } @@ -208331,11 +211791,11 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_tcp_mss_clamp.at:122" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_tcp_mss_clamp.at:116" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -208344,7 +211804,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_public_allow { tcp flags syn tcp option maxseg size set 536 tcp flags syn tcp option maxseg size set rt mtu @@ -208352,7 +211812,7 @@ tcp flags syn tcp option maxseg size set rt mtu } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:122" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:116" $at_failed && at_fn_log_failure $at_traceon; } @@ -208373,9 +211833,9 @@ $at_traceon; } if test x"ignore" != x"ignore"; then - $as_echo "rich_tcp_mss_clamp.at:141" >"$at_check_line_file" + printf "%s\n" "rich_tcp_mss_clamp.at:135" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:141" + && at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:135" fi @@ -208384,13 +211844,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_196 -#AT_START_197 -at_fn_group_banner 197 'rich_destination_ipset.at:1' \ +#AT_STOP_205 +#AT_START_206 +at_fn_group_banner 206 'rich_destination_ipset.at:1' \ "rich destination ipset" " " 7 at_xfail=no ( - $as_echo "197. $at_setup_line: testing $at_desc ..." + printf "%s\n" "206. $at_setup_line: testing $at_desc ..." $at_traceon @@ -208408,6 +211868,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -208424,7 +211885,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208438,7 +211899,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rich_destination_ipset.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208454,7 +211915,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rich_destination_ipset.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208518,7 +211979,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208609,7 +212070,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rich_destination_ipset.at:1" >"$at_check_line_file" + printf "%s\n" "rich_destination_ipset.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -208628,7 +212089,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208649,7 +212110,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rich_destination_ipset.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208666,7 +212127,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208681,7 +212142,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208698,7 +212159,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -208706,7 +212167,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rich_destination_ipset.at:1" >"$at_check_line_file" + printf "%s\n" "rich_destination_ipset.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" fi echo "$!" > firewalld.pid @@ -208723,7 +212184,7 @@ at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" fi sleep 1 done - $as_echo "rich_destination_ipset.at:1" >"$at_check_line_file" + printf "%s\n" "rich_destination_ipset.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" @@ -208735,7 +212196,7 @@ at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=mypolicy " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=mypolicy " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=mypolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208754,7 +212215,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-ingress-zone ANY " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-ingress-zone ANY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208773,7 +212234,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-egress-zone HOST " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-egress-zone HOST " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208793,7 +212254,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208813,7 +212274,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208832,7 +212293,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208853,7 +212314,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:12" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208872,7 +212333,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208893,7 +212354,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -208906,7 +212367,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_public_allow { tcp dport 22 accept ip6 daddr fe80::/64 udp dport 546 accept @@ -208932,7 +212393,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:29" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208951,7 +212412,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:30" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -208972,7 +212433,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_policy_mypolicy_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -208985,7 +212446,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_policy_mypolicy_allow { ip daddr @foobar accept } @@ -209009,7 +212470,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:43" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209028,7 +212489,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:44" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209047,7 +212508,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:45" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209066,7 +212527,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:46" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209085,7 +212546,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209104,7 +212565,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:48" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209123,7 +212584,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:49" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209142,7 +212603,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:50" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209161,7 +212622,7 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_RULE: bad attribute/d' -e '/ERROR: INVALID_DESTINATION: address and ipset/d'" != x"ignore"; then - $as_echo "rich_destination_ipset.at:52" >"$at_check_line_file" + printf "%s\n" "rich_destination_ipset.at:52" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_RULE: bad attribute/d' -e '/ERROR: INVALID_DESTINATION: address and ipset/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:52" fi @@ -209172,13 +212633,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_197 -#AT_START_198 -at_fn_group_banner 198 'zone.at:1' \ +#AT_STOP_206 +#AT_START_207 +at_fn_group_banner 207 'zone.at:1' \ "zone - target" " " 7 at_xfail=no ( - $as_echo "198. $at_setup_line: testing $at_desc ..." + printf "%s\n" "207. $at_setup_line: testing $at_desc ..." $at_traceon @@ -209196,6 +212657,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -209212,7 +212674,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/zone.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209226,7 +212688,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/zone.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/zone.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "zone.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209242,7 +212704,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/zone.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "zone.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209306,7 +212768,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/zone.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/zone.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209397,7 +212859,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "zone.at:1" >"$at_check_line_file" + printf "%s\n" "zone.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/zone.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -209416,7 +212878,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/zone.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/zone.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209437,7 +212899,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/zone.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/zone.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "zone.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209454,7 +212916,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/zone.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209469,7 +212931,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/zone.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209486,7 +212948,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -209494,7 +212956,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "zone.at:1" >"$at_check_line_file" + printf "%s\n" "zone.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/zone.at:1" fi echo "$!" > firewalld.pid @@ -209511,7 +212973,7 @@ at_fn_check_skip 99 "$at_srcdir/zone.at:1" fi sleep 1 done - $as_echo "zone.at:1" >"$at_check_line_file" + printf "%s\n" "zone.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/zone.at:1" @@ -209523,7 +212985,7 @@ at_fn_check_skip 99 "$at_srcdir/zone.at:1" { set +x -$as_echo "$at_srcdir/zone.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone=foobar " +printf "%s\n" "$at_srcdir/zone.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone=foobar " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209543,7 +213005,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default " +printf "%s\n" "$at_srcdir/zone.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209562,7 +213024,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " +printf "%s\n" "$at_srcdir/zone.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209581,7 +213043,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP " +printf "%s\n" "$at_srcdir/zone.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209600,7 +213062,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% " +printf "%s\n" "$at_srcdir/zone.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:9" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209619,7 +213081,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=CONTINUE " +printf "%s\n" "$at_srcdir/zone.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=CONTINUE " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=CONTINUE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209638,7 +213100,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DENY " +printf "%s\n" "$at_srcdir/zone.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DENY " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DENY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209658,7 +213120,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " +printf "%s\n" "$at_srcdir/zone.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:13" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209677,7 +213139,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-interface foobar0 " +printf "%s\n" "$at_srcdir/zone.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-interface foobar0 " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209697,7 +213159,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/zone.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209716,7 +213178,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/zone.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209738,7 +213200,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -209751,7 +213213,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_foobar { jump filter_IN_foobar_pre jump filter_IN_foobar_log @@ -209777,7 +213239,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -209790,7 +213252,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar0\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar0\" jump filter_IN_foobar @@ -209830,7 +213292,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -209843,7 +213305,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_foobar { jump filter_FWD_foobar_pre jump filter_FWD_foobar_log @@ -209869,7 +213331,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -209882,7 +213344,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar0\" oifname \"foobar0\" jump filter_FWD_foobar iifname \"foobar0\" oifname \"foobar0\" accept @@ -209922,7 +213384,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default " +printf "%s\n" "$at_srcdir/zone.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:133" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209942,7 +213404,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +printf "%s\n" "$at_srcdir/zone.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:134" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209961,7 +213423,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +printf "%s\n" "$at_srcdir/zone.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:134" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -209983,7 +213445,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone.at:135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -209996,7 +213458,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_IN_foobar { jump filter_IN_foobar_pre jump filter_IN_foobar_log @@ -210023,7 +213485,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -210036,7 +213498,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_INPUT_POLICIES { iifname \"foobar0\" jump filter_IN_policy_allow-host-ipv6 iifname \"foobar0\" jump filter_IN_foobar @@ -210076,7 +213538,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:192: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone.at:192: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FWD_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -210089,7 +213551,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FWD_foobar { jump filter_FWD_foobar_pre jump filter_FWD_foobar_log @@ -210115,7 +213577,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/zone.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " @@ -210128,7 +213590,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_FORWARD_POLICIES { iifname \"foobar0\" oifname \"foobar0\" jump filter_FWD_foobar iifname \"foobar0\" oifname \"foobar0\" reject with icmpx admin-prohibited @@ -210167,7 +213629,7 @@ $at_traceon; } if test x"ignore" != x"ignore"; then - $as_echo "zone.at:252" >"$at_check_line_file" + printf "%s\n" "zone.at:252" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ && at_fn_check_skip 99 "$at_srcdir/zone.at:252" fi @@ -210178,13 +213640,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_198 -#AT_START_199 -at_fn_group_banner 199 'rpfilter.at:1' \ - "rpfilter" " " 7 +#AT_STOP_207 +#AT_START_208 +at_fn_group_banner 208 'rpfilter.at:1' \ + "rpfilter - strict" " " 7 at_xfail=no ( - $as_echo "199. $at_setup_line: testing $at_desc ..." + printf "%s\n" "208. $at_setup_line: testing $at_desc ..." $at_traceon @@ -210202,6 +213664,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -210218,7 +213681,7 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rpfilter.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rpfilter.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -210232,7 +213695,7 @@ $at_traceon; } else { set +x -$as_echo "$at_srcdir/rpfilter.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +printf "%s\n" "$at_srcdir/rpfilter.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" at_fn_check_prepare_trace "rpfilter.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -210248,7 +213711,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rpfilter.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rpfilter.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" at_fn_check_prepare_trace "rpfilter.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -210312,7 +213775,7 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rpfilter.at:1: ip netns add fwd-test-\${at_group_normalized}" +printf "%s\n" "$at_srcdir/rpfilter.at:1: ip netns add fwd-test-\${at_group_normalized}" at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -210403,7 +213866,7 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rpfilter.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -210422,7 +213885,7 @@ _ATEOF { set +x -$as_echo "$at_srcdir/rpfilter.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rpfilter.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -210443,7 +213906,7 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/rpfilter.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +printf "%s\n" "$at_srcdir/rpfilter.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" at_fn_check_prepare_trace "rpfilter.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -210460,7 +213923,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rpfilter.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +printf "%s\n" "$at_srcdir/rpfilter.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -210475,7 +213938,7 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rpfilter.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +printf "%s\n" "$at_srcdir/rpfilter.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -210492,7 +213955,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -210500,7 +213963,7 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rpfilter.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:1" >"$at_check_line_file" at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" fi echo "$!" > firewalld.pid @@ -210517,7 +213980,7 @@ at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" fi sleep 1 done - $as_echo "rpfilter.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:1" >"$at_check_line_file" (test $up -ne 1) \ && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" @@ -210526,22 +213989,86 @@ at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" + KERNEL_MAJOR=`uname -r | cut -d. -f1` KERNEL_MINOR=`uname -r | cut -d. -f2` if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then : + else + : + printf "%s\n" "rpfilter.at:3" >"$at_check_line_file" +at_fn_check_skip 77 "$at_srcdir/rpfilter.at:3" + fi + + + + +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:5: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:5" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/rpfilter.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" +printf "%s\n" "$at_srcdir/rpfilter.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:4" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE @@ -210550,7 +214077,7 @@ HERE at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { chain filter_PREROUTING { icmpv6 type { nd-router-advert, nd-neighbor-solicit } accept meta nfproto ipv6 fib saddr . mark . iif oif missing drop @@ -210558,7 +214085,7 @@ meta nfproto ipv6 fib saddr . mark . iif oif missing drop } " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -210568,47 +214095,6 @@ $at_traceon; } - else - : - - - - - - - { set +x -$as_echo "$at_srcdir/rpfilter.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_PREROUTING { -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - fi - - @@ -210616,9 +214102,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rpfilter.at:30" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:25" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:30" + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:25" fi @@ -210627,13 +214113,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_199 -#AT_START_200 -at_fn_group_banner 200 'zone_combine.at:1' \ - "zone - combine" " " 7 +#AT_STOP_208 +#AT_START_209 +at_fn_group_banner 209 'rpfilter.at:27' \ + "rpfilter - loose" " " 7 at_xfail=no ( - $as_echo "200. $at_setup_line: testing $at_desc ..." + printf "%s\n" "209. $at_setup_line: testing $at_desc ..." $at_traceon @@ -210651,6 +214137,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -210667,29 +214154,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/zone_combine.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:27: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:27" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/zone_combine.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "zone_combine.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:27: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:27" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -210697,15 +214184,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "zone_combine.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:27: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:27" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -210761,15 +214248,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/zone_combine.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:27: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:27" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -210852,8 +214339,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "zone_combine.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" + printf "%s\n" "rpfilter.at:27" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:27" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -210871,15 +214358,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/zone_combine.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -210892,15 +214379,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/zone_combine.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "zone_combine.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:27: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:27" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -210909,30 +214396,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -210941,7 +214428,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -210949,8 +214436,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "zone_combine.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" + printf "%s\n" "rpfilter.at:27" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:27" fi echo "$!" > firewalld.pid @@ -210966,63 +214453,40 @@ at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" fi sleep 1 done - $as_echo "zone_combine.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:27" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" - + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:27" -{ set +x -$as_echo "$at_srcdir/zone_combine.at:8: mkdir -p ./zones/combined" -at_fn_check_prepare_trace "zone_combine.at:8" -( $at_check_trace; mkdir -p ./zones/combined -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - -cat >./zones/combined/zone1.xml <<'_ATEOF' - - - - -_ATEOF -cat >./zones/combined/zone2.xml <<'_ATEOF' - - - - -_ATEOF -cat >./zones/combined/zone3.xml <<'_ATEOF' - - - - -_ATEOF + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + else + : + printf "%s\n" "rpfilter.at:29" >"$at_check_line_file" +at_fn_check_skip 77 "$at_srcdir/rpfilter.at:29" + fi - { set +x -$as_echo "$at_srcdir/zone_combine.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:31: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:31" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:27" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:31" $at_failed && at_fn_log_failure $at_traceon; } @@ -211030,227 +214494,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/zone_combine.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rpfilter.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:27" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - { set +x -$as_echo "$at_srcdir/zone_combine.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zones -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block combined dmz drop external home internal public trusted work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:29" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/zone_combine.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: https ssh -ports: 12345/tcp -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:32" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/zone_combine.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:51" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zones -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block combined/zone1 combined/zone2 combined/zone3 dmz drop external home internal public trusted work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:51" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/zone_combine.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone1 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: ssh -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:54" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/zone_combine.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone2 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: https -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/zone_combine.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:90" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone3 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: 12345/tcp -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:90" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/zone_combine.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --add-protocol icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:111" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --add-protocol icmp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:111" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -211261,32 +214514,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:112" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/rpfilter.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: https ssh -ports: 12345/tcp -protocols: icmp -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:112" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -211297,88 +214533,32 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_combine.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --add-protocol icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:133" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --add-protocol icmp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:133" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/zone_combine.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:134" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone1 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: ssh -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:134" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - +printf "%s\n" "$at_srcdir/rpfilter.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:34" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/zone_combine.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:152" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone2 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: https -ports: -protocols: icmp -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_PREROUTING { +icmpv6 type { nd-router-advert, nd-neighbor-solicit } accept +meta nfproto ipv6 fib saddr . mark oif missing drop +} +} " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:152" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -211388,36 +214568,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_combine.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:170" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone3 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: 12345/tcp -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:170" -$at_failed && at_fn_log_failure -$at_traceon; } - @@ -211425,9 +214575,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "zone_combine.at:189" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:51" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/zone_combine.at:189" + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:51" fi @@ -211436,13 +214586,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_200 -#AT_START_201 -at_fn_group_banner 201 'startup_failsafe.at:1' \ - "startup failsafe - invalid xml" " " 7 +#AT_STOP_209 +#AT_START_210 +at_fn_group_banner 210 'rpfilter.at:53' \ + "rpfilter - strict-forward" " " 7 at_xfail=no ( - $as_echo "201. $at_setup_line: testing $at_desc ..." + printf "%s\n" "210. $at_setup_line: testing $at_desc ..." $at_traceon @@ -211460,6 +214610,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -211476,29 +214627,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:53: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:53" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:53: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:53" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -211506,15 +214657,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:53: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:53" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -211570,15 +214721,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:53: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:53" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -211661,8 +214812,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + printf "%s\n" "rpfilter.at:53" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:53" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -211680,15 +214831,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -211701,15 +214852,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:53: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:53" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -211718,30 +214869,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:53" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -211750,7 +214901,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -211758,8 +214909,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + printf "%s\n" "rpfilter.at:53" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:53" fi echo "$!" > firewalld.pid @@ -211775,143 +214926,75 @@ at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi sleep 1 done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:53" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - - - - -{ set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: mkdir -p ./zones" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; mkdir -p ./zones -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:53" -cat >./zones/broken.xml <<'_ATEOF' - - - - -_ATEOF - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + else + : + printf "%s\n" "rpfilter.at:55" >"$at_check_line_file" +at_fn_check_skip 77 "$at_srcdir/rpfilter.at:55" fi - echo "$!" > firewalld.pid - WANTED_CODE="251" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state +printf "%s\n" "$at_srcdir/rpfilter.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:56" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:56" $at_failed && at_fn_log_failure $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-service https " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-service https +printf "%s\n" "$at_srcdir/rpfilter.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add chain inet firewalld_check foobar { type filter hook forward priority 0 \\; } " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:56" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add chain inet firewalld_check foobar { type filter hook forward priority 0 \; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:56" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - + printf "%s\n" "rpfilter.at:56" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add rule inet firewalld_check foobar meta nfproto ipv6 fib saddr . mark . iif oif missing drop >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rpfilter.at:56" { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rpfilter.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:56" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_IN_public_allow { -tcp dport 22 accept -ip6 daddr fe80::/64 udp dport 546 accept -tcp dport 443 accept -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:56" $at_failed && at_fn_log_failure $at_traceon; } @@ -211919,21 +215002,16 @@ $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:58: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:58" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -211942,18 +215020,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-service https " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-service https +printf "%s\n" "$at_srcdir/rpfilter.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:59" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:59" $at_failed && at_fn_log_failure $at_traceon; } @@ -211964,15 +215040,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-service https " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-service https +printf "%s\n" "$at_srcdir/rpfilter.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:59" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:59" $at_failed && at_fn_log_failure $at_traceon; } @@ -211982,35 +215058,40 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service ssh --add-port=666/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service ssh --add-port=666/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype redirect --remove-destination=ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype redirect --remove-destination=ipv4 +printf "%s\n" "$at_srcdir/rpfilter.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:65" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_FORWARD { +meta nfproto ipv6 fib saddr . mark . iif oif missing drop +ct state established,related accept +ct status dnat accept +iifname \"lo\" accept +ct state invalid drop +ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable +jump filter_FORWARD_POLICIES +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:65" $at_failed && at_fn_log_failure $at_traceon; } @@ -212020,35 +215101,32 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper tftp --add-port=44/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper tftp --add-port=44/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type=hash:ip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type=hash:ip +printf "%s\n" "$at_srcdir/rpfilter.at:80: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:80" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_PREROUTING { +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:80" $at_failed && at_fn_log_failure $at_traceon; } @@ -212058,10 +215136,12 @@ $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + + + if test x"-e "/^ERROR: INVALID_VALUE:/d"" != x"ignore"; then + printf "%s\n" "rpfilter.at:87" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e "/^ERROR: INVALID_VALUE:/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:87" fi @@ -212070,13 +215150,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_201 -#AT_START_202 -at_fn_group_banner 202 'startup_failsafe.at:1' \ - "startup failsafe - bad zone" " " 7 +#AT_STOP_210 +#AT_START_211 +at_fn_group_banner 211 'rpfilter.at:89' \ + "rpfilter - loose-forward" " " 7 at_xfail=no ( - $as_echo "202. $at_setup_line: testing $at_desc ..." + printf "%s\n" "211. $at_setup_line: testing $at_desc ..." $at_traceon @@ -212094,6 +215174,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -212110,29 +215191,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:89: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:89" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:89: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:89" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } @@ -212140,15 +215221,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:89: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:89" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } @@ -212204,15 +215285,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:89: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:89" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } @@ -212295,8 +215376,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + printf "%s\n" "rpfilter.at:89" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:89" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -212314,15 +215395,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:89" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } @@ -212335,15 +215416,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:89: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:89" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } @@ -212352,30 +215433,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:89" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:89" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } @@ -212384,7 +215465,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -212392,8 +215473,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + printf "%s\n" "rpfilter.at:89" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:89" fi echo "$!" > firewalld.pid @@ -212409,87 +215490,172 @@ at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi sleep 1 done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:89" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:89" + + + + + + + + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + + else + : + printf "%s\n" "rpfilter.at:91" >"$at_check_line_file" +at_fn_check_skip 77 "$at_srcdir/rpfilter.at:91" + fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:92" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:92" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add chain inet firewalld_check foobar { type filter hook forward priority 0 \\; } " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:92" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add chain inet firewalld_check foobar { type filter hook forward priority 0 \; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:92" +$at_failed && at_fn_log_failure +$at_traceon; } + + + printf "%s\n" "rpfilter.at:92" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add rule inet firewalld_check foobar meta nfproto ipv6 fib saddr . mark . iif oif missing drop >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rpfilter.at:92" + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:92" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:92" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: mkdir -p ./zones" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; mkdir -p ./zones +printf "%s\n" "$at_srcdir/rpfilter.at:94: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:94" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:94" $at_failed && at_fn_log_failure $at_traceon; } -cat >./zones/broken.xml <<'_ATEOF' - - - -_ATEOF - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:95" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:95" +$at_failed && at_fn_log_failure +$at_traceon; } + + + - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="251" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state +printf "%s\n" "$at_srcdir/rpfilter.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:101" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_FORWARD { +meta nfproto ipv6 fib saddr . mark oif missing drop +ct state established,related accept +ct status dnat accept +iifname \"lo\" accept +ct state invalid drop +ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable +jump filter_FORWARD_POLICIES +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:101" $at_failed && at_fn_log_failure $at_traceon; } @@ -212498,10 +215664,48 @@ $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_PREROUTING { +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:116" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + if test x"-e "/^ERROR: INVALID_VALUE:/d"" != x"ignore"; then + printf "%s\n" "rpfilter.at:123" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e "/^ERROR: INVALID_VALUE:/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:123" fi @@ -212510,13 +215714,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_202 -#AT_START_203 -at_fn_group_banner 203 'startup_failsafe.at:1' \ - "startup failsafe - bad policy" " " 7 +#AT_STOP_211 +#AT_START_212 +at_fn_group_banner 212 'rpfilter.at:125' \ + "rpfilter - config values" " " 7 at_xfail=no ( - $as_echo "203. $at_setup_line: testing $at_desc ..." + printf "%s\n" "212. $at_setup_line: testing $at_desc ..." $at_traceon @@ -212534,6 +215738,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -212550,29 +215755,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:125" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:125" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } @@ -212580,15 +215785,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:125" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } @@ -212644,15 +215849,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:125" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } @@ -212735,8 +215940,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + printf "%s\n" "rpfilter.at:125" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:125" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -212754,15 +215959,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:125" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } @@ -212775,15 +215980,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:125" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } @@ -212792,30 +215997,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:125" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:125" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } @@ -212824,7 +216029,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -212832,8 +216037,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + printf "%s\n" "rpfilter.at:125" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:125" fi echo "$!" > firewalld.pid @@ -212849,87 +216054,41 @@ at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi sleep 1 done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:125" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - - - - -{ set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: mkdir -p ./policies" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; mkdir -p ./policies -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:125" -cat >./policies/broken.xml <<'_ATEOF' - - - -_ATEOF - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + else + : + printf "%s\n" "rpfilter.at:127" >"$at_check_line_file" +at_fn_check_skip 77 "$at_srcdir/rpfilter.at:127" fi - echo "$!" > firewalld.pid - - WANTED_CODE="251" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -212937,325 +216096,185 @@ $at_traceon; } - - if test x"ignore" != x"ignore"; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_203 -#AT_START_204 -at_fn_group_banner 204 'startup_failsafe.at:1' \ - "startup failsafe - non-existent service" " " 7 -at_xfail=no -( - $as_echo "204. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +echo >>"$at_stdout"; printf "%s\n" "variant string \"no\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - KERNEL_MAJOR=`uname -r | cut -d. -f1` - KERNEL_MINOR=`uname -r | cut -d. -f2` - if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then - : - - else - : - - sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf - - fi - - - - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - cat >./nft_rule_index.nft <<'_ATEOF' - add table inet firewalld_check_rule_index - add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } - add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept - add rule inet firewalld_check_rule_index foobar accept - insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept -_ATEOF { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +echo >>"$at_stdout"; printf "%s\n" "variant string \"yes\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then - : - else - : - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=false/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=false/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - fi + { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -213264,112 +216283,37 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - - -{ set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: mkdir -p ./zones" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; mkdir -p ./zones + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +echo >>"$at_stdout"; printf "%s\n" "variant string \"false\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } -cat >./zones/broken.xml <<'_ATEOF' - - - - -_ATEOF - - - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="251" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=true/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=true/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -213377,325 +216321,185 @@ $at_traceon; } - - if test x"ignore" != x"ignore"; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_204 -#AT_START_205 -at_fn_group_banner 205 'startup_failsafe.at:1' \ - "startup failsafe - non-existent icmptype" " " 7 -at_xfail=no -( - $as_echo "205. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +echo >>"$at_stdout"; printf "%s\n" "variant string \"true\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - KERNEL_MAJOR=`uname -r | cut -d. -f1` - KERNEL_MINOR=`uname -r | cut -d. -f2` - if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then - : - - else - : - - sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf - - fi - - - - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - cat >./nft_rule_index.nft <<'_ATEOF' - add table inet firewalld_check_rule_index - add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } - add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept - add rule inet firewalld_check_rule_index foobar accept - insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept -_ATEOF { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +echo >>"$at_stdout"; printf "%s\n" "variant string \"strict\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then - : - else - : - { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } - fi + { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -213704,112 +216508,74 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "variant string \"loose\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } + + { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: mkdir -p ./zones" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; mkdir -p ./zones +printf "%s\n" "$at_srcdir/rpfilter.at:142: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=bogus/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:142" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=bogus/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:142" $at_failed && at_fn_log_failure $at_traceon; } -cat >./zones/broken.xml <<'_ATEOF' - - - - -_ATEOF - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:143" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:143" +$at_failed && at_fn_log_failure +$at_traceon; } - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="251" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state +printf "%s\n" "$at_srcdir/rpfilter.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:143" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:143" $at_failed && at_fn_log_failure $at_traceon; } @@ -213818,10 +216584,12 @@ $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + + + if test x"-e "/^WARNING: IPv6_rpfilter 'bogus' is not valid/d"" != x"ignore"; then + printf "%s\n" "rpfilter.at:145" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e "/^WARNING: IPv6_rpfilter 'bogus' is not valid/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:145" fi @@ -213830,13 +216598,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_205 -#AT_START_206 -at_fn_group_banner 206 'startup_failsafe.at:1' \ - "startup failsafe - bad direct" " " 7 +#AT_STOP_212 +#AT_START_213 +at_fn_group_banner 213 'rpfilter.at:147' \ + "rpfilter - config values, -forward" " " 7 at_xfail=no ( - $as_echo "206. $at_setup_line: testing $at_desc ..." + printf "%s\n" "213. $at_setup_line: testing $at_desc ..." $at_traceon @@ -213854,6 +216622,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -213870,29 +216639,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:147" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:147" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } @@ -213900,15 +216669,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:147" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } @@ -213964,15 +216733,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:147" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } @@ -214055,8 +216824,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + printf "%s\n" "rpfilter.at:147" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:147" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -214074,15 +216843,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:147" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } @@ -214095,15 +216864,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:147" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } @@ -214112,30 +216881,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:147" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:147" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } @@ -214144,7 +216913,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -214152,8 +216921,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + printf "%s\n" "rpfilter.at:147" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:147" fi echo "$!" > firewalld.pid @@ -214169,81 +216938,93 @@ at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi sleep 1 done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:147" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:147" - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/startup_failsafe.at:1" + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : -cat >./direct.xml <<'_ATEOF' + else + : + printf "%s\n" "rpfilter.at:149" >"$at_check_line_file" +at_fn_check_skip 77 "$at_srcdir/rpfilter.at:149" + fi - --s 192.168.1.0/24 -j doesnotexist - -_ATEOF - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:150" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:150" +$at_failed && at_fn_log_failure +$at_traceon; } - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="251" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add chain inet firewalld_check foobar { type filter hook forward priority 0 \\; } " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:150" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add chain inet firewalld_check foobar { type filter hook forward priority 0 \; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:150" +$at_failed && at_fn_log_failure +$at_traceon; } + + + printf "%s\n" "rpfilter.at:150" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add rule inet firewalld_check foobar meta nfproto ipv6 fib saddr . mark . iif oif missing drop >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rpfilter.at:150" + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:150" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:150" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state +printf "%s\n" "$at_srcdir/rpfilter.at:154: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:154" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" $at_failed && at_fn_log_failure $at_traceon; } @@ -214252,10 +217033,149 @@ $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "variant string \"strict-forward\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:154: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:154" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "variant string \"loose-forward\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + if test x"-e "/^ERROR: INVALID_VALUE:.*is incompatible with FirewallBackend=iptables."" != x"ignore"; then + printf "%s\n" "rpfilter.at:168" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e "/^ERROR: INVALID_VALUE:.*is incompatible with FirewallBackend=iptables." | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:168" fi @@ -214264,13 +217184,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_206 -#AT_START_207 -at_fn_group_banner 207 'startup_failsafe.at:1' \ - "startup failsafe - broken stock config" " " 7 +#AT_STOP_213 +#AT_START_214 +at_fn_group_banner 214 'zone_combine.at:1' \ + "zone - combine" " " 7 at_xfail=no ( - $as_echo "207. $at_setup_line: testing $at_desc ..." + printf "%s\n" "214. $at_setup_line: testing $at_desc ..." $at_traceon @@ -214288,6 +217208,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -214304,29 +217225,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/zone_combine.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/zone_combine.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "zone_combine.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -214334,15 +217255,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/zone_combine.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "zone_combine.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -214398,15 +217319,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/zone_combine.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -214489,8 +217410,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + printf "%s\n" "zone_combine.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -214508,15 +217429,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/zone_combine.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -214529,15 +217450,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/zone_combine.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "zone_combine.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -214546,30 +217467,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/zone_combine.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +printf "%s\n" "$at_srcdir/zone_combine.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -214578,7 +217499,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -214586,8 +217507,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + printf "%s\n" "zone_combine.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" fi echo "$!" > firewalld.pid @@ -214603,85 +217524,63 @@ at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi sleep 1 done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" + printf "%s\n" "zone_combine.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + && at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" + - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: mkdir -p ./default_config/zones" -at_fn_check_prepare_trace "startup_failsafe.at:1" -( $at_check_trace; mkdir -p ./default_config/zones +printf "%s\n" "$at_srcdir/zone_combine.at:8: mkdir -p ./zones/combined" +at_fn_check_prepare_trace "zone_combine.at:8" +( $at_check_trace; mkdir -p ./zones/combined ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:8" $at_failed && at_fn_log_failure $at_traceon; } -cat >./default_config/zones/broken.xml <<'_ATEOF' - +cat >./zones/combined/zone1.xml <<'_ATEOF' + - + _ATEOF -export FIREWALLD_DEFAULT_CONFIG="./default_config" +cat >./zones/combined/zone2.xml <<'_ATEOF' + + + + +_ATEOF - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi +cat >./zones/combined/zone3.xml <<'_ATEOF' + + + + +_ATEOF - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="252" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" -sleep 5 { set +x -$as_echo "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state +printf "%s\n" "$at_srcdir/zone_combine.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 252 $at_status "$at_srcdir/startup_failsafe.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -214690,99 +217589,493 @@ $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "startup_failsafe.at:1" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_207 -#AT_START_208 -at_fn_group_banner 208 'ipset_defer_native_ipset_creation.at:1' \ - "ipset defer native creation" " " 7 -at_xfail=no -( - $as_echo "208. $at_setup_line: testing $at_desc ..." - $at_traceon - - + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:27" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +echo >>"$at_stdout"; printf "%s\n" "block combined dmz drop external home internal public trusted work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:29" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } +echo >>"$at_stdout"; printf "%s\n" "combined +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: https ssh +ports: 12345/tcp +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:32" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:51" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zones +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "block combined/zone1 combined/zone2 combined/zone3 dmz drop external home internal public trusted work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:51" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "combined/zone1 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: ssh +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:54" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "combined/zone2 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: https +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "combined/zone3 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: 12345/tcp +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:90" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --add-protocol icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:111" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --add-protocol icmp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:111" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "combined +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: https ssh +ports: 12345/tcp +protocols: icmp +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:112" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --add-protocol icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:133" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --add-protocol icmp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:133" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:134" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "combined/zone1 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: ssh +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:134" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:152" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "combined/zone2 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: https +ports: +protocols: icmp +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:152" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:170" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "combined/zone3 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: 12345/tcp +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:170" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "zone_combine.at:189" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/zone_combine.at:189" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_214 +#AT_START_215 +at_fn_group_banner 215 'startup_failsafe.at:1' \ + "startup failsafe - invalid xml" " " 7 +at_xfail=no +( + printf "%s\n" "215. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -214836,15 +218129,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -214927,8 +218220,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "ipset_defer_native_ipset_creation.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/ipset_defer_native_ipset_creation.at:1" + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -214946,15 +218239,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -214967,15 +218260,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "ipset_defer_native_ipset_creation.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -214984,30 +218277,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215016,7 +218309,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -215024,8 +218317,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "ipset_defer_native_ipset_creation.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/ipset_defer_native_ipset_creation.at:1" + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi echo "$!" > firewalld.pid @@ -215041,72 +218334,88 @@ at_fn_check_skip 99 "$at_srcdir/ipset_defer_native_ipset_creation.at:1" fi sleep 1 done - $as_echo "ipset_defer_native_ipset_creation.at:1" >"$at_check_line_file" + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/ipset_defer_native_ipset_creation.at:1" - - - - - - - $as_echo "ipset_defer_native_ipset_creation.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/ipset_defer_native_ipset_creation.at:1" - - + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net +{ set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: mkdir -p ./zones" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } +cat >./zones/broken.xml <<'_ATEOF' + + + + +_ATEOF + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="251" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215116,16 +218425,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-service https " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-service https ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215136,16 +218446,31 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_IN_public_allow { +tcp dport 22 accept +ip6 daddr fe80::/64 udp dport 546 accept +tcp dport 443 accept +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215155,16 +218480,19 @@ $at_traceon; } + + + { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215175,87 +218503,54 @@ $at_traceon; } - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-service https " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-service https ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - fi - if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-service https " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-service https ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - fi - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service ssh --add-port=666/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service ssh --add-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -set foobar { -type ipv4_addr -flags interval -elements = { 10.0.0.0/24 } -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215265,35 +218560,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype redirect --remove-destination=ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype redirect --remove-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -set foobar6 { -type ipv6_addr -flags interval -elements = { 1234::4321 } -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215303,19 +218579,16 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.1.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.1.1.0/24 +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper tftp --add-port=44/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper tftp --add-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215326,15 +218599,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar6 --add-entry='4321::1234' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar6 --add-entry='4321::1234' +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type=hash:ip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type=hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215343,236 +218616,294 @@ $at_traceon; } - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - + if test x"ignore" != x"ignore"; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_215 +#AT_START_216 +at_fn_group_banner 216 'startup_failsafe.at:1' \ + "startup failsafe - bad zone" " " 7 +at_xfail=no +( + printf "%s\n" "216. $at_setup_line: testing $at_desc ..." + $at_traceon - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - fi + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -set foobar { -type ipv4_addr -flags interval -elements = { 10.0.0.0/24, 10.1.1.0/24 } -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + else + : + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf + fi - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -set foobar6 { -type ipv6_addr -flags interval -elements = { 1234::4321, -4321::1234 } -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -j ACCEPT + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + - if $IPSET list >/dev/null 2>&1; then + + + + - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:net -Members: -10.0.0.0/24 -10.1.1.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + + + + + + + + + - fi + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + - if $IP6TABLES -L >/dev/null 2>&1; then - : + cat >./nft_rule_index.nft <<'_ATEOF' + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv6 filter INPUT_direct 0 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv6 filter INPUT_direct 0 -j ACCEPT +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + else + : - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar6 -Type: hash:net -Members: -1234::4321 -4321::1234 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215580,45 +218911,31 @@ $at_traceon; } fi - - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.2.2.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.2.2.0/24 +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar6 --add-entry='3412::2143' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar6 --add-entry='3412::2143' +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215627,143 +218944,112 @@ $at_traceon; } - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:net -Members: -10.0.0.0/24 -10.1.1.0/24 -10.2.2.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break fi + sleep 1 + done + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +{ set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: mkdir -p ./zones" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -set foobar { -type ipv4_addr -flags interval -elements = { 10.0.0.0/24, 10.1.1.0/24, -10.2.2.0/24 } -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } +cat >./zones/broken.xml <<'_ATEOF' + + + +_ATEOF + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "$!" > firewalld.pid - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar6 -Type: hash:net -Members: -1234::4321 -3412::2143 -4321::1234 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - + WANTED_CODE="251" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break fi - - - + sleep 1 + done + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -set foobar6 { -type ipv6_addr -flags interval -elements = { 1234::4321, -3412::2143, -4321::1234 } -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -215772,269 +219058,325 @@ $at_traceon; } + if test x"ignore" != x"ignore"; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_216 +#AT_START_217 +at_fn_group_banner 217 'startup_failsafe.at:1' \ + "startup failsafe - bad policy" " " 7 +at_xfail=no +( + printf "%s\n" "217. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar6 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state + else + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - fi + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + + else + : + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf - if $IPSET list >/dev/null 2>&1; then + fi - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + kill_firewalld() { - fi + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + cat >./nft_rule_index.nft <<'_ATEOF' + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + else + : - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - + fi { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -216043,309 +219385,407 @@ $at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "$!" > firewalld.pid - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +{ set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: mkdir -p ./policies" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; mkdir -p ./policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } +cat >./policies/broken.xml <<'_ATEOF' + + + +_ATEOF + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="251" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break fi + sleep 1 + done + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + + + + + if test x"ignore" != x"ignore"; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_217 +#AT_START_218 +at_fn_group_banner 218 'startup_failsafe.at:1' \ + "startup failsafe - non-existent service" " " 7 +at_xfail=no +( + printf "%s\n" "218. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 -t filter -A INPUT -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 -t filter -A INPUT -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:net -Members: -10.0.0.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - fi - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv6 -t filter -A INPUT -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv6 -t filter -A INPUT -j ACCEPT + else + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar6 -Type: hash:net -Members: -1234::4321 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - fi + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : else : + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf + fi + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar6 + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + cat >./nft_rule_index.nft <<'_ATEOF' + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + else + : - - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -216353,54 +219793,31 @@ $at_traceon; } fi - - - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - fi - - - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -216409,68 +219826,112 @@ $at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +{ set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: mkdir -p ./zones" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } +cat >./zones/broken.xml <<'_ATEOF' + + + +_ATEOF + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "$!" > firewalld.pid - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - + WANTED_CODE="251" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -216479,256 +219940,11 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - fi - - - - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - fi - - - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:net -Members: -10.0.0.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - fi - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv6 filter foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv6 filter foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar6 -Type: hash:net -Members: -1234::4321 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - fi - - - - else - : - - fi - - - - - if test x"" != x"ignore"; then - $as_echo "ipset_defer_native_ipset_creation.at:1" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/ipset_defer_native_ipset_creation.at:1" - fi + if test x"ignore" != x"ignore"; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi @@ -216736,13 +219952,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_208 -#AT_START_209 -at_fn_group_banner 209 'reset_defaults.at:1' \ - "reset defaults" " " 7 +#AT_STOP_218 +#AT_START_219 +at_fn_group_banner 219 'startup_failsafe.at:1' \ + "startup failsafe - non-existent icmptype" " " 7 at_xfail=no ( - $as_echo "209. $at_setup_line: testing $at_desc ..." + printf "%s\n" "219. $at_setup_line: testing $at_desc ..." $at_traceon @@ -216760,6 +219976,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -216776,29 +219993,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "startup_failsafe.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -216806,15 +220023,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -216870,15 +220087,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -216961,8 +220178,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "reset_defaults.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -216980,15 +220197,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -217001,15 +220218,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -217018,30 +220235,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -217050,7 +220267,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -217058,8 +220275,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "reset_defaults.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi echo "$!" > firewalld.pid @@ -217075,282 +220292,87 @@ at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" fi sleep 1 done - $as_echo "reset_defaults.at:1" >"$at_check_line_file" + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" - - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service zzzzzzzzzzzz -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service ftp --add-port 22/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service ftp --add-port 22/udp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-service zzzzzzzzzzzz -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:11" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-service ftp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:12" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --set-short \"FTP HELPER\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --set-short "FTP HELPER" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:13" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-short test_short " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-short test_short -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:14" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset test-ipset --type hash:ip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset test-ipset --type hash:ip -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:15" -$at_failed && at_fn_log_failure -$at_traceon; } - - - + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - { set +x -$as_echo "$at_srcdir/reset_defaults.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype test-icmptype " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-icmptype test-icmptype +{ set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: mkdir -p ./zones" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:16" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } +cat >./zones/broken.xml <<'_ATEOF' + + + +_ATEOF + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi - { set +x -$as_echo "$at_srcdir/reset_defaults.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:18" -$at_failed && at_fn_log_failure -$at_traceon; } - + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="251" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" { set +x -$as_echo "$at_srcdir/reset_defaults.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:19" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo "FTP HELPER -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:20" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo "test_short -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:22" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -217359,293 +220381,325 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:24" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:24" -$at_failed && at_fn_log_failure -$at_traceon; } - + if test x"ignore" != x"ignore"; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_219 +#AT_START_220 +at_fn_group_banner 220 'startup_failsafe.at:1' \ + "startup failsafe - bad direct" " " 7 +at_xfail=no +( + printf "%s\n" "220. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/reset_defaults.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:25" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/reset_defaults.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state + else + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:28" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:30" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:30" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --query-service ftp + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:31" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + else + : + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf - { set +x -$as_echo "$at_srcdir/reset_defaults.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-ipset test-ipset " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-ipset test-ipset -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:32" -$at_failed && at_fn_log_failure -$at_traceon; } - - + fi + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - { set +x -$as_echo "$at_srcdir/reset_defaults.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-icmptype test-icmptype " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-icmptype test-icmptype -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:33" -$at_failed && at_fn_log_failure -$at_traceon; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/reset_defaults.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:35" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/reset_defaults.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:37" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:37" -$at_failed && at_fn_log_failure -$at_traceon; } - - - + + + + + + + + + + + + + + + + + + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/reset_defaults.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:38" -$at_failed && at_fn_log_failure -$at_traceon; } + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + cat >./nft_rule_index.nft <<'_ATEOF' + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF { set +x -$as_echo "$at_srcdir/reset_defaults.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo " -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:39" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + else + : - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:41" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short + { set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo "Allow host IPv6 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:41" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - + fi { set +x -$as_echo "$at_srcdir/reset_defaults.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 135 $at_status "$at_srcdir/reset_defaults.at:43" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/reset_defaults.at:44" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -217654,75 +220708,106 @@ $at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "$!" > firewalld.pid - { set +x -$as_echo "$at_srcdir/reset_defaults.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/reset_defaults.at:46" -$at_failed && at_fn_log_failure -$at_traceon; } + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/startup_failsafe.at:1" - { set +x -$as_echo "$at_srcdir/reset_defaults.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --query-service ftp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:47" -$at_failed && at_fn_log_failure -$at_traceon; } +cat >./direct.xml <<'_ATEOF' + +-s 192.168.1.0/24 -j doesnotexist + +_ATEOF + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - { set +x -$as_echo "$at_srcdir/reset_defaults.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-ipset test-ipset " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:48" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-ipset test-ipset -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 135 $at_status "$at_srcdir/reset_defaults.at:48" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="251" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" { set +x -$as_echo "$at_srcdir/reset_defaults.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-icmptype test-icmptype " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:49" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-icmptype test-icmptype +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/reset_defaults.at:49" +at_fn_check_status 251 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -217731,11 +220816,10 @@ $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "reset_defaults.at:51" >"$at_check_line_file" + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:51" + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi @@ -217744,13 +220828,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_209 -#AT_START_210 -at_fn_group_banner 210 'iptables_no_flush_on_shutdown.at:1' \ - "avoid iptables flush if using nftables" " " 7 +#AT_STOP_220 +#AT_START_221 +at_fn_group_banner 221 'startup_failsafe.at:1' \ + "startup failsafe - broken stock config" " " 7 at_xfail=no ( - $as_echo "210. $at_setup_line: testing $at_desc ..." + printf "%s\n" "221. $at_setup_line: testing $at_desc ..." $at_traceon @@ -217768,6 +220852,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -217784,29 +220869,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "startup_failsafe.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -217814,15 +220899,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -217878,15 +220963,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -217969,8 +221054,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -217988,15 +221073,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218009,15 +221094,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "startup_failsafe.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218026,30 +221111,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218058,7 +221143,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -218066,8 +221151,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" fi echo "$!" > firewalld.pid @@ -218083,337 +221168,412 @@ at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" fi sleep 1 done - $as_echo "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" - - - - - + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - $as_echo "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -N firewalld_testsuite +{ set +x +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: mkdir -p ./default_config/zones" +at_fn_check_prepare_trace "startup_failsafe.at:1" +( $at_check_trace; mkdir -p ./default_config/zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } +cat >./default_config/zones/broken.xml <<'_ATEOF' + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -I firewalld_testsuite -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } +export FIREWALLD_DEFAULT_CONFIG="./default_config" + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="252" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" - if $IP6TABLES -L >/dev/null 2>&1; then - : +sleep 5 { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -N firewalld_testsuite +printf "%s\n" "$at_srcdir/startup_failsafe.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "startup_failsafe.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 252 $at_status "$at_srcdir/startup_failsafe.at:1" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - else - : + if test x"ignore" != x"ignore"; then + printf "%s\n" "startup_failsafe.at:1" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/startup_failsafe.at:1" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_221 +#AT_START_222 +at_fn_group_banner 222 'ipset_defer_native_ipset_creation.at:1' \ + "ipset defer native creation" " " 7 +at_xfail=no +( + printf "%s\n" "222. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -N firewalld_testsuite + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -I firewalld_testsuite -j ACCEPT + else + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : - - - if $IP6TABLES -L >/dev/null 2>&1; then + else : + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + kill_firewalld() { - else - : + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-j ACCEPT -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "ipset_defer_native_ipset_creation.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/ipset_defer_native_ipset_creation.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + cat >./nft_rule_index.nft <<'_ATEOF' + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + else + : - - - - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : + fi { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-j ACCEPT -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218422,17 +221582,7 @@ $at_traceon; } - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -218440,8 +221590,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + printf "%s\n" "ipset_defer_native_ipset_creation.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/ipset_defer_native_ipset_creation.at:1" fi echo "$!" > firewalld.pid @@ -218457,32 +221607,34 @@ at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" fi sleep 1 done - $as_echo "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" + printf "%s\n" "ipset_defer_native_ipset_creation.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + && at_fn_check_skip 99 "$at_srcdir/ipset_defer_native_ipset_creation.at:1" - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + printf "%s\n" "ipset_defer_native_ipset_creation.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/ipset_defer_native_ipset_creation.at:1" + + + + + + + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218492,61 +221644,54 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + + + + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-j ACCEPT -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218558,15 +221703,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT 1 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT 1 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218577,21 +221722,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218601,18 +221740,17 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -218620,30 +221758,26 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - else - : - - fi - + fi + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -218651,34 +221785,43 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +set foobar { +type ipv4_addr +flags interval +elements = { 10.0.0.0/24 } +} +} " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218686,166 +221829,174 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -N firewalld_testsuite -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -I firewalld_testsuite -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +set foobar6 { +type ipv6_addr +flags interval +elements = { 1234::4321 } +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -N firewalld_testsuite -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.1.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.1.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -N firewalld_testsuite +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar6 --add-entry='4321::1234' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar6 --add-entry='4321::1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + + + + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -I firewalld_testsuite -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + + + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +set foobar { +type ipv4_addr +flags interval +elements = { 10.0.0.0/24, 10.1.1.0/24 } +} +} " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + @@ -218853,23 +222004,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-j ACCEPT +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +set foobar6 { +type ipv6_addr +flags interval +elements = { 1234::4321, +4321::1234 } +} +} " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218880,16 +222038,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218898,43 +222058,55 @@ $at_traceon; } + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:net +Members: +10.0.0.0/24 +10.1.1.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + + + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv6 filter INPUT_direct 0 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv6 filter INPUT_direct 0 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -218943,96 +222115,115 @@ $at_traceon; } + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo >>"$at_stdout"; printf "%s\n" "Name: foobar6 +Type: hash:net +Members: +1234::4321 +4321::1234 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + else + : + fi - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.2.2.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.2.2.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar6 --add-entry='3412::2143' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar6 --add-entry='3412::2143' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + - if $IP6TABLES -L >/dev/null 2>&1; then - : + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:net +Members: +10.0.0.0/24 +10.1.1.0/24 +10.2.2.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - else - : - - fi @@ -219040,21 +222231,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +set foobar { +type ipv4_addr +flags interval +elements = { 10.0.0.0/24, 10.1.1.0/24, +10.2.2.0/24 } +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219064,162 +222264,134 @@ $at_traceon; } + + + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo >>"$at_stdout"; printf "%s\n" "Name: foobar6 +Type: hash:net +Members: +1234::4321 +3412::2143 +4321::1234 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT 1 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT 1 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -N firewalld_testsuite +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +set foobar6 { +type ipv6_addr +flags interval +elements = { 1234::4321, +3412::2143, +4321::1234 } +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -I firewalld_testsuite -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -N firewalld_testsuite -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -N firewalld_testsuite +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -I firewalld_testsuite -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219230,15 +222402,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219248,15 +222420,16 @@ $at_traceon; } + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -219264,55 +222437,54 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -219320,51 +222492,42 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi @@ -219372,21 +222535,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219397,21 +222554,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219421,17 +222572,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 filter INPUT 1 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 filter INPUT 1 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219443,15 +222612,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219462,15 +222631,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219480,69 +222649,164 @@ $at_traceon; } + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -N firewalld_testsuite +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + fi + + + + + if $IPSET list >/dev/null 2>&1; then + + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + fi + + + + + + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 -t filter -A INPUT -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 -t filter -A INPUT -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + + + + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -I firewalld_testsuite -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:net +Members: +10.0.0.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + + if $IP6TABLES -L >/dev/null 2>&1; then : + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -N firewalld_testsuite +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv6 -t filter -A INPUT -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv6 -t filter -A INPUT -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + + + + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo >>"$at_stdout"; printf "%s\n" "Name: foobar6 +Type: hash:net +Members: +1234::4321 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + + else : @@ -219550,31 +222814,58 @@ $at_traceon; } fi + + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -N firewalld_testsuite +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset foobar6 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -I firewalld_testsuite -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219582,33 +222873,64 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter firewalld_foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter firewalld_foobar +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + if $IPSET list >/dev/null 2>&1; then + + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -219616,28 +222938,27 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -219645,16 +222966,14 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + @@ -219662,13 +222981,13 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { nft $NFT_NUMERIC_ARGS list set inet firewalld foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- @@ -219676,7 +222995,7 @@ at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219687,16 +223006,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219707,15 +223028,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar6 --type hash:net --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219726,117 +223047,147 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -N firewalld_testsuite +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.0.0.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -I firewalld_testsuite -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar6 --add-entry='1234::4321' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : + + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -N firewalld_testsuite +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -N firewalld_testsuite " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -N firewalld_testsuite +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + + + + + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -I firewalld_testsuite -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -I firewalld_testsuite -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + + { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 -t filter -I INPUT -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 -t filter -I INPUT -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -219845,29 +223196,34 @@ $at_traceon; } + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:net +Members: +10.0.0.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - + fi @@ -219875,66 +223231,69 @@ $at_traceon; } : - { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + { set +x +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv6 filter foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_defer_native_ipset_creation.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv6 filter foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ipset_defer_native_ipset_creation.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar6; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_defer_native_ipset_creation.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar6; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "Name: foobar6 +Type: hash:net +Members: +1234::4321 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_defer_native_ipset_creation.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + + + + else + : + fi if test x"" != x"ignore"; then - $as_echo "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" + printf "%s\n" "ipset_defer_native_ipset_creation.at:1" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + && at_fn_check_skip 99 "$at_srcdir/ipset_defer_native_ipset_creation.at:1" fi @@ -219943,13 +223302,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_210 -#AT_START_211 -at_fn_group_banner 211 'zone_priority.at:1' \ - "zone - priority" " " 7 +#AT_STOP_222 +#AT_START_223 +at_fn_group_banner 223 'reset_defaults.at:1' \ + "reset defaults" " " 7 at_xfail=no ( - $as_echo "211. $at_setup_line: testing $at_desc ..." + printf "%s\n" "223. $at_setup_line: testing $at_desc ..." $at_traceon @@ -219967,6 +223326,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -219983,29 +223343,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/zone_priority.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/zone_priority.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "zone_priority.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "reset_defaults.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -220013,15 +223373,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "zone_priority.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "reset_defaults.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -220077,15 +223437,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/zone_priority.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -220168,8 +223528,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "zone_priority.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" + printf "%s\n" "reset_defaults.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -220187,15 +223547,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/zone_priority.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -220208,15 +223568,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/zone_priority.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "zone_priority.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "reset_defaults.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -220225,30 +223585,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -220257,7 +223617,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -220265,8 +223625,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "zone_priority.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" + printf "%s\n" "reset_defaults.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" fi echo "$!" > firewalld.pid @@ -220282,20 +223642,10 @@ at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" fi sleep 1 done - $as_echo "zone_priority.at:1" >"$at_check_line_file" + printf "%s\n" "reset_defaults.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" - - - - - - - + && at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" - $as_echo "zone_priority.at:4" >"$at_check_line_file" -(test -n "$FW_IN_CONTAINER" -a "(" "$(cat /proc/sys/net/core/rmem_max 2>/dev/null || cat /.host/proc/sys/net/core/rmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_max 2>/dev/null || cat /.host/proc/sys/net/core/wmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_default 2>/dev/null || cat /.host/proc/sys/net/core/wmem_default 2>/dev/null || echo 0)" -lt 4096000 ")" ) \ - && at_fn_check_skip 77 "$at_srcdir/zone_priority.at:4" @@ -220304,15 +223654,15 @@ at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" { set +x -$as_echo "$at_srcdir/zone_priority.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone foobar +printf "%s\n" "$at_srcdir/reset_defaults.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -220324,15 +223674,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32769 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32769 +printf "%s\n" "$at_srcdir/reset_defaults.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -220342,35 +223692,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32768 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:10" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32768 +printf "%s\n" "$at_srcdir/reset_defaults.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -220381,15 +223713,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32767 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32767 +printf "%s\n" "$at_srcdir/reset_defaults.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service ftp --add-port 22/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service ftp --add-port 22/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -220399,16 +223731,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32769 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32769 +printf "%s\n" "$at_srcdir/reset_defaults.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -220419,15 +223752,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32768 +printf "%s\n" "$at_srcdir/reset_defaults.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -220438,15 +223771,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32768 +printf "%s\n" "$at_srcdir/reset_defaults.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --set-short \"FTP HELPER\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --set-short "FTP HELPER" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -220457,15 +223790,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32767 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32767 +printf "%s\n" "$at_srcdir/reset_defaults.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-short test_short " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-short test_short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -220476,15 +223809,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32769 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32769 +printf "%s\n" "$at_srcdir/reset_defaults.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset test-ipset --type hash:ip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset test-ipset --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -220495,15 +223828,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32768 +printf "%s\n" "$at_srcdir/reset_defaults.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype test-icmptype " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -220513,16 +223846,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32768 +printf "%s\n" "$at_srcdir/reset_defaults.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -220533,15 +223867,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32767 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32767 +printf "%s\n" "$at_srcdir/reset_defaults.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:20" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:19" $at_failed && at_fn_log_failure $at_traceon; } @@ -220552,15 +223886,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 0 +printf "%s\n" "$at_srcdir/reset_defaults.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:21" +echo stderr:; cat "$at_stderr" +echo >>"$at_stdout"; printf "%s\n" "FTP HELPER +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -220571,15 +223907,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 0 +printf "%s\n" "$at_srcdir/reset_defaults.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:22" +echo stderr:; cat "$at_stderr" +echo >>"$at_stdout"; printf "%s\n" "test_short +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:22" $at_failed && at_fn_log_failure $at_traceon; } @@ -220590,15 +223928,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 0 +printf "%s\n" "$at_srcdir/reset_defaults.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:24" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:23" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:24" $at_failed && at_fn_log_failure $at_traceon; } @@ -220608,17 +223946,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-ingress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-ingress-priority +printf "%s\n" "$at_srcdir/reset_defaults.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:26" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -220628,35 +223965,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-ingress-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-ingress-priority 0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:27" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-egress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-egress-priority +printf "%s\n" "$at_srcdir/reset_defaults.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:28" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -220667,15 +223987,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-egress-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-egress-priority 0 +printf "%s\n" "$at_srcdir/reset_defaults.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:29" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -220686,16 +224006,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-priority -1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-priority -1 +printf "%s\n" "$at_srcdir/reset_defaults.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:32" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:30" $at_failed && at_fn_log_failure $at_traceon; } @@ -220706,15 +224027,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-ingress-priority -2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-ingress-priority -2 +printf "%s\n" "$at_srcdir/reset_defaults.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:33" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:31" $at_failed && at_fn_log_failure $at_traceon; } @@ -220725,15 +224046,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-egress-priority -3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:34" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-egress-priority -3 +printf "%s\n" "$at_srcdir/reset_defaults.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-ipset test-ipset " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-ipset test-ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:34" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -220744,15 +224065,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-priority 0 +printf "%s\n" "$at_srcdir/reset_defaults.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-icmptype test-icmptype " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:35" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:33" $at_failed && at_fn_log_failure $at_traceon; } @@ -220764,15 +224085,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 123 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 123 +printf "%s\n" "$at_srcdir/reset_defaults.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:38" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:35" $at_failed && at_fn_log_failure $at_traceon; } @@ -220782,18 +224103,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority +printf "%s\n" "$at_srcdir/reset_defaults.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:37" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "123 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:39" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:37" $at_failed && at_fn_log_failure $at_traceon; } @@ -220804,15 +224124,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 456 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 456 +printf "%s\n" "$at_srcdir/reset_defaults.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:42" +at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -220823,36 +224143,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-ingress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-ingress-priority +printf "%s\n" "$at_srcdir/reset_defaults.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "456 +echo stderr:; cat "$at_stderr" +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:43" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 789 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 789 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:46" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:39" $at_failed && at_fn_log_failure $at_traceon; } @@ -220863,17 +224164,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-egress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-egress-priority +printf "%s\n" "$at_srcdir/reset_defaults.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:41" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "789 +echo stderr:; cat "$at_stderr" +echo >>"$at_stdout"; printf "%s\n" "Allow host IPv6 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:41" $at_failed && at_fn_log_failure $at_traceon; } @@ -220883,17 +224184,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 666 +printf "%s\n" "$at_srcdir/reset_defaults.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:52" +at_fn_check_status 135 $at_status "$at_srcdir/reset_defaults.at:43" $at_failed && at_fn_log_failure $at_traceon; } @@ -220904,15 +224204,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 666 +printf "%s\n" "$at_srcdir/reset_defaults.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:53" +at_fn_check_status 107 $at_status "$at_srcdir/reset_defaults.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -220922,16 +224222,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -1 +printf "%s\n" "$at_srcdir/reset_defaults.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:54" +at_fn_check_status 101 $at_status "$at_srcdir/reset_defaults.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -220942,17 +224243,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority +printf "%s\n" "$at_srcdir/reset_defaults.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-1 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:55" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -220962,17 +224261,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:60" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -2 +printf "%s\n" "$at_srcdir/reset_defaults.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-ipset test-ipset " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:48" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-ipset test-ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:60" +at_fn_check_status 135 $at_status "$at_srcdir/reset_defaults.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -220983,15 +224281,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:61" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -3 +printf "%s\n" "$at_srcdir/reset_defaults.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-icmptype test-icmptype " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:49" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:61" +at_fn_check_status 107 $at_status "$at_srcdir/reset_defaults.at:49" $at_failed && at_fn_log_failure $at_traceon; } @@ -221001,244 +224299,325 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:62" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:62" -$at_failed && at_fn_log_failure -$at_traceon; } - + if test x"ignore" != x"ignore"; then + printf "%s\n" "reset_defaults.at:51" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:51" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_223 +#AT_START_224 +at_fn_group_banner 224 'iptables_no_flush_on_shutdown.at:1' \ + "avoid iptables flush if using nftables" " " 7 +at_xfail=no +( + printf "%s\n" "224. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/zone_priority.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-zone foobar | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:65" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-zone foobar | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "foobar -target: default -ingress-priority: -2 -egress-priority: -3 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:65" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/zone_priority.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:85" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-1 + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:85" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-1 --set-priority -30000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:86" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-1 --set-priority -30000 + else + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:86" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-1 --add-interface dummy-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:87" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-1 --add-interface dummy-1 + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:87" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + else + : + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf - { set +x -$as_echo "$at_srcdir/zone_priority.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:88" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-2 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:88" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/zone_priority.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-2 --set-priority -10000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:89" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-2 --set-priority -10000 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:89" -$at_failed && at_fn_log_failure -$at_traceon; } + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/zone_priority.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-2 --add-interface dummy-2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:90" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-2 --add-interface dummy-2 + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:90" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - - { set +x -$as_echo "$at_srcdir/zone_priority.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:91" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-3 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:91" -$at_failed && at_fn_log_failure -$at_traceon; } - + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + cat >./nft_rule_index.nft <<'_ATEOF' + + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF { set +x -$as_echo "$at_srcdir/zone_priority.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-ingress-priority -5000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:92" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-ingress-priority -5000 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:92" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + else + : - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-egress-priority -2000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:93" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-egress-priority -2000 + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:93" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --add-interface dummy-3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:94" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --add-interface dummy-3 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:94" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221247,93 +224626,167 @@ $at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + + + + + + + printf "%s\n" "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + + + { set +x -$as_echo "$at_srcdir/zone_priority.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:95" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-4 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:95" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-ingress-priority -100 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:96" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-ingress-priority -100 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:96" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -N firewalld_testsuite +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-egress-priority 1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:97" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-egress-priority 1 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:97" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : - + fi { set +x -$as_echo "$at_srcdir/zone_priority.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --add-interface dummy-4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:98" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --add-interface dummy-4 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:98" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -I firewalld_testsuite -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-5 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:99" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-5 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:99" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221343,35 +224796,61 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/zone_priority.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-ingress-priority -1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:100" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-ingress-priority -1 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:100" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + { set +x -$as_echo "$at_srcdir/zone_priority.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-egress-priority 100 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:101" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-egress-priority 100 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:101" +echo >>"$at_stdout"; printf "%s\n" "-j ACCEPT +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221381,16 +224860,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --add-interface dummy-5 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:102" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --add-interface dummy-5 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:102" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221401,15 +224881,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:103" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-6 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:103" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221419,16 +224899,25 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-6 --set-priority 500 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:104" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-6 --set-priority 500 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:104" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221438,35 +224927,61 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/zone_priority.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-6 --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:105" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-6 --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:105" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + { set +x -$as_echo "$at_srcdir/zone_priority.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:106" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-7 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:106" +echo >>"$at_stdout"; printf "%s\n" "-j ACCEPT +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221476,16 +224991,66 @@ $at_traceon; } + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" + + + + + { set +x -$as_echo "$at_srcdir/zone_priority.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-7 --set-priority 1000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:107" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-7 --set-priority 1000 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:107" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221495,35 +225060,61 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/zone_priority.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-7 --add-interface dummy-7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:108" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-7 --add-interface dummy-7 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:108" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + { set +x -$as_echo "$at_srcdir/zone_priority.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-8 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:109" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-8 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:109" +echo >>"$at_stdout"; printf "%s\n" "-j ACCEPT +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221533,16 +225124,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-8 --set-priority 30000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:110" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-8 --set-priority 30000 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT 1 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT 1 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:110" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221553,15 +225145,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-8 --add-source 10.0.0.0/8 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:111" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-8 --add-source 10.0.0.0/8 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:111" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221571,35 +225169,57 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/zone_priority.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-0andlast " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:112" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-0andlast +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:112" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + { set +x -$as_echo "$at_srcdir/zone_priority.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-ingress-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:113" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-ingress-priority 0 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:113" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221610,15 +225230,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-egress-priority 32000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:114" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-egress-priority 32000 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:114" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221626,121 +225254,126 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -N firewalld_testsuite +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --add-interface dummy-9 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:115" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --add-interface dummy-9 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:115" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -N firewalld_testsuite +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:116" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:116" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : - + fi { set +x -$as_echo "$at_srcdir/zone_priority.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:116" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:116" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -I firewalld_testsuite -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:119" +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_INPUT_POLICIES { -iifname \"dummy-1\" jump filter_IN_policy_allow-host-ipv6 -iifname \"dummy-1\" jump filter_IN_zone-1 -iifname \"dummy-1\" reject with icmpx admin-prohibited -iifname \"dummy-2\" jump filter_IN_policy_allow-host-ipv6 -iifname \"dummy-2\" jump filter_IN_zone-2 -iifname \"dummy-2\" reject with icmpx admin-prohibited -iifname \"dummy-3\" jump filter_IN_policy_allow-host-ipv6 -iifname \"dummy-3\" jump filter_IN_zone-3 -iifname \"dummy-3\" reject with icmpx admin-prohibited -iifname \"dummy-4\" jump filter_IN_policy_allow-host-ipv6 -iifname \"dummy-4\" jump filter_IN_zone-4 -iifname \"dummy-4\" reject with icmpx admin-prohibited -iifname \"dummy-5\" jump filter_IN_policy_allow-host-ipv6 -iifname \"dummy-5\" jump filter_IN_zone-5 -iifname \"dummy-5\" reject with icmpx admin-prohibited -iifname \"dummy-9\" jump filter_IN_policy_allow-host-ipv6 -iifname \"dummy-9\" jump filter_IN_zone-0andlast -iifname \"dummy-9\" reject with icmpx admin-prohibited -ip saddr 10.10.10.0/24 jump filter_IN_policy_allow-host-ipv6 -ip saddr 10.10.10.0/24 jump filter_IN_zone-6 -ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited -iifname \"dummy-7\" jump filter_IN_policy_allow-host-ipv6 -iifname \"dummy-7\" jump filter_IN_zone-7 -iifname \"dummy-7\" reject with icmpx admin-prohibited -ip saddr 10.0.0.0/8 jump filter_IN_policy_allow-host-ipv6 -ip saddr 10.0.0.0/8 jump filter_IN_zone-8 -ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited -jump filter_IN_policy_allow-host-ipv6 -jump filter_IN_public -reject with icmpx admin-prohibited -} -} +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:119" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -221750,249 +225383,63 @@ $at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/zone_priority.at:155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:155" +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_FORWARD_POLICIES { -iifname \"dummy-1\" oifname \"dummy-1\" jump filter_FWD_zone-1 -iifname \"dummy-1\" oifname \"dummy-1\" reject with icmpx admin-prohibited -iifname \"dummy-1\" oifname \"dummy-2\" jump filter_FWD_zone-1 -iifname \"dummy-1\" oifname \"dummy-2\" reject with icmpx admin-prohibited -iifname \"dummy-1\" oifname \"dummy-3\" jump filter_FWD_zone-1 -iifname \"dummy-1\" oifname \"dummy-3\" reject with icmpx admin-prohibited -iifname \"dummy-1\" oifname \"dummy-4\" jump filter_FWD_zone-1 -iifname \"dummy-1\" oifname \"dummy-4\" reject with icmpx admin-prohibited -iifname \"dummy-1\" oifname \"dummy-5\" jump filter_FWD_zone-1 -iifname \"dummy-1\" oifname \"dummy-5\" reject with icmpx admin-prohibited -iifname \"dummy-1\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-1 -iifname \"dummy-1\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited -iifname \"dummy-1\" oifname \"dummy-7\" jump filter_FWD_zone-1 -iifname \"dummy-1\" oifname \"dummy-7\" reject with icmpx admin-prohibited -iifname \"dummy-1\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-1 -iifname \"dummy-1\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited -iifname \"dummy-1\" oifname \"dummy-9\" jump filter_FWD_zone-1 -iifname \"dummy-1\" oifname \"dummy-9\" reject with icmpx admin-prohibited -iifname \"dummy-1\" jump filter_FWD_zone-1 -iifname \"dummy-1\" reject with icmpx admin-prohibited -iifname \"dummy-2\" oifname \"dummy-1\" jump filter_FWD_zone-2 -iifname \"dummy-2\" oifname \"dummy-1\" reject with icmpx admin-prohibited -iifname \"dummy-2\" oifname \"dummy-2\" jump filter_FWD_zone-2 -iifname \"dummy-2\" oifname \"dummy-2\" reject with icmpx admin-prohibited -iifname \"dummy-2\" oifname \"dummy-3\" jump filter_FWD_zone-2 -iifname \"dummy-2\" oifname \"dummy-3\" reject with icmpx admin-prohibited -iifname \"dummy-2\" oifname \"dummy-4\" jump filter_FWD_zone-2 -iifname \"dummy-2\" oifname \"dummy-4\" reject with icmpx admin-prohibited -iifname \"dummy-2\" oifname \"dummy-5\" jump filter_FWD_zone-2 -iifname \"dummy-2\" oifname \"dummy-5\" reject with icmpx admin-prohibited -iifname \"dummy-2\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-2 -iifname \"dummy-2\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited -iifname \"dummy-2\" oifname \"dummy-7\" jump filter_FWD_zone-2 -iifname \"dummy-2\" oifname \"dummy-7\" reject with icmpx admin-prohibited -iifname \"dummy-2\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-2 -iifname \"dummy-2\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited -iifname \"dummy-2\" oifname \"dummy-9\" jump filter_FWD_zone-2 -iifname \"dummy-2\" oifname \"dummy-9\" reject with icmpx admin-prohibited -iifname \"dummy-2\" jump filter_FWD_zone-2 -iifname \"dummy-2\" reject with icmpx admin-prohibited -iifname \"dummy-3\" oifname \"dummy-1\" jump filter_FWD_zone-3 -iifname \"dummy-3\" oifname \"dummy-1\" reject with icmpx admin-prohibited -iifname \"dummy-3\" oifname \"dummy-2\" jump filter_FWD_zone-3 -iifname \"dummy-3\" oifname \"dummy-2\" reject with icmpx admin-prohibited -iifname \"dummy-3\" oifname \"dummy-3\" jump filter_FWD_zone-3 -iifname \"dummy-3\" oifname \"dummy-3\" reject with icmpx admin-prohibited -iifname \"dummy-3\" oifname \"dummy-4\" jump filter_FWD_zone-3 -iifname \"dummy-3\" oifname \"dummy-4\" reject with icmpx admin-prohibited -iifname \"dummy-3\" oifname \"dummy-5\" jump filter_FWD_zone-3 -iifname \"dummy-3\" oifname \"dummy-5\" reject with icmpx admin-prohibited -iifname \"dummy-3\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-3 -iifname \"dummy-3\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited -iifname \"dummy-3\" oifname \"dummy-7\" jump filter_FWD_zone-3 -iifname \"dummy-3\" oifname \"dummy-7\" reject with icmpx admin-prohibited -iifname \"dummy-3\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-3 -iifname \"dummy-3\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited -iifname \"dummy-3\" oifname \"dummy-9\" jump filter_FWD_zone-3 -iifname \"dummy-3\" oifname \"dummy-9\" reject with icmpx admin-prohibited -iifname \"dummy-3\" jump filter_FWD_zone-3 -iifname \"dummy-3\" reject with icmpx admin-prohibited -iifname \"dummy-4\" oifname \"dummy-1\" jump filter_FWD_zone-4 -iifname \"dummy-4\" oifname \"dummy-1\" reject with icmpx admin-prohibited -iifname \"dummy-4\" oifname \"dummy-2\" jump filter_FWD_zone-4 -iifname \"dummy-4\" oifname \"dummy-2\" reject with icmpx admin-prohibited -iifname \"dummy-4\" oifname \"dummy-3\" jump filter_FWD_zone-4 -iifname \"dummy-4\" oifname \"dummy-3\" reject with icmpx admin-prohibited -iifname \"dummy-4\" oifname \"dummy-4\" jump filter_FWD_zone-4 -iifname \"dummy-4\" oifname \"dummy-4\" reject with icmpx admin-prohibited -iifname \"dummy-4\" oifname \"dummy-5\" jump filter_FWD_zone-4 -iifname \"dummy-4\" oifname \"dummy-5\" reject with icmpx admin-prohibited -iifname \"dummy-4\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-4 -iifname \"dummy-4\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited -iifname \"dummy-4\" oifname \"dummy-7\" jump filter_FWD_zone-4 -iifname \"dummy-4\" oifname \"dummy-7\" reject with icmpx admin-prohibited -iifname \"dummy-4\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-4 -iifname \"dummy-4\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited -iifname \"dummy-4\" oifname \"dummy-9\" jump filter_FWD_zone-4 -iifname \"dummy-4\" oifname \"dummy-9\" reject with icmpx admin-prohibited -iifname \"dummy-4\" jump filter_FWD_zone-4 -iifname \"dummy-4\" reject with icmpx admin-prohibited -iifname \"dummy-5\" oifname \"dummy-1\" jump filter_FWD_zone-5 -iifname \"dummy-5\" oifname \"dummy-1\" reject with icmpx admin-prohibited -iifname \"dummy-5\" oifname \"dummy-2\" jump filter_FWD_zone-5 -iifname \"dummy-5\" oifname \"dummy-2\" reject with icmpx admin-prohibited -iifname \"dummy-5\" oifname \"dummy-3\" jump filter_FWD_zone-5 -iifname \"dummy-5\" oifname \"dummy-3\" reject with icmpx admin-prohibited -iifname \"dummy-5\" oifname \"dummy-4\" jump filter_FWD_zone-5 -iifname \"dummy-5\" oifname \"dummy-4\" reject with icmpx admin-prohibited -iifname \"dummy-5\" oifname \"dummy-5\" jump filter_FWD_zone-5 -iifname \"dummy-5\" oifname \"dummy-5\" reject with icmpx admin-prohibited -iifname \"dummy-5\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-5 -iifname \"dummy-5\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited -iifname \"dummy-5\" oifname \"dummy-7\" jump filter_FWD_zone-5 -iifname \"dummy-5\" oifname \"dummy-7\" reject with icmpx admin-prohibited -iifname \"dummy-5\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-5 -iifname \"dummy-5\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited -iifname \"dummy-5\" oifname \"dummy-9\" jump filter_FWD_zone-5 -iifname \"dummy-5\" oifname \"dummy-9\" reject with icmpx admin-prohibited -iifname \"dummy-5\" jump filter_FWD_zone-5 -iifname \"dummy-5\" reject with icmpx admin-prohibited -iifname \"dummy-9\" oifname \"dummy-1\" jump filter_FWD_zone-0andlast -iifname \"dummy-9\" oifname \"dummy-1\" reject with icmpx admin-prohibited -iifname \"dummy-9\" oifname \"dummy-2\" jump filter_FWD_zone-0andlast -iifname \"dummy-9\" oifname \"dummy-2\" reject with icmpx admin-prohibited -iifname \"dummy-9\" oifname \"dummy-3\" jump filter_FWD_zone-0andlast -iifname \"dummy-9\" oifname \"dummy-3\" reject with icmpx admin-prohibited -iifname \"dummy-9\" oifname \"dummy-4\" jump filter_FWD_zone-0andlast -iifname \"dummy-9\" oifname \"dummy-4\" reject with icmpx admin-prohibited -iifname \"dummy-9\" oifname \"dummy-5\" jump filter_FWD_zone-0andlast -iifname \"dummy-9\" oifname \"dummy-5\" reject with icmpx admin-prohibited -iifname \"dummy-9\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-0andlast -iifname \"dummy-9\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited -iifname \"dummy-9\" oifname \"dummy-7\" jump filter_FWD_zone-0andlast -iifname \"dummy-9\" oifname \"dummy-7\" reject with icmpx admin-prohibited -iifname \"dummy-9\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-0andlast -iifname \"dummy-9\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited -iifname \"dummy-9\" oifname \"dummy-9\" jump filter_FWD_zone-0andlast -iifname \"dummy-9\" oifname \"dummy-9\" reject with icmpx admin-prohibited -iifname \"dummy-9\" jump filter_FWD_zone-0andlast -iifname \"dummy-9\" reject with icmpx admin-prohibited -oifname \"dummy-1\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 -oifname \"dummy-1\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited -oifname \"dummy-2\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 -oifname \"dummy-2\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited -oifname \"dummy-3\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 -oifname \"dummy-3\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited -oifname \"dummy-4\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 -oifname \"dummy-4\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited -oifname \"dummy-5\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 -oifname \"dummy-5\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited -ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump filter_FWD_zone-6 -ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited -oifname \"dummy-7\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 -oifname \"dummy-7\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited -ip saddr 10.10.10.0/24 ip daddr 10.0.0.0/8 jump filter_FWD_zone-6 -ip saddr 10.10.10.0/24 ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited -oifname \"dummy-9\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 -oifname \"dummy-9\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited -ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 -ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited -iifname \"dummy-7\" oifname \"dummy-1\" jump filter_FWD_zone-7 -iifname \"dummy-7\" oifname \"dummy-1\" reject with icmpx admin-prohibited -iifname \"dummy-7\" oifname \"dummy-2\" jump filter_FWD_zone-7 -iifname \"dummy-7\" oifname \"dummy-2\" reject with icmpx admin-prohibited -iifname \"dummy-7\" oifname \"dummy-3\" jump filter_FWD_zone-7 -iifname \"dummy-7\" oifname \"dummy-3\" reject with icmpx admin-prohibited -iifname \"dummy-7\" oifname \"dummy-4\" jump filter_FWD_zone-7 -iifname \"dummy-7\" oifname \"dummy-4\" reject with icmpx admin-prohibited -iifname \"dummy-7\" oifname \"dummy-5\" jump filter_FWD_zone-7 -iifname \"dummy-7\" oifname \"dummy-5\" reject with icmpx admin-prohibited -iifname \"dummy-7\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-7 -iifname \"dummy-7\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited -iifname \"dummy-7\" oifname \"dummy-7\" jump filter_FWD_zone-7 -iifname \"dummy-7\" oifname \"dummy-7\" reject with icmpx admin-prohibited -iifname \"dummy-7\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-7 -iifname \"dummy-7\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited -iifname \"dummy-7\" oifname \"dummy-9\" jump filter_FWD_zone-7 -iifname \"dummy-7\" oifname \"dummy-9\" reject with icmpx admin-prohibited -iifname \"dummy-7\" jump filter_FWD_zone-7 -iifname \"dummy-7\" reject with icmpx admin-prohibited -oifname \"dummy-1\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 -oifname \"dummy-1\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited -oifname \"dummy-2\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 -oifname \"dummy-2\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited -oifname \"dummy-3\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 -oifname \"dummy-3\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited -oifname \"dummy-4\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 -oifname \"dummy-4\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited -oifname \"dummy-5\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 -oifname \"dummy-5\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited -ip saddr 10.0.0.0/8 ip daddr 10.10.10.0/24 jump filter_FWD_zone-8 -ip saddr 10.0.0.0/8 ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited -oifname \"dummy-7\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 -oifname \"dummy-7\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited -ip saddr 10.0.0.0/8 ip daddr 10.0.0.0/8 jump filter_FWD_zone-8 -ip saddr 10.0.0.0/8 ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited -oifname \"dummy-9\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 -oifname \"dummy-9\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited -ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 -ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited -oifname \"dummy-1\" jump filter_FWD_public -oifname \"dummy-1\" reject with icmpx admin-prohibited -oifname \"dummy-2\" jump filter_FWD_public -oifname \"dummy-2\" reject with icmpx admin-prohibited -oifname \"dummy-3\" jump filter_FWD_public -oifname \"dummy-3\" reject with icmpx admin-prohibited -oifname \"dummy-4\" jump filter_FWD_public -oifname \"dummy-4\" reject with icmpx admin-prohibited -oifname \"dummy-5\" jump filter_FWD_public -oifname \"dummy-5\" reject with icmpx admin-prohibited -ip daddr 10.10.10.0/24 jump filter_FWD_public -ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited -oifname \"dummy-7\" jump filter_FWD_public -oifname \"dummy-7\" reject with icmpx admin-prohibited -ip daddr 10.0.0.0/8 jump filter_FWD_public -ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited -oifname \"dummy-9\" jump filter_FWD_public -oifname \"dummy-9\" reject with icmpx admin-prohibited -jump filter_FWD_public -reject with icmpx admin-prohibited -} -} +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:155" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - - - - - +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "-j ACCEPT +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -222002,32 +225449,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:755: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-zone zone-2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:755" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-zone zone-2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "zone-2 (active) -target: default -ingress-priority: -10000 -egress-priority: -10000 -icmp-block-inversion: no -interfaces: dummy-2 -sources: -services: -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:755" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -222038,32 +225468,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:773: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-zone zone-4 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:773" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-zone zone-4 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "zone-4 (active) -target: default -ingress-priority: -100 -egress-priority: 1 -icmp-block-inversion: no -interfaces: dummy-4 -sources: -services: -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:773" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -222071,21 +225484,25 @@ $at_traceon; } -{ set +x -$as_echo "$at_srcdir/zone_priority.at:793: cat ./zones/zone-5.xml" -at_fn_check_prepare_trace "zone_priority.at:793" -( $at_check_trace; cat ./zones/zone-5.xml + + + + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " - - - -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:793" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -222093,16 +225510,24 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/zone_priority.at:801: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-priority -1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:801" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-priority -1 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:801" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -222112,54 +225537,92 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/zone_priority.at:802: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-ingress-priority -2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:802" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-ingress-priority -2 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:802" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/zone_priority.at:803: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-egress-priority -3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:803" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-egress-priority -3 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:803" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + { set +x -$as_echo "$at_srcdir/zone_priority.at:804: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:804" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-priority +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:804" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -222170,15 +225633,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-ingress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:805" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-ingress-priority +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:805" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -222188,16 +225657,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:806: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-egress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:806" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-egress-priority +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT 1 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT 1 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:806" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -222205,326 +225675,138 @@ $at_traceon; } - - - if test x"ignore" != x"ignore"; then - $as_echo "zone_priority.at:808" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/zone_priority.at:808" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_211 -#AT_START_212 -at_fn_group_banner 212 'nftables_flowtable.at:1' \ - "nftables flowtable" " " 7 -at_xfail=no -( - $as_echo "212. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "nftables_flowtable.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "nftables_flowtable.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - KERNEL_MAJOR=`uname -r | cut -d. -f1` - KERNEL_MINOR=`uname -r | cut -d. -f2` - if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then - : - - else - : - - sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf - - fi - - - - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "nftables_flowtable.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/nftables_flowtable.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - cat >./nft_rule_index.nft <<'_ATEOF' - - add table inet firewalld_check_rule_index - add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } - add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept - add rule inet firewalld_check_rule_index foobar accept - insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept -_ATEOF + fi { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then - : - - else - : - - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "nftables_flowtable.at:1" -( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - fi + + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -222533,34 +225815,26 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "nftables_flowtable.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/nftables_flowtable.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "nftables_flowtable.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/nftables_flowtable.at:1" + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -222569,374 +225843,306 @@ at_fn_check_skip 99 "$at_srcdir/nftables_flowtable.at:1" { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_flowtable " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check_flowtable +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "nftables_flowtable.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add flowtable inet firewalld_check_flowtable foobar { hook ingress priority 0 \; } >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/nftables_flowtable.at:1" + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_flowtable " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_flowtable +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : -$as_echo "nftables_flowtable.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v iperf3 >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/nftables_flowtable.at:1" -$as_echo "nftables_flowtable.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v sysctl >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/nftables_flowtable.at:1" -$as_echo "nftables_flowtable.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v jq >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/nftables_flowtable.at:1" + fi - $as_echo "nftables_flowtable.at:1" >"$at_check_line_file" -(test -n "$FW_IN_CONTAINER" -a "(" "$(cat /proc/sys/net/core/rmem_max 2>/dev/null || cat /.host/proc/sys/net/core/rmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_max 2>/dev/null || cat /.host/proc/sys/net/core/wmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_default 2>/dev/null || cat /.host/proc/sys/net/core/wmem_default 2>/dev/null || echo 0)" -lt 4096000 ")" ) \ - && at_fn_check_skip 77 "$at_srcdir/nftables_flowtable.at:1" -cat <> ./cleanup -ip netns delete fwd-test-${at_group_normalized}-send -ip netns delete fwd-test-${at_group_normalized}-recv -HERE + if $IP6TABLES -L >/dev/null 2>&1; then + : -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns add fwd-test-\${at_group_normalized}-send" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized}-send -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns add fwd-test-\${at_group_normalized}-recv" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized}-recv ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link add fwd-test-send type veth peer name fwd-test-fwd-0" -at_fn_check_prepare_trace "nftables_flowtable.at:1" -( $at_check_trace; ip link add fwd-test-send type veth peer name fwd-test-fwd-0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link add fwd-test-recv type veth peer name fwd-test-fwd-1" -at_fn_check_prepare_trace "nftables_flowtable.at:1" -( $at_check_trace; ip link add fwd-test-recv type veth peer name fwd-test-fwd-1 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + else + : -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-send netns fwd-test-\${at_group_normalized}-send" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip link set fwd-test-send netns fwd-test-${at_group_normalized}-send -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + fi -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-recv netns fwd-test-\${at_group_normalized}-recv" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip link set fwd-test-recv netns fwd-test-${at_group_normalized}-recv -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip link set fwd-test-send up" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip link set fwd-test-send up -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip link set fwd-test-recv up" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip link set fwd-test-recv up -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip addr add 10.10.10.2/24 dev fwd-test-send" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip addr add 10.10.10.2/24 dev fwd-test-send -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip route add 10.20.20.0/24 nexthop via 10.10.10.1 dev fwd-test-send" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip route add 10.20.20.0/24 nexthop via 10.10.10.1 dev fwd-test-send -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip addr add 10.20.20.2/24 dev fwd-test-recv" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip addr add 10.20.20.2/24 dev fwd-test-recv -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip route add 10.10.10.0/24 nexthop via 10.20.20.1 dev fwd-test-recv" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip route add 10.10.10.0/24 nexthop via 10.20.20.1 dev fwd-test-recv ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-fwd-0 netns fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip link set fwd-test-fwd-0 netns fwd-test-${at_group_normalized} + + + + + + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-fwd-1 netns fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip link set fwd-test-fwd-1 netns fwd-test-${at_group_normalized} + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 filter INPUT 1 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 filter INPUT 1 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip addr add 10.10.10.1/24 dev fwd-test-fwd-0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip addr add 10.10.10.1/24 dev fwd-test-fwd-0 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip addr add 10.20.20.1/24 dev fwd-test-fwd-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip addr add 10.20.20.1/24 dev fwd-test-fwd-1 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link set fwd-test-fwd-0 up " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link set fwd-test-fwd-0 up +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link set fwd-test-fwd-1 up " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link set fwd-test-fwd-1 up +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -i 's/^NftablesFlowtable.*/NftablesFlowtable=off/' ./firewalld.conf " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sed -i 's/^NftablesFlowtable.*/NftablesFlowtable=off/' ./firewalld.conf +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : - + fi { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=1 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -222945,15 +226151,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-0 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter firewalld_foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter firewalld_foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -222964,15 +226170,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-1 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -222980,419 +226192,202 @@ $at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv iperf3 -s -1 >/dev/null &" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv iperf3 -s -1 >/dev/null & -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send iperf3 -J -c 10.20.20.2 -O 10 --connect-timeout 10 --interval 0 | jq '.end.sum_received.bits_per_second' | { read RESULT; printf \"%s\" \${RESULT%.*} > ./bps-tcp ; }" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send iperf3 -J -c 10.20.20.2 -O 10 --connect-timeout 10 --interval 0 | jq '.end.sum_received.bits_per_second' | { read RESULT; printf "%s" ${RESULT%.*} > ./bps-tcp ; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv iperf3 -s -1 >/dev/null &" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv iperf3 -s -1 >/dev/null & -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send iperf3 -u -J -c 10.20.20.2 --connect-timeout 10 --interval 0 --bitrate 0 | jq '.end.sum.bits_per_second' | { read RESULT; printf \"%s\" \${RESULT%.*} > ./bps-udp ; }" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send iperf3 -u -J -c 10.20.20.2 --connect-timeout 10 --interval 0 --bitrate 0 | jq '.end.sum.bits_per_second' | { read RESULT; printf "%s" ${RESULT%.*} > ./bps-udp ; } + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link delete fwd-test-fwd-0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link delete fwd-test-fwd-0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link delete fwd-test-fwd-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link delete fwd-test-fwd-1 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns delete fwd-test-\${at_group_normalized}-send" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns delete fwd-test-${at_group_normalized}-send -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns delete fwd-test-\${at_group_normalized}-recv" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns delete fwd-test-${at_group_normalized}-recv -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: mv ./bps-tcp ./bps-tcp-disabled" -at_fn_check_prepare_trace "nftables_flowtable.at:1" -( $at_check_trace; mv ./bps-tcp ./bps-tcp-disabled ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: mv ./bps-udp ./bps-udp-disabled" -at_fn_check_prepare_trace "nftables_flowtable.at:1" -( $at_check_trace; mv ./bps-udp ./bps-udp-disabled -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns add fwd-test-\${at_group_normalized}-send" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized}-send -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns add fwd-test-\${at_group_normalized}-recv" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized}-recv -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link add fwd-test-send type veth peer name fwd-test-fwd-0" -at_fn_check_prepare_trace "nftables_flowtable.at:1" -( $at_check_trace; ip link add fwd-test-send type veth peer name fwd-test-fwd-0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link add fwd-test-recv type veth peer name fwd-test-fwd-1" -at_fn_check_prepare_trace "nftables_flowtable.at:1" -( $at_check_trace; ip link add fwd-test-recv type veth peer name fwd-test-fwd-1 + + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-send netns fwd-test-\${at_group_normalized}-send" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip link set fwd-test-send netns fwd-test-${at_group_normalized}-send -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-recv netns fwd-test-\${at_group_normalized}-recv" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip link set fwd-test-recv netns fwd-test-${at_group_normalized}-recv -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip link set fwd-test-send up" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip link set fwd-test-send up -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip link set fwd-test-recv up" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip link set fwd-test-recv up -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip addr add 10.10.10.2/24 dev fwd-test-send" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip addr add 10.10.10.2/24 dev fwd-test-send -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip route add 10.20.20.0/24 nexthop via 10.10.10.1 dev fwd-test-send" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip route add 10.20.20.0/24 nexthop via 10.10.10.1 dev fwd-test-send + { set +x +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip addr add 10.20.20.2/24 dev fwd-test-recv" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip addr add 10.20.20.2/24 dev fwd-test-recv -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip route add 10.10.10.0/24 nexthop via 10.20.20.1 dev fwd-test-recv" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip route add 10.10.10.0/24 nexthop via 10.20.20.1 dev fwd-test-recv -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-fwd-0 netns fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip link set fwd-test-fwd-0 netns fwd-test-${at_group_normalized} -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-fwd-1 netns fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip link set fwd-test-fwd-1 netns fwd-test-${at_group_normalized} -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip addr add 10.10.10.1/24 dev fwd-test-fwd-0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip addr add 10.10.10.1/24 dev fwd-test-fwd-0 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip addr add 10.20.20.1/24 dev fwd-test-fwd-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip addr add 10.20.20.1/24 dev fwd-test-fwd-1 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPTABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPTABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link set fwd-test-fwd-0 up " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link set fwd-test-fwd-0 up +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link set fwd-test-fwd-1 up " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link set fwd-test-fwd-1 up +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IP6TABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -i 's/^NftablesFlowtable.*/NftablesFlowtable=fwd-test-fwd-0 fwd-test-fwd-1/' ./firewalld.conf " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sed -i 's/^NftablesFlowtable.*/NftablesFlowtable=fwd-test-fwd-0 fwd-test-fwd-1/' ./firewalld.conf +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -N firewalld_testsuite " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -N firewalld_testsuite ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$EBTABLES -t filter -I firewalld_testsuite -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $EBTABLES -t filter -I firewalld_testsuite -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -223400,18 +226395,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 -t filter -I INPUT -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 -t filter -I INPUT -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -223420,16 +226413,23 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=1 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -223437,35 +226437,59 @@ $at_traceon; } + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-0 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-1 +printf "%s\n" "$at_srcdir/iptables_no_flush_on_shutdown.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L firewalld_testsuite; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "iptables_no_flush_on_shutdown.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L firewalld_testsuite; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/iptables_no_flush_on_shutdown.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -223473,209 +226497,12 @@ $at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv iperf3 -s -1 >/dev/null &" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv iperf3 -s -1 >/dev/null & -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send iperf3 -J -c 10.20.20.2 -O 10 --connect-timeout 10 --interval 0 | jq '.end.sum_received.bits_per_second' | { read RESULT; printf \"%s\" \${RESULT%.*} > ./bps-tcp ; }" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send iperf3 -J -c 10.20.20.2 -O 10 --connect-timeout 10 --interval 0 | jq '.end.sum_received.bits_per_second' | { read RESULT; printf "%s" ${RESULT%.*} > ./bps-tcp ; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv iperf3 -s -1 >/dev/null &" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv iperf3 -s -1 >/dev/null & -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send iperf3 -u -J -c 10.20.20.2 --connect-timeout 10 --interval 0 --bitrate 0 | jq '.end.sum.bits_per_second' | { read RESULT; printf \"%s\" \${RESULT%.*} > ./bps-udp ; }" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send iperf3 -u -J -c 10.20.20.2 --connect-timeout 10 --interval 0 --bitrate 0 | jq '.end.sum.bits_per_second' | { read RESULT; printf "%s" ${RESULT%.*} > ./bps-udp ; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link delete fwd-test-fwd-0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link delete fwd-test-fwd-0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link delete fwd-test-fwd-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link delete fwd-test-fwd-1 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns delete fwd-test-\${at_group_normalized}-send" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns delete fwd-test-${at_group_normalized}-send -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: ip netns delete fwd-test-\${at_group_normalized}-recv" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" -( $at_check_trace; ip netns delete fwd-test-${at_group_normalized}-recv -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: mv ./bps-tcp ./bps-tcp-enabled" -at_fn_check_prepare_trace "nftables_flowtable.at:1" -( $at_check_trace; mv ./bps-tcp ./bps-tcp-enabled -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: mv ./bps-udp ./bps-udp-enabled" -at_fn_check_prepare_trace "nftables_flowtable.at:1" -( $at_check_trace; mv ./bps-udp ./bps-udp-enabled -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: expr \$(cat ./bps-tcp-enabled) \\> \$(cat ./bps-tcp-disabled)" -at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_flowtable.at:1" -( $at_check_trace; expr $(cat ./bps-tcp-enabled) \> $(cat ./bps-tcp-disabled) -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -if $at_failed; then : - echo -echo "FAIL: TCP BPS decreased with flowtable enabled." -echo "Disabled: $(cat ./bps-tcp-disabled)" -echo "Enabled: $(cat ./bps-tcp-enabled)" -echo - -else - echo -echo "PASS: TCP BPS increased with flowtable enabled." -echo "Disabled: $(cat ./bps-tcp-disabled)" -echo "Enabled: $(cat ./bps-tcp-enabled)" -echo - -fi -$at_failed && at_fn_log_failure -$at_traceon; } - - -{ set +x -$as_echo "$at_srcdir/nftables_flowtable.at:1: expr \$(cat ./bps-udp-enabled) \\> \$(cat ./bps-udp-disabled)" -at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_flowtable.at:1" -( $at_check_trace; expr $(cat ./bps-udp-enabled) \> $(cat ./bps-udp-disabled) -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" -if $at_failed; then : - echo -echo "FAIL: UDP BPS decreased with flowtable enabled." -echo "Disabled: $(cat ./bps-udp-disabled)" -echo "Enabled: $(cat ./bps-udp-enabled)" -echo - -else - echo -echo "PASS: UDP BPS increased with flowtable enabled." -echo "Disabled: $(cat ./bps-udp-disabled)" -echo "Enabled: $(cat ./bps-udp-enabled)" -echo - -fi -$at_failed && at_fn_log_failure -$at_traceon; } - - - if test x"" != x"ignore"; then - $as_echo "nftables_flowtable.at:1" >"$at_check_line_file" + printf "%s\n" "iptables_no_flush_on_shutdown.at:1" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/nftables_flowtable.at:1" + && at_fn_check_skip 99 "$at_srcdir/iptables_no_flush_on_shutdown.at:1" fi @@ -223684,13 +226511,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_212 -#AT_START_213 -at_fn_group_banner 213 'nftables_counters.at:1' \ - "nftables counters" " " 7 +#AT_STOP_224 +#AT_START_225 +at_fn_group_banner 225 'zone_priority.at:1' \ + "zone - priority" " " 7 at_xfail=no ( - $as_echo "213. $at_setup_line: testing $at_desc ..." + printf "%s\n" "225. $at_setup_line: testing $at_desc ..." $at_traceon @@ -223708,6 +226535,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -223724,29 +226552,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "nftables_counters.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "zone_priority.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -223754,15 +226582,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "nftables_counters.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "zone_priority.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -223818,15 +226646,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -223909,8 +226737,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "nftables_counters.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/nftables_counters.at:1" + printf "%s\n" "zone_priority.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -223928,15 +226756,15 @@ _ATEOF { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -223949,15 +226777,15 @@ $at_traceon; } : { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "nftables_counters.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "zone_priority.at:1" ( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -223966,30 +226794,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -223998,7 +226826,7 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -224006,8 +226834,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "nftables_counters.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/nftables_counters.at:1" + printf "%s\n" "zone_priority.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" fi echo "$!" > firewalld.pid @@ -224023,9 +226851,9 @@ at_fn_check_skip 99 "$at_srcdir/nftables_counters.at:1" fi sleep 1 done - $as_echo "nftables_counters.at:1" >"$at_check_line_file" + printf "%s\n" "zone_priority.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/nftables_counters.at:1" + && at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" @@ -224034,32 +226862,26 @@ at_fn_check_skip 99 "$at_srcdir/nftables_counters.at:1" + printf "%s\n" "zone_priority.at:4" >"$at_check_line_file" +(test -n "$FW_IN_CONTAINER" -a "(" "$(cat /proc/sys/net/core/rmem_max 2>/dev/null || cat /.host/proc/sys/net/core/rmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_max 2>/dev/null || cat /.host/proc/sys/net/core/wmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_default 2>/dev/null || cat /.host/proc/sys/net/core/wmem_default 2>/dev/null || echo 0)" -lt 4096000 ")" ) \ + && at_fn_check_skip 77 "$at_srcdir/zone_priority.at:4" + + + - { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_INPUT_POLICIES { -jump filter_IN_policy_allow-host-ipv6 -jump filter_IN_public -reject with icmpx admin-prohibited -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -224070,32 +226892,16 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_priority.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32769 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32769 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_IN_public_allow { -tcp dport 22 accept -ip6 daddr fe80::/64 udp dport 546 accept -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -224105,16 +226911,16 @@ $at_traceon; } -{ set +x -$as_echo "$at_srcdir/nftables_counters.at:1: sed -i 's/^NftablesCounters=.*/NftablesCounters=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "nftables_counters.at:1" -( $at_check_trace; sed -i 's/^NftablesCounters=.*/NftablesCounters=yes/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -224122,16 +226928,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/zone_priority.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -224142,15 +226950,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/zone_priority.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32767 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32767 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -224160,34 +226968,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_priority.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32769 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32769 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_INPUT_POLICIES { -counter packets 0 bytes 0 jump filter_IN_policy_allow-host-ipv6 -counter packets 0 bytes 0 jump filter_IN_public -counter packets 0 bytes 0 reject with icmpx admin-prohibited -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -224197,33 +226987,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_priority.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_IN_public_allow { -tcp dport 22 counter packets 0 bytes 0 accept -ip6 daddr fe80::/64 udp dport 546 counter packets 0 bytes 0 accept -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -224233,19 +227006,16 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-port 1234/tcp +printf "%s\n" "$at_srcdir/zone_priority.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -224255,32 +227025,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_priority.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32767 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32767 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_IN_public_allow { -tcp dport 22 counter packets 0 bytes 0 accept -ip6 daddr fe80::/64 udp dport 546 counter packets 0 bytes 0 accept -tcp dport 1234 counter packets 0 bytes 0 accept -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -224290,18 +227044,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-port 1234/tcp +printf "%s\n" "$at_srcdir/zone_priority.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32769 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32769 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -224311,31 +227063,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_priority.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "table inet firewalld { -chain filter_IN_public_allow { -tcp dport 22 counter packets 0 bytes 0 accept -ip6 daddr fe80::/64 udp dport 546 counter packets 0 bytes 0 accept -} -} -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -224345,326 +227082,266 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32768 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } - if test x"" != x"ignore"; then - $as_echo "nftables_counters.at:1" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/nftables_counters.at:1" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_213 -#AT_START_214 -at_fn_group_banner 214 'reloadpolicy.at:1' \ - "check ReloadPolicy" " " 7 -at_xfail=no -( - $as_echo "214. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32767 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32767 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:20" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:21" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "reloadpolicy.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:22" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "reloadpolicy.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:23" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:23" $at_failed && at_fn_log_failure $at_traceon; } - KERNEL_MAJOR=`uname -r | cut -d. -f1` - KERNEL_MINOR=`uname -r | cut -d. -f2` - if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then - : - else - : - sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf - fi + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-ingress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-ingress-priority +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:26" +$at_failed && at_fn_log_failure +$at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-ingress-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-ingress-priority 0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:27" +$at_failed && at_fn_log_failure +$at_traceon; } - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-egress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-egress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:28" $at_failed && at_fn_log_failure $at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-egress-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-egress-priority 0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:29" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "reloadpolicy.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-priority -1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-priority -1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:32" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./nft_rule_index.nft <<'_ATEOF' - add table inet firewalld_check_rule_index - add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } - add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept - add rule inet firewalld_check_rule_index foobar accept - insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept -_ATEOF { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft +printf "%s\n" "$at_srcdir/zone_priority.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-ingress-priority -2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-ingress-priority -2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:33" $at_failed && at_fn_log_failure $at_traceon; } - if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then - : - else - : - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "reloadpolicy.at:1" -( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-egress-priority -3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:34" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-egress-priority -3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:34" $at_failed && at_fn_log_failure $at_traceon; } - fi + + + { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft +printf "%s\n" "$at_srcdir/zone_priority.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:35" $at_failed && at_fn_log_failure $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index +printf "%s\n" "$at_srcdir/zone_priority.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 123 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 123 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -224673,49 +227350,38 @@ $at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "reloadpolicy.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" - fi - echo "$!" > firewalld.pid + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "123 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:39" +$at_failed && at_fn_log_failure +$at_traceon; } - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "reloadpolicy.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" -{ set +x -$as_echo "$at_srcdir/reloadpolicy.at:4: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=INPUT:REJECT,FORWARD:ACCEPT/' ./firewalld.conf" -at_fn_check_prepare_trace "reloadpolicy.at:4" -( $at_check_trace; sed -i 's/^ReloadPolicy=.*/ReloadPolicy=INPUT:REJECT,FORWARD:ACCEPT/' ./firewalld.conf + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 456 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 456 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:4" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -224723,16 +227389,20 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/reloadpolicy.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/zone_priority.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-ingress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-ingress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:6" +echo >>"$at_stdout"; printf "%s\n" "456 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:43" $at_failed && at_fn_log_failure $at_traceon; } @@ -224743,15 +227413,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reloadpolicy.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/zone_priority.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 789 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 789 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:6" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -224761,18 +227431,18 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/zone_priority.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-egress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-egress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:7" +echo >>"$at_stdout"; printf "%s\n" "789 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -224782,16 +227452,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/reloadpolicy.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/zone_priority.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:52" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:7" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -224800,16 +227471,17 @@ $at_traceon; } -{ set +x -$as_echo "$at_srcdir/reloadpolicy.at:9: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=REJECT/' ./firewalld.conf" -at_fn_check_prepare_trace "reloadpolicy.at:9" -( $at_check_trace; sed -i 's/^ReloadPolicy=.*/ReloadPolicy=REJECT/' ./firewalld.conf + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:53" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:9" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -224817,16 +227489,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/reloadpolicy.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/zone_priority.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:10" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:54" $at_failed && at_fn_log_failure $at_traceon; } @@ -224837,15 +227511,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reloadpolicy.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/zone_priority.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:10" +echo >>"$at_stdout"; printf "%s\n" "-1 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -224856,147 +227532,149 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "reloadpolicy.at:12" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:12" - fi - + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:60" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -2 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:60" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_214 -#AT_START_215 -at_fn_group_banner 215 'firewall-cmd.at:5' \ - "basic options" " " 8 -at_xfail=no -( - $as_echo "215. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:61" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -3 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:61" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:62" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:62" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:5" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-zone foobar | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:65" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-zone foobar | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +echo >>"$at_stdout"; printf "%s\n" "foobar +target: default +ingress-priority: -2 +egress-priority: -3 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:65" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:5" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:85" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:85" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-1 --set-priority -30000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:86" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-1 --set-priority -30000 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:86" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:5: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-1 --add-interface dummy-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:87" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-1 --add-interface dummy-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:87" $at_failed && at_fn_log_failure $at_traceon; } @@ -225004,93 +227682,39 @@ $at_traceon; } - $as_echo "firewall-cmd.at:5" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:5" - - - - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:88" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-2 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:88" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "firewall-cmd.at:5" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-2 --set-priority -10000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:89" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-2 --set-priority -10000 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:89" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -225098,36 +227722,38 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-2 --add-interface dummy-2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-2 --add-interface dummy-2 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:90" +$at_failed && at_fn_log_failure +$at_traceon; } + + + - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:5" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:5" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:91" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-3 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:91" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -225135,20 +227761,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd +printf "%s\n" "$at_srcdir/zone_priority.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-ingress-priority -5000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:92" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-ingress-priority -5000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "State: running - -No options specified -usage: 'firewall-cmd --help' for usage information or see firewall-cmd(1) man page -" | \ - $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:92" $at_failed && at_fn_log_failure $at_traceon; } @@ -225159,15 +227780,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -h " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -h +printf "%s\n" "$at_srcdir/zone_priority.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-egress-priority -2000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:93" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-egress-priority -2000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:93" $at_failed && at_fn_log_failure $at_traceon; } @@ -225178,15 +227799,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --help " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --help +printf "%s\n" "$at_srcdir/zone_priority.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --add-interface dummy-3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:94" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --add-interface dummy-3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:94" $at_failed && at_fn_log_failure $at_traceon; } @@ -225197,15 +227818,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -V " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -V +printf "%s\n" "$at_srcdir/zone_priority.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:95" $at_failed && at_fn_log_failure $at_traceon; } @@ -225216,15 +227837,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload +printf "%s\n" "$at_srcdir/zone_priority.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-ingress-priority -100 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:96" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-ingress-priority -100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:96" $at_failed && at_fn_log_failure $at_traceon; } @@ -225235,15 +227856,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --complete-reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --complete-reload +printf "%s\n" "$at_srcdir/zone_priority.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-egress-priority 1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:97" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-egress-priority 1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:23" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:97" $at_failed && at_fn_log_failure $at_traceon; } @@ -225253,17 +227874,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --panic-on " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --panic-on +printf "%s\n" "$at_srcdir/zone_priority.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --add-interface dummy-4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:98" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --add-interface dummy-4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:25" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:98" $at_failed && at_fn_log_failure $at_traceon; } @@ -225273,17 +227893,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/zone_priority.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-5 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:99" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-5 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:26" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:99" $at_failed && at_fn_log_failure $at_traceon; } @@ -225294,15 +227913,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/zone_priority.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-ingress-priority -1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:100" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-ingress-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:26" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:100" $at_failed && at_fn_log_failure $at_traceon; } @@ -225312,19 +227931,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-panic " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-panic +printf "%s\n" "$at_srcdir/zone_priority.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-egress-priority 100 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:101" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-egress-priority 100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "yes -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:27" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:101" $at_failed && at_fn_log_failure $at_traceon; } @@ -225335,15 +227951,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --panic-off " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --panic-off +printf "%s\n" "$at_srcdir/zone_priority.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --add-interface dummy-5 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:102" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --add-interface dummy-5 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:29" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:102" $at_failed && at_fn_log_failure $at_traceon; } @@ -225354,17 +227970,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-panic " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:30" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-panic +printf "%s\n" "$at_srcdir/zone_priority.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:103" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "no -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:30" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:103" $at_failed && at_fn_log_failure $at_traceon; } @@ -225373,147 +227987,131 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:32" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:32" - fi + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-6 --set-priority 500 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:104" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-6 --set-priority 500 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:104" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_215 -#AT_START_216 -at_fn_group_banner 216 'firewall-cmd.at:34' \ - "get/list options" " " 8 -at_xfail=no -( - $as_echo "216. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-6 --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:105" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-6 --add-source 10.10.10.0/24 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:106" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:106" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:34" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-7 --set-priority 1000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:107" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-7 --set-priority 1000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:107" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:34" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-7 --add-interface dummy-7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:108" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-7 --add-interface dummy-7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:108" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-8 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:109" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-8 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:109" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:34: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-8 --set-priority 30000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:110" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-8 --set-priority 30000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:110" $at_failed && at_fn_log_failure $at_traceon; } @@ -225521,129 +228119,77 @@ $at_traceon; } - $as_echo "firewall-cmd.at:34" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:34" + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-8 --add-source 10.0.0.0/8 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:111" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-8 --add-source 10.0.0.0/8 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:111" +$at_failed && at_fn_log_failure +$at_traceon; } + - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-0andlast " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-0andlast +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:112" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "firewall-cmd.at:34" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-ingress-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:113" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-ingress-priority 0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:113" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:34" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:34" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-egress-priority 32000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:114" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-egress-priority 32000 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:114" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -225652,15 +228198,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:37" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zones +printf "%s\n" "$at_srcdir/zone_priority.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --add-interface dummy-9 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:115" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --add-interface dummy-9 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:37" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:115" $at_failed && at_fn_log_failure $at_traceon; } @@ -225670,16 +228216,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-services " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-services +printf "%s\n" "$at_srcdir/zone_priority.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:38" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:116" $at_failed && at_fn_log_failure $at_traceon; } @@ -225690,15 +228237,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-icmptypes " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-icmptypes +printf "%s\n" "$at_srcdir/zone_priority.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:39" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:116" $at_failed && at_fn_log_failure $at_traceon; } @@ -225708,16 +228255,61 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:40" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zones +printf "%s\n" "$at_srcdir/zone_priority.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:119" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:40" +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_INPUT_POLICIES { +iifname \"dummy-1\" jump filter_IN_policy_allow-host-ipv6 +iifname \"dummy-1\" jump filter_IN_zone-1 +iifname \"dummy-1\" reject with icmpx admin-prohibited +iifname \"dummy-2\" jump filter_IN_policy_allow-host-ipv6 +iifname \"dummy-2\" jump filter_IN_zone-2 +iifname \"dummy-2\" reject with icmpx admin-prohibited +iifname \"dummy-3\" jump filter_IN_policy_allow-host-ipv6 +iifname \"dummy-3\" jump filter_IN_zone-3 +iifname \"dummy-3\" reject with icmpx admin-prohibited +iifname \"dummy-4\" jump filter_IN_policy_allow-host-ipv6 +iifname \"dummy-4\" jump filter_IN_zone-4 +iifname \"dummy-4\" reject with icmpx admin-prohibited +iifname \"dummy-5\" jump filter_IN_policy_allow-host-ipv6 +iifname \"dummy-5\" jump filter_IN_zone-5 +iifname \"dummy-5\" reject with icmpx admin-prohibited +iifname \"dummy-9\" jump filter_IN_policy_allow-host-ipv6 +iifname \"dummy-9\" jump filter_IN_zone-0andlast +iifname \"dummy-9\" reject with icmpx admin-prohibited +ip saddr 10.10.10.0/24 jump filter_IN_policy_allow-host-ipv6 +ip saddr 10.10.10.0/24 jump filter_IN_zone-6 +ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited +iifname \"dummy-7\" jump filter_IN_policy_allow-host-ipv6 +iifname \"dummy-7\" jump filter_IN_zone-7 +iifname \"dummy-7\" reject with icmpx admin-prohibited +ip saddr 10.0.0.0/8 jump filter_IN_policy_allow-host-ipv6 +ip saddr 10.0.0.0/8 jump filter_IN_zone-8 +ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited +jump filter_IN_policy_allow-host-ipv6 +jump filter_IN_public +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:119" $at_failed && at_fn_log_failure $at_traceon; } @@ -225727,35 +228319,359 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:41" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-services +printf "%s\n" "$at_srcdir/zone_priority.at:155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:155" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:41" +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_FORWARD_POLICIES { +iifname \"dummy-1\" oifname \"dummy-1\" jump filter_FWD_zone-1 +iifname \"dummy-1\" oifname \"dummy-1\" reject with icmpx admin-prohibited +iifname \"dummy-1\" oifname \"dummy-2\" jump filter_FWD_zone-1 +iifname \"dummy-1\" oifname \"dummy-2\" reject with icmpx admin-prohibited +iifname \"dummy-1\" oifname \"dummy-3\" jump filter_FWD_zone-1 +iifname \"dummy-1\" oifname \"dummy-3\" reject with icmpx admin-prohibited +iifname \"dummy-1\" oifname \"dummy-4\" jump filter_FWD_zone-1 +iifname \"dummy-1\" oifname \"dummy-4\" reject with icmpx admin-prohibited +iifname \"dummy-1\" oifname \"dummy-5\" jump filter_FWD_zone-1 +iifname \"dummy-1\" oifname \"dummy-5\" reject with icmpx admin-prohibited +iifname \"dummy-1\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-1 +iifname \"dummy-1\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited +iifname \"dummy-1\" oifname \"dummy-7\" jump filter_FWD_zone-1 +iifname \"dummy-1\" oifname \"dummy-7\" reject with icmpx admin-prohibited +iifname \"dummy-1\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-1 +iifname \"dummy-1\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited +iifname \"dummy-1\" oifname \"dummy-9\" jump filter_FWD_zone-1 +iifname \"dummy-1\" oifname \"dummy-9\" reject with icmpx admin-prohibited +iifname \"dummy-1\" jump filter_FWD_zone-1 +iifname \"dummy-1\" reject with icmpx admin-prohibited +iifname \"dummy-2\" oifname \"dummy-1\" jump filter_FWD_zone-2 +iifname \"dummy-2\" oifname \"dummy-1\" reject with icmpx admin-prohibited +iifname \"dummy-2\" oifname \"dummy-2\" jump filter_FWD_zone-2 +iifname \"dummy-2\" oifname \"dummy-2\" reject with icmpx admin-prohibited +iifname \"dummy-2\" oifname \"dummy-3\" jump filter_FWD_zone-2 +iifname \"dummy-2\" oifname \"dummy-3\" reject with icmpx admin-prohibited +iifname \"dummy-2\" oifname \"dummy-4\" jump filter_FWD_zone-2 +iifname \"dummy-2\" oifname \"dummy-4\" reject with icmpx admin-prohibited +iifname \"dummy-2\" oifname \"dummy-5\" jump filter_FWD_zone-2 +iifname \"dummy-2\" oifname \"dummy-5\" reject with icmpx admin-prohibited +iifname \"dummy-2\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-2 +iifname \"dummy-2\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited +iifname \"dummy-2\" oifname \"dummy-7\" jump filter_FWD_zone-2 +iifname \"dummy-2\" oifname \"dummy-7\" reject with icmpx admin-prohibited +iifname \"dummy-2\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-2 +iifname \"dummy-2\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited +iifname \"dummy-2\" oifname \"dummy-9\" jump filter_FWD_zone-2 +iifname \"dummy-2\" oifname \"dummy-9\" reject with icmpx admin-prohibited +iifname \"dummy-2\" jump filter_FWD_zone-2 +iifname \"dummy-2\" reject with icmpx admin-prohibited +iifname \"dummy-3\" oifname \"dummy-1\" jump filter_FWD_zone-3 +iifname \"dummy-3\" oifname \"dummy-1\" reject with icmpx admin-prohibited +iifname \"dummy-3\" oifname \"dummy-2\" jump filter_FWD_zone-3 +iifname \"dummy-3\" oifname \"dummy-2\" reject with icmpx admin-prohibited +iifname \"dummy-3\" oifname \"dummy-3\" jump filter_FWD_zone-3 +iifname \"dummy-3\" oifname \"dummy-3\" reject with icmpx admin-prohibited +iifname \"dummy-3\" oifname \"dummy-4\" jump filter_FWD_zone-3 +iifname \"dummy-3\" oifname \"dummy-4\" reject with icmpx admin-prohibited +iifname \"dummy-3\" oifname \"dummy-5\" jump filter_FWD_zone-3 +iifname \"dummy-3\" oifname \"dummy-5\" reject with icmpx admin-prohibited +iifname \"dummy-3\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-3 +iifname \"dummy-3\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited +iifname \"dummy-3\" oifname \"dummy-7\" jump filter_FWD_zone-3 +iifname \"dummy-3\" oifname \"dummy-7\" reject with icmpx admin-prohibited +iifname \"dummy-3\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-3 +iifname \"dummy-3\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited +iifname \"dummy-3\" oifname \"dummy-9\" jump filter_FWD_zone-3 +iifname \"dummy-3\" oifname \"dummy-9\" reject with icmpx admin-prohibited +iifname \"dummy-3\" jump filter_FWD_zone-3 +iifname \"dummy-3\" reject with icmpx admin-prohibited +iifname \"dummy-4\" oifname \"dummy-1\" jump filter_FWD_zone-4 +iifname \"dummy-4\" oifname \"dummy-1\" reject with icmpx admin-prohibited +iifname \"dummy-4\" oifname \"dummy-2\" jump filter_FWD_zone-4 +iifname \"dummy-4\" oifname \"dummy-2\" reject with icmpx admin-prohibited +iifname \"dummy-4\" oifname \"dummy-3\" jump filter_FWD_zone-4 +iifname \"dummy-4\" oifname \"dummy-3\" reject with icmpx admin-prohibited +iifname \"dummy-4\" oifname \"dummy-4\" jump filter_FWD_zone-4 +iifname \"dummy-4\" oifname \"dummy-4\" reject with icmpx admin-prohibited +iifname \"dummy-4\" oifname \"dummy-5\" jump filter_FWD_zone-4 +iifname \"dummy-4\" oifname \"dummy-5\" reject with icmpx admin-prohibited +iifname \"dummy-4\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-4 +iifname \"dummy-4\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited +iifname \"dummy-4\" oifname \"dummy-7\" jump filter_FWD_zone-4 +iifname \"dummy-4\" oifname \"dummy-7\" reject with icmpx admin-prohibited +iifname \"dummy-4\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-4 +iifname \"dummy-4\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited +iifname \"dummy-4\" oifname \"dummy-9\" jump filter_FWD_zone-4 +iifname \"dummy-4\" oifname \"dummy-9\" reject with icmpx admin-prohibited +iifname \"dummy-4\" jump filter_FWD_zone-4 +iifname \"dummy-4\" reject with icmpx admin-prohibited +iifname \"dummy-5\" oifname \"dummy-1\" jump filter_FWD_zone-5 +iifname \"dummy-5\" oifname \"dummy-1\" reject with icmpx admin-prohibited +iifname \"dummy-5\" oifname \"dummy-2\" jump filter_FWD_zone-5 +iifname \"dummy-5\" oifname \"dummy-2\" reject with icmpx admin-prohibited +iifname \"dummy-5\" oifname \"dummy-3\" jump filter_FWD_zone-5 +iifname \"dummy-5\" oifname \"dummy-3\" reject with icmpx admin-prohibited +iifname \"dummy-5\" oifname \"dummy-4\" jump filter_FWD_zone-5 +iifname \"dummy-5\" oifname \"dummy-4\" reject with icmpx admin-prohibited +iifname \"dummy-5\" oifname \"dummy-5\" jump filter_FWD_zone-5 +iifname \"dummy-5\" oifname \"dummy-5\" reject with icmpx admin-prohibited +iifname \"dummy-5\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-5 +iifname \"dummy-5\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited +iifname \"dummy-5\" oifname \"dummy-7\" jump filter_FWD_zone-5 +iifname \"dummy-5\" oifname \"dummy-7\" reject with icmpx admin-prohibited +iifname \"dummy-5\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-5 +iifname \"dummy-5\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited +iifname \"dummy-5\" oifname \"dummy-9\" jump filter_FWD_zone-5 +iifname \"dummy-5\" oifname \"dummy-9\" reject with icmpx admin-prohibited +iifname \"dummy-5\" jump filter_FWD_zone-5 +iifname \"dummy-5\" reject with icmpx admin-prohibited +iifname \"dummy-9\" oifname \"dummy-1\" jump filter_FWD_zone-0andlast +iifname \"dummy-9\" oifname \"dummy-1\" reject with icmpx admin-prohibited +iifname \"dummy-9\" oifname \"dummy-2\" jump filter_FWD_zone-0andlast +iifname \"dummy-9\" oifname \"dummy-2\" reject with icmpx admin-prohibited +iifname \"dummy-9\" oifname \"dummy-3\" jump filter_FWD_zone-0andlast +iifname \"dummy-9\" oifname \"dummy-3\" reject with icmpx admin-prohibited +iifname \"dummy-9\" oifname \"dummy-4\" jump filter_FWD_zone-0andlast +iifname \"dummy-9\" oifname \"dummy-4\" reject with icmpx admin-prohibited +iifname \"dummy-9\" oifname \"dummy-5\" jump filter_FWD_zone-0andlast +iifname \"dummy-9\" oifname \"dummy-5\" reject with icmpx admin-prohibited +iifname \"dummy-9\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-0andlast +iifname \"dummy-9\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited +iifname \"dummy-9\" oifname \"dummy-7\" jump filter_FWD_zone-0andlast +iifname \"dummy-9\" oifname \"dummy-7\" reject with icmpx admin-prohibited +iifname \"dummy-9\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-0andlast +iifname \"dummy-9\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited +iifname \"dummy-9\" oifname \"dummy-9\" jump filter_FWD_zone-0andlast +iifname \"dummy-9\" oifname \"dummy-9\" reject with icmpx admin-prohibited +iifname \"dummy-9\" jump filter_FWD_zone-0andlast +iifname \"dummy-9\" reject with icmpx admin-prohibited +oifname \"dummy-1\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 +oifname \"dummy-1\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited +oifname \"dummy-2\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 +oifname \"dummy-2\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited +oifname \"dummy-3\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 +oifname \"dummy-3\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited +oifname \"dummy-4\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 +oifname \"dummy-4\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited +oifname \"dummy-5\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 +oifname \"dummy-5\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited +ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 jump filter_FWD_zone-6 +ip saddr 10.10.10.0/24 ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited +oifname \"dummy-7\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 +oifname \"dummy-7\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited +ip saddr 10.10.10.0/24 ip daddr 10.0.0.0/8 jump filter_FWD_zone-6 +ip saddr 10.10.10.0/24 ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited +oifname \"dummy-9\" ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 +oifname \"dummy-9\" ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited +ip saddr 10.10.10.0/24 jump filter_FWD_zone-6 +ip saddr 10.10.10.0/24 reject with icmpx admin-prohibited +iifname \"dummy-7\" oifname \"dummy-1\" jump filter_FWD_zone-7 +iifname \"dummy-7\" oifname \"dummy-1\" reject with icmpx admin-prohibited +iifname \"dummy-7\" oifname \"dummy-2\" jump filter_FWD_zone-7 +iifname \"dummy-7\" oifname \"dummy-2\" reject with icmpx admin-prohibited +iifname \"dummy-7\" oifname \"dummy-3\" jump filter_FWD_zone-7 +iifname \"dummy-7\" oifname \"dummy-3\" reject with icmpx admin-prohibited +iifname \"dummy-7\" oifname \"dummy-4\" jump filter_FWD_zone-7 +iifname \"dummy-7\" oifname \"dummy-4\" reject with icmpx admin-prohibited +iifname \"dummy-7\" oifname \"dummy-5\" jump filter_FWD_zone-7 +iifname \"dummy-7\" oifname \"dummy-5\" reject with icmpx admin-prohibited +iifname \"dummy-7\" ip daddr 10.10.10.0/24 jump filter_FWD_zone-7 +iifname \"dummy-7\" ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited +iifname \"dummy-7\" oifname \"dummy-7\" jump filter_FWD_zone-7 +iifname \"dummy-7\" oifname \"dummy-7\" reject with icmpx admin-prohibited +iifname \"dummy-7\" ip daddr 10.0.0.0/8 jump filter_FWD_zone-7 +iifname \"dummy-7\" ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited +iifname \"dummy-7\" oifname \"dummy-9\" jump filter_FWD_zone-7 +iifname \"dummy-7\" oifname \"dummy-9\" reject with icmpx admin-prohibited +iifname \"dummy-7\" jump filter_FWD_zone-7 +iifname \"dummy-7\" reject with icmpx admin-prohibited +oifname \"dummy-1\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 +oifname \"dummy-1\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited +oifname \"dummy-2\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 +oifname \"dummy-2\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited +oifname \"dummy-3\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 +oifname \"dummy-3\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited +oifname \"dummy-4\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 +oifname \"dummy-4\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited +oifname \"dummy-5\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 +oifname \"dummy-5\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited +ip saddr 10.0.0.0/8 ip daddr 10.10.10.0/24 jump filter_FWD_zone-8 +ip saddr 10.0.0.0/8 ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited +oifname \"dummy-7\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 +oifname \"dummy-7\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited +ip saddr 10.0.0.0/8 ip daddr 10.0.0.0/8 jump filter_FWD_zone-8 +ip saddr 10.0.0.0/8 ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited +oifname \"dummy-9\" ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 +oifname \"dummy-9\" ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited +ip saddr 10.0.0.0/8 jump filter_FWD_zone-8 +ip saddr 10.0.0.0/8 reject with icmpx admin-prohibited +oifname \"dummy-1\" jump filter_FWD_public +oifname \"dummy-1\" reject with icmpx admin-prohibited +oifname \"dummy-2\" jump filter_FWD_public +oifname \"dummy-2\" reject with icmpx admin-prohibited +oifname \"dummy-3\" jump filter_FWD_public +oifname \"dummy-3\" reject with icmpx admin-prohibited +oifname \"dummy-4\" jump filter_FWD_public +oifname \"dummy-4\" reject with icmpx admin-prohibited +oifname \"dummy-5\" jump filter_FWD_public +oifname \"dummy-5\" reject with icmpx admin-prohibited +ip daddr 10.10.10.0/24 jump filter_FWD_public +ip daddr 10.10.10.0/24 reject with icmpx admin-prohibited +oifname \"dummy-7\" jump filter_FWD_public +oifname \"dummy-7\" reject with icmpx admin-prohibited +ip daddr 10.0.0.0/8 jump filter_FWD_public +ip daddr 10.0.0.0/8 reject with icmpx admin-prohibited +oifname \"dummy-9\" jump filter_FWD_public +oifname \"dummy-9\" reject with icmpx admin-prohibited +jump filter_FWD_public +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:155" $at_failed && at_fn_log_failure $at_traceon; } + + + + + + + + + + + + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-icmptypes " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-icmptypes +printf "%s\n" "$at_srcdir/zone_priority.at:755: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-zone zone-2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:755" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-zone zone-2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "zone-2 (active) +target: default +ingress-priority: -10000 +egress-priority: -10000 +icmp-block-inversion: no +interfaces: dummy-2 +sources: +services: +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:755" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:773: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-zone zone-4 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:773" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-zone zone-4 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "zone-4 (active) +target: default +ingress-priority: -100 +egress-priority: 1 +icmp-block-inversion: no +interfaces: dummy-4 +sources: +services: +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:773" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + +{ set +x +printf "%s\n" "$at_srcdir/zone_priority.at:793: cat ./zones/zone-5.xml" +at_fn_check_prepare_trace "zone_priority.at:793" +( $at_check_trace; cat ./zones/zone-5.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" " + + + +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:793" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:801: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-priority -1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:801" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-priority -1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:42" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:801" $at_failed && at_fn_log_failure $at_traceon; } @@ -225765,17 +228681,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:802: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-ingress-priority -2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:802" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-ingress-priority -2 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:802" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-zones +printf "%s\n" "$at_srcdir/zone_priority.at:803: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-egress-priority -3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:803" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-egress-priority -3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:44" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:803" $at_failed && at_fn_log_failure $at_traceon; } @@ -225786,15 +228720,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:45" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all +printf "%s\n" "$at_srcdir/zone_priority.at:804: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:804" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:45" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:804" $at_failed && at_fn_log_failure $at_traceon; } @@ -225805,15 +228739,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-zones +printf "%s\n" "$at_srcdir/zone_priority.at:805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-ingress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:805" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-ingress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:46" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:805" $at_failed && at_fn_log_failure $at_traceon; } @@ -225824,15 +228758,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all +printf "%s\n" "$at_srcdir/zone_priority.at:806: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-egress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:806" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-egress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:47" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:806" $at_failed && at_fn_log_failure $at_traceon; } @@ -225841,10 +228775,11 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:48" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:48" + + if test x"ignore" != x"ignore"; then + printf "%s\n" "zone_priority.at:808" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/zone_priority.at:808" fi @@ -225853,13 +228788,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_216 -#AT_START_217 -at_fn_group_banner 217 'firewall-cmd.at:50' \ - "default zone" " " 8 +#AT_STOP_225 +#AT_START_226 +at_fn_group_banner 226 'nftables_flowtable.at:1' \ + "nftables flowtable" " " 7 at_xfail=no ( - $as_echo "217. $at_setup_line: testing $at_desc ..." + printf "%s\n" "226. $at_setup_line: testing $at_desc ..." $at_traceon @@ -225877,6 +228812,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -225893,29 +228829,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:50" +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "nftables_flowtable.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -225923,21 +228859,35 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:50" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "nftables_flowtable.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + + else + : + + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf + + fi + + + kill_firewalld() { pid=$(cat firewalld.pid) @@ -225973,29 +228923,21 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:50: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - $as_echo "firewall-cmd.at:50" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:50" - - - - cat >./dbus.conf <<'_ATEOF' "$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" + printf "%s\n" "nftables_flowtable.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/nftables_flowtable.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late + cat >./nft_rule_index.nft <<'_ATEOF' - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:50" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:50" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" - - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-default-zone -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:53" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone=\"home\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone="home" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:55" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:56" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-default-zone -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "home -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:56" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone="public" +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:58" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:59" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:59" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + else + : - - if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:60" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:60" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_217 -#AT_START_218 -at_fn_group_banner 218 'firewall-cmd.at:62' \ - "user zone" " " 8 -at_xfail=no -( - $as_echo "218. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:62" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "nftables_flowtable.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:62" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:62" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:62" -$at_failed && at_fn_log_failure -$at_traceon; } - fi + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:62" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:62" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:62: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:62" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:62" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -226365,101 +229102,8 @@ $at_traceon; } - $as_echo "firewall-cmd.at:62" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:62" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "firewall-cmd.at:62" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -226467,8 +229111,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:62" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" + printf "%s\n" "nftables_flowtable.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/nftables_flowtable.at:1" fi echo "$!" > firewalld.pid @@ -226484,10 +229128,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" fi sleep 1 done - $as_echo "firewall-cmd.at:62" >"$at_check_line_file" + printf "%s\n" "nftables_flowtable.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" - + && at_fn_check_skip 99 "$at_srcdir/nftables_flowtable.at:1" @@ -226496,620 +229139,319 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --new-zone=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:65" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --new-zone=foobar +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft add table inet firewalld_check_flowtable " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add table inet firewalld_check_flowtable ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:65" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - + printf "%s\n" "nftables_flowtable.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft add flowtable inet firewalld_check_flowtable foobar { hook ingress priority 0 \; } >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/nftables_flowtable.at:1" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:66" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone=foobar +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_flowtable " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_flowtable ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:66" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } +printf "%s\n" "nftables_flowtable.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v iperf3 >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/nftables_flowtable.at:1" +printf "%s\n" "nftables_flowtable.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v sysctl >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/nftables_flowtable.at:1" +printf "%s\n" "nftables_flowtable.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v jq >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/nftables_flowtable.at:1" - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones | grep foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:67" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zones | grep foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:67" -$at_failed && at_fn_log_failure -$at_traceon; } - + printf "%s\n" "nftables_flowtable.at:1" >"$at_check_line_file" +(test -n "$FW_IN_CONTAINER" -a "(" "$(cat /proc/sys/net/core/rmem_max 2>/dev/null || cat /.host/proc/sys/net/core/rmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_max 2>/dev/null || cat /.host/proc/sys/net/core/wmem_max 2>/dev/null || echo 0)" -lt 4096000 -o "$(cat /proc/sys/net/core/wmem_default 2>/dev/null || cat /.host/proc/sys/net/core/wmem_default 2>/dev/null || echo 0)" -lt 4096000 ")" ) \ + && at_fn_check_skip 77 "$at_srcdir/nftables_flowtable.at:1" +cat <> ./cleanup +ip netns delete fwd-test-${at_group_normalized}-send +ip netns delete fwd-test-${at_group_normalized}-recv +HERE - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep default " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:68" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep default +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns add fwd-test-\${at_group_normalized}-send" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized}-send ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:68" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=BAD " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:69" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=BAD +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns add fwd-test-\${at_group_normalized}-recv" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized}-recv ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 110 $at_status "$at_srcdir/firewall-cmd.at:69" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link add fwd-test-send type veth peer name fwd-test-fwd-0" +at_fn_check_prepare_trace "nftables_flowtable.at:1" +( $at_check_trace; ip link add fwd-test-send type veth peer name fwd-test-fwd-0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:70" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link add fwd-test-recv type veth peer name fwd-test-fwd-1" +at_fn_check_prepare_trace "nftables_flowtable.at:1" +( $at_check_trace; ip link add fwd-test-recv type veth peer name fwd-test-fwd-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:71" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-send netns fwd-test-\${at_group_normalized}-send" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip link set fwd-test-send netns fwd-test-${at_group_normalized}-send ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:72" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep ACCEPT +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-recv netns fwd-test-\${at_group_normalized}-recv" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip link set fwd-test-recv netns fwd-test-${at_group_normalized}-recv ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:73" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-service=ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:74" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-service=ssh +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip link set fwd-test-send up" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip link set fwd-test-send up ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:74" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:77: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghi " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:77" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghi +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip link set fwd-test-recv up" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip link set fwd-test-recv up ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:77" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghij " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:78" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghij +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip addr add 10.10.10.2/24 dev fwd-test-send" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip addr add 10.10.10.2/24 dev fwd-test-send ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 116 $at_status "$at_srcdir/firewall-cmd.at:78" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - if test x"-e '/ERROR: INVALID_TARGET: /d' -e '/ERROR: INVALID_NAME: /d'" != x"ignore"; then - $as_echo "firewall-cmd.at:79" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_TARGET: /d' -e '/ERROR: INVALID_NAME: /d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:79" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_218 -#AT_START_219 -at_fn_group_banner 219 'firewall-cmd.at:82' \ - "zone interfaces" " " 8 -at_xfail=no -( - $as_echo "219. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:82" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip route add 10.20.20.0/24 nexthop via 10.10.10.1 dev fwd-test-send" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip route add 10.20.20.0/24 nexthop via 10.10.10.1 dev fwd-test-send ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:82" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:82" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip addr add 10.20.20.2/24 dev fwd-test-recv" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip addr add 10.20.20.2/24 dev fwd-test-recv ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:82" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - fi - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:82" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip route add 10.10.10.0/24 nexthop via 10.20.20.1 dev fwd-test-recv" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip route add 10.10.10.0/24 nexthop via 10.20.20.1 dev fwd-test-recv ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:82" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:82: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:82" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-fwd-0 netns fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip link set fwd-test-fwd-0 netns fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:82" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - $as_echo "firewall-cmd.at:82" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:82" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "firewall-cmd.at:82" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:82" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:82" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:82" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:82" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:82" - - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --add-interface=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:85" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --add-interface=dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-fwd-1 netns fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip link set fwd-test-fwd-1 netns fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:85" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:86" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip addr add 10.10.10.1/24 dev fwd-test-fwd-0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip addr add 10.10.10.1/24 dev fwd-test-fwd-0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:86" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:88" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip addr add 10.20.20.1/24 dev fwd-test-fwd-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip addr add 10.20.20.1/24 dev fwd-test-fwd-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:88" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-interface=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:89" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-interface=dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link set fwd-test-fwd-0 up " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link set fwd-test-fwd-0 up ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:89" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --change-interface=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:91" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --change-interface=dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link set fwd-test-fwd-1 up " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link set fwd-test-fwd-1 up ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:91" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:92" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -i 's/^NftablesFlowtable.*/NftablesFlowtable=off/' ./firewalld.conf " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sed -i 's/^NftablesFlowtable.*/NftablesFlowtable=off/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:92" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227118,17 +229460,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=block --add-interface=dummy1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:94" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=block --add-interface=dummy1 +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:94" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227139,15 +229480,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=block --remove-interface=dummy1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:95" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=block --remove-interface=dummy1 +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:95" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227156,18 +229497,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --change-zone=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:97" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --change-zone=dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:97" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227175,20 +229514,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:98" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dmz -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:98" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227199,17 +229534,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --list-interfaces " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:100" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --list-interfaces +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dummy -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:100" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227217,565 +229550,401 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:102" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv iperf3 -s -1 >/dev/null &" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv iperf3 -s -1 >/dev/null & ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:102" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:103" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send iperf3 -J -c 10.20.20.2 -O 10 --connect-timeout 10 --interval 0 | jq '.end.sum_received.bits_per_second' | { read RESULT; printf \"%s\" \${RESULT%.*} > ./bps-tcp ; }" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send iperf3 -J -c 10.20.20.2 -O 10 --connect-timeout 10 --interval 0 | jq '.end.sum_received.bits_per_second' | { read RESULT; printf "%s" ${RESULT%.*} > ./bps-tcp ; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:103" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --change-interface=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:105" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --change-interface=dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv iperf3 -s -1 >/dev/null &" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv iperf3 -s -1 >/dev/null & ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:105" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:106" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send iperf3 -u -J -c 10.20.20.2 --connect-timeout 10 --interval 0 --bitrate 0 | jq '.end.sum.bits_per_second' | { read RESULT; printf \"%s\" \${RESULT%.*} > ./bps-udp ; }" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send iperf3 -u -J -c 10.20.20.2 --connect-timeout 10 --interval 0 --bitrate 0 | jq '.end.sum.bits_per_second' | { read RESULT; printf "%s" ${RESULT%.*} > ./bps-udp ; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:106" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:107" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link delete fwd-test-fwd-0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link delete fwd-test-fwd-0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:107" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:109" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link delete fwd-test-fwd-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link delete fwd-test-fwd-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:109" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:110" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns delete fwd-test-\${at_group_normalized}-send" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns delete fwd-test-${at_group_normalized}-send ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:110" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:111" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns delete fwd-test-\${at_group_normalized}-recv" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns delete fwd-test-${at_group_normalized}-recv ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:111" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:112" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-zones +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: mv ./bps-tcp ./bps-tcp-disabled" +at_fn_check_prepare_trace "nftables_flowtable.at:1" +( $at_check_trace; mv ./bps-tcp ./bps-tcp-disabled ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:112" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-services " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:113" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-services +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: mv ./bps-udp ./bps-udp-disabled" +at_fn_check_prepare_trace "nftables_flowtable.at:1" +( $at_check_trace; mv ./bps-udp ./bps-udp-disabled ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:113" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-default-zone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:114" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-default-zone +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns add fwd-test-\${at_group_normalized}-send" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized}-send ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:114" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --set-default-zone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:115" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --set-default-zone +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns add fwd-test-\${at_group_normalized}-recv" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized}-recv ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:115" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-zone-of-interface " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:116" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-zone-of-interface +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link add fwd-test-send type veth peer name fwd-test-fwd-0" +at_fn_check_prepare_trace "nftables_flowtable.at:1" +( $at_check_trace; ip link add fwd-test-send type veth peer name fwd-test-fwd-0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:116" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-interface=perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:118" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-interface=perm_dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link add fwd-test-recv type veth peer name fwd-test-fwd-1" +at_fn_check_prepare_trace "nftables_flowtable.at:1" +( $at_check_trace; ip link add fwd-test-recv type veth peer name fwd-test-fwd-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:118" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=perm_dummy2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:119" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=perm_dummy2 +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-send netns fwd-test-\${at_group_normalized}-send" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip link set fwd-test-send netns fwd-test-${at_group_normalized}-send ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:119" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:120" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-recv netns fwd-test-\${at_group_normalized}-recv" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip link set fwd-test-recv netns fwd-test-${at_group_normalized}-recv ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:120" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:120" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip link set fwd-test-send up" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip link set fwd-test-send up ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:120" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:121" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip link set fwd-test-recv up" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip link set fwd-test-recv up ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:121" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-interface=perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:123" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-interface=perm_dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip addr add 10.10.10.2/24 dev fwd-test-send" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip addr add 10.10.10.2/24 dev fwd-test-send ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:123" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --list-interfaces " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:124" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --list-interfaces +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send ip route add 10.20.20.0/24 nexthop via 10.10.10.1 dev fwd-test-send" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send ip route add 10.20.20.0/24 nexthop via 10.10.10.1 dev fwd-test-send ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "perm_dummy -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:124" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:127" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=perm_dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip addr add 10.20.20.2/24 dev fwd-test-recv" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip addr add 10.20.20.2/24 dev fwd-test-recv ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:127" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:130" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv ip route add 10.10.10.0/24 nexthop via 10.20.20.1 dev fwd-test-recv" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv ip route add 10.10.10.0/24 nexthop via 10.20.20.1 dev fwd-test-recv ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:130" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:131" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-fwd-0 netns fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip link set fwd-test-fwd-0 netns fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:131" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:133" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip link set fwd-test-fwd-1 netns fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip link set fwd-test-fwd-1 netns fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:133" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:134" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip addr add 10.10.10.1/24 dev fwd-test-fwd-0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip addr add 10.10.10.1/24 dev fwd-test-fwd-0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:134" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:135" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip addr add 10.20.20.1/24 dev fwd-test-fwd-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip addr add 10.20.20.1/24 dev fwd-test-fwd-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:135" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:136" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link set fwd-test-fwd-0 up " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link set fwd-test-fwd-0 up ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:136" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:138" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link set fwd-test-fwd-1 up " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link set fwd-test-fwd-1 up ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:138" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:139" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -i 's/^NftablesFlowtable.*/NftablesFlowtable=fwd-test-fwd-0 fwd-test-fwd-1/' ./firewalld.conf " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sed -i 's/^NftablesFlowtable.*/NftablesFlowtable=fwd-test-fwd-0 fwd-test-fwd-1/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:139" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227784,17 +229953,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --remove-interface=perm_dummy2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:140" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --remove-interface=perm_dummy2 +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:140" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227804,17 +229972,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:141" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:141" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227823,17 +229990,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:141" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:141" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227841,20 +230007,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-interface=foobar+++ " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:146" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-interface=foobar+++ +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:146" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227865,15 +230027,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-interface=foobar+ " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:147" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-interface=foobar+ +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface fwd-test-fwd-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:147" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -227881,130 +230043,211 @@ $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-interface=foobar+++ " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:163" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-interface=foobar+++ +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv iperf3 -s -1 >/dev/null &" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv iperf3 -s -1 >/dev/null & ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:163" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:164: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-interface=foobar+ " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:164" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-interface=foobar+ +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send iperf3 -J -c 10.20.20.2 -O 10 --connect-timeout 10 --interval 0 | jq '.end.sum_received.bits_per_second' | { read RESULT; printf \"%s\" \${RESULT%.*} > ./bps-tcp ; }" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send iperf3 -J -c 10.20.20.2 -O 10 --connect-timeout 10 --interval 0 | jq '.end.sum_received.bits_per_second' | { read RESULT; printf "%s" ${RESULT%.*} > ./bps-tcp ; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:164" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-interface=foobar+ " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:165" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-interface=foobar+ +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-recv iperf3 -s -1 >/dev/null &" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-recv iperf3 -s -1 >/dev/null & ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:165" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns exec fwd-test-\${at_group_normalized}-send iperf3 -u -J -c 10.20.20.2 --connect-timeout 10 --interval 0 --bitrate 0 | jq '.end.sum.bits_per_second' | { read RESULT; printf \"%s\" \${RESULT%.*} > ./bps-udp ; }" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns exec fwd-test-${at_group_normalized}-send iperf3 -u -J -c 10.20.20.2 --connect-timeout 10 --interval 0 --bitrate 0 | jq '.end.sum.bits_per_second' | { read RESULT; printf "%s" ${RESULT%.*} > ./bps-udp ; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-interface=foobar+ " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:166" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-interface=foobar+ +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link delete fwd-test-fwd-0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link delete fwd-test-fwd-0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:166" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} ip link delete fwd-test-fwd-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} ip link delete fwd-test-fwd-1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns delete fwd-test-\${at_group_normalized}-send" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns delete fwd-test-${at_group_normalized}-send +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: ip netns delete fwd-test-\${at_group_normalized}-recv" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_flowtable.at:1" +( $at_check_trace; ip netns delete fwd-test-${at_group_normalized}-recv +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:167" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: mv ./bps-tcp ./bps-tcp-enabled" +at_fn_check_prepare_trace "nftables_flowtable.at:1" +( $at_check_trace; mv ./bps-tcp ./bps-tcp-enabled ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:167" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" $at_failed && at_fn_log_failure $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: mv ./bps-udp ./bps-udp-enabled" +at_fn_check_prepare_trace "nftables_flowtable.at:1" +( $at_check_trace; mv ./bps-udp ./bps-udp-enabled +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: expr \$(cat ./bps-tcp-enabled) \\> \$(cat ./bps-tcp-disabled)" +at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_flowtable.at:1" +( $at_check_trace; expr $(cat ./bps-tcp-enabled) \> $(cat ./bps-tcp-disabled) +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +if $at_failed +then : + echo +echo "FAIL: TCP BPS decreased with flowtable enabled." +echo "Disabled: $(cat ./bps-tcp-disabled)" +echo "Enabled: $(cat ./bps-tcp-enabled)" +echo +else $as_nop + echo +echo "PASS: TCP BPS increased with flowtable enabled." +echo "Disabled: $(cat ./bps-tcp-disabled)" +echo "Enabled: $(cat ./bps-tcp-enabled)" +echo +fi +$at_failed && at_fn_log_failure +$at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:167" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +{ set +x +printf "%s\n" "$at_srcdir/nftables_flowtable.at:1: expr \$(cat ./bps-udp-enabled) \\> \$(cat ./bps-udp-disabled)" +at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_flowtable.at:1" +( $at_check_trace; expr $(cat ./bps-udp-enabled) \> $(cat ./bps-udp-disabled) ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:167" -$at_failed && at_fn_log_failure -$at_traceon; } +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_flowtable.at:1" +if $at_failed +then : + echo +echo "FAIL: UDP BPS decreased with flowtable enabled." +echo "Disabled: $(cat ./bps-udp-disabled)" +echo "Enabled: $(cat ./bps-udp-enabled)" +echo +else $as_nop + echo +echo "PASS: UDP BPS increased with flowtable enabled." +echo "Disabled: $(cat ./bps-udp-disabled)" +echo "Enabled: $(cat ./bps-udp-enabled)" +echo +fi +$at_failed && at_fn_log_failure +$at_traceon; } - if test x"-e '/ERROR: ZONE_CONFLICT: perm_dummy/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:168" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: ZONE_CONFLICT: perm_dummy/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:168" + if test x"" != x"ignore"; then + printf "%s\n" "nftables_flowtable.at:1" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/nftables_flowtable.at:1" fi @@ -228013,13 +230256,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_219 -#AT_START_220 -at_fn_group_banner 220 'firewall-cmd.at:170' \ - "zone sources" " " 8 +#AT_STOP_226 +#AT_START_227 +at_fn_group_banner 227 'nftables_counters.at:1' \ + "nftables counters" " " 7 at_xfail=no ( - $as_echo "220. $at_setup_line: testing $at_desc ..." + printf "%s\n" "227. $at_setup_line: testing $at_desc ..." $at_traceon @@ -228037,6 +230280,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -228053,29 +230297,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:170" +printf "%s\n" "$at_srcdir/nftables_counters.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:170" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:170" +printf "%s\n" "$at_srcdir/nftables_counters.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "nftables_counters.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:170" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228083,21 +230327,35 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:170" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +printf "%s\n" "$at_srcdir/nftables_counters.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "nftables_counters.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:170" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + + else + : + + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf + + fi + + + kill_firewalld() { pid=$(cat firewalld.pid) @@ -228133,29 +230391,21 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:170: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:170" +printf "%s\n" "$at_srcdir/nftables_counters.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:170" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - $as_echo "firewall-cmd.at:170" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:170" - - - - cat >./dbus.conf <<'_ATEOF' "$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:170" + printf "%s\n" "nftables_counters.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/nftables_counters.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late + cat >./nft_rule_index.nft <<'_ATEOF' - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:170" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:170" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:170" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:170" - - - - - - - - - + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=1.2.3.4 +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + else + : - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 + { set +x +printf "%s\n" "$at_srcdir/nftables_counters.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "nftables_counters.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - + fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1.2.3.4 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 1.2.3.4 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228363,41 +230571,37 @@ $at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default) -sources: 1.2.3.4 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" -$at_failed && at_fn_log_failure -$at_traceon; } - - - + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "nftables_counters.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/nftables_counters.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "nftables_counters.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/nftables_counters.at:1" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=1.2.3.4 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -228406,15 +230610,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=1.2.3.4 +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_INPUT_POLICIES { +jump filter_IN_policy_allow-host-ipv6 +jump filter_IN_public +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228424,18 +230642,33 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_IN_public_allow { +tcp dport 22 accept +ip6 daddr fe80::/64 udp dport 546 accept +} +} " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228445,16 +230678,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=1.2.3.4 +{ set +x +printf "%s\n" "$at_srcdir/nftables_counters.at:1: sed -i 's/^NftablesCounters=.*/NftablesCounters=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "nftables_counters.at:1" +( $at_check_trace; sed -i 's/^NftablesCounters=.*/NftablesCounters=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228462,18 +230695,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=1.2.3.4 +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228484,15 +230715,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228502,34 +230733,34 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:211" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=1.2.3.4 +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_INPUT_POLICIES { +counter packets 0 bytes 0 jump filter_IN_policy_allow-host-ipv6 +counter packets 0 bytes 0 jump filter_IN_public +counter packets 0 bytes 0 reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228539,18 +230770,33 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_IN_public_allow { +tcp dport 22 counter packets 0 bytes 0 accept +ip6 daddr fe80::/64 udp dport 546 counter packets 0 bytes 0 accept +} +} " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228560,18 +230806,19 @@ $at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1.2.3.4 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228581,18 +230828,32 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 1.2.3.4 +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_IN_public_allow { +tcp dport 22 counter packets 0 bytes 0 accept +ip6 daddr fe80::/64 udp dport 546 counter packets 0 bytes 0 accept +tcp dport 1234 counter packets 0 bytes 0 accept +} +} " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228602,16 +230863,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=1.2.3.4 +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228624,15 +230887,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=1.2.3.4 +printf "%s\n" "$at_srcdir/nftables_counters.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_counters.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_IN_public_allow { +tcp dport 22 counter packets 0 bytes 0 accept +ip6 daddr fe80::/64 udp dport 546 counter packets 0 bytes 0 accept +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_counters.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228643,219 +230919,326 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=1.2.3.4 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "nftables_counters.at:1" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/nftables_counters.at:1" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_227 +#AT_START_228 +at_fn_group_banner 228 'reloadpolicy.at:1' \ + "check ReloadPolicy" " " 7 +at_xfail=no +( + printf "%s\n" "228. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=1.2.3.4 + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=1.2.3.4 + else + { set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "reloadpolicy.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:211" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.0/24 + { set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "reloadpolicy.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" $at_failed && at_fn_log_failure $at_traceon; } + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + else + : + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" -$at_failed && at_fn_log_failure -$at_traceon; } + fi + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "192.168.1.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" $at_failed && at_fn_log_failure $at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 192.168.1.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" -$at_failed && at_fn_log_failure -$at_traceon; } + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "reloadpolicy.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + cat >./nft_rule_index.nft <<'_ATEOF' + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default) -sources: 192.168.1.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + else + : - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.0/24 + { set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "reloadpolicy.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + { set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.0/24 +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -228864,19 +231247,49 @@ $at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "reloadpolicy.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "reloadpolicy.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" + + + + + +{ set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:4: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=INPUT:REJECT,FORWARD:ACCEPT/' ./firewalld.conf" +at_fn_check_prepare_trace "reloadpolicy.at:4" +( $at_check_trace; sed -i 's/^ReloadPolicy=.*/ReloadPolicy=INPUT:REJECT,FORWARD:ACCEPT/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -228884,18 +231297,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.0/24 +printf "%s\n" "$at_srcdir/reloadpolicy.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -228906,15 +231317,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.0/24 +printf "%s\n" "$at_srcdir/reloadpolicy.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -228924,16 +231335,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 +printf "%s\n" "$at_srcdir/reloadpolicy.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -228944,15 +231357,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source +printf "%s\n" "$at_srcdir/reloadpolicy.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -228961,16 +231374,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.0/24 +{ set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:9: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=REJECT/' ./firewalld.conf" +at_fn_check_prepare_trace "reloadpolicy.at:9" +( $at_check_trace; sed -i 's/^ReloadPolicy=.*/ReloadPolicy=REJECT/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -228978,20 +231391,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 +printf "%s\n" "$at_srcdir/reloadpolicy.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -229002,17 +231411,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources +printf "%s\n" "$at_srcdir/reloadpolicy.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "192.168.1.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -229022,137 +231429,326 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources + + if test x"" != x"ignore"; then + printf "%s\n" "reloadpolicy.at:12" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:12" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_228 +#AT_START_229 +at_fn_group_banner 229 'nftables_table_owner.at:1' \ + "nftables table owner" " " 7 +at_xfail=no +( + printf "%s\n" "229. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_table_owner.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 192.168.1.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "nftables_table_owner.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.0/24 + { set +x +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "nftables_table_owner.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + else + : + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.0/24 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:212" -$at_failed && at_fn_log_failure -$at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.0/24 + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_table_owner.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "nftables_table_owner.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/nftables_table_owner.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + cat >./nft_rule_index.nft <<'_ATEOF' + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + else + : - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.0/24 + { set +x +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "nftables_table_owner.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi + { set +x +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.0/24 +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:212" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -229161,19 +231757,49 @@ $at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "nftables_table_owner.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/nftables_table_owner.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "nftables_table_owner.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/nftables_table_owner.at:1" + + - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.1/255.255.255.0 +{ set +x +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "nftables_table_owner.at:1" +( $at_check_trace; sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -229181,20 +231807,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -229205,17 +231827,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "192.168.1.1/255.255.255.0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -229224,41 +231844,36 @@ $at_traceon; } +printf "%s\n" "nftables_table_owner.at:1" >"$at_check_line_file" +(grep "Configuration has NftablesTableOwner=True, but it's not supported by nftables." ./firewalld.log) \ + && at_fn_check_skip 77 "$at_srcdir/nftables_table_owner.at:1" + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep \"flags owner,persist\" " +at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep "flags owner,persist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 192.168.1.1/255.255.255.0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" +{ set +x +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=no/' ./firewalld.conf" +at_fn_check_prepare_trace "nftables_table_owner.at:1" +( $at_check_trace; sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=no/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default) -sources: 192.168.1.1/255.255.255.0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -229266,18 +231881,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.1/255.255.255.0 +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -229288,15 +231901,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.1/255.255.255.0 +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -229305,38 +231918,48 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep \"flags owner,persist\" " +at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep "flags owner,persist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "nftables_table_owner.at:1" +( $at_check_trace; sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.1/255.255.255.0 +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -229347,15 +231970,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.1/255.255.255.0 +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -229364,17 +231987,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 +printf "%s\n" "$at_srcdir/nftables_table_owner.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft list table inet firewalld | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep \"flags owner,persist\" " +at_fn_check_prepare_notrace 'a $(...) command substitution' "nftables_table_owner.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list table inet firewalld | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep "flags owner,persist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_check_status 0 $at_status "$at_srcdir/nftables_table_owner.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -229382,218 +232004,325 @@ $at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "nftables_table_owner.at:1" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/nftables_table_owner.at:1" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:213" -$at_failed && at_fn_log_failure -$at_traceon; } + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_229 +#AT_START_230 +at_fn_group_banner 230 'strict_forward_ports.at:1' \ + "strict forward ports" " " 7 +at_xfail=no +( + printf "%s\n" "230. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.1/255.255.255.0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "strict_forward_ports.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "strict_forward_ports.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "192.168.1.1/255.255.255.0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : + + else + : + + sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf + + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 192.168.1.1/255.255.255.0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" -$at_failed && at_fn_log_failure -$at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.1/255.255.255.0 + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.1/255.255.255.0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:213" -$at_failed && at_fn_log_failure -$at_traceon; } + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "strict_forward_ports.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/strict_forward_ports.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + cat >./nft_rule_index.nft <<'_ATEOF' + add table inet firewalld_check_rule_index + add chain inet firewalld_check_rule_index foobar { type filter hook input priority 0 ; } + add rule inet firewalld_check_rule_index foobar tcp dport 1234 accept + add rule inet firewalld_check_rule_index foobar accept + insert rule inet firewalld_check_rule_index foobar index 1 udp dport 4321 accept +_ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.1/255.255.255.0 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft -f ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft -f ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } + if test "$( env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft list chain inet firewalld_check_rule_index foobar | head -n 5 |tail -n 1 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } )" = "udp dport 4321 accept"; then + : + else + : - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "strict_forward_ports.at:1" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - + fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.1/255.255.255.0 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} rm ./nft_rule_index.nft " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} rm ./nft_rule_index.nft ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.1/255.255.255.0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.1/255.255.255.0 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} nft delete table inet firewalld_check_rule_index " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} nft delete table inet firewalld_check_rule_index ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:213" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -229602,26 +232331,52 @@ $at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "strict_forward_ports.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/strict_forward_ports.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "strict_forward_ports.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/strict_forward_ports.at:1" - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=3ffe:501:ffff::/64 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy inputPolicy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy inputPolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -229632,17 +232387,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -229653,17 +232406,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources +printf "%s\n" "$at_srcdir/strict_forward_ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "3ffe:501:ffff::/64 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -229674,17 +232425,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources +printf "%s\n" "$at_srcdir/strict_forward_ports.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-forward-port=port=12345:proto=tcp:toport=54321 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-forward-port=port=12345:proto=tcp:toport=54321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 3ffe:501:ffff::/64 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -229694,19 +232443,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" +printf "%s\n" "$at_srcdir/strict_forward_ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy forwardPolicy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy forwardPolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default) -sources: 3ffe:501:ffff::/64 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -229717,15 +232464,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=3ffe:501:ffff::/64 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -229736,15 +232483,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=3ffe:501:ffff::/64 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -229755,17 +232502,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-rich-rule='rule family=ipv4 priority=-1 source address=10.0.0.0/8 forward-port port=3333 protocol=tcp to-port=4444 to-addr=10.222.222.222' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-rich-rule='rule family=ipv4 priority=-1 source address=10.0.0.0/8 forward-port port=3333 protocol=tcp to-port=4444 to-addr=10.222.222.222' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -229775,16 +232520,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=3ffe:501:ffff::/64 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy outputPolicy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy outputPolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -229795,15 +232541,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=3ffe:501:ffff::/64 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -229814,15 +232560,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -229833,15 +232579,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source +printf "%s\n" "$at_srcdir/strict_forward_ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-forward-port=port=11111:proto=tcp:toport=22222:toaddr=10.20.20.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-forward-port=port=11111:proto=tcp:toport=22222:toaddr=10.20.20.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -229849,17 +232595,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=3ffe:501:ffff::/64 +{ set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:19: sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=no/' ./firewalld.conf" +at_fn_check_prepare_trace "strict_forward_ports.at:19" +( $at_check_trace; sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=no/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:19" $at_failed && at_fn_log_failure $at_traceon; } @@ -229867,20 +232612,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -229891,17 +232632,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources +printf "%s\n" "$at_srcdir/strict_forward_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "3ffe:501:ffff::/64 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -229911,37 +232650,37 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: 3ffe:501:ffff::/64 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=3ffe:501:ffff::/64 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_INPUT { +ct state established,related accept +ct status dnat accept +iifname \"lo\" accept +ct state invalid drop +jump filter_INPUT_POLICIES +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:22" $at_failed && at_fn_log_failure $at_traceon; } @@ -229953,57 +232692,36 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=3ffe:501:ffff::/64 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=3ffe:501:ffff::/64 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - +printf "%s\n" "$at_srcdir/strict_forward_ports.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:34" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_FORWARD { +ct state established,related accept +ct status dnat accept +iifname \"lo\" accept +ct state invalid drop +ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable +jump filter_FORWARD_POLICIES +reject with icmpx admin-prohibited +} +} " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -230013,35 +232731,36 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=3ffe:501:ffff::/64 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=3ffe:501:ffff::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=3ffe:501:ffff::/64 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:214" +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_OUTPUT { +ct state established,related accept +ct status dnat accept +oifname \"lo\" accept +ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable +jump filter_OUTPUT_POLICIES +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -230053,39 +232772,10 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=dead:beef::babe -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -230093,20 +232783,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dead:beef::babe -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -230114,18 +232790,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources +{ set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:107: sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "strict_forward_ports.at:107" +( $at_check_trace; sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: dead:beef::babe -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:107" $at_failed && at_fn_log_failure $at_traceon; } @@ -230133,21 +232807,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" +printf "%s\n" "$at_srcdir/strict_forward_ports.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:108" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default) -sources: dead:beef::babe -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:108" $at_failed && at_fn_log_failure $at_traceon; } @@ -230158,15 +232827,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=dead:beef::babe +printf "%s\n" "$at_srcdir/strict_forward_ports.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:108" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:108" $at_failed && at_fn_log_failure $at_traceon; } @@ -230176,37 +232845,37 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=dead:beef::babe -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe +printf "%s\n" "$at_srcdir/strict_forward_ports.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:110" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_INPUT { +ct state established,related accept +ct status dnat jump filter_INPUT_dnat +iifname \"lo\" accept +ct state invalid drop +jump filter_INPUT_POLICIES +reject with icmpx admin-prohibited +} +} " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:110" $at_failed && at_fn_log_failure $at_traceon; } @@ -230216,35 +232885,33 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=dead:beef::babe -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=dead:beef::babe +printf "%s\n" "$at_srcdir/strict_forward_ports.at:122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_dnat; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:122" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_INPUT_dnat; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:214" +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_INPUT_dnat { +ct original proto-dst 12345 accept +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:122" $at_failed && at_fn_log_failure $at_traceon; } @@ -230254,35 +232921,38 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source +printf "%s\n" "$at_srcdir/strict_forward_ports.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:130" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_FORWARD { +ct state established,related accept +ct status dnat jump filter_FORWARD_dnat +iifname \"lo\" accept +ct state invalid drop +ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable +jump filter_FORWARD_POLICIES +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:130" $at_failed && at_fn_log_failure $at_traceon; } @@ -230291,37 +232961,34 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=dead:beef::babe -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe +printf "%s\n" "$at_srcdir/strict_forward_ports.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_dnat; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:143" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_FORWARD_dnat; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_FORWARD_dnat { +ct original proto-dst 3333 accept +reject with icmpx admin-prohibited +} +} " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:143" $at_failed && at_fn_log_failure $at_traceon; } @@ -230331,39 +232998,36 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dead:beef::babe -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources +printf "%s\n" "$at_srcdir/strict_forward_ports.at:151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:151" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "sources: dead:beef::babe +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_OUTPUT { +ct state established,related accept +ct status dnat jump filter_OUTPUT_dnat +oifname \"lo\" accept +ip6 daddr { ::/96, ::ffff:0.0.0.0/96, 2002::/24, 2002:a00::/24, 2002:7f00::/24, 2002:a9fe::/32, 2002:ac10::/28, 2002:c0a8::/32, 2002:e000::/19 } reject with icmpv6 addr-unreachable +jump filter_OUTPUT_POLICIES +} +} " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:151" $at_failed && at_fn_log_failure $at_traceon; } @@ -230373,37 +233037,33 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=dead:beef::babe -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=dead:beef::babe +printf "%s\n" "$at_srcdir/strict_forward_ports.at:162: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { nft \$NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_dnat; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \\(state\\|status\\)/{s/\\(ct \\(state\\|status\\)\\) {/\\1/g; s/ }//; s/\\([a-z]*\\), /\\1,/g;}' -e 's/reject with icmp\\(x\\|v6\\)\\? type port-unreachable/reject/' -e 's/\\(iifname\\|oifname\\) [{] \\([^, ]\\+\\) [}]/\\1 \\2/g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) type \\([a-z-]\\+\\)/\\1 \\2/g' -e 's/reject\$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\\(icmp\\|icmpv6\\|icmpx\\) code no-route/\\1 code 0/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:162" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { nft $NFT_NUMERIC_ARGS list chain inet firewalld filter_OUTPUT_dnat; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sed -e 's/meta mark/mark/g' -e '/type.*hook.*priority.*policy.*/d' -e '/ct \(state\|status\)/{s/\(ct \(state\|status\)\) {/\1/g; s/ }//; s/\([a-z]*\), /\1,/g;}' -e 's/reject with icmp\(x\|v6\)\? type port-unreachable/reject/' -e 's/\(iifname\|oifname\) [{] \([^, ]\+\) [}]/\1 \2/g' -e 's/\(icmp\|icmpv6\|icmpx\) type \([a-z-]\+\)/\1 \2/g' -e 's/reject$/reject with icmp port-unreachable/g' -e 's/burst 5 packets //g' -e 's/\(icmp\|icmpv6\|icmpx\) code no-route/\1 code 0/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:214" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "table inet firewalld { +chain filter_OUTPUT_dnat { +ct original proto-dst 11111 accept +reject with icmpx admin-prohibited +} +} +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:162" $at_failed && at_fn_log_failure $at_traceon; } @@ -230414,18 +233074,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=dead:beef::babe -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -230433,20 +233081,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -230454,18 +233088,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=dead:beef::babe -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -230473,28 +233095,13 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=dead:beef::babe " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=dead:beef::babe -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:214" -$at_failed && at_fn_log_failure -$at_traceon; } - else - : - fi @@ -230503,10 +233110,13 @@ $at_traceon; } - if test x" -e '/ERROR: ZONE_CONFLICT/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:221" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: ZONE_CONFLICT/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:221" + + + + if test x"" != x"ignore"; then + printf "%s\n" "strict_forward_ports.at:246" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/strict_forward_ports.at:246" fi @@ -230515,13 +233125,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_220 -#AT_START_221 -at_fn_group_banner 221 'firewall-cmd.at:223' \ - "services" " " 8 +#AT_STOP_230 +#AT_START_231 +at_fn_group_banner 231 'firewall-cmd.at:5' \ + "basic options" " " 8 at_xfail=no ( - $as_echo "221. $at_setup_line: testing $at_desc ..." + printf "%s\n" "231. $at_setup_line: testing $at_desc ..." $at_traceon @@ -230539,6 +233149,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -230555,29 +233166,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:223" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:223" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:223" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:5" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:223" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -230585,15 +233196,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:223" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:5" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:223" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -230635,15 +233246,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:223: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:223" +printf "%s\n" "$at_srcdir/firewall-cmd.at:5: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:5" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:223" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -230651,9 +233262,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:223" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:5" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:223" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:5" @@ -230734,8 +233345,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:223" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" + printf "%s\n" "firewall-cmd.at:5" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -230745,7 +233356,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -230753,8 +233364,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:223" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" + printf "%s\n" "firewall-cmd.at:5" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" fi echo "$!" > firewalld.pid @@ -230770,9 +233381,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" fi sleep 1 done - $as_echo "firewall-cmd.at:223" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:5" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:5" @@ -230782,15 +233393,20 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --timeout 60 --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:226" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=dns --timeout 60 --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stderr"; printf "%s\n" "State: running + +No options specified +usage: 'firewall-cmd --help' for usage information or see firewall-cmd(1) man page +" | \ + $at_diff - "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:226" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -230801,15 +233417,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service dns " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:227" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service dns +printf "%s\n" "$at_srcdir/firewall-cmd.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -h " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -h ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:227" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -230820,15 +233436,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-service=dns " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:228" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-service=dns +printf "%s\n" "$at_srcdir/firewall-cmd.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --help " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --help ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:228" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -230839,15 +233455,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service=dns " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:229" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service=dns +printf "%s\n" "$at_srcdir/firewall-cmd.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -V " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -V ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:229" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -230858,15 +233474,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:230: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=smtpssssssss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:230" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=smtpssssssss +printf "%s\n" "$at_srcdir/firewall-cmd.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/firewall-cmd.at:230" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -230877,15 +233493,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --timeout " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:231" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=dns --timeout +printf "%s\n" "$at_srcdir/firewall-cmd.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --complete-reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:23" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --complete-reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:231" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:23" $at_failed && at_fn_log_failure $at_traceon; } @@ -230894,16 +233510,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --add-interface=dummy0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:232" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=dns --add-interface=dummy0 +printf "%s\n" "$at_srcdir/firewall-cmd.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --panic-on " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --panic-on ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:232" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -230913,16 +233531,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --timeout 60 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:234" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --timeout 60 +printf "%s\n" "$at_srcdir/firewall-cmd.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:234" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -230931,16 +233550,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service dns " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:235" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service dns +printf "%s\n" "$at_srcdir/firewall-cmd.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:235" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -230950,18 +233570,19 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --list-services " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:236" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --list-services +printf "%s\n" "$at_srcdir/firewall-cmd.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-panic " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "dns ssh +echo >>"$at_stdout"; printf "%s\n" "yes " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:236" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -230972,15 +233593,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:238: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-service dns " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:238" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-service dns +printf "%s\n" "$at_srcdir/firewall-cmd.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --panic-off " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --panic-off ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:238" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:29" $at_failed && at_fn_log_failure $at_traceon; } @@ -230990,17 +233611,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-service=dns " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:239" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --remove-service=dns +printf "%s\n" "$at_srcdir/firewall-cmd.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-panic " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-panic ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:239" +echo >>"$at_stdout"; printf "%s\n" "no +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:30" $at_failed && at_fn_log_failure $at_traceon; } @@ -231009,75 +233631,148 @@ $at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:32" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:32" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-service=dns " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:244" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-service=dns + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_231 +#AT_START_232 +at_fn_group_banner 232 'firewall-cmd.at:34' \ + "get/list options" " " 8 +at_xfail=no +( + printf "%s\n" "232. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:244" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" $at_failed && at_fn_log_failure $at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:34" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" +$at_failed && at_fn_log_failure +$at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=smtpssssssss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:245" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=smtpssssssss + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:34" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/firewall-cmd.at:245" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --add-interface=dummy0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:246" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --add-interface=dummy0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:246" -$at_failed && at_fn_log_failure -$at_traceon; } + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=http --add-service=nfs --timeout=1h " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:248" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=http --add-service=nfs --timeout=1h + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:34: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:34" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:248" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -231085,20 +233780,129 @@ $at_traceon; } + printf "%s\n" "firewall-cmd.at:34" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:34" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service http " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:249" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service http -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:249" -$at_failed && at_fn_log_failure -$at_traceon; } + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:34" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:34" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:34" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:34" + @@ -231107,15 +233911,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service=nfs --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:250" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service=nfs --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:37" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:250" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:37" $at_failed && at_fn_log_failure $at_traceon; } @@ -231126,15 +233930,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-service=nfs --remove-service=http " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:251" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-service=nfs --remove-service=http +printf "%s\n" "$at_srcdir/firewall-cmd.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-services " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:251" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -231145,15 +233949,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service http " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:252" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service http +printf "%s\n" "$at_srcdir/firewall-cmd.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-icmptypes " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-icmptypes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:252" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:39" $at_failed && at_fn_log_failure $at_traceon; } @@ -231164,15 +233968,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service nfs " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:253" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service nfs +printf "%s\n" "$at_srcdir/firewall-cmd.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:40" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:253" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:40" $at_failed && at_fn_log_failure $at_traceon; } @@ -231182,17 +233986,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-service=http --add-service=nfs " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:255" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-service=http --add-service=nfs +printf "%s\n" "$at_srcdir/firewall-cmd.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:41" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:255" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:41" $at_failed && at_fn_log_failure $at_traceon; } @@ -231203,15 +234006,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service http " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:256" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service http +printf "%s\n" "$at_srcdir/firewall-cmd.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-icmptypes " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-icmptypes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:256" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -231221,16 +234024,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service=nfs --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:257" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service=nfs --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:257" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -231240,17 +234044,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-service=nfs --remove-service=http " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:258" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-service=nfs --remove-service=http +printf "%s\n" "$at_srcdir/firewall-cmd.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:258" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:45" $at_failed && at_fn_log_failure $at_traceon; } @@ -231260,17 +234063,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service http " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:263" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service http +printf "%s\n" "$at_srcdir/firewall-cmd.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:263" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -231281,15 +234083,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service nfs " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:264" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service nfs +printf "%s\n" "$at_srcdir/firewall-cmd.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:264" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -231298,10 +234100,10 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_SERVICE:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:265" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:265" + if test x"" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:48" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:48" fi @@ -231310,13 +234112,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_221 -#AT_START_222 -at_fn_group_banner 222 'firewall-cmd.at:267' \ - "user services" " " 8 +#AT_STOP_232 +#AT_START_233 +at_fn_group_banner 233 'firewall-cmd.at:50' \ + "default zone" " " 8 at_xfail=no ( - $as_echo "222. $at_setup_line: testing $at_desc ..." + printf "%s\n" "233. $at_setup_line: testing $at_desc ..." $at_traceon @@ -231334,6 +234136,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -231350,29 +234153,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:267" +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:267" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:267" +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:50" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:267" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" $at_failed && at_fn_log_failure $at_traceon; } @@ -231380,15 +234183,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:267" +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:50" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:267" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" $at_failed && at_fn_log_failure $at_traceon; } @@ -231430,15 +234233,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:267: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:267" +printf "%s\n" "$at_srcdir/firewall-cmd.at:50: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:50" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:267" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:50" $at_failed && at_fn_log_failure $at_traceon; } @@ -231446,9 +234249,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:267" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:50" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:267" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:50" @@ -231529,8 +234332,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:267" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" + printf "%s\n" "firewall-cmd.at:50" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -231540,7 +234343,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -231548,8 +234351,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:267" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" + printf "%s\n" "firewall-cmd.at:50" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" fi echo "$!" > firewalld.pid @@ -231565,9 +234368,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" fi sleep 1 done - $as_echo "firewall-cmd.at:267" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:50" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:50" @@ -231577,15 +234380,17 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:270: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service=ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:270" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service=ssh +printf "%s\n" "$at_srcdir/firewall-cmd.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:53" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 26 $at_status "$at_srcdir/firewall-cmd.at:270" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -231596,15 +234401,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:272" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service=foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone=\"home\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone="home" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:272" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -231615,15 +234420,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:273" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:56" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:273" +echo >>"$at_stdout"; printf "%s\n" "home +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:56" $at_failed && at_fn_log_failure $at_traceon; } @@ -231633,17 +234440,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:275: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:275" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:275" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -231652,16 +234458,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:276" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/dummy +printf "%s\n" "$at_srcdir/firewall-cmd.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-default-zone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:59" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:276" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:59" $at_failed && at_fn_log_failure $at_traceon; } @@ -231670,73 +234477,148 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:277" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:277" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:60" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:60" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_233 +#AT_START_234 +at_fn_group_banner 234 'firewall-cmd.at:62' \ + "user zone" " " 8 +at_xfail=no +( + printf "%s\n" "234. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:278" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:278" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:279" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=111-222/udp + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:62" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:279" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:62" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:62" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:62" $at_failed && at_fn_log_failure $at_traceon; } + fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:62" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:62" +$at_failed && at_fn_log_failure +$at_traceon; } + kill_firewalld() { - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:280" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:62: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:62" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:280" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:62" $at_failed && at_fn_log_failure $at_traceon; } @@ -231744,18 +234626,146 @@ $at_traceon; } + printf "%s\n" "firewall-cmd.at:62" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:62" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:62" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:62" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:62" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:62" + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:281" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --new-zone=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:65" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --new-zone=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:281" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:65" $at_failed && at_fn_log_failure $at_traceon; } @@ -231764,17 +234774,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:282" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:66" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:282" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:66" $at_failed && at_fn_log_failure $at_traceon; } @@ -231785,15 +234794,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:283" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp +printf "%s\n" "$at_srcdir/firewall-cmd.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones | grep foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:67" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zones | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:283" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:67" $at_failed && at_fn_log_failure $at_traceon; } @@ -231804,15 +234813,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:284: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:284" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/sctp +printf "%s\n" "$at_srcdir/firewall-cmd.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep default " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:68" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:284" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:68" $at_failed && at_fn_log_failure $at_traceon; } @@ -231823,15 +234832,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 666/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:285" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 666/sctp +printf "%s\n" "$at_srcdir/firewall-cmd.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=BAD " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:69" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=BAD ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:285" +at_fn_check_status 110 $at_status "$at_srcdir/firewall-cmd.at:69" $at_failed && at_fn_log_failure $at_traceon; } @@ -231842,15 +234851,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=666/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:286" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=666/sctp +printf "%s\n" "$at_srcdir/firewall-cmd.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:286" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -231861,15 +234870,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:287" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:287" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -231880,15 +234889,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:288: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=999/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:288" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=999/dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:288" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:72" $at_failed && at_fn_log_failure $at_traceon; } @@ -231899,15 +234908,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 999/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:289" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 999/dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --get-target | grep ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:289" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -231918,15 +234927,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=999/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:290" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=999/dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-service=ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:74" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-service=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:290" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:74" $at_failed && at_fn_log_failure $at_traceon; } @@ -231936,16 +234945,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:291" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp +printf "%s\n" "$at_srcdir/firewall-cmd.at:77: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghi " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:77" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:291" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:77" $at_failed && at_fn_log_failure $at_traceon; } @@ -231956,15 +234966,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:292" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghij " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:78" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=123456789abcefghij ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:292" +at_fn_check_status 116 $at_status "$at_srcdir/firewall-cmd.at:78" $at_failed && at_fn_log_failure $at_traceon; } @@ -231973,37 +234983,148 @@ $at_traceon; } + if test x"-e '/ERROR: INVALID_TARGET: /d' -e '/ERROR: INVALID_NAME: /d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:79" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_TARGET: /d' -e '/ERROR: INVALID_NAME: /d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:79" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-protocol=ddp --add-protocol gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:294" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-protocol=ddp --add-protocol gre + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_234 +#AT_START_235 +at_fn_group_banner 235 'firewall-cmd.at:82' \ + "zone interfaces" " " 8 +at_xfail=no +( + printf "%s\n" "235. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:82" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:294" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:82" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:82" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:82" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:82" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:82" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:295" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:82: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:82" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:295" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -232011,18 +235132,146 @@ $at_traceon; } + printf "%s\n" "firewall-cmd.at:82" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:82" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:82" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:82" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:82" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:82" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:82" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:82" + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:296" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre +printf "%s\n" "$at_srcdir/firewall-cmd.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --add-interface=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:85" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --add-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:296" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:85" $at_failed && at_fn_log_failure $at_traceon; } @@ -232033,15 +235282,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol ddp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:297" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol ddp +printf "%s\n" "$at_srcdir/firewall-cmd.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:86" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:297" +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:86" $at_failed && at_fn_log_failure $at_traceon; } @@ -232052,15 +235303,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:298: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:298" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol gre +printf "%s\n" "$at_srcdir/firewall-cmd.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:88" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:298" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:88" $at_failed && at_fn_log_failure $at_traceon; } @@ -232071,15 +235322,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:299" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp +printf "%s\n" "$at_srcdir/firewall-cmd.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-interface=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:89" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:299" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:89" $at_failed && at_fn_log_failure $at_traceon; } @@ -232089,16 +235340,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:300" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre +printf "%s\n" "$at_srcdir/firewall-cmd.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --change-interface=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:91" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --change-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:300" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:91" $at_failed && at_fn_log_failure $at_traceon; } @@ -232108,17 +235360,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=sip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:302" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=sip +printf "%s\n" "$at_srcdir/firewall-cmd.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:92" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:302" +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:92" $at_failed && at_fn_log_failure $at_traceon; } @@ -232129,15 +235382,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=sip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:303" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=sip +printf "%s\n" "$at_srcdir/firewall-cmd.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=block --add-interface=dummy1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:94" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=block --add-interface=dummy1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:303" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:94" $at_failed && at_fn_log_failure $at_traceon; } @@ -232148,15 +235401,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:304" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=ftp +printf "%s\n" "$at_srcdir/firewall-cmd.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=block --remove-interface=dummy1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=block --remove-interface=dummy1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:304" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:95" $at_failed && at_fn_log_failure $at_traceon; } @@ -232166,16 +235419,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:305: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:305" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp +printf "%s\n" "$at_srcdir/firewall-cmd.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --change-zone=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:97" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --change-zone=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:305" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:97" $at_failed && at_fn_log_failure $at_traceon; } @@ -232186,15 +235440,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:306" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=ftp +printf "%s\n" "$at_srcdir/firewall-cmd.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:98" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:306" +echo >>"$at_stdout"; printf "%s\n" "dmz +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:98" $at_failed && at_fn_log_failure $at_traceon; } @@ -232205,15 +235461,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:307" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp +printf "%s\n" "$at_srcdir/firewall-cmd.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --list-interfaces " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:100" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --list-interfaces ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:307" +echo >>"$at_stdout"; printf "%s\n" "dummy +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:100" $at_failed && at_fn_log_failure $at_traceon; } @@ -232223,17 +235481,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=sip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:309" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=sip +printf "%s\n" "$at_srcdir/firewall-cmd.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:102" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:309" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:102" $at_failed && at_fn_log_failure $at_traceon; } @@ -232244,15 +235501,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=sip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:310" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=sip +printf "%s\n" "$at_srcdir/firewall-cmd.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:103" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:310" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:103" $at_failed && at_fn_log_failure $at_traceon; } @@ -232262,16 +235519,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:311: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:311" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=ftp +printf "%s\n" "$at_srcdir/firewall-cmd.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --change-interface=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:105" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --change-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:311" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:105" $at_failed && at_fn_log_failure $at_traceon; } @@ -232280,17 +235538,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:312" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp +printf "%s\n" "$at_srcdir/firewall-cmd.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:106" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:312" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:106" $at_failed && at_fn_log_failure $at_traceon; } @@ -232301,17 +235558,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --get-service-helpers " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:313" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --get-service-helpers +printf "%s\n" "$at_srcdir/firewall-cmd.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:107" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --remove-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:313" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:107" $at_failed && at_fn_log_failure $at_traceon; } @@ -232321,16 +235576,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:316" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=ftp +printf "%s\n" "$at_srcdir/firewall-cmd.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:109" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --query-interface dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:316" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:109" $at_failed && at_fn_log_failure $at_traceon; } @@ -232341,15 +235597,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:317" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp +printf "%s\n" "$at_srcdir/firewall-cmd.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:110" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:317" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:110" $at_failed && at_fn_log_failure $at_traceon; } @@ -232359,17 +235615,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:319" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:111" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 121 $at_status "$at_srcdir/firewall-cmd.at:319" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:111" $at_failed && at_fn_log_failure $at_traceon; } @@ -232378,16 +235633,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:foo " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:320" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:foo +printf "%s\n" "$at_srcdir/firewall-cmd.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 105 $at_status "$at_srcdir/firewall-cmd.at:320" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:112" $at_failed && at_fn_log_failure $at_traceon; } @@ -232396,16 +235652,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:321" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:1.2.3.4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-services " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:113" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:321" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:113" $at_failed && at_fn_log_failure $at_traceon; } @@ -232416,15 +235673,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:322: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:322" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-default-zone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:114" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:322" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:114" $at_failed && at_fn_log_failure $at_traceon; } @@ -232434,23 +235691,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --set-default-zone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:115" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --set-default-zone +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:115" +$at_failed && at_fn_log_failure +$at_traceon; } + + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv6:fd00:dead:beef:ff0::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv6:fd00:dead:beef:ff0::/64 +printf "%s\n" "$at_srcdir/firewall-cmd.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=dmz --get-zone-of-interface " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=dmz --get-zone-of-interface ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:323" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:116" $at_failed && at_fn_log_failure $at_traceon; } @@ -232460,16 +235729,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 +printf "%s\n" "$at_srcdir/firewall-cmd.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-interface=perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:118" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:323" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:118" $at_failed && at_fn_log_failure $at_traceon; } @@ -232480,15 +235750,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv6 +printf "%s\n" "$at_srcdir/firewall-cmd.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=perm_dummy2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:119" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=perm_dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:323" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:119" $at_failed && at_fn_log_failure $at_traceon; } @@ -232498,16 +235768,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 +printf "%s\n" "$at_srcdir/firewall-cmd.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:120" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:323" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:120" $at_failed && at_fn_log_failure $at_traceon; } @@ -232515,10 +235786,21 @@ $at_traceon; } - else - : - fi + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:120" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:120" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -232527,15 +235809,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:330: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-service=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:330" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-service=foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:121" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:330" +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:121" $at_failed && at_fn_log_failure $at_traceon; } @@ -232546,15 +235830,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:331: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:331" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-interface=perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:123" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:331" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:123" $at_failed && at_fn_log_failure $at_traceon; } @@ -232565,15 +235849,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:332: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-service=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:332" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-service=foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --list-interfaces " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:124" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --list-interfaces ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:332" +echo >>"$at_stdout"; printf "%s\n" "perm_dummy +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:124" $at_failed && at_fn_log_failure $at_traceon; } @@ -232583,16 +235869,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:333" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:127" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:333" +at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:127" $at_failed && at_fn_log_failure $at_traceon; } @@ -232600,26 +235888,40 @@ $at_traceon; } - cat >./foobar-to-be-renamed <<'_ATEOF' - - - - - + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:130" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:130" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service-from-file=\"./foobar-to-be-renamed\" --name=\"foobar-from-file\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:335" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service-from-file="./foobar-to-be-renamed" --name="foobar-from-file" +printf "%s\n" "$at_srcdir/firewall-cmd.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:335" +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -232630,167 +235932,170 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar-from-file " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:335" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar-from-file +printf "%s\n" "$at_srcdir/firewall-cmd.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:133" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:335" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:133" $at_failed && at_fn_log_failure $at_traceon; } -_ATEOF + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:134" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:134" +$at_failed && at_fn_log_failure +$at_traceon; } - if test x"-e '/ERROR: NAME_CONFLICT: new_service():/d' -e '/ERROR: INVALID_ADDR:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:346" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: NAME_CONFLICT: new_service():/d' -e '/ERROR: INVALID_ADDR:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:346" - fi - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_222 -#AT_START_223 -at_fn_group_banner 223 'firewall-cmd.at:349' \ - "ports" " " 8 -at_xfail=no -( - $as_echo "223. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:135" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --change-interface=perm_dummy +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:135" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:136" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-interface=perm_dummy +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:136" +$at_failed && at_fn_log_failure +$at_traceon; } - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:349" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:138" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface=perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:349" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:138" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:349" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:139" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --query-interface perm_dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:349" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:139" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:349" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --remove-interface=perm_dummy2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:140" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --remove-interface=perm_dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:349" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:140" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:141" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:141" +$at_failed && at_fn_log_failure +$at_traceon; } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:349: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:349" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:141" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:141" $at_failed && at_fn_log_failure $at_traceon; } @@ -232798,21 +236103,330 @@ $at_traceon; } - $as_echo "firewall-cmd.at:349" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:349" - - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-interface=foobar+++ " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:146" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-interface=foobar+++ +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:146" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-interface=foobar+ " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:147" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-interface=foobar+ +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:147" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-interface=foobar+++ " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:163" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-interface=foobar+++ +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:163" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:164: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-interface=foobar+ " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:164" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-interface=foobar+ +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:164" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-interface=foobar+ " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:165" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-interface=foobar+ +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:165" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-interface=foobar+ " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:166" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-interface=foobar+ +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:166" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:167" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:167" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:167" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:167" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + if test x"-e '/ERROR: ZONE_CONFLICT: perm_dummy/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:168" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: ZONE_CONFLICT: perm_dummy/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:168" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_235 +#AT_START_236 +at_fn_group_banner 236 'firewall-cmd.at:170' \ + "zone sources" " " 8 +at_xfail=no +( + printf "%s\n" "236. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:170" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:170" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:170" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:170" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:170" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:170" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:170: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:170" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:170" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "firewall-cmd.at:170" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:170" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy @@ -232881,8 +236495,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:349" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" + printf "%s\n" "firewall-cmd.at:170" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:170" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -232892,7 +236506,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -232900,8 +236514,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:349" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" + printf "%s\n" "firewall-cmd.at:170" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:170" fi echo "$!" > firewalld.pid @@ -232917,9 +236531,12 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" fi sleep 1 done - $as_echo "firewall-cmd.at:349" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:170" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:170" + + + @@ -232929,15 +236546,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --list-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:352" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --list-ports +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -232948,15 +236565,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:353" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:353" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -232965,16 +236584,19 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666/dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=666/dummy +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:354" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "1.2.3.4 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -232983,16 +236605,19 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:355" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 254 $at_status "$at_srcdir/firewall-cmd.at:355" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "sources: 1.2.3.4 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233003,15 +236628,18 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo --add-port bar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:356" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo --add-port bar +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 254 $at_status "$at_srcdir/firewall-cmd.at:356" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public (default) +sources: 1.2.3.4 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233022,15 +236650,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666/tcp --zone=public --timeout=30m " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:357" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=666/tcp --zone=public --timeout=30m +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:357" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233041,15 +236669,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port=666/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:358" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port=666/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:358" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233060,15 +236688,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:359" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:359" +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233079,15 +236709,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:360: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=111-222/udp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:360" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=111-222/udp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:360" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233098,15 +236728,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:361: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:361" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:361" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233117,15 +236747,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:362" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:362" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233135,17 +236765,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=5000/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:364" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=5000/sctp +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:364" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233154,17 +236783,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=5000/sctp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:365" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=5000/sctp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:365" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233175,15 +236803,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 5000/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:366" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 5000/sctp +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:366" +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233194,15 +236824,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=5000/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:367" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=5000/sctp +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:367" +echo >>"$at_stdout"; printf "%s\n" "1.2.3.4 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233213,15 +236845,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=222/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:368" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=222/dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:368" +echo >>"$at_stdout"; printf "%s\n" "sources: 1.2.3.4 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233232,15 +236866,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=222/dccp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=222/dccp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:369" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233250,16 +236884,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:370: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 222/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:370" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 222/dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:370" +at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233269,16 +236905,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:371: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=222/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:371" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=222/dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:371" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233288,17 +236925,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:373" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:373" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233307,16 +236945,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666/dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:374" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=666/dummy +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:374" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233325,16 +236964,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:375" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=666/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:375" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -233344,16 +236984,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port=666/tcp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:376" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port=666/tcp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:376" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233364,15 +237006,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=111-222/udp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:377" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=111-222/udp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:377" +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233383,15 +237027,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:378" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:378" +echo >>"$at_stdout"; printf "%s\n" "192.168.1.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233402,15 +237048,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:379" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:379" +echo >>"$at_stdout"; printf "%s\n" "sources: 192.168.1.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233421,15 +237069,18 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:380" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:380" +echo >>"$at_stdout"; printf "%s\n" "public (default) +sources: 192.168.1.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233439,17 +237090,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=5000/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:382" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=5000/sctp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:382" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233460,15 +237110,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:383" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233479,15 +237129,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:384: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 5000/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:384" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 5000/sctp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:384" +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233498,15 +237150,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:385" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:385" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233517,15 +237169,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=222/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:386" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=222/dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:386" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233536,15 +237188,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:387: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:387" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:387" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233555,15 +237207,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:388: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 222/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:388" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 222/dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:388" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233572,17 +237224,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:389: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:389" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:389" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233592,17 +237243,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=80/tcp --add-port 443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:391" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=80/tcp --add-port 443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:391" +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233613,15 +237265,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=80/tcp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:392" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=80/tcp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:392" +echo >>"$at_stdout"; printf "%s\n" "192.168.1.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233632,15 +237286,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:393" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:393" +echo >>"$at_stdout"; printf "%s\n" "sources: 192.168.1.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233651,15 +237307,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 80/tcp --remove-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:394" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 80/tcp --remove-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:394" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233669,16 +237325,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=80/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:395" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=80/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:395" +at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233688,16 +237346,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:396" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:396" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233707,17 +237366,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:398: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=80/tcp --add-port 443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:398" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=80/tcp --add-port 443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:398" +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233728,15 +237388,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:399: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:399" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:399" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233747,15 +237407,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:400: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:400" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:400" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -233765,16 +237425,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 80/tcp --remove-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:401" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 80/tcp --remove-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:401" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -233785,15 +237447,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:402: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:402" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:402" +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -233804,15 +237468,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:403: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:403" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:403" +echo >>"$at_stdout"; printf "%s\n" "192.168.1.1/255.255.255.0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -233821,147 +237487,60 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:404" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:404" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_223 -#AT_START_224 -at_fn_group_banner 224 'firewall-cmd.at:406' \ - "source ports" " " 8 -at_xfail=no -( - $as_echo "224. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:406" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:406" +echo >>"$at_stdout"; printf "%s\n" "sources: 192.168.1.1/255.255.255.0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:406" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:406" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:406" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:406" +echo >>"$at_stdout"; printf "%s\n" "public (default) +sources: 192.168.1.1/255.255.255.0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:406: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:406" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:406" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -233969,129 +237548,60 @@ $at_traceon; } - $as_echo "firewall-cmd.at:406" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:406" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=192.168.1.1/255.255.255.0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "firewall-cmd.at:406" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:406" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:406" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=192.168.1.1/255.255.255.0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -234100,15 +237610,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:409: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --list-source-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:409" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --list-source-ports +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:409" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -234119,15 +237629,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:410: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:410" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:410" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -234136,16 +237646,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:411: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666/dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:411" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=666/dummy +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:411" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -234155,15 +237666,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:412: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666/tcp --zone=public --timeout=30m " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:412" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=666/tcp --zone=public --timeout=30m +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:412" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -234174,15 +237685,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:413: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port=666/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:413" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-source-port=666/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:413" +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -234193,15 +237706,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:414: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:414" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:414" +echo >>"$at_stdout"; printf "%s\n" "192.168.1.1/255.255.255.0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -234212,15 +237727,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:415: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=111-222/udp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:415" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=111-222/udp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:415" +echo >>"$at_stdout"; printf "%s\n" "sources: 192.168.1.1/255.255.255.0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -234231,15 +237748,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:416: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port 111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:416" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-source-port 111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:416" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -234249,16 +237766,38 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:417: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:417" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=192.168.1.1/255.255.255.0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:213" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:417" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -234268,17 +237807,37 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=192.168.1.1/255.255.255.0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:419: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:419" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:419" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -234287,16 +237846,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:420: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666/dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:420" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=666/dummy +printf "%s\n" "$at_srcdir/firewall-cmd.at:213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.1/255.255.255.0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=192.168.1.1/255.255.255.0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:420" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:213" $at_failed && at_fn_log_failure $at_traceon; } @@ -234305,16 +237865,26 @@ $at_traceon; } + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:421: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:421" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=666/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:421" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234325,15 +237895,100 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:422: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port=666/tcp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:422" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-source-port=666/tcp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "3ffe:501:ffff::/64 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "sources: 3ffe:501:ffff::/64 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public (default) +sources: 3ffe:501:ffff::/64 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:422" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234344,15 +237999,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:423: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=111-222/udp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:423" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=111-222/udp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:423" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234363,15 +238018,36 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:424: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:424" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:424" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234382,15 +238058,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:425: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port 111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:425" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-source-port 111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:425" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234401,15 +238077,52 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:426: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:426" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=3ffe:501:ffff::/64 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:426" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234419,17 +238132,79 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:428: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=80/tcp --add-source-port 443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:428" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=80/tcp --add-source-port 443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "3ffe:501:ffff::/64 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "sources: 3ffe:501:ffff::/64 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:428" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234439,16 +238214,38 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:429: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=80/tcp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:429" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=80/tcp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=3ffe:501:ffff::/64 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:429" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234459,15 +238256,36 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:430: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:430" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=3ffe:501:ffff::/64 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:430" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234478,15 +238296,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:431: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port 80/tcp --remove-source-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:431" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-source-port 80/tcp --remove-source-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=3ffe:501:ffff::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=3ffe:501:ffff::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:431" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234496,16 +238314,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:432: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=80/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:432" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=80/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:432" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234516,15 +238336,100 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:433: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:433" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "dead:beef::babe +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "sources: dead:beef::babe +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep \"^\\(public\\|sources\\)\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep "^\(public\|sources\)" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public (default) +sources: dead:beef::babe +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --query-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --query-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:433" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234534,17 +238439,56 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --change-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --change-source=dead:beef::babe +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:435: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=80/tcp --add-source-port 443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:435" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=80/tcp --add-source-port 443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=work --remove-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=work --remove-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:435" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234555,15 +238499,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:436: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:436" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone work --query-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone work --query-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:436" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234574,15 +238518,52 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:437: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:437" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=dead:beef::babe +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:437" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234593,15 +238574,78 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:438: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port 80/tcp --remove-source-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:438" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-source-port 80/tcp --remove-source-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-sources +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "dead:beef::babe +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^sources +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "sources: dead:beef::babe +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --query-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --query-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:438" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234611,16 +238655,38 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:439: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:439" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --add-source=dead:beef::babe +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 18 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --change-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:439" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234631,15 +238697,36 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:440: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:440" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zone-of-source=dead:beef::babe +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=work --remove-source=dead:beef::babe ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:440" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:214" $at_failed && at_fn_log_failure $at_traceon; } @@ -234648,10 +238735,41 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:441" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:441" + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone work --query-source=dead:beef::babe " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone work --query-source=dead:beef::babe +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:214" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + else + : + + fi + + + + + + + + + if test x" -e '/ERROR: ZONE_CONFLICT/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:221" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: ZONE_CONFLICT/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:221" fi @@ -234660,13 +238778,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_224 -#AT_START_225 -at_fn_group_banner 225 'firewall-cmd.at:443' \ - "protocols" " " 8 +#AT_STOP_236 +#AT_START_237 +at_fn_group_banner 237 'firewall-cmd.at:223' \ + "services" " " 8 at_xfail=no ( - $as_echo "225. $at_setup_line: testing $at_desc ..." + printf "%s\n" "237. $at_setup_line: testing $at_desc ..." $at_traceon @@ -234684,6 +238802,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -234700,29 +238819,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:443" +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:223" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:443" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:223" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:443" +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:223" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:443" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:223" $at_failed && at_fn_log_failure $at_traceon; } @@ -234730,15 +238849,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:443" +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:223" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:443" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:223" $at_failed && at_fn_log_failure $at_traceon; } @@ -234780,15 +238899,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:443: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:443" +printf "%s\n" "$at_srcdir/firewall-cmd.at:223: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:223" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:443" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:223" $at_failed && at_fn_log_failure $at_traceon; } @@ -234796,9 +238915,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:443" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:223" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:443" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:223" @@ -234879,8 +238998,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:443" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" + printf "%s\n" "firewall-cmd.at:223" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -234890,7 +239009,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -234898,8 +239017,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:443" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" + printf "%s\n" "firewall-cmd.at:223" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" fi echo "$!" > firewalld.pid @@ -234915,9 +239034,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" fi sleep 1 done - $as_echo "firewall-cmd.at:443" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:223" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:223" @@ -234927,15 +239046,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:446: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:446" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-protocol=dummy +printf "%s\n" "$at_srcdir/firewall-cmd.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --timeout 60 --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:226" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=dns --timeout 60 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:446" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:226" $at_failed && at_fn_log_failure $at_traceon; } @@ -234946,15 +239065,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:447: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=dccp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:447" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-protocol=dccp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service dns " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:227" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:447" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:227" $at_failed && at_fn_log_failure $at_traceon; } @@ -234965,15 +239084,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:448: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:448" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-service=dns " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:228" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-service=dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:448" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:228" $at_failed && at_fn_log_failure $at_traceon; } @@ -234984,15 +239103,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:449: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-protocol dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:449" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-protocol dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service=dns " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:229" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service=dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:449" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:229" $at_failed && at_fn_log_failure $at_traceon; } @@ -235003,15 +239122,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:450: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:450" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:230: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=smtpssssssss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:230" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=smtpssssssss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:450" +at_fn_check_status 101 $at_status "$at_srcdir/firewall-cmd.at:230" $at_failed && at_fn_log_failure $at_traceon; } @@ -235022,15 +239141,33 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:451: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:451" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-protocol=dummy +printf "%s\n" "$at_srcdir/firewall-cmd.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --timeout " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:231" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=dns --timeout ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:451" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:231" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=dns --add-interface=dummy0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:232" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=dns --add-interface=dummy0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:232" $at_failed && at_fn_log_failure $at_traceon; } @@ -235041,15 +239178,33 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:452: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=dccp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:452" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-protocol=dccp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --timeout 60 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:234" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --timeout 60 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:234" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service dns " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:235" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:452" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:235" $at_failed && at_fn_log_failure $at_traceon; } @@ -235060,15 +239215,36 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:453: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:453" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --list-services " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:236" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --list-services +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "dns ssh +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:236" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:238: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-service dns " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:238" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-service dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:453" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:238" $at_failed && at_fn_log_failure $at_traceon; } @@ -235078,16 +239254,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:454: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-protocol dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:454" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-protocol dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-service=dns " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:239" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --remove-service=dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:454" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:239" $at_failed && at_fn_log_failure $at_traceon; } @@ -235097,16 +239274,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:455: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:455" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp +printf "%s\n" "$at_srcdir/firewall-cmd.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-service=dns " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:244" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-service=dns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:455" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:244" $at_failed && at_fn_log_failure $at_traceon; } @@ -235116,17 +239294,54 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=smtpssssssss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:245" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=smtpssssssss +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 101 $at_status "$at_srcdir/firewall-cmd.at:245" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:457: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=ddp --add-protocol gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:457" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-protocol=ddp --add-protocol gre +printf "%s\n" "$at_srcdir/firewall-cmd.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --add-interface=dummy0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:246" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-service=dns --add-interface=dummy0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:246" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-service=http --add-service=nfs --timeout=1h " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:248" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-service=http --add-service=nfs --timeout=1h ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:457" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:248" $at_failed && at_fn_log_failure $at_traceon; } @@ -235137,15 +239352,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:458: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=ddp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:458" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=ddp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service http " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:249" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:458" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:249" $at_failed && at_fn_log_failure $at_traceon; } @@ -235156,15 +239371,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:459: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:459" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=gre +printf "%s\n" "$at_srcdir/firewall-cmd.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service=nfs --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:250" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service=nfs --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:459" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:250" $at_failed && at_fn_log_failure $at_traceon; } @@ -235175,15 +239390,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:460: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-protocol ddp --remove-protocol=gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:460" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-protocol ddp --remove-protocol=gre +printf "%s\n" "$at_srcdir/firewall-cmd.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-service=nfs --remove-service=http " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:251" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-service=nfs --remove-service=http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:460" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:251" $at_failed && at_fn_log_failure $at_traceon; } @@ -235194,15 +239409,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:461: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=ddp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:461" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=ddp +printf "%s\n" "$at_srcdir/firewall-cmd.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service http " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:252" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:461" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:252" $at_failed && at_fn_log_failure $at_traceon; } @@ -235213,15 +239428,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:462: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:462" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=gre +printf "%s\n" "$at_srcdir/firewall-cmd.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service nfs " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:253" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service nfs ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:462" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:253" $at_failed && at_fn_log_failure $at_traceon; } @@ -235231,16 +239446,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:463: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=ddp --add-protocol gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:463" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-protocol=ddp --add-protocol gre +printf "%s\n" "$at_srcdir/firewall-cmd.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-service=http --add-service=nfs " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:255" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-service=http --add-service=nfs ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:463" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:255" $at_failed && at_fn_log_failure $at_traceon; } @@ -235251,15 +239467,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:464: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:464" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service http " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:256" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:464" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:256" $at_failed && at_fn_log_failure $at_traceon; } @@ -235270,15 +239486,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:465: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:465" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=gre +printf "%s\n" "$at_srcdir/firewall-cmd.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service=nfs --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:257" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service=nfs --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:465" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:257" $at_failed && at_fn_log_failure $at_traceon; } @@ -235288,16 +239504,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:466: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-protocol ddp --remove-protocol=gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:466" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-protocol ddp --remove-protocol=gre +printf "%s\n" "$at_srcdir/firewall-cmd.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-service=nfs --remove-service=http " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:258" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-service=nfs --remove-service=http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:466" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:258" $at_failed && at_fn_log_failure $at_traceon; } @@ -235307,16 +239524,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:467: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:467" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp +printf "%s\n" "$at_srcdir/firewall-cmd.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service http " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:263" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service http ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:467" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:263" $at_failed && at_fn_log_failure $at_traceon; } @@ -235327,15 +239545,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:468: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:468" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=gre +printf "%s\n" "$at_srcdir/firewall-cmd.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service nfs " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:264" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service nfs ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:468" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:264" $at_failed && at_fn_log_failure $at_traceon; } @@ -235344,10 +239562,10 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_PROTOCOL: dummy/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:469" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_PROTOCOL: dummy/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:469" + if test x"-e '/ERROR: INVALID_SERVICE:/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:265" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:265" fi @@ -235356,13 +239574,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_225 -#AT_START_226 -at_fn_group_banner 226 'firewall-cmd.at:471' \ - "masquerade" " " 8 +#AT_STOP_237 +#AT_START_238 +at_fn_group_banner 238 'firewall-cmd.at:267' \ + "user services" " " 8 at_xfail=no ( - $as_echo "226. $at_setup_line: testing $at_desc ..." + printf "%s\n" "238. $at_setup_line: testing $at_desc ..." $at_traceon @@ -235380,6 +239598,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -235396,29 +239615,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:471" +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:267" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:471" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:267" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:471" +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:267" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:471" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:267" $at_failed && at_fn_log_failure $at_traceon; } @@ -235426,15 +239645,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:471" +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:267" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:471" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:267" $at_failed && at_fn_log_failure $at_traceon; } @@ -235476,15 +239695,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:471: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:471" +printf "%s\n" "$at_srcdir/firewall-cmd.at:267: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:267" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:471" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:267" $at_failed && at_fn_log_failure $at_traceon; } @@ -235492,9 +239711,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:471" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:267" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:471" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:267" @@ -235575,8 +239794,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:471" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" + printf "%s\n" "firewall-cmd.at:267" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -235586,7 +239805,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -235594,8 +239813,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:471" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" + printf "%s\n" "firewall-cmd.at:267" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" fi echo "$!" > firewalld.pid @@ -235611,9 +239830,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" fi sleep 1 done - $as_echo "firewall-cmd.at:471" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:267" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:267" @@ -235623,15 +239842,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-masquerade --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:474" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-masquerade --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:270: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service=ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:270" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:474" +at_fn_check_status 26 $at_status "$at_srcdir/firewall-cmd.at:270" $at_failed && at_fn_log_failure $at_traceon; } @@ -235641,29 +239860,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:483: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POST_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:483" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POST_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:272" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MASQUERADE 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:483" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:272" $at_failed && at_fn_log_failure $at_traceon; } @@ -235673,57 +239879,54 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:273" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:273" +$at_failed && at_fn_log_failure +$at_traceon; } + + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:486: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POST_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:486" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POST_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:275: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:275" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:486" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:275" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:488: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:488" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-masquerade +printf "%s\n" "$at_srcdir/firewall-cmd.at:276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:276" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:488" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:276" $at_failed && at_fn_log_failure $at_traceon; } @@ -235732,17 +239935,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:489: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:489" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-masquerade +printf "%s\n" "$at_srcdir/firewall-cmd.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:277" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:489" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:277" $at_failed && at_fn_log_failure $at_traceon; } @@ -235753,15 +239955,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:490: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:490" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-masquerade +printf "%s\n" "$at_srcdir/firewall-cmd.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:278" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:490" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:278" $at_failed && at_fn_log_failure $at_traceon; } @@ -235771,17 +239973,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:492: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-masquerade --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:492" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-masquerade --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:279" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:492" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:279" $at_failed && at_fn_log_failure $at_traceon; } @@ -235792,15 +239993,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:493: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:493" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-masquerade +printf "%s\n" "$at_srcdir/firewall-cmd.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:280" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:493" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:280" $at_failed && at_fn_log_failure $at_traceon; } @@ -235811,15 +240012,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:494: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:494" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-masquerade +printf "%s\n" "$at_srcdir/firewall-cmd.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:281" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:494" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:281" $at_failed && at_fn_log_failure $at_traceon; } @@ -235830,15 +240031,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:495: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:495" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-masquerade +printf "%s\n" "$at_srcdir/firewall-cmd.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:282" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:495" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:282" $at_failed && at_fn_log_failure $at_traceon; } @@ -235847,147 +240048,74 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:496" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:496" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_226 -#AT_START_227 -at_fn_group_banner 227 'firewall-cmd.at:498' \ - "forward" " " 8 -at_xfail=no -( - $as_echo "227. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:498" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:283" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:498" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:283" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:498" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:498" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:498" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:284: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:284" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:498" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:284" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 666/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:285" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 666/sctp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:285" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:498: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:498" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=666/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:286" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:498" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:286" $at_failed && at_fn_log_failure $at_traceon; } @@ -235995,146 +240123,18 @@ $at_traceon; } - $as_echo "firewall-cmd.at:498" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:498" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "firewall-cmd.at:498" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:498" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:498" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:498" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:498" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:498" - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:501: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy --add-interface=dummy2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:501" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy --add-interface=dummy2 +printf "%s\n" "$at_srcdir/firewall-cmd.at:287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:287" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:501" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:287" $at_failed && at_fn_log_failure $at_traceon; } @@ -236145,15 +240145,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:502: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:502" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-forward +printf "%s\n" "$at_srcdir/firewall-cmd.at:288: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=999/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:288" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:502" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:288" $at_failed && at_fn_log_failure $at_traceon; } @@ -236163,30 +240163,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:516: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:516" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 999/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:289" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-port 999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:516" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:289" $at_failed && at_fn_log_failure $at_traceon; } @@ -236196,60 +240182,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:520: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:520" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=999/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:290" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:520" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:290" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:525" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy2 +printf "%s\n" "$at_srcdir/firewall-cmd.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:291" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=666/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:525" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:291" $at_failed && at_fn_log_failure $at_traceon; } @@ -236259,29 +240220,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:533: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:533" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:292" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-port=999/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:533" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:292" $at_failed && at_fn_log_failure $at_traceon; } @@ -236292,58 +240240,35 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:536: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:536" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-protocol=ddp --add-protocol gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:294" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-protocol=ddp --add-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:536" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:294" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:539: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:539" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy3 +printf "%s\n" "$at_srcdir/firewall-cmd.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:295" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:539" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:295" $at_failed && at_fn_log_failure $at_traceon; } @@ -236353,30 +240278,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:548: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:548" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:296" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:548" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:296" $at_failed && at_fn_log_failure $at_traceon; } @@ -236386,60 +240297,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:552: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:552" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol ddp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:297" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:552" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:297" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:556: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --query-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:556" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --query-forward +printf "%s\n" "$at_srcdir/firewall-cmd.at:298: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:298" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:556" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:298" $at_failed && at_fn_log_failure $at_traceon; } @@ -236450,15 +240336,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:557: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:557" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --remove-forward +printf "%s\n" "$at_srcdir/firewall-cmd.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:299" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=ddp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:557" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:299" $at_failed && at_fn_log_failure $at_traceon; } @@ -236468,27 +240354,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:564: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:564" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:300" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:564" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:300" $at_failed && at_fn_log_failure $at_traceon; } @@ -236499,56 +240374,35 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:566: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:566" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=sip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:302" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:566" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:302" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:568: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --query-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:568" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --query-forward +printf "%s\n" "$at_srcdir/firewall-cmd.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=sip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:303" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:568" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:303" $at_failed && at_fn_log_failure $at_traceon; } @@ -236559,15 +240413,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:569: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy --remove-interface=dummy3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:569" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy --remove-interface=dummy3 +printf "%s\n" "$at_srcdir/firewall-cmd.at:304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:304" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:569" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:304" $at_failed && at_fn_log_failure $at_traceon; } @@ -236577,17 +240431,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --add-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:571" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --add-forward +printf "%s\n" "$at_srcdir/firewall-cmd.at:305: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:305" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:571" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:305" $at_failed && at_fn_log_failure $at_traceon; } @@ -236598,15 +240451,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:572: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-interface=dummy --add-interface=dummy3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:572" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-interface=dummy --add-interface=dummy3 +printf "%s\n" "$at_srcdir/firewall-cmd.at:306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:306" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:572" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:306" $at_failed && at_fn_log_failure $at_traceon; } @@ -236617,15 +240470,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:573: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:573" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-source=10.10.10.0/24 +printf "%s\n" "$at_srcdir/firewall-cmd.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:307" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-module=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:573" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:307" $at_failed && at_fn_log_failure $at_traceon; } @@ -236637,15 +240490,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:574" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=sip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:309" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:574" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:309" $at_failed && at_fn_log_failure $at_traceon; } @@ -236656,15 +240509,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:574" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=sip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:310" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=sip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:574" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:310" $at_failed && at_fn_log_failure $at_traceon; } @@ -236674,17 +240527,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:575: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:575" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward +printf "%s\n" "$at_srcdir/firewall-cmd.at:311: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:311" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --add-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:575" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:311" $at_failed && at_fn_log_failure $at_traceon; } @@ -236694,31 +240546,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:585: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:585" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:312" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 10.10.10.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:585" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:312" $at_failed && at_fn_log_failure $at_traceon; } @@ -236728,60 +240565,37 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:590: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:590" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --get-service-helpers " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:313" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --get-service-helpers ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "ftp " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:590" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:313" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:594: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --remove-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:594" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --remove-forward +printf "%s\n" "$at_srcdir/firewall-cmd.at:316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:316" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:594" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:316" $at_failed && at_fn_log_failure $at_traceon; } @@ -236792,15 +240606,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:595: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:595" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward +printf "%s\n" "$at_srcdir/firewall-cmd.at:317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:317" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-helper=ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:595" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:317" $at_failed && at_fn_log_failure $at_traceon; } @@ -236810,16 +240624,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:596: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-interface=dummy --remove-interface=dummy3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:596" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-interface=dummy --remove-interface=dummy3 +printf "%s\n" "$at_srcdir/firewall-cmd.at:319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:319" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:596" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 121 $at_status "$at_srcdir/firewall-cmd.at:319" $at_failed && at_fn_log_failure $at_traceon; } @@ -236828,17 +240643,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:597: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:597" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-source=10.10.10.0/24 +printf "%s\n" "$at_srcdir/firewall-cmd.at:320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:foo " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:320" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:foo ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:597" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 105 $at_status "$at_srcdir/firewall-cmd.at:320" $at_failed && at_fn_log_failure $at_traceon; } @@ -236847,18 +240661,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:598" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:321" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv4:1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:598" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:321" $at_failed && at_fn_log_failure $at_traceon; } @@ -236869,15 +240681,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:598" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:322: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:322" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:598" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:322" $at_failed && at_fn_log_failure $at_traceon; } @@ -236888,17 +240700,22 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:601: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone |grep public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:601" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-default-zone |grep public +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv6:fd00:dead:beef:ff0::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --set-destination=ipv6:fd00:dead:beef:ff0::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:601" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:323" $at_failed && at_fn_log_failure $at_traceon; } @@ -236909,15 +240726,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:602: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-interface dummy4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:602" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-interface dummy4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:602" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:323" $at_failed && at_fn_log_failure $at_traceon; } @@ -236928,15 +240745,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:603: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:603" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --remove-destination=ipv6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:603" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:323" $at_failed && at_fn_log_failure $at_traceon; } @@ -236946,29 +240763,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:611: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:611" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:323" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=foobar --query-destination=ipv6:fd00:dead:beef:ff0::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:611" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:323" $at_failed && at_fn_log_failure $at_traceon; } @@ -236976,62 +240780,46 @@ $at_traceon; } + else + : + fi - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:614: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:614" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:330: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-service=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:330" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-service=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:614" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:330" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:619: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:619" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 +printf "%s\n" "$at_srcdir/firewall-cmd.at:331: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:331" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:619" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:331" $at_failed && at_fn_log_failure $at_traceon; } @@ -237041,23 +240829,16 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:620: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=1234::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:620" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=1234::/64 +printf "%s\n" "$at_srcdir/firewall-cmd.at:332: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-service=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:332" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-service=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:620" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:332" $at_failed && at_fn_log_failure $at_traceon; } @@ -237065,26 +240846,18 @@ $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:623: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:623" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-forward +printf "%s\n" "$at_srcdir/firewall-cmd.at:333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:333" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-services | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:623" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:333" $at_failed && at_fn_log_failure $at_traceon; } @@ -237092,31 +240865,26 @@ $at_traceon; } - - - + cat >./foobar-to-be-renamed <<'_ATEOF' + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:632: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:632" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service-from-file=\"./foobar-to-be-renamed\" --name=\"foobar-from-file\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:335" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service-from-file="./foobar-to-be-renamed" --name="foobar-from-file" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 10.10.10.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:632" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:335" $at_failed && at_fn_log_failure $at_traceon; } @@ -237126,192 +240894,169 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:635: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:635" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar-from-file " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:335" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-services | grep foobar-from-file ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 1234::/64 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:635" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:335" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - +_ATEOF + if test x"-e '/ERROR: NAME_CONFLICT: new_service():/d' -e '/ERROR: INVALID_ADDR:/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:346" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: NAME_CONFLICT: new_service():/d' -e '/ERROR: INVALID_ADDR:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:346" + fi - if $IP6TABLES -L >/dev/null 2>&1; then - : + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_238 +#AT_START_239 +at_fn_group_banner 239 'firewall-cmd.at:349' \ + "ports" " " 8 +at_xfail=no +( + printf "%s\n" "239. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:638: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=1234::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:638" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=1234::/64 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:638" -$at_failed && at_fn_log_failure -$at_traceon; } - else - : + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - - - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:648: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:648" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:349" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 10.10.10.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:648" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:349" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:651: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:651" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:349" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:651" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:349" $at_failed && at_fn_log_failure $at_traceon; } - - - else - : - fi - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:653: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.20.20.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:653" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.20.20.0/24 + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:349" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:653" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:349" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:654: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=4321::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:654" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=4321::/64 + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:349: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:349" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:654" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:349" $at_failed && at_fn_log_failure $at_traceon; } @@ -237319,337 +241064,14 @@ $at_traceon; } - else - : - - fi - - - + printf "%s\n" "firewall-cmd.at:349" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:349" - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:666: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:666" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 10.10.10.0/24 -ACCEPT 0 -- 0.0.0.0/0 10.20.20.0/24 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:666" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:670: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:670" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 4321::/64 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:670" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:673: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:673" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-forward -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:673" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:680: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:680" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:680" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:682: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:682" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:682" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - - - - - - - - if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:684" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:684" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_227 -#AT_START_228 -at_fn_group_banner 228 'firewall-cmd.at:686' \ - "forward ports" " " 8 -at_xfail=no -( - $as_echo "228. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:686" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:686" -$at_failed && at_fn_log_failure -$at_traceon; } - - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:686" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:686" -$at_failed && at_fn_log_failure -$at_traceon; } - - fi - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:686" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:686" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:686: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:686" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:686" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - $as_echo "firewall-cmd.at:686" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:686" - - - - - cat >./dbus.conf <<'_ATEOF' + cat >./dbus.conf <<'_ATEOF' @@ -237725,8 +241147,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:686" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" + printf "%s\n" "firewall-cmd.at:349" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -237736,7 +241158,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -237744,8 +241166,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:686" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" + printf "%s\n" "firewall-cmd.at:349" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" fi echo "$!" > firewalld.pid @@ -237761,29 +241183,10 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" fi sleep 1 done - $as_echo "firewall-cmd.at:686" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:349" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" - - - - - - - + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:349" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:689: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:689" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=666 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/firewall-cmd.at:689" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -237792,107 +241195,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:690: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=11:proto=tcp:toport=22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:690" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=11:proto=tcp:toport=22 +printf "%s\n" "$at_srcdir/firewall-cmd.at:352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --list-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:352" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:690" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:699: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:699" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:11 to::22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:699" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:702: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:702" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:702" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:352" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:704: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:704" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:353" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:704" +at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:353" $at_failed && at_fn_log_failure $at_traceon; } @@ -237901,17 +241231,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:705: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4444 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:705" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4444 +printf "%s\n" "$at_srcdir/firewall-cmd.at:354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666/dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:354" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 105 $at_status "$at_srcdir/firewall-cmd.at:705" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:354" $at_failed && at_fn_log_failure $at_traceon; } @@ -237921,107 +241250,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:706: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:706" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:355" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:706" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:715: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:715" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:33 to:4.4.4.4 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:715" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:718: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:718" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:718" +at_fn_check_status 254 $at_status "$at_srcdir/firewall-cmd.at:355" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:720: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:720" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo --add-port bar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:356" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port 122/udpa --add-port 122/udpp --add-port 8745897/foo --add-port bar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:720" +at_fn_check_status 254 $at_status "$at_srcdir/firewall-cmd.at:356" $at_failed && at_fn_log_failure $at_traceon; } @@ -238032,15 +241288,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:721: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:721" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 +printf "%s\n" "$at_srcdir/firewall-cmd.at:357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=666/tcp --zone=public --timeout=30m " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:357" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=666/tcp --zone=public --timeout=30m ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:721" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:357" $at_failed && at_fn_log_failure $at_traceon; } @@ -238051,15 +241307,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:722: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:722" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port=666/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:358" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:722" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:358" $at_failed && at_fn_log_failure $at_traceon; } @@ -238070,15 +241326,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:723: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:723" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 +printf "%s\n" "$at_srcdir/firewall-cmd.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:359" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:723" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:359" $at_failed && at_fn_log_failure $at_traceon; } @@ -238089,15 +241345,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:724: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:724" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 +printf "%s\n" "$at_srcdir/firewall-cmd.at:360: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=111-222/udp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:360" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=111-222/udp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:724" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:360" $at_failed && at_fn_log_failure $at_traceon; } @@ -238108,15 +241364,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:725: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:725" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 +printf "%s\n" "$at_srcdir/firewall-cmd.at:361: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:361" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:725" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:361" $at_failed && at_fn_log_failure $at_traceon; } @@ -238127,15 +241383,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:726: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:726" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:362" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:726" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:362" $at_failed && at_fn_log_failure $at_traceon; } @@ -238145,35 +241401,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:727: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:727" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:727" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:728: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:728" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 +printf "%s\n" "$at_srcdir/firewall-cmd.at:364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=5000/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:364" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:728" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:364" $at_failed && at_fn_log_failure $at_traceon; } @@ -238183,53 +241421,16 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: +printf "%s\n" "$at_srcdir/firewall-cmd.at:365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=5000/sctp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:365" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=5000/sctp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:729" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:729" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:729" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:365" $at_failed && at_fn_log_failure $at_traceon; } @@ -238239,59 +241440,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:729" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 5000/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:366" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 132 -- ::/0 ::/0 sctp dpt:66 to:[fd00:dead:beef:ff0::]:66 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:729" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:366" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=5000/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:367" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:729" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:367" $at_failed && at_fn_log_failure $at_traceon; } @@ -238302,15 +241479,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: +printf "%s\n" "$at_srcdir/firewall-cmd.at:368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=222/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:368" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:729" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:368" $at_failed && at_fn_log_failure $at_traceon; } @@ -238321,15 +241498,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: +printf "%s\n" "$at_srcdir/firewall-cmd.at:369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=222/dccp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:369" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=222/dccp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:729" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:369" $at_failed && at_fn_log_failure $at_traceon; } @@ -238337,26 +241514,18 @@ $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:748: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:748" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 +printf "%s\n" "$at_srcdir/firewall-cmd.at:370: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 222/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:370" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:748" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:370" $at_failed && at_fn_log_failure $at_traceon; } @@ -238367,15 +241536,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=100:proto=tcp:toport=200 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:749" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=100:proto=tcp:toport=200 +printf "%s\n" "$at_srcdir/firewall-cmd.at:371: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=222/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:371" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:749" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:371" $at_failed && at_fn_log_failure $at_traceon; } @@ -238385,16 +241554,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:750" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:373" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:750" +at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:373" $at_failed && at_fn_log_failure $at_traceon; } @@ -238403,17 +241573,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:751: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:751" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 +printf "%s\n" "$at_srcdir/firewall-cmd.at:374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666/dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:374" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:751" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:374" $at_failed && at_fn_log_failure $at_traceon; } @@ -238422,17 +241591,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:752: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=100:proto=tcp:toport=200 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:752" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=100:proto=tcp:toport=200 +printf "%s\n" "$at_srcdir/firewall-cmd.at:375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=666/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:375" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:752" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:375" $at_failed && at_fn_log_failure $at_traceon; } @@ -238443,15 +241611,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:753: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:753" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 +printf "%s\n" "$at_srcdir/firewall-cmd.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port=666/tcp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port=666/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:753" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:376" $at_failed && at_fn_log_failure $at_traceon; } @@ -238462,15 +241630,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:754: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-forward-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:754" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-forward-ports +printf "%s\n" "$at_srcdir/firewall-cmd.at:377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=111-222/udp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:377" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=111-222/udp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:754" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:377" $at_failed && at_fn_log_failure $at_traceon; } @@ -238480,17 +241648,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:756: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:756" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/firewall-cmd.at:756" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:378" $at_failed && at_fn_log_failure $at_traceon; } @@ -238501,15 +241668,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:757: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=11:proto=tcp:toport=22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:757" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=11:proto=tcp:toport=22 +printf "%s\n" "$at_srcdir/firewall-cmd.at:379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:379" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:757" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:379" $at_failed && at_fn_log_failure $at_traceon; } @@ -238520,15 +241687,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:758: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:758" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:380" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:758" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:380" $at_failed && at_fn_log_failure $at_traceon; } @@ -238538,34 +241705,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:759: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4444 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:759" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4444 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 105 $at_status "$at_srcdir/firewall-cmd.at:759" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:760: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:760" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=5000/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:760" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:382" $at_failed && at_fn_log_failure $at_traceon; } @@ -238576,15 +241726,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:761: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:761" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:383" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:761" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:383" $at_failed && at_fn_log_failure $at_traceon; } @@ -238595,15 +241745,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:762: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:762" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 +printf "%s\n" "$at_srcdir/firewall-cmd.at:384: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 5000/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:384" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:762" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:384" $at_failed && at_fn_log_failure $at_traceon; } @@ -238614,15 +241764,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:763: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:763" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:385" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=5000/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:763" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:385" $at_failed && at_fn_log_failure $at_traceon; } @@ -238633,15 +241783,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:764: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:764" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 +printf "%s\n" "$at_srcdir/firewall-cmd.at:386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=222/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:386" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:764" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:386" $at_failed && at_fn_log_failure $at_traceon; } @@ -238652,15 +241802,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:765: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:765" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 +printf "%s\n" "$at_srcdir/firewall-cmd.at:387: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:387" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:765" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:387" $at_failed && at_fn_log_failure $at_traceon; } @@ -238671,15 +241821,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:766: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:766" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 +printf "%s\n" "$at_srcdir/firewall-cmd.at:388: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 222/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:388" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:766" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:388" $at_failed && at_fn_log_failure $at_traceon; } @@ -238690,15 +241840,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:767: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:767" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:389: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:389" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=222/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:767" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:389" $at_failed && at_fn_log_failure $at_traceon; } @@ -238708,35 +241858,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:768: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:768" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:768" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:769: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:769" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 +printf "%s\n" "$at_srcdir/firewall-cmd.at:391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-port=80/tcp --add-port 443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:391" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-port=80/tcp --add-port 443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:769" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:391" $at_failed && at_fn_log_failure $at_traceon; } @@ -238746,23 +241878,16 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: +printf "%s\n" "$at_srcdir/firewall-cmd.at:392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=80/tcp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:392" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=80/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:770" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:392" $at_failed && at_fn_log_failure $at_traceon; } @@ -238773,15 +241898,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:393" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:770" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:393" $at_failed && at_fn_log_failure $at_traceon; } @@ -238792,15 +241917,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: +printf "%s\n" "$at_srcdir/firewall-cmd.at:394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-port 80/tcp --remove-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:394" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-port 80/tcp --remove-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:770" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:394" $at_failed && at_fn_log_failure $at_traceon; } @@ -238811,15 +241936,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: +printf "%s\n" "$at_srcdir/firewall-cmd.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=80/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:395" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=80/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:770" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:395" $at_failed && at_fn_log_failure $at_traceon; } @@ -238827,26 +241952,18 @@ $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:776: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:776" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 +printf "%s\n" "$at_srcdir/firewall-cmd.at:396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:396" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:776" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:396" $at_failed && at_fn_log_failure $at_traceon; } @@ -238856,16 +241973,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:777: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=100:proto=tcp:toport=200 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:777" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=100:proto=tcp:toport=200 +printf "%s\n" "$at_srcdir/firewall-cmd.at:398: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-port=80/tcp --add-port 443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:398" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-port=80/tcp --add-port 443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:777" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:398" $at_failed && at_fn_log_failure $at_traceon; } @@ -238876,15 +241994,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:778: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:778" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:399: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:399" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:778" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:399" $at_failed && at_fn_log_failure $at_traceon; } @@ -238895,15 +242013,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:779: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:779" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 +printf "%s\n" "$at_srcdir/firewall-cmd.at:400: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:400" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:779" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:400" $at_failed && at_fn_log_failure $at_traceon; } @@ -238914,15 +242032,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:780: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=100:proto=tcp:toport=200 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:780" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=100:proto=tcp:toport=200 +printf "%s\n" "$at_srcdir/firewall-cmd.at:401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-port 80/tcp --remove-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:401" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-port 80/tcp --remove-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:780" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:401" $at_failed && at_fn_log_failure $at_traceon; } @@ -238933,15 +242051,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:781: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:781" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 +printf "%s\n" "$at_srcdir/firewall-cmd.at:402: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:402" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=80/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:781" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:402" $at_failed && at_fn_log_failure $at_traceon; } @@ -238952,15 +242070,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:782: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-forward-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:782" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-forward-ports +printf "%s\n" "$at_srcdir/firewall-cmd.at:403: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:403" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:782" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:403" $at_failed && at_fn_log_failure $at_traceon; } @@ -238969,10 +242087,10 @@ $at_traceon; } - if test x"-e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:783" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:783" + if test x"" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:404" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:404" fi @@ -238981,13 +242099,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_228 -#AT_START_229 -at_fn_group_banner 229 'firewall-cmd.at:785' \ - "ICMP block" " " 8 +#AT_STOP_239 +#AT_START_240 +at_fn_group_banner 240 'firewall-cmd.at:406' \ + "source ports" " " 8 at_xfail=no ( - $as_echo "229. $at_setup_line: testing $at_desc ..." + printf "%s\n" "240. $at_setup_line: testing $at_desc ..." $at_traceon @@ -239005,6 +242123,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -239021,29 +242140,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:785" +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:406" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:785" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:406" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:785" +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:406" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:785" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:406" $at_failed && at_fn_log_failure $at_traceon; } @@ -239051,15 +242170,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:785" +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:406" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:785" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:406" $at_failed && at_fn_log_failure $at_traceon; } @@ -239101,15 +242220,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:785: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:785" +printf "%s\n" "$at_srcdir/firewall-cmd.at:406: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:406" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:785" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:406" $at_failed && at_fn_log_failure $at_traceon; } @@ -239117,9 +242236,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:785" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:406" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:785" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:406" @@ -239200,8 +242319,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:785" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" + printf "%s\n" "firewall-cmd.at:406" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -239211,7 +242330,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -239219,8 +242338,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:785" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" + printf "%s\n" "firewall-cmd.at:406" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" fi echo "$!" > firewalld.pid @@ -239236,9 +242355,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" fi sleep 1 done - $as_echo "firewall-cmd.at:785" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:406" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:406" @@ -239248,15 +242367,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:788: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-icmp-blocks " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:788" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-icmp-blocks +printf "%s\n" "$at_srcdir/firewall-cmd.at:409: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --list-source-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:409" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:788" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:409" $at_failed && at_fn_log_failure $at_traceon; } @@ -239266,17 +242385,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:790: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=dummyblock " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:790" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=dummyblock +printf "%s\n" "$at_srcdir/firewall-cmd.at:410: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:410" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/firewall-cmd.at:790" +at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:410" $at_failed && at_fn_log_failure $at_traceon; } @@ -239285,17 +242403,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:791: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:791" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=redirect +printf "%s\n" "$at_srcdir/firewall-cmd.at:411: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666/dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:411" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:791" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:411" $at_failed && at_fn_log_failure $at_traceon; } @@ -239304,17 +242421,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:792: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:792" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect +printf "%s\n" "$at_srcdir/firewall-cmd.at:412: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=666/tcp --zone=public --timeout=30m " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:412" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=666/tcp --zone=public --timeout=30m ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:792" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:412" $at_failed && at_fn_log_failure $at_traceon; } @@ -239325,15 +242441,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:793: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:793" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block redirect +printf "%s\n" "$at_srcdir/firewall-cmd.at:413: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port=666/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:413" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-source-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:793" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:413" $at_failed && at_fn_log_failure $at_traceon; } @@ -239344,15 +242460,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:794: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:794" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect +printf "%s\n" "$at_srcdir/firewall-cmd.at:414: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:414" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:794" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:414" $at_failed && at_fn_log_failure $at_traceon; } @@ -239363,15 +242479,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:795: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=dummyblock " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:795" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=dummyblock +printf "%s\n" "$at_srcdir/firewall-cmd.at:415: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=111-222/udp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:415" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=111-222/udp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/firewall-cmd.at:795" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:415" $at_failed && at_fn_log_failure $at_traceon; } @@ -239382,15 +242498,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:796: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:796" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=redirect +printf "%s\n" "$at_srcdir/firewall-cmd.at:416: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port 111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:416" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-source-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:796" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:416" $at_failed && at_fn_log_failure $at_traceon; } @@ -239401,15 +242517,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:797: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:797" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect +printf "%s\n" "$at_srcdir/firewall-cmd.at:417: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:417" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:797" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:417" $at_failed && at_fn_log_failure $at_traceon; } @@ -239419,16 +242535,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:798: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:798" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block redirect +printf "%s\n" "$at_srcdir/firewall-cmd.at:419: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:419" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:798" +at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:419" $at_failed && at_fn_log_failure $at_traceon; } @@ -239437,17 +242554,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:799: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:799" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect +printf "%s\n" "$at_srcdir/firewall-cmd.at:420: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666/dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:420" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=666/dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:799" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:420" $at_failed && at_fn_log_failure $at_traceon; } @@ -239456,18 +242572,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:801: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:801" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=public +printf "%s\n" "$at_srcdir/firewall-cmd.at:421: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=666/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:421" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=666/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:801" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:421" $at_failed && at_fn_log_failure $at_traceon; } @@ -239478,15 +242592,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:802: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-icmp-block-inversion " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:802" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-icmp-block-inversion +printf "%s\n" "$at_srcdir/firewall-cmd.at:422: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port=666/tcp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:422" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-source-port=666/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:802" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:422" $at_failed && at_fn_log_failure $at_traceon; } @@ -239497,15 +242611,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:803: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:803" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion +printf "%s\n" "$at_srcdir/firewall-cmd.at:423: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=111-222/udp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:423" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=111-222/udp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:803" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:423" $at_failed && at_fn_log_failure $at_traceon; } @@ -239516,15 +242630,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:804: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-icmp-block-inversion " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:804" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-icmp-block-inversion +printf "%s\n" "$at_srcdir/firewall-cmd.at:424: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:424" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:804" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:424" $at_failed && at_fn_log_failure $at_traceon; } @@ -239535,130 +242649,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-icmp-block-inversion --zone=public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:805" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-icmp-block-inversion --zone=public -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:805" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:806: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:806" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:806" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:807: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-icmp-block-inversion " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:807" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-icmp-block-inversion -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:807" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:808: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:808" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:808" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:810: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=block " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:810" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=block -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:810" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:811: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=block " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:811" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=block -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:811" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:812: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=drop " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:812" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=drop +printf "%s\n" "$at_srcdir/firewall-cmd.at:425: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port 111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:425" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-source-port 111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:812" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:425" $at_failed && at_fn_log_failure $at_traceon; } @@ -239669,15 +242668,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:813: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=drop " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:813" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=drop +printf "%s\n" "$at_srcdir/firewall-cmd.at:426: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:426" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=111-222/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:813" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:426" $at_failed && at_fn_log_failure $at_traceon; } @@ -239687,35 +242686,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:814: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=trusted " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:814" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=trusted -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:814" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:815: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=trusted " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:815" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=trusted +printf "%s\n" "$at_srcdir/firewall-cmd.at:428: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-source-port=80/tcp --add-source-port 443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:428" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-source-port=80/tcp --add-source-port 443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:815" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:428" $at_failed && at_fn_log_failure $at_traceon; } @@ -239725,17 +242706,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:817: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:817" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation +printf "%s\n" "$at_srcdir/firewall-cmd.at:429: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=80/tcp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:429" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=80/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:817" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:429" $at_failed && at_fn_log_failure $at_traceon; } @@ -239746,15 +242726,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:818: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:818" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply +printf "%s\n" "$at_srcdir/firewall-cmd.at:430: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:430" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:818" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:430" $at_failed && at_fn_log_failure $at_traceon; } @@ -239765,15 +242745,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:819: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:819" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation +printf "%s\n" "$at_srcdir/firewall-cmd.at:431: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-source-port 80/tcp --remove-source-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:431" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-source-port 80/tcp --remove-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:819" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:431" $at_failed && at_fn_log_failure $at_traceon; } @@ -239784,15 +242764,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:820: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:820" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation +printf "%s\n" "$at_srcdir/firewall-cmd.at:432: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=80/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:432" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=80/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:820" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:432" $at_failed && at_fn_log_failure $at_traceon; } @@ -239803,15 +242783,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:821: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:821" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply +printf "%s\n" "$at_srcdir/firewall-cmd.at:433: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-source-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:433" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:821" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:433" $at_failed && at_fn_log_failure $at_traceon; } @@ -239821,35 +242801,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:822" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:822" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:823: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:823" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation +printf "%s\n" "$at_srcdir/firewall-cmd.at:435: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-source-port=80/tcp --add-source-port 443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:435" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-source-port=80/tcp --add-source-port 443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:823" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:435" $at_failed && at_fn_log_failure $at_traceon; } @@ -239860,15 +242822,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:824: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:824" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply +printf "%s\n" "$at_srcdir/firewall-cmd.at:436: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:436" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:824" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:436" $at_failed && at_fn_log_failure $at_traceon; } @@ -239879,15 +242841,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:825: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:825" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation +printf "%s\n" "$at_srcdir/firewall-cmd.at:437: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:437" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:825" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:437" $at_failed && at_fn_log_failure $at_traceon; } @@ -239898,15 +242860,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:826: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:826" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation +printf "%s\n" "$at_srcdir/firewall-cmd.at:438: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-source-port 80/tcp --remove-source-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:438" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-source-port 80/tcp --remove-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:826" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:438" $at_failed && at_fn_log_failure $at_traceon; } @@ -239917,15 +242879,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:827: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:827" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply +printf "%s\n" "$at_srcdir/firewall-cmd.at:439: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:439" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=80/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:827" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:439" $at_failed && at_fn_log_failure $at_traceon; } @@ -239936,15 +242898,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:828" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation +printf "%s\n" "$at_srcdir/firewall-cmd.at:440: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:440" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-source-port=443-444/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:828" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:440" $at_failed && at_fn_log_failure $at_traceon; } @@ -239953,10 +242915,10 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_ICMPTYPE:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:829" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ICMPTYPE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:829" + if test x"" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:441" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:441" fi @@ -239965,13 +242927,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_229 -#AT_START_230 -at_fn_group_banner 230 'firewall-cmd.at:831' \ - "user ICMP types" " " 8 +#AT_STOP_240 +#AT_START_241 +at_fn_group_banner 241 'firewall-cmd.at:443' \ + "protocols" " " 8 at_xfail=no ( - $as_echo "230. $at_setup_line: testing $at_desc ..." + printf "%s\n" "241. $at_setup_line: testing $at_desc ..." $at_traceon @@ -239989,6 +242951,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -240005,29 +242968,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:831" +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:443" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:831" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:443" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:831" +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:443" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:831" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:443" $at_failed && at_fn_log_failure $at_traceon; } @@ -240035,15 +242998,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:831" +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:443" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:831" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:443" $at_failed && at_fn_log_failure $at_traceon; } @@ -240085,15 +243048,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:831: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:831" +printf "%s\n" "$at_srcdir/firewall-cmd.at:443: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:443" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:831" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:443" $at_failed && at_fn_log_failure $at_traceon; } @@ -240101,9 +243064,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:831" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:443" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:831" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:443" @@ -240184,8 +243147,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:831" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" + printf "%s\n" "firewall-cmd.at:443" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -240195,7 +243158,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -240203,8 +243166,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:831" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" + printf "%s\n" "firewall-cmd.at:443" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" fi echo "$!" > firewalld.pid @@ -240220,9 +243183,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" fi sleep 1 done - $as_echo "firewall-cmd.at:831" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:443" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:443" @@ -240232,15 +243195,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:834: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype=redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:834" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-icmptype=redirect +printf "%s\n" "$at_srcdir/firewall-cmd.at:446: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:446" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-protocol=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 26 $at_status "$at_srcdir/firewall-cmd.at:834" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:446" $at_failed && at_fn_log_failure $at_traceon; } @@ -240251,15 +243214,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:836: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:836" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-icmptype=foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:447: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=dccp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:447" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-protocol=dccp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:836" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:447" $at_failed && at_fn_log_failure $at_traceon; } @@ -240270,15 +243233,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:837: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-icmptypes | grep foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:837" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-icmptypes | grep foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:448: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:448" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:837" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:448" $at_failed && at_fn_log_failure $at_traceon; } @@ -240288,17 +243251,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:449: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-protocol dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:449" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-protocol dccp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:449" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:839: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv5 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:839" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv5 +printf "%s\n" "$at_srcdir/firewall-cmd.at:450: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:450" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:839" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:450" $at_failed && at_fn_log_failure $at_traceon; } @@ -240309,15 +243290,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:840: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:840" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:451: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:451" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-protocol=dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:840" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:451" $at_failed && at_fn_log_failure $at_traceon; } @@ -240328,15 +243309,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:841: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:841" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:452: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=dccp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:452" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-protocol=dccp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:841" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:452" $at_failed && at_fn_log_failure $at_traceon; } @@ -240347,15 +243328,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:842: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:842" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:453: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:453" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:842" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:453" $at_failed && at_fn_log_failure $at_traceon; } @@ -240366,15 +243347,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:843: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:843" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:454: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-protocol dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:454" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:843" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:454" $at_failed && at_fn_log_failure $at_traceon; } @@ -240385,15 +243366,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:844: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:844" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:455: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:455" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:844" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:455" $at_failed && at_fn_log_failure $at_traceon; } @@ -240403,16 +243384,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:845: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:845" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:457: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-protocol=ddp --add-protocol gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:457" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-protocol=ddp --add-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:845" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:457" $at_failed && at_fn_log_failure $at_traceon; } @@ -240422,17 +243404,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:458: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=ddp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:458" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=ddp --zone=public +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:458" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:847: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-icmp-block=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:847" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-icmp-block=foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:459: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:459" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:847" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:459" $at_failed && at_fn_log_failure $at_traceon; } @@ -240443,15 +243443,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:848: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:848" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:460: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-protocol ddp --remove-protocol=gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:460" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-protocol ddp --remove-protocol=gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:848" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:460" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:461: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=ddp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:461" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=ddp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:461" $at_failed && at_fn_log_failure $at_traceon; } @@ -240461,17 +243480,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:462: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-protocol=gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:462" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-protocol=gre +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:462" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:850: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-icmptype=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:850" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-icmptype=foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:463: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-protocol=ddp --add-protocol gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:463" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-protocol=ddp --add-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:850" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:463" $at_failed && at_fn_log_failure $at_traceon; } @@ -240482,15 +243519,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:851: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:851" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:464: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:464" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:851" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:464" $at_failed && at_fn_log_failure $at_traceon; } @@ -240499,10 +243536,86 @@ $at_traceon; } - if test x"-e '/NAME_CONFLICT: new_icmptype():/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:852" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/NAME_CONFLICT: new_icmptype():/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:852" + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:465: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:465" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=gre +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:465" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:466: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-protocol ddp --remove-protocol=gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:466" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-protocol ddp --remove-protocol=gre +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:466" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:467: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:467" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=ddp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:467" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:468: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-protocol=gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:468" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-protocol=gre +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:468" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + if test x"-e '/ERROR: INVALID_PROTOCOL: dummy/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:469" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_PROTOCOL: dummy/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:469" fi @@ -240511,13 +243624,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_230 -#AT_START_231 -at_fn_group_banner 231 'firewall-cmd.at:854' \ - "ipset" " " 8 +#AT_STOP_241 +#AT_START_242 +at_fn_group_banner 242 'firewall-cmd.at:471' \ + "masquerade" " " 8 at_xfail=no ( - $as_echo "231. $at_setup_line: testing $at_desc ..." + printf "%s\n" "242. $at_setup_line: testing $at_desc ..." $at_traceon @@ -240535,6 +243648,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -240551,29 +243665,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:854" +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:471" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:854" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:471" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:854" +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:471" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:854" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:471" $at_failed && at_fn_log_failure $at_traceon; } @@ -240581,15 +243695,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:854" +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:471" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:854" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:471" $at_failed && at_fn_log_failure $at_traceon; } @@ -240631,15 +243745,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:854: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:854" +printf "%s\n" "$at_srcdir/firewall-cmd.at:471: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:471" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:854" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:471" $at_failed && at_fn_log_failure $at_traceon; } @@ -240647,9 +243761,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:854" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:471" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:854" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:471" @@ -240730,8 +243844,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:854" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" + printf "%s\n" "firewall-cmd.at:471" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -240741,7 +243855,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -240749,8 +243863,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:854" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" + printf "%s\n" "firewall-cmd.at:471" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" fi echo "$!" > firewalld.pid @@ -240766,9 +243880,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" fi sleep 1 done - $as_echo "firewall-cmd.at:854" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:471" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:471" @@ -240777,33 +243891,48 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-masquerade --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:474" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-masquerade --zone=public +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:474" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + - $as_echo "firewall-cmd.at:857" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:857" - $as_echo "firewall-cmd.at:858" >"$at_check_line_file" -(! $IPSET --help | grep "hash:mac") \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:858" - $as_echo "firewall-cmd.at:858" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET create foobar hash:mac >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:858" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:858: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPSET destroy foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:858" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET destroy foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:483: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POST_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:483" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POST_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:858" +echo >>"$at_stdout"; printf "%s\n" "MASQUERADE 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:483" $at_failed && at_fn_log_failure $at_traceon; } @@ -240815,35 +243944,55 @@ $at_traceon; } + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:860: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:860" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip +printf "%s\n" "$at_srcdir/firewall-cmd.at:486: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POST_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:486" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L POST_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:860" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:486" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:861: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:861" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:488: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:488" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:861" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:488" $at_failed && at_fn_log_failure $at_traceon; } @@ -240854,17 +244003,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:862: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:862" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries +printf "%s\n" "$at_srcdir/firewall-cmd.at:489: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:489" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:862" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:489" $at_failed && at_fn_log_failure $at_traceon; } @@ -240875,15 +244022,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:864: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:864" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:490: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:490" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:864" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:490" $at_failed && at_fn_log_failure $at_traceon; } @@ -240893,16 +244040,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:865: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries | grep \"1.2.3.4\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:865" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries | grep "1.2.3.4" +printf "%s\n" "$at_srcdir/firewall-cmd.at:492: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-masquerade --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:492" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-masquerade --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:865" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:492" $at_failed && at_fn_log_failure $at_traceon; } @@ -240913,15 +244061,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:866: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.400 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:866" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.400 +printf "%s\n" "$at_srcdir/firewall-cmd.at:493: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:493" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 136 $at_status "$at_srcdir/firewall-cmd.at:866" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:493" $at_failed && at_fn_log_failure $at_traceon; } @@ -240932,15 +244080,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:867: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --remove-entry=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:867" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --remove-entry=1.2.3.4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:494: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:494" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:867" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:494" $at_failed && at_fn_log_failure $at_traceon; } @@ -240951,17 +244099,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:868: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:868" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries +printf "%s\n" "$at_srcdir/firewall-cmd.at:495: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:495" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:868" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:495" $at_failed && at_fn_log_failure $at_traceon; } @@ -240970,113 +244116,148 @@ $at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:496" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:496" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:871: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=ipset:foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:871" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=ipset:foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:871" -$at_failed && at_fn_log_failure -$at_traceon; } - + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_242 +#AT_START_243 +at_fn_group_banner 243 'firewall-cmd.at:498' \ + "forward" " " 8 +at_xfail=no +( + printf "%s\n" "243. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:872: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=ipset:foobar | grep public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:872" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=ipset:foobar | grep public -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:872" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:873: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources | grep \"ipset:foobar\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:873" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources | grep "ipset:foobar" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:498" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:873" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:498" $at_failed && at_fn_log_failure $at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:498" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:498" +$at_failed && at_fn_log_failure +$at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:874: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:874" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:498" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:874" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:498" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:875: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=ipset:foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:875" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source=ipset:foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:875" -$at_failed && at_fn_log_failure -$at_traceon; } + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:876: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:876" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:498: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:498" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:876" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:498" $at_failed && at_fn_log_failure $at_traceon; } @@ -241084,60 +244265,129 @@ $at_traceon; } + printf "%s\n" "firewall-cmd.at:498" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:498" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:878: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:878" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:878" -$at_failed && at_fn_log_failure -$at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:498" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:498" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:879: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:879" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:879" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:498" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:498" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:498" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:498" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:882: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:882" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:882" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -241146,15 +244396,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:883: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10-10.10.10.12,1234 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:883" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10-10.10.10.12,1234 +printf "%s\n" "$at_srcdir/firewall-cmd.at:501: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy --add-interface=dummy2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:501" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy --add-interface=dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:883" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:501" $at_failed && at_fn_log_failure $at_traceon; } @@ -241165,15 +244415,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:884: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,2000-2100 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:884" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,2000-2100 +printf "%s\n" "$at_srcdir/firewall-cmd.at:502: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:502" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:884" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:502" $at_failed && at_fn_log_failure $at_traceon; } @@ -241184,16 +244434,29 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:885: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:885" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:516: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:516" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:885" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:516" $at_failed && at_fn_log_failure $at_traceon; } @@ -241203,21 +244466,42 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:885: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:885" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:520: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:520" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:885" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:520" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi @@ -241227,15 +244511,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:896: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,8080 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:896" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,8080 +printf "%s\n" "$at_srcdir/firewall-cmd.at:525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:525" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:896" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:525" $at_failed && at_fn_log_failure $at_traceon; } @@ -241245,16 +244529,29 @@ $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:897: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:897" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:533: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:533" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:897" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:533" $at_failed && at_fn_log_failure $at_traceon; } @@ -241265,40 +244562,42 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:898: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:898" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:898" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:898: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:898" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:536: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:536" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:898" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:536" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + @@ -241306,15 +244605,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:901: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:901" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port +printf "%s\n" "$at_srcdir/firewall-cmd.at:539: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:539" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-interface=dummy3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:901" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:539" $at_failed && at_fn_log_failure $at_traceon; } @@ -241324,35 +244623,30 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:902: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:902" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:902" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:903: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,udp:1000-1002 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:903" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,udp:1000-1002 +printf "%s\n" "$at_srcdir/firewall-cmd.at:548: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:548" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:903" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:548" $at_failed && at_fn_log_failure $at_traceon; } @@ -241363,55 +244657,59 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:904: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:904" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:904" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:904: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:904" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:552: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:552" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:904" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:552" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:905: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,8080 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:905" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,8080 +printf "%s\n" "$at_srcdir/firewall-cmd.at:556: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --query-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:556" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:905" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:556" $at_failed && at_fn_log_failure $at_traceon; } @@ -241422,15 +244720,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:906: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:906" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:557: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:557" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --remove-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:906" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:557" $at_failed && at_fn_log_failure $at_traceon; } @@ -241445,40 +244743,26 @@ $at_traceon; } - - - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:930: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/firewall-cmd.at:564: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:930" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:564" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:ip,port -Members: -10.10.10.10,sctp:1234 -10.10.10.10,udp:1000 -10.10.10.10,udp:1001 -10.10.10.10,udp:1002 -20.20.20.20,tcp:8080 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:930" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:564" $at_failed && at_fn_log_failure $at_traceon; } - fi @@ -241486,35 +244770,55 @@ $at_traceon; } + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:940: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,sctp:8080 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:940" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,sctp:8080 +printf "%s\n" "$at_srcdir/firewall-cmd.at:566: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:566" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:940" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:566" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:941: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:941" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:568: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --query-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:568" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:941" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:568" $at_failed && at_fn_log_failure $at_traceon; } @@ -241524,17 +244828,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:942: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:942" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:569: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy --remove-interface=dummy3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:569" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --remove-interface=dummy --remove-interface=dummy3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:942" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:569" $at_failed && at_fn_log_failure $at_traceon; } @@ -241544,16 +244847,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:942: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:942" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --add-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:571" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:942" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:571" $at_failed && at_fn_log_failure $at_traceon; } @@ -241563,18 +244867,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:945: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,mark " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:945" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,mark +printf "%s\n" "$at_srcdir/firewall-cmd.at:572: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-interface=dummy --add-interface=dummy3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:572" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-interface=dummy --add-interface=dummy3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:945" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:572" $at_failed && at_fn_log_failure $at_traceon; } @@ -241585,15 +244887,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:946: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,0x100 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:946" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,0x100 +printf "%s\n" "$at_srcdir/firewall-cmd.at:573: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:573" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:946" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:573" $at_failed && at_fn_log_failure $at_traceon; } @@ -241605,15 +244907,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:947" +printf "%s\n" "$at_srcdir/firewall-cmd.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:574" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:947" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:574" $at_failed && at_fn_log_failure $at_traceon; } @@ -241624,15 +244926,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:947" +printf "%s\n" "$at_srcdir/firewall-cmd.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:574" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:947" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:574" $at_failed && at_fn_log_failure $at_traceon; } @@ -241644,15 +244946,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:948: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,0x200 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:948" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,0x200 +printf "%s\n" "$at_srcdir/firewall-cmd.at:575: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:575" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:948" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:575" $at_failed && at_fn_log_failure $at_traceon; } @@ -241662,16 +244964,31 @@ $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:949: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:949" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:585: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:585" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:949" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 10.10.10.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:585" $at_failed && at_fn_log_failure $at_traceon; } @@ -241685,57 +245002,38 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : - - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:972: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/firewall-cmd.at:590: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_home_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:972" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:590" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FWD_home_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:ip,mark -Members: -10.10.10.10,0x00000100 -20.20.20.20,0x00000200 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:972" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:590" $at_failed && at_fn_log_failure $at_traceon; } - fi - - - - - + else + : - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:979: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:979" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:979" -$at_failed && at_fn_log_failure -$at_traceon; } + fi @@ -241745,15 +245043,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:980" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:594: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --remove-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:594" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --remove-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:980" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:594" $at_failed && at_fn_log_failure $at_traceon; } @@ -241764,15 +245062,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:980" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:595: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:595" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=home --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:980" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:595" $at_failed && at_fn_log_failure $at_traceon; } @@ -241782,18 +245080,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:983: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,port " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:983" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,port +printf "%s\n" "$at_srcdir/firewall-cmd.at:596: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-interface=dummy --remove-interface=dummy3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:596" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-interface=dummy --remove-interface=dummy3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:983" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:596" $at_failed && at_fn_log_failure $at_traceon; } @@ -241804,15 +245100,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:984: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,sctp:1234 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:984" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,sctp:1234 +printf "%s\n" "$at_srcdir/firewall-cmd.at:597: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:597" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=home --remove-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:984" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:597" $at_failed && at_fn_log_failure $at_traceon; } @@ -241824,15 +245120,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:985" +printf "%s\n" "$at_srcdir/firewall-cmd.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:598" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:985" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:598" $at_failed && at_fn_log_failure $at_traceon; } @@ -241843,15 +245139,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:985" +printf "%s\n" "$at_srcdir/firewall-cmd.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:598" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:985" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:598" $at_failed && at_fn_log_failure $at_traceon; } @@ -241862,16 +245158,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:986: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:986" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080 +printf "%s\n" "$at_srcdir/firewall-cmd.at:601: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-default-zone |grep public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:601" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-default-zone |grep public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:986" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:601" $at_failed && at_fn_log_failure $at_traceon; } @@ -241882,15 +245179,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:987" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:602: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-interface dummy4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:602" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-interface dummy4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:987" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:602" $at_failed && at_fn_log_failure $at_traceon; } @@ -241900,17 +245197,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:988: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:988" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:603: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:603" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:988" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:603" $at_failed && at_fn_log_failure $at_traceon; } @@ -241920,16 +245216,29 @@ $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:988: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:988" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:611: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:611" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:988" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:611" $at_failed && at_fn_log_failure $at_traceon; } @@ -241941,39 +245250,42 @@ $at_traceon; } + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:991: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port,net " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:991" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port,net +printf "%s\n" "$at_srcdir/firewall-cmd.at:614: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:614" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:991" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:614" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:992: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234,10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:992" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234,10.10.10.0/24 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:992" -$at_failed && at_fn_log_failure -$at_traceon; } - - @@ -241981,15 +245293,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:993" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:619: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:619" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:993" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:619" $at_failed && at_fn_log_failure $at_traceon; } @@ -241999,16 +245311,23 @@ $at_traceon; } + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:993" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:620: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=1234::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:620" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=1234::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:993" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:620" $at_failed && at_fn_log_failure $at_traceon; } @@ -242016,19 +245335,26 @@ $at_traceon; } + else + : + + fi + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:994: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080,1.6.0.0/16 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:994" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080,1.6.0.0/16 +printf "%s\n" "$at_srcdir/firewall-cmd.at:623: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:623" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:994" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:623" $at_failed && at_fn_log_failure $at_traceon; } @@ -242042,35 +245368,29 @@ $at_traceon; } - if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1005: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/firewall-cmd.at:632: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1005" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:632" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:ip,port,net -Members: -1.2.3.4,tcp:8080,1.6.0.0/16 -10.10.10.10,sctp:1234,10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 10.10.10.0/24 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1005" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:632" $at_failed && at_fn_log_failure $at_traceon; } - fi @@ -242078,55 +245398,64 @@ $at_traceon; } + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1012: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1012" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:635: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:635" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1012" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 1234::/64 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:635" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1013" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1013" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1013" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:638: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=1234::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:638" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=1234::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1013" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:638" $at_failed && at_fn_log_failure $at_traceon; } @@ -242134,22 +245463,14 @@ $at_traceon; } + else + : + + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1016: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,iface " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1016" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,iface -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1016" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -242158,15 +245479,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1017: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1017" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,foobar0 +printf "%s\n" "$at_srcdir/firewall-cmd.at:648: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:648" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1017" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 10.10.10.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:648" $at_failed && at_fn_log_failure $at_traceon; } @@ -242177,55 +245506,56 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1018: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1018" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1018" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1018: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1018" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:651: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:651" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1018" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:651" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1019: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.0/24,raboof0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1019" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.0/24,raboof0 +printf "%s\n" "$at_srcdir/firewall-cmd.at:653: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.20.20.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:653" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.20.20.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1019" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:653" $at_failed && at_fn_log_failure $at_traceon; } @@ -242235,16 +245565,23 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1020: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1020" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:654: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=4321::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:654" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=4321::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1020" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:654" $at_failed && at_fn_log_failure $at_traceon; } @@ -242252,6 +245589,11 @@ $at_traceon; } + else + : + + fi + @@ -242261,138 +245603,88 @@ $at_traceon; } - if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1043: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/firewall-cmd.at:666: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1043" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:666" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:net,iface -Members: -10.10.10.0/24,foobar0 -20.20.20.0/24,raboof0 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 10.10.10.0/24 +ACCEPT 0 -- 0.0.0.0/0 10.20.20.0/24 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1043" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:666" $at_failed && at_fn_log_failure $at_traceon; } - fi - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1050: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1050" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1050" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1051" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1051" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - +printf "%s\n" "$at_srcdir/firewall-cmd.at:670: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:670" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1051" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1051" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 4321::/64 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:670" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then + else : + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:mac " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:mac -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=12:34:56:78:90:ab " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=12:34:56:78:90:ab +printf "%s\n" "$at_srcdir/firewall-cmd.at:673: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:673" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:673" $at_failed && at_fn_log_failure $at_traceon; } @@ -242403,55 +245695,26 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - +printf "%s\n" "$at_srcdir/firewall-cmd.at:680: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:680" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=12:34:56:78:90:ac " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=12:34:56:78:90:ac ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:680" $at_failed && at_fn_log_failure $at_traceon; } @@ -242461,63 +245724,35 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - +printf "%s\n" "$at_srcdir/firewall-cmd.at:682: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:682" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:682" $at_failed && at_fn_log_failure $at_traceon; } - - - else : @@ -242527,10 +245762,12 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_ENTRY: invalid address/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1061" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ENTRY: invalid address/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1061" + + + if test x"" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:684" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:684" fi @@ -242539,13 +245776,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_231 -#AT_START_232 -at_fn_group_banner 232 'firewall-cmd.at:1063' \ - "user helpers" " " 8 +#AT_STOP_243 +#AT_START_244 +at_fn_group_banner 244 'firewall-cmd.at:686' \ + "forward ports" " " 8 at_xfail=no ( - $as_echo "232. $at_setup_line: testing $at_desc ..." + printf "%s\n" "244. $at_setup_line: testing $at_desc ..." $at_traceon @@ -242563,6 +245800,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -242579,29 +245817,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1063" +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:686" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1063" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:686" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1063" +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:686" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1063" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:686" $at_failed && at_fn_log_failure $at_traceon; } @@ -242609,15 +245847,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1063" +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:686" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1063" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:686" $at_failed && at_fn_log_failure $at_traceon; } @@ -242659,15 +245897,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1063: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1063" +printf "%s\n" "$at_srcdir/firewall-cmd.at:686: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:686" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1063" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:686" $at_failed && at_fn_log_failure $at_traceon; } @@ -242675,9 +245913,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1063" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:686" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1063" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:686" @@ -242758,8 +245996,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1063" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" + printf "%s\n" "firewall-cmd.at:686" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -242769,7 +246007,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -242777,8 +246015,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1063" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" + printf "%s\n" "firewall-cmd.at:686" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" fi echo "$!" > firewalld.pid @@ -242794,9 +246032,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" fi sleep 1 done - $as_echo "firewall-cmd.at:1063" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:686" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:686" @@ -242806,15 +246044,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1066: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=foo " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1066" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=foo +printf "%s\n" "$at_srcdir/firewall-cmd.at:689: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:689" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 132 $at_status "$at_srcdir/firewall-cmd.at:1066" +at_fn_check_status 106 $at_status "$at_srcdir/firewall-cmd.at:689" $at_failed && at_fn_log_failure $at_traceon; } @@ -242825,15 +246063,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1067: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=nf_conntrack_foo " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1067" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=nf_conntrack_foo +printf "%s\n" "$at_srcdir/firewall-cmd.at:690: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=11:proto=tcp:toport=22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:690" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=11:proto=tcp:toport=22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1067" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:690" $at_failed && at_fn_log_failure $at_traceon; } @@ -242843,16 +246081,29 @@ $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1068: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1068" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:699: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:699" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1068" +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:11 to::22 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:699" $at_failed && at_fn_log_failure $at_traceon; } @@ -242862,54 +246113,57 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1069: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1069" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1069" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1070: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv5 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1070" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv5 +printf "%s\n" "$at_srcdir/firewall-cmd.at:702: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:702" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1070" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:702" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1071: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1071" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:704: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:704" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1071" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:704" $at_failed && at_fn_log_failure $at_traceon; } @@ -242920,15 +246174,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1072: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1072" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:705: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4444 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:705" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4444 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1072" +at_fn_check_status 105 $at_status "$at_srcdir/firewall-cmd.at:705" $at_failed && at_fn_log_failure $at_traceon; } @@ -242937,17 +246191,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1073: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family= " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1073" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family= +printf "%s\n" "$at_srcdir/firewall-cmd.at:706: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:706" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1073" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:706" $at_failed && at_fn_log_failure $at_traceon; } @@ -242958,18 +246211,28 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1075: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1075" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family +printf "%s\n" "$at_srcdir/firewall-cmd.at:715: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:715" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:33 to:4.4.4.4 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1075" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:715" $at_failed && at_fn_log_failure $at_traceon; } @@ -242979,38 +246242,57 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1077: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1077" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports +printf "%s\n" "$at_srcdir/firewall-cmd.at:718: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:718" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1077" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:718" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1080: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --add-port=44/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1080" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --add-port=44/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:720: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:720" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1080" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:720" $at_failed && at_fn_log_failure $at_traceon; } @@ -243021,15 +246303,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1081: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports | grep 44 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1081" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports | grep 44 +printf "%s\n" "$at_srcdir/firewall-cmd.at:721: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:721" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1081" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:721" $at_failed && at_fn_log_failure $at_traceon; } @@ -243040,15 +246322,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1082: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1082" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:722: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:722" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1082" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:722" $at_failed && at_fn_log_failure $at_traceon; } @@ -243059,15 +246341,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1083: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --remove-port=44/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1083" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --remove-port=44/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:723: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:723" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1083" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:723" $at_failed && at_fn_log_failure $at_traceon; } @@ -243078,15 +246360,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1084: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1084" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp +printf "%s\n" "$at_srcdir/firewall-cmd.at:724: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:724" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1084" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:724" $at_failed && at_fn_log_failure $at_traceon; } @@ -243097,17 +246379,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1085: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1085" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports +printf "%s\n" "$at_srcdir/firewall-cmd.at:725: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:725" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1085" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:725" $at_failed && at_fn_log_failure $at_traceon; } @@ -243118,15 +246398,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1087: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-helper=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1087" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-helper=foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:726: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:726" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1087" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:726" $at_failed && at_fn_log_failure $at_traceon; } @@ -243137,15 +246417,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1088: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1088" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar +printf "%s\n" "$at_srcdir/firewall-cmd.at:727: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:727" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1088" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:727" $at_failed && at_fn_log_failure $at_traceon; } @@ -243154,147 +246434,73 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_MODULE:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1089" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_MODULE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1089" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_232 -#AT_START_233 -at_fn_group_banner 233 'firewall-cmd.at:1091' \ - "direct" " " 8 -at_xfail=no -( - $as_echo "233. $at_setup_line: testing $at_desc ..." - $at_traceon - - - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:728: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:728" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:728" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1091" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1091" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1091" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1091" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1091" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1091" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:729" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:729" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1091: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1091" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1091" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:729" $at_failed && at_fn_log_failure $at_traceon; } @@ -243302,153 +246508,61 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1091" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1091" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "firewall-cmd.at:1091" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:729" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DNAT 132 -- ::/0 ::/0 sctp dpt:66 to:[fd00:dead:beef:ff0::]:66 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:729" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + else + : - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:1091" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:1091" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" - $as_echo "firewall-cmd.at:1093" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1093" - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1095: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1095" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1095" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:729" $at_failed && at_fn_log_failure $at_traceon; } @@ -243459,15 +246573,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1096: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-chains ipv4 filter | grep mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1096" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-chains ipv4 filter | grep mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1096" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:729" $at_failed && at_fn_log_failure $at_traceon; } @@ -243478,15 +246592,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1097: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-chains | grep \"ipv4 filter mychain\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1097" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-chains | grep "ipv4 filter mychain" +printf "%s\n" "$at_srcdir/firewall-cmd.at:729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:729" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1097" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:729" $at_failed && at_fn_log_failure $at_traceon; } @@ -243494,18 +246608,26 @@ $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1098: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1098" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:748: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:748" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1098" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:748" $at_failed && at_fn_log_failure $at_traceon; } @@ -243516,15 +246638,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1099: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv5 filter mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1099" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv5 filter mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=100:proto=tcp:toport=200 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:749" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1099" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:749" $at_failed && at_fn_log_failure $at_traceon; } @@ -243535,15 +246657,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 badtable mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1100" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv4 badtable mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:750" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 108 $at_status "$at_srcdir/firewall-cmd.at:1100" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:750" $at_failed && at_fn_log_failure $at_traceon; } @@ -243553,17 +246675,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1102" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:751: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:751" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1102" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:751" $at_failed && at_fn_log_failure $at_traceon; } @@ -243574,15 +246695,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"3 -j ACCEPT\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1103" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "3 -j ACCEPT" +printf "%s\n" "$at_srcdir/firewall-cmd.at:752: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port port=100:proto=tcp:toport=200 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:752" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1103" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:752" $at_failed && at_fn_log_failure $at_traceon; } @@ -243593,15 +246714,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 filter mychain 3 -j ACCEPT\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1104" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 filter mychain 3 -j ACCEPT" +printf "%s\n" "$at_srcdir/firewall-cmd.at:753: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:753" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-forward-port=port=88:proto=udp:toport=99 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1104" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:753" $at_failed && at_fn_log_failure $at_traceon; } @@ -243612,15 +246733,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1105" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:754: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-forward-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:754" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-forward-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1105" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:754" $at_failed && at_fn_log_failure $at_traceon; } @@ -243630,16 +246751,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter mychain 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1106" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter mychain 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:756: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:756" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1106" +at_fn_check_status 106 $at_status "$at_srcdir/firewall-cmd.at:756" $at_failed && at_fn_log_failure $at_traceon; } @@ -243650,15 +246772,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1107" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:757: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=11:proto=tcp:toport=22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:757" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=11:proto=tcp:toport=22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1107" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:757" $at_failed && at_fn_log_failure $at_traceon; } @@ -243669,15 +246791,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv5 filter mychain 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1108" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv5 filter mychain 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:758: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:758" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=11:proto=tcp:toport=22 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1108" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:758" $at_failed && at_fn_log_failure $at_traceon; } @@ -243688,15 +246810,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 badtable mychain 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1109" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 badtable mychain 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:759: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4444 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:759" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4444 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 108 $at_status "$at_srcdir/firewall-cmd.at:1109" +at_fn_check_status 105 $at_status "$at_srcdir/firewall-cmd.at:759" $at_failed && at_fn_log_failure $at_traceon; } @@ -243705,18 +246827,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1111" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:760: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:760" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1111" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:760" $at_failed && at_fn_log_failure $at_traceon; } @@ -243727,15 +246847,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1112" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:761: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:761" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=33:proto=tcp:toaddr=4.4.4.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1112" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:761" $at_failed && at_fn_log_failure $at_traceon; } @@ -243746,15 +246866,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1113" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:762: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:762" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1113" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:762" $at_failed && at_fn_log_failure $at_traceon; } @@ -243765,15 +246885,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1114" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:763: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:763" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=55:proto=tcp:toport=66:toaddr=7.7.7.7 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1114" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:763" $at_failed && at_fn_log_failure $at_traceon; } @@ -243784,15 +246904,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"3 -s 192.168.1.1 -j ACCEPT\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1115" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "3 -s 192.168.1.1 -j ACCEPT" +printf "%s\n" "$at_srcdir/firewall-cmd.at:764: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:764" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1115" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:764" $at_failed && at_fn_log_failure $at_traceon; } @@ -243803,15 +246923,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"4 -s 192.168.1.2 -j ACCEPT\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1116" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "4 -s 192.168.1.2 -j ACCEPT" +printf "%s\n" "$at_srcdir/firewall-cmd.at:765: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:765" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=55:proto=tcp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1116" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:765" $at_failed && at_fn_log_failure $at_traceon; } @@ -243822,15 +246942,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"5 -s 192.168.1.3 -j ACCEPT\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1117" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "5 -s 192.168.1.3 -j ACCEPT" +printf "%s\n" "$at_srcdir/firewall-cmd.at:766: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:766" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1117" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:766" $at_failed && at_fn_log_failure $at_traceon; } @@ -243841,15 +246961,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"6 -s 192.168.1.4 -j ACCEPT\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1118" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "6 -s 192.168.1.4 -j ACCEPT" +printf "%s\n" "$at_srcdir/firewall-cmd.at:767: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:767" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=7.7.7.7 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1118" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:767" $at_failed && at_fn_log_failure $at_traceon; } @@ -243860,15 +246980,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules ipv4 filter mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1119" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rules ipv4 filter mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:768: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:768" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1119" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:768" $at_failed && at_fn_log_failure $at_traceon; } @@ -243879,15 +246999,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1120" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:769: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:769" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=7.7.7.7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1120" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:769" $at_failed && at_fn_log_failure $at_traceon; } @@ -243897,16 +247017,23 @@ $at_traceon; } + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1121" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1121" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:770" $at_failed && at_fn_log_failure $at_traceon; } @@ -243917,15 +247044,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1122" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1122" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:770" $at_failed && at_fn_log_failure $at_traceon; } @@ -243936,15 +247063,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1123" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1123" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:770" $at_failed && at_fn_log_failure $at_traceon; } @@ -243954,17 +247081,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv5 filter mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1125" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv5 filter mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:770" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=66:proto=sctp:toport=66:toaddr=fd00:dead:beef:ff0:: ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1125" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:770" $at_failed && at_fn_log_failure $at_traceon; } @@ -243972,21 +247098,10 @@ $at_traceon; } + else + : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 badtable mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1126" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 badtable mychain -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 108 $at_status "$at_srcdir/firewall-cmd.at:1126" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi @@ -243994,15 +247109,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1127" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:776: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:776" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-forward-port=port=88:proto=udp:toport=99 --add-forward-port port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1127" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:776" $at_failed && at_fn_log_failure $at_traceon; } @@ -244013,15 +247128,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1128: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1128" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:777: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=100:proto=tcp:toport=200 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:777" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1128" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:777" $at_failed && at_fn_log_failure $at_traceon; } @@ -244032,15 +247147,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1129" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter dummy +printf "%s\n" "$at_srcdir/firewall-cmd.at:778: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:778" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1129" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:778" $at_failed && at_fn_log_failure $at_traceon; } @@ -244050,17 +247165,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1132" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:779: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:779" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-forward-port port=100:proto=tcp:toport=200 --remove-forward-port=port=88:proto=udp:toport=99 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1132" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:779" $at_failed && at_fn_log_failure $at_traceon; } @@ -244071,15 +247185,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --list-all " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1133" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --list-all +printf "%s\n" "$at_srcdir/firewall-cmd.at:780: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port port=100:proto=tcp:toport=200 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:780" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port port=100:proto=tcp:toport=200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1133" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:780" $at_failed && at_fn_log_failure $at_traceon; } @@ -244090,15 +247204,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-services " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1134" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-services +printf "%s\n" "$at_srcdir/firewall-cmd.at:781: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:781" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-forward-port=port=88:proto=udp:toport=99 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1134" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:781" $at_failed && at_fn_log_failure $at_traceon; } @@ -244109,15 +247223,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-default-zone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1135" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-default-zone +printf "%s\n" "$at_srcdir/firewall-cmd.at:782: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-forward-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:782" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-forward-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1135" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:782" $at_failed && at_fn_log_failure $at_traceon; } @@ -244126,94 +247240,295 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --zone=home --list-services " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1136" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --zone=home --list-services -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1136" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"-e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:783" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:783" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_244 +#AT_START_245 +at_fn_group_banner 245 'firewall-cmd.at:785' \ + "ICMP block" " " 8 +at_xfail=no +( + printf "%s\n" "245. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1137: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --permanent --list-all " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1137" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --permanent --list-all -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1137" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-chain ipv4 filter žluťoučký " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1140" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-chain ipv4 filter žluťoučký + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:785" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1140" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:785" $at_failed && at_fn_log_failure $at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:785" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:785" +$at_failed && at_fn_log_failure +$at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-chains ipv4 filter |grep \"žluťoučký\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1141" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-chains ipv4 filter |grep "žluťoučký" + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:785" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1141" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:785" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:785: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:785" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:785" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "firewall-cmd.at:785" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:785" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:785" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:785" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:785" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:785" + + + + + + + - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-chains | grep \"ipv4 filter žluťoučký\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1142" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-chains | grep "ipv4 filter žluťoučký" +printf "%s\n" "$at_srcdir/firewall-cmd.at:788: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-icmp-blocks " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:788" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-icmp-blocks ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1142" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:788" $at_failed && at_fn_log_failure $at_traceon; } @@ -244223,16 +247538,36 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1143" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký +printf "%s\n" "$at_srcdir/firewall-cmd.at:790: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=dummyblock " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:790" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=dummyblock +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 107 $at_status "$at_srcdir/firewall-cmd.at:790" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:791: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:791" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1143" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:791" $at_failed && at_fn_log_failure $at_traceon; } @@ -244243,15 +247578,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter žluťoučký 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1144" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter žluťoučký 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:792: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:792" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1144" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:792" $at_failed && at_fn_log_failure $at_traceon; } @@ -244262,15 +247597,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-rules ipv4 filter žluťoučký | grep ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1145" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-rules ipv4 filter žluťoučký | grep ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:793: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:793" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1145" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:793" $at_failed && at_fn_log_failure $at_traceon; } @@ -244281,15 +247616,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 filter žluťoučký 3 -j ACCEPT\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1146" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep "ipv4 filter žluťoučký 3 -j ACCEPT" +printf "%s\n" "$at_srcdir/firewall-cmd.at:794: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:794" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1146" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:794" $at_failed && at_fn_log_failure $at_traceon; } @@ -244300,15 +247635,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1147" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:795: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=dummyblock " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:795" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=dummyblock +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 107 $at_status "$at_srcdir/firewall-cmd.at:795" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:796: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:796" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1147" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:796" $at_failed && at_fn_log_failure $at_traceon; } @@ -244319,15 +247673,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 filter žluťoučký 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1148" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 filter žluťoučký 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:797: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:797" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1148" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:797" $at_failed && at_fn_log_failure $at_traceon; } @@ -244338,15 +247692,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1149" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:798: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:798" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1149" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:798" $at_failed && at_fn_log_failure $at_traceon; } @@ -244357,15 +247711,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-chain ipv4 filter žluťoučký " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1150" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-chain ipv4 filter žluťoučký +printf "%s\n" "$at_srcdir/firewall-cmd.at:799: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:799" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1150" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:799" $at_failed && at_fn_log_failure $at_traceon; } @@ -244375,16 +247729,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1151" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký +printf "%s\n" "$at_srcdir/firewall-cmd.at:801: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:801" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1151" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:801" $at_failed && at_fn_log_failure $at_traceon; } @@ -244394,17 +247749,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:802: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-icmp-block-inversion " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:802" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-icmp-block-inversion +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:802" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1154" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:803: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:803" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1154" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:803" $at_failed && at_fn_log_failure $at_traceon; } @@ -244415,15 +247788,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter FORWARD_direct 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1155" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter FORWARD_direct 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:804: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-icmp-block-inversion " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:804" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1155" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:804" $at_failed && at_fn_log_failure $at_traceon; } @@ -244434,15 +247807,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1156: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 security INPUT_direct 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1156" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 security INPUT_direct 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-icmp-block-inversion --zone=public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:805" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-icmp-block-inversion --zone=public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1156" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:805" $at_failed && at_fn_log_failure $at_traceon; } @@ -244453,15 +247826,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 raw PREROUTING_direct 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1157" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 raw PREROUTING_direct 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:806: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:806" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1157" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:806" $at_failed && at_fn_log_failure $at_traceon; } @@ -244472,15 +247845,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 mangle PREROUTING_direct 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1158" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 mangle PREROUTING_direct 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:807: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-icmp-block-inversion " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:807" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1158" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:807" $at_failed && at_fn_log_failure $at_traceon; } @@ -244491,15 +247864,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 nat PREROUTING_direct 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1159" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 nat PREROUTING_direct 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:808: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:808" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1159" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:808" $at_failed && at_fn_log_failure $at_traceon; } @@ -244509,16 +247882,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1160" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:810: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=block " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:810" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=block ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1160" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:810" $at_failed && at_fn_log_failure $at_traceon; } @@ -244528,17 +247902,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:811: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=block " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:811" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=block +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:811" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1161" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:812: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=drop " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:812" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=drop ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1161" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:812" $at_failed && at_fn_log_failure $at_traceon; } @@ -244549,15 +247941,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1161" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:813: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=drop " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:813" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=drop ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1161" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:813" $at_failed && at_fn_log_failure $at_traceon; } @@ -244567,10 +247959,276 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_TABLE:/d' -e '/WARNING: NOT_ENABLED: chain/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1162" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_TABLE:/d' -e '/WARNING: NOT_ENABLED: chain/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1162" + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:814: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=trusted " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:814" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-icmp-block-inversion --zone=trusted +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:814" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:815: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=trusted " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:815" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-icmp-block-inversion --zone=trusted +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:815" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:817: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:817" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:817" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:818: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:818" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:818" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:819: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:819" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:819" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:820: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:820" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:820" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:821: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:821" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=echo-reply +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:821" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:822" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=external --query-icmp-block=router-solicitation +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:822" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:823: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:823" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --add-icmp-block=echo-reply --add-icmp-block=router-solicitation +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:823" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:824: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:824" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:824" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:825: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:825" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:825" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:826: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:826" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --remove-icmp-block echo-reply --remove-icmp-block=router-solicitation +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:826" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:827: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:827" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=echo-reply +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:827" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:828" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=external --query-icmp-block=router-solicitation +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:828" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + if test x"-e '/ERROR: INVALID_ICMPTYPE:/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:829" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ICMPTYPE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:829" fi @@ -244579,13 +248237,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_233 -#AT_START_234 -at_fn_group_banner 234 'firewall-cmd.at:1165' \ - "direct nat" " " 8 +#AT_STOP_245 +#AT_START_246 +at_fn_group_banner 246 'firewall-cmd.at:831' \ + "user ICMP types" " " 8 at_xfail=no ( - $as_echo "234. $at_setup_line: testing $at_desc ..." + printf "%s\n" "246. $at_setup_line: testing $at_desc ..." $at_traceon @@ -244603,6 +248261,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -244619,29 +248278,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1165" +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:831" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1165" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:831" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1165" +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:831" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1165" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:831" $at_failed && at_fn_log_failure $at_traceon; } @@ -244649,15 +248308,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1165" +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:831" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1165" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:831" $at_failed && at_fn_log_failure $at_traceon; } @@ -244699,15 +248358,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1165: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1165" +printf "%s\n" "$at_srcdir/firewall-cmd.at:831: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:831" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1165" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:831" $at_failed && at_fn_log_failure $at_traceon; } @@ -244715,9 +248374,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1165" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:831" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1165" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:831" @@ -244798,8 +248457,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1165" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" + printf "%s\n" "firewall-cmd.at:831" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -244809,7 +248468,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -244817,8 +248476,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1165" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" + printf "%s\n" "firewall-cmd.at:831" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" fi echo "$!" > firewalld.pid @@ -244834,23 +248493,29 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" fi sleep 1 done - $as_echo "firewall-cmd.at:1165" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:831" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" - - - + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:831" - $as_echo "firewall-cmd.at:1168" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1168" + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:834: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype=redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:834" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-icmptype=redirect +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 26 $at_status "$at_srcdir/firewall-cmd.at:834" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -244859,15 +248524,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1173" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 +printf "%s\n" "$at_srcdir/firewall-cmd.at:836: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:836" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-icmptype=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1173" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:836" $at_failed && at_fn_log_failure $at_traceon; } @@ -244878,15 +248543,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1174" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81" +printf "%s\n" "$at_srcdir/firewall-cmd.at:837: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-icmptypes | grep foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:837" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-icmptypes | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1174" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:837" $at_failed && at_fn_log_failure $at_traceon; } @@ -244896,16 +248561,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1175: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1175" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:839: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv5 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:839" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv5 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1175" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:839" $at_failed && at_fn_log_failure $at_traceon; } @@ -244916,15 +248582,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1176" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81" +printf "%s\n" "$at_srcdir/firewall-cmd.at:840: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:840" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1176" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:840" $at_failed && at_fn_log_failure $at_traceon; } @@ -244935,15 +248601,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1177" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 +printf "%s\n" "$at_srcdir/firewall-cmd.at:841: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:841" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1177" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:841" $at_failed && at_fn_log_failure $at_traceon; } @@ -244954,15 +248620,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1178: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1178" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 +printf "%s\n" "$at_srcdir/firewall-cmd.at:842: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:842" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --add-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1178" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:842" $at_failed && at_fn_log_failure $at_traceon; } @@ -244973,15 +248639,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1179: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1179" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82" +printf "%s\n" "$at_srcdir/firewall-cmd.at:843: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:843" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1179" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:843" $at_failed && at_fn_log_failure $at_traceon; } @@ -244992,15 +248658,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1180" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:844: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:844" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --remove-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1180" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:844" $at_failed && at_fn_log_failure $at_traceon; } @@ -245011,15 +248677,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules |grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1181" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules |grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81" +printf "%s\n" "$at_srcdir/firewall-cmd.at:845: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:845" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --icmptype=foobar --query-destination=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1181" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:845" $at_failed && at_fn_log_failure $at_traceon; } @@ -245029,16 +248695,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1182" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82" +printf "%s\n" "$at_srcdir/firewall-cmd.at:847: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-icmp-block=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:847" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-icmp-block=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1182" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:847" $at_failed && at_fn_log_failure $at_traceon; } @@ -245049,15 +248716,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1183" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 +printf "%s\n" "$at_srcdir/firewall-cmd.at:848: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:848" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1183" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:848" $at_failed && at_fn_log_failure $at_traceon; } @@ -245067,16 +248734,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1184" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:850: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-icmptype=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:850" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-icmptype=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1184" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:850" $at_failed && at_fn_log_failure $at_traceon; } @@ -245087,15 +248755,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1185" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82" +printf "%s\n" "$at_srcdir/firewall-cmd.at:851: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:851" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --list-icmp-blocks | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1185" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:851" $at_failed && at_fn_log_failure $at_traceon; } @@ -245104,12 +248772,10 @@ $at_traceon; } - - - if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:1188" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1188" + if test x"-e '/NAME_CONFLICT: new_icmptype():/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:852" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/NAME_CONFLICT: new_icmptype():/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:852" fi @@ -245118,13 +248784,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_234 -#AT_START_235 -at_fn_group_banner 235 'firewall-cmd.at:1190' \ - "direct passthrough" " " 8 +#AT_STOP_246 +#AT_START_247 +at_fn_group_banner 247 'firewall-cmd.at:854' \ + "ipset" " " 8 at_xfail=no ( - $as_echo "235. $at_setup_line: testing $at_desc ..." + printf "%s\n" "247. $at_setup_line: testing $at_desc ..." $at_traceon @@ -245142,6 +248808,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -245158,29 +248825,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1190" +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:854" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1190" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:854" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1190" +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:854" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1190" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:854" $at_failed && at_fn_log_failure $at_traceon; } @@ -245188,15 +248855,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1190" +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:854" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1190" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:854" $at_failed && at_fn_log_failure $at_traceon; } @@ -245238,15 +248905,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1190: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1190" +printf "%s\n" "$at_srcdir/firewall-cmd.at:854: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:854" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1190" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:854" $at_failed && at_fn_log_failure $at_traceon; } @@ -245254,9 +248921,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1190" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:854" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1190" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:854" @@ -245337,8 +249004,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1190" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" + printf "%s\n" "firewall-cmd.at:854" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -245348,7 +249015,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -245356,8 +249023,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1190" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" + printf "%s\n" "firewall-cmd.at:854" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" fi echo "$!" > firewalld.pid @@ -245373,34 +249040,44 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" fi sleep 1 done - $as_echo "firewall-cmd.at:1190" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:854" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:854" - $as_echo "firewall-cmd.at:1192" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1192" + + + + printf "%s\n" "firewall-cmd.at:857" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:857" + printf "%s\n" "firewall-cmd.at:858" >"$at_check_line_file" +(! $IPSET --help | grep "hash:mac") \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:858" + printf "%s\n" "firewall-cmd.at:858" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET create foobar hash:mac >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:858" + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1194: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --append POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1194" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --append POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill +printf "%s\n" "$at_srcdir/firewall-cmd.at:858: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$IPSET destroy foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:858" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET destroy foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1194" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:858" $at_failed && at_fn_log_failure $at_traceon; } @@ -245410,16 +249087,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1195: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --delete POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1195" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --delete POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill +printf "%s\n" "$at_srcdir/firewall-cmd.at:860: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:860" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1195" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:860" $at_failed && at_fn_log_failure $at_traceon; } @@ -245429,17 +249108,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1197" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:861: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:861" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1197" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:861" $at_failed && at_fn_log_failure $at_traceon; } @@ -245450,15 +249128,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1198: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1198" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:862: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:862" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1198" +echo >>"$at_stdout"; printf "%s\n" " +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:862" $at_failed && at_fn_log_failure $at_traceon; } @@ -245469,15 +249149,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1199: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1199" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:864: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:864" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1199" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:864" $at_failed && at_fn_log_failure $at_traceon; } @@ -245488,15 +249168,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1200: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1200" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:865: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries | grep \"1.2.3.4\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:865" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries | grep "1.2.3.4" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1200" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:865" $at_failed && at_fn_log_failure $at_traceon; } @@ -245507,15 +249187,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1201" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:866: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.400 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:866" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.400 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1201" +at_fn_check_status 136 $at_status "$at_srcdir/firewall-cmd.at:866" $at_failed && at_fn_log_failure $at_traceon; } @@ -245526,15 +249206,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1202" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:867: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --remove-entry=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:867" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --remove-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1202" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:867" $at_failed && at_fn_log_failure $at_traceon; } @@ -245545,15 +249225,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1203" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:868: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:868" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1203" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" " +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:868" $at_failed && at_fn_log_failure $at_traceon; } @@ -245562,22 +249244,18 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv6 --table filter --append FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv6 --table filter --append FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:871: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=ipset:foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:871" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1205" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:871" $at_failed && at_fn_log_failure $at_traceon; } @@ -245588,15 +249266,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-passthroughs ipv6 | grep \"fd00:dead:beef:ff0::/64\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-passthroughs ipv6 | grep "fd00:dead:beef:ff0::/64" +printf "%s\n" "$at_srcdir/firewall-cmd.at:872: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-source=ipset:foobar | grep public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:872" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-source=ipset:foobar | grep public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1205" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:872" $at_failed && at_fn_log_failure $at_traceon; } @@ -245607,15 +249285,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-passthroughs | grep \"fd00:dead:beef:ff0::/64\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-passthroughs | grep "fd00:dead:beef:ff0::/64" +printf "%s\n" "$at_srcdir/firewall-cmd.at:873: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-sources | grep \"ipset:foobar\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:873" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-sources | grep "ipset:foobar" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1205" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:873" $at_failed && at_fn_log_failure $at_traceon; } @@ -245626,15 +249304,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -nvL | grep \"fd00:dead:beef:ff0::/64\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -nvL | grep "fd00:dead:beef:ff0::/64" +printf "%s\n" "$at_srcdir/firewall-cmd.at:874: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:874" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1205" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:874" $at_failed && at_fn_log_failure $at_traceon; } @@ -245645,15 +249323,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv6 --table filter --delete FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv6 --table filter --delete FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT +printf "%s\n" "$at_srcdir/firewall-cmd.at:875: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=ipset:foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:875" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1205" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:875" $at_failed && at_fn_log_failure $at_traceon; } @@ -245661,25 +249339,18 @@ $at_traceon; } - else - : - - fi - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv5 -nvL " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1213" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv5 -nvL +printf "%s\n" "$at_srcdir/firewall-cmd.at:876: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:876" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --query-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1213" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:876" $at_failed && at_fn_log_failure $at_traceon; } @@ -245689,16 +249360,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1214" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:878: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:878" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1214" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:878" $at_failed && at_fn_log_failure $at_traceon; } @@ -245708,17 +249380,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1216: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough --get-chains ipv4 filter " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1216" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough --get-chains ipv4 filter +printf "%s\n" "$at_srcdir/firewall-cmd.at:879: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:879" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1216" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:879" $at_failed && at_fn_log_failure $at_traceon; } @@ -245730,15 +249401,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1218" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 +printf "%s\n" "$at_srcdir/firewall-cmd.at:882: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:882" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1218" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:882" $at_failed && at_fn_log_failure $at_traceon; } @@ -245749,15 +249420,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1219: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv5 -nvL " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1219" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv5 -nvL +printf "%s\n" "$at_srcdir/firewall-cmd.at:883: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10-10.10.10.12,1234 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:883" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10-10.10.10.12,1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1219" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:883" $at_failed && at_fn_log_failure $at_traceon; } @@ -245768,15 +249439,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 -nvL " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1220" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 -nvL +printf "%s\n" "$at_srcdir/firewall-cmd.at:884: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,2000-2100 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:884" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,2000-2100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1220" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:884" $at_failed && at_fn_log_failure $at_traceon; } @@ -245786,16 +249457,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-passthroughs ipv4 | grep \"[-]nvL\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1221" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-passthroughs ipv4 | grep "[-]nvL" +printf "%s\n" "$at_srcdir/firewall-cmd.at:885: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:885" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1221" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:885" $at_failed && at_fn_log_failure $at_traceon; } @@ -245806,15 +249478,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-passthroughs | grep \"ipv4 [-]nvL\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1222" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-passthroughs | grep "ipv4 [-]nvL" +printf "%s\n" "$at_srcdir/firewall-cmd.at:885: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:885" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1222" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:885" $at_failed && at_fn_log_failure $at_traceon; } @@ -245824,16 +249496,20 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1223" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL +printf "%s\n" "$at_srcdir/firewall-cmd.at:896: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,8080 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:896" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,8080 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1223" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:896" $at_failed && at_fn_log_failure $at_traceon; } @@ -245844,15 +249520,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-passthrough ipv4 -nvL " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1224" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-passthrough ipv4 -nvL +printf "%s\n" "$at_srcdir/firewall-cmd.at:897: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:897" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1224" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:897" $at_failed && at_fn_log_failure $at_traceon; } @@ -245862,16 +249538,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1225" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL +printf "%s\n" "$at_srcdir/firewall-cmd.at:898: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:898" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1225" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:898" $at_failed && at_fn_log_failure $at_traceon; } @@ -245880,147 +249557,57 @@ $at_traceon; } - if test x"-e '/WARNING: NOT_ENABLED: passthrough/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1226" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: NOT_ENABLED: passthrough/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1226" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_235 -#AT_START_236 -at_fn_group_banner 236 'firewall-cmd.at:1228' \ - "direct ebtables" " " 8 -at_xfail=no -( - $as_echo "236. $at_setup_line: testing $at_desc ..." - $at_traceon - - - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:898: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:898" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:898" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1228" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1228" -$at_failed && at_fn_log_failure -$at_traceon; } - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1228" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1228" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1228" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:901: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:901" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1228" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:901" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1228: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1228" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:902: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:902" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1228" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:902" $at_failed && at_fn_log_failure $at_traceon; } @@ -246028,153 +249615,18 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1228" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1228" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "firewall-cmd.at:1228" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:1228" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:1228" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" - - - - - - - $as_echo "firewall-cmd.at:1230" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1230" - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain eb filter mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1232" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain eb filter mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:903: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,udp:1000-1002 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:903" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,udp:1000-1002 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1232" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:903" $at_failed && at_fn_log_failure $at_traceon; } @@ -246184,16 +249636,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1233: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-chains eb filter | grep mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1233" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-chains eb filter | grep mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:904: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:904" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1233" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:904" $at_failed && at_fn_log_failure $at_traceon; } @@ -246204,15 +249657,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1234" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP +printf "%s\n" "$at_srcdir/firewall-cmd.at:904: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:904" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1234" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:904" $at_failed && at_fn_log_failure $at_traceon; } @@ -246222,16 +249675,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 999 -p IPv6 --ip6-protocol UDP --ip6-source-port ! 12345 -j DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1235" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 999 -p IPv6 --ip6-protocol UDP --ip6-source-port ! 12345 -j DROP +printf "%s\n" "$at_srcdir/firewall-cmd.at:905: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,8080 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:905" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,8080 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1235" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:905" $at_failed && at_fn_log_failure $at_traceon; } @@ -246242,25 +249696,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L mychain; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1236" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L mychain; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:906: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:906" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-p IPv6 -j DROP --p IPv6 --ip6-proto udp ! --ip6-sport 12345 -j DROP --j RETURN -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1236" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:906" $at_failed && at_fn_log_failure $at_traceon; } @@ -246270,18 +249714,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule eb filter mychain 1 -p 0x86dd -j DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1241" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule eb filter mychain 1 -p 0x86dd -j DROP -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1241" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -246289,29 +249721,39 @@ $at_traceon; } + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L mychain; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/firewall-cmd.at:930: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1242" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:930" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L mychain; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-p IPv6 --ip6-proto udp ! --ip6-sport 12345 -j DROP --j RETURN +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:ip,port +Members: +10.10.10.10,sctp:1234 +10.10.10.10,udp:1000 +10.10.10.10,udp:1001 +10.10.10.10,udp:1002 +20.20.20.20,tcp:8080 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1242" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:930" $at_failed && at_fn_log_failure $at_traceon; } + fi + @@ -246319,15 +249761,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1247: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT 1 -p 0x86dd -j DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1247" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT 1 -p 0x86dd -j DROP +printf "%s\n" "$at_srcdir/firewall-cmd.at:940: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,sctp:8080 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:940" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,sctp:8080 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1247" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:940" $at_failed && at_fn_log_failure $at_traceon; } @@ -246338,15 +249780,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT_direct 1 -p 0x86dd -j DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1248" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT_direct 1 -p 0x86dd -j DROP +printf "%s\n" "$at_srcdir/firewall-cmd.at:941: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:941" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1248" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:941" $at_failed && at_fn_log_failure $at_traceon; } @@ -246356,26 +249798,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L INPUT_direct; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1249" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L INPUT_direct; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:942: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:942" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-p IPv6 -j DROP --p IPv6 -j DROP --j RETURN -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1249" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:942" $at_failed && at_fn_log_failure $at_traceon; } @@ -246385,18 +249818,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules eb filter INPUT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1261" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rules eb filter INPUT +printf "%s\n" "$at_srcdir/firewall-cmd.at:942: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:942" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1261" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:942" $at_failed && at_fn_log_failure $at_traceon; } @@ -246406,16 +249837,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules eb filter mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1262" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rules eb filter mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:945: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,mark " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:945" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,mark ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1262" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:945" $at_failed && at_fn_log_failure $at_traceon; } @@ -246425,17 +249858,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-chain eb filter mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1264" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-chain eb filter mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:946: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,0x100 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:946" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,0x100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1264" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:946" $at_failed && at_fn_log_failure $at_traceon; } @@ -246445,16 +249877,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1265: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-chains eb filter | grep mychain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1265" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-chains eb filter | grep mychain +printf "%s\n" "$at_srcdir/firewall-cmd.at:947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:947" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1265" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:947" $at_failed && at_fn_log_failure $at_traceon; } @@ -246465,15 +249898,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1266: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1266" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP +printf "%s\n" "$at_srcdir/firewall-cmd.at:947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:947" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1266" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:947" $at_failed && at_fn_log_failure $at_traceon; } @@ -246485,15 +249918,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1267" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:948: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,0x200 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:948" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.20,0x200 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1267" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:948" $at_failed && at_fn_log_failure $at_traceon; } @@ -246504,15 +249937,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1267" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:949: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:949" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1267" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:949" $at_failed && at_fn_log_failure $at_traceon; } @@ -246523,174 +249956,97 @@ $at_traceon; } + + + + + + + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1268: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$EBTABLES --concurrent -t filter -L mychain; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/firewall-cmd.at:972: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1268" +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:972" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $EBTABLES --concurrent -t filter -L mychain; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-p IPv6 -j DROP --j RETURN +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:ip,mark +Members: +10.10.10.10,0x00000100 +20.20.20.20,0x00000200 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1268" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:972" $at_failed && at_fn_log_failure $at_traceon; } - - - - - if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:1272" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1272" fi - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_236 -#AT_START_237 -at_fn_group_banner 237 'firewall-cmd.at:1274' \ - "lockdown" " " 8 -at_xfail=no -( - $as_echo "237. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1274" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:979: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:979" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1274" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:979" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1274" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1274" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1274" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:980" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1274" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:980" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1274: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1274" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:980" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1274" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:980" $at_failed && at_fn_log_failure $at_traceon; } @@ -246698,146 +250054,20 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1274" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1274" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "firewall-cmd.at:1274" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1274" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:1274" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1274" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:1274" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1274" - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1277" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-command /usr/bin/command +printf "%s\n" "$at_srcdir/firewall-cmd.at:983: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,port " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:983" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,port ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1277" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:983" $at_failed && at_fn_log_failure $at_traceon; } @@ -246848,15 +250078,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1278" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command +printf "%s\n" "$at_srcdir/firewall-cmd.at:984: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,sctp:1234 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:984" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,sctp:1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1278" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:984" $at_failed && at_fn_log_failure $at_traceon; } @@ -246866,16 +250096,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-lockdown-whitelist-commands | grep \"/usr/bin/command\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1279" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-lockdown-whitelist-commands | grep "/usr/bin/command" +printf "%s\n" "$at_srcdir/firewall-cmd.at:985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:985" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1279" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:985" $at_failed && at_fn_log_failure $at_traceon; } @@ -246886,15 +250117,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1280" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-command /usr/bin/command +printf "%s\n" "$at_srcdir/firewall-cmd.at:985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:985" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1280" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:985" $at_failed && at_fn_log_failure $at_traceon; } @@ -246904,16 +250135,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1281" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command +printf "%s\n" "$at_srcdir/firewall-cmd.at:986: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:986" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1281" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:986" $at_failed && at_fn_log_failure $at_traceon; } @@ -246924,15 +250156,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1282" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-command /usr/bin/command +printf "%s\n" "$at_srcdir/firewall-cmd.at:987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:987" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1282" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:987" $at_failed && at_fn_log_failure $at_traceon; } @@ -246942,16 +250174,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1283" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command +printf "%s\n" "$at_srcdir/firewall-cmd.at:988: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:988" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1283" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:988" $at_failed && at_fn_log_failure $at_traceon; } @@ -246962,15 +250195,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1284: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-commands | grep \"/usr/bin/command\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1284" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-commands | grep "/usr/bin/command" +printf "%s\n" "$at_srcdir/firewall-cmd.at:988: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:988" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1284" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:988" $at_failed && at_fn_log_failure $at_traceon; } @@ -246980,16 +250213,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1285" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-command /usr/bin/command +printf "%s\n" "$at_srcdir/firewall-cmd.at:991: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port,net " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:991" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip,port,net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1285" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:991" $at_failed && at_fn_log_failure $at_traceon; } @@ -247000,15 +250235,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1286" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command +printf "%s\n" "$at_srcdir/firewall-cmd.at:992: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234,10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:992" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.10,sctp:1234,10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1286" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:992" $at_failed && at_fn_log_failure $at_traceon; } @@ -247020,15 +250255,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1288: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1288" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 +printf "%s\n" "$at_srcdir/firewall-cmd.at:993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:993" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1288" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:993" $at_failed && at_fn_log_failure $at_traceon; } @@ -247039,15 +250274,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1289" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 +printf "%s\n" "$at_srcdir/firewall-cmd.at:993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:993" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1289" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:993" $at_failed && at_fn_log_failure $at_traceon; } @@ -247057,16 +250292,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-lockdown-whitelist-contexts | grep \"system_u:system_r:MadDaemon_t:s0\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1290" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-lockdown-whitelist-contexts | grep "system_u:system_r:MadDaemon_t:s0" +printf "%s\n" "$at_srcdir/firewall-cmd.at:994: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080,1.6.0.0/16 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:994" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=1.2.3.4,tcp:8080,1.6.0.0/16 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1290" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:994" $at_failed && at_fn_log_failure $at_traceon; } @@ -247076,54 +250312,56 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1291" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1291" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1292" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1005: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1005" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1292" +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:ip,port,net +Members: +1.2.3.4,tcp:8080,1.6.0.0/16 +10.10.10.10,sctp:1234,10.10.10.0/24 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1005" $at_failed && at_fn_log_failure $at_traceon; } + fi + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1293: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1293" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1012: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1012" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1293" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1012" $at_failed && at_fn_log_failure $at_traceon; } @@ -247133,16 +250371,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1294" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1013" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1294" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1013" $at_failed && at_fn_log_failure $at_traceon; } @@ -247153,15 +250392,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-contexts | grep \"system_u:system_r:MadDaemon_t:s0\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1295" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-contexts | grep "system_u:system_r:MadDaemon_t:s0" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1013" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1295" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1013" $at_failed && at_fn_log_failure $at_traceon; } @@ -247171,16 +250410,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1296" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1016: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,iface " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1016" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:net,iface ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1296" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1016" $at_failed && at_fn_log_failure $at_traceon; } @@ -247191,15 +250432,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1297" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1017: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1017" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=10.10.10.0/24,foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1297" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1017" $at_failed && at_fn_log_failure $at_traceon; } @@ -247211,15 +250452,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1299" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1018: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1018" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1299" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1018" $at_failed && at_fn_log_failure $at_traceon; } @@ -247230,15 +250471,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1300" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1018: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1018" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1300" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1018" $at_failed && at_fn_log_failure $at_traceon; } @@ -247248,16 +250489,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-lockdown-whitelist-uids | grep \"6666\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1301" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-lockdown-whitelist-uids | grep "6666" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1019: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.0/24,raboof0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1019" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=20.20.20.0/24,raboof0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1301" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1019" $at_failed && at_fn_log_failure $at_traceon; } @@ -247268,15 +250510,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1302" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-uid 6666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1020: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1020" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source=ipset:foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1302" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1020" $at_failed && at_fn_log_failure $at_traceon; } @@ -247286,18 +250528,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1303" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1303" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -247305,35 +250535,52 @@ $at_traceon; } + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666x " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1304" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1043: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1043" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1304" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:net,iface +Members: +10.10.10.0/24,foobar0 +20.20.20.0/24,raboof0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1043" $at_failed && at_fn_log_failure $at_traceon; } + fi + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1305: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1305" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1050: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1050" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1305" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1050" $at_failed && at_fn_log_failure $at_traceon; } @@ -247343,16 +250590,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1306" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1051" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1306" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1051" $at_failed && at_fn_log_failure $at_traceon; } @@ -247363,15 +250611,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-uids | grep \"6666\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1307" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-uids | grep "6666" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1051" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1307" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1051" $at_failed && at_fn_log_failure $at_traceon; } @@ -247381,35 +250629,25 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1308" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-uid 6666 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1308" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1309" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:mac " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:mac ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1309" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" $at_failed && at_fn_log_failure $at_traceon; } @@ -247420,15 +250658,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666x " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1310" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=12:34:56:78:90:ab " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=12:34:56:78:90:ab ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1310" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" $at_failed && at_fn_log_failure $at_traceon; } @@ -247440,15 +250678,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1312" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user theboss +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1312" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" $at_failed && at_fn_log_failure $at_traceon; } @@ -247459,15 +250697,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1313" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1313" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" $at_failed && at_fn_log_failure $at_traceon; } @@ -247477,16 +250715,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1314: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-lockdown-whitelist-users | grep \"theboss\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1314" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-lockdown-whitelist-users | grep "theboss" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=12:34:56:78:90:ac " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=12:34:56:78:90:ac ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1314" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" $at_failed && at_fn_log_failure $at_traceon; } @@ -247497,15 +250736,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1315: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1315" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-user theboss +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-ipset=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1315" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" $at_failed && at_fn_log_failure $at_traceon; } @@ -247515,16 +250754,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1316" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1316" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" $at_failed && at_fn_log_failure $at_traceon; } @@ -247535,15 +250775,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1317" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-user theboss +printf "%s\n" "$at_srcdir/firewall-cmd.at:1053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1053" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1317" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1053" $at_failed && at_fn_log_failure $at_traceon; } @@ -247552,256 +250792,91 @@ $at_traceon; } + else + : - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1318: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1318" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1318" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi + if test x"-e '/ERROR: INVALID_ENTRY: invalid address/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:1061" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ENTRY: invalid address/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1061" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-users | grep \"theboss\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1319" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-lockdown-whitelist-users | grep "theboss" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1319" -$at_failed && at_fn_log_failure -$at_traceon; } + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_247 +#AT_START_248 +at_fn_group_banner 248 'firewall-cmd.at:1063' \ + "user helpers" " " 8 +at_xfail=no +( + printf "%s\n" "248. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1320" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-user theboss -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1320" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1321" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1063" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1321" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - $as_echo "firewall-cmd.at:1323" >"$at_check_line_file" -(test `whoami` != 'root') \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1323" - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user root " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1324" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user root -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1324" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1325: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --lockdown-on " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1325" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --lockdown-on -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1325" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1326: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1326" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1326" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1327: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --lockdown-off " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1327" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --lockdown-off -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1327" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1328: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1328" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1328" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:1329" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1329" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_237 -#AT_START_238 -at_fn_group_banner 238 'firewall-cmd.at:1341' \ - "rich rules good" " " 8 -at_xfail=no -( - $as_echo "238. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1341" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1063" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1063" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1063" $at_failed && at_fn_log_failure $at_traceon; } @@ -247809,15 +250884,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1063" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1063" $at_failed && at_fn_log_failure $at_traceon; } @@ -247859,15 +250934,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1341: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1341" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1063: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1063" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1063" $at_failed && at_fn_log_failure $at_traceon; } @@ -247875,9 +250950,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1341" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1063" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1341" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1063" @@ -247958,8 +251033,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1341" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" + printf "%s\n" "firewall-cmd.at:1063" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -247969,7 +251044,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -247977,8 +251052,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1341" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" + printf "%s\n" "firewall-cmd.at:1063" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" fi echo "$!" > firewalld.pid @@ -247994,10 +251069,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" fi sleep 1 done - $as_echo "firewall-cmd.at:1341" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1063" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" - + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1063" @@ -248007,15 +251081,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1341" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="ah" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1066: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=foo " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1066" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=foo ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 132 $at_status "$at_srcdir/firewall-cmd.at:1066" $at_failed && at_fn_log_failure $at_traceon; } @@ -248026,15 +251100,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="ah" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1067: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=nf_conntrack_foo " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1067" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-helper=foobar --module=nf_conntrack_foo ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1067" $at_failed && at_fn_log_failure $at_traceon; } @@ -248045,15 +251119,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="ah" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1068: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1068" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1068" $at_failed && at_fn_log_failure $at_traceon; } @@ -248064,15 +251138,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="ah" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1069: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1069" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1069" $at_failed && at_fn_log_failure $at_traceon; } @@ -248083,15 +251157,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="ah" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1070: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv5 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1070" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv5 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1070" $at_failed && at_fn_log_failure $at_traceon; } @@ -248102,15 +251176,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="ah" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1071: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1071" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family=ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1071" $at_failed && at_fn_log_failure $at_traceon; } @@ -248121,15 +251195,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="ah" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1072: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1072" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family | grep ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1072" $at_failed && at_fn_log_failure $at_traceon; } @@ -248140,15 +251214,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1344" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="ah" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1073: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family= " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1073" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --set-family= ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1344" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1073" $at_failed && at_fn_log_failure $at_traceon; } @@ -248159,17 +251233,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="esp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1075: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1075" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-family ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +echo >>"$at_stdout"; printf "%s\n" " +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1075" $at_failed && at_fn_log_failure $at_traceon; } @@ -248180,15 +251255,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="esp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1077: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1077" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +echo >>"$at_stdout"; printf "%s\n" " +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1077" $at_failed && at_fn_log_failure $at_traceon; } @@ -248198,35 +251275,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="esp" accept' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="esp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1080: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --add-port=44/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1080" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --add-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1080" $at_failed && at_fn_log_failure $at_traceon; } @@ -248237,15 +251296,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="esp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1081: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports | grep 44 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1081" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports | grep 44 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1081" $at_failed && at_fn_log_failure $at_traceon; } @@ -248256,15 +251315,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="esp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1082: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1082" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1082" $at_failed && at_fn_log_failure $at_traceon; } @@ -248275,15 +251334,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="esp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1083: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --remove-port=44/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1083" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --remove-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1083" $at_failed && at_fn_log_failure $at_traceon; } @@ -248294,15 +251353,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"esp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1345" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="esp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1084: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1084" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --query-port=44/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1345" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1084" $at_failed && at_fn_log_failure $at_traceon; } @@ -248312,18 +251371,18 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="sctp" log' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1085: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1085" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper=foobar --get-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +echo >>"$at_stdout"; printf "%s\n" " +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1085" $at_failed && at_fn_log_failure $at_traceon; } @@ -248334,15 +251393,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="sctp" log' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1087: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --delete-helper=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1087" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --delete-helper=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1087" $at_failed && at_fn_log_failure $at_traceon; } @@ -248353,15 +251412,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="sctp" log' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1088: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1088" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-helpers | grep foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1088" $at_failed && at_fn_log_failure $at_traceon; } @@ -248370,133 +251429,148 @@ $at_traceon; } + if test x"-e '/ERROR: INVALID_MODULE:/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:1089" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_MODULE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1089" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="sctp" log' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1346" -$at_failed && at_fn_log_failure -$at_traceon; } + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_248 +#AT_START_249 +at_fn_group_banner 249 'firewall-cmd.at:1091' \ + "direct" " " 8 +at_xfail=no +( + printf "%s\n" "249. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="sctp" log' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="sctp" log' + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1091" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1091" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="sctp" log' + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1091" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1091" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"sctp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1346" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="sctp" log' + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1091" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1346" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1091" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="igmp" log' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" -$at_failed && at_fn_log_failure -$at_traceon; } - - + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="igmp" log' + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1091: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1091" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1091" $at_failed && at_fn_log_failure $at_traceon; } @@ -248504,58 +251578,93 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="igmp" log' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" -$at_failed && at_fn_log_failure -$at_traceon; } - - + printf "%s\n" "firewall-cmd.at:1091" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1091" + cat >./dbus.conf <<'_ATEOF' - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="igmp" log' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1347" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="igmp" log' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" -$at_failed && at_fn_log_failure -$at_traceon; } + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1091" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" + fi + echo "kill $DBUS_PID" >> ./cleanup_late @@ -248563,38 +251672,43 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="igmp" log' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1091" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:1091" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1091" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="igmp" log' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "firewall-cmd.at:1093" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1093" @@ -248602,15 +251716,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"igmp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="igmp" log' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1095: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1095" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv4 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1347" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1095" $at_failed && at_fn_log_failure $at_traceon; } @@ -248620,18 +251734,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1096: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-chains ipv4 filter | grep mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1096" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-chains ipv4 filter | grep mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1096" $at_failed && at_fn_log_failure $at_traceon; } @@ -248642,15 +251754,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1097: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-chains | grep \"ipv4 filter mychain\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1097" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-chains | grep "ipv4 filter mychain" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1097" $at_failed && at_fn_log_failure $at_traceon; } @@ -248661,15 +251773,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1098: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1098" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1098" $at_failed && at_fn_log_failure $at_traceon; } @@ -248680,15 +251792,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1099: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv5 filter mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1099" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv5 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1099" $at_failed && at_fn_log_failure $at_traceon; } @@ -248699,15 +251811,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain ipv4 badtable mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1100" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain ipv4 badtable mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 108 $at_status "$at_srcdir/firewall-cmd.at:1100" $at_failed && at_fn_log_failure $at_traceon; } @@ -248717,16 +251829,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1102" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1102" $at_failed && at_fn_log_failure $at_traceon; } @@ -248737,15 +251850,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"3 -j ACCEPT\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1103" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "3 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1103" $at_failed && at_fn_log_failure $at_traceon; } @@ -248756,15 +251869,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 filter mychain 3 -j ACCEPT\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1104" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 filter mychain 3 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1348" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1104" $at_failed && at_fn_log_failure $at_traceon; } @@ -248774,18 +251887,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1105" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1105" $at_failed && at_fn_log_failure $at_traceon; } @@ -248796,15 +251907,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter mychain 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1106" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1106" $at_failed && at_fn_log_failure $at_traceon; } @@ -248815,15 +251926,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1107" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1107" $at_failed && at_fn_log_failure $at_traceon; } @@ -248834,15 +251945,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv5 filter mychain 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1108" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv5 filter mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1108" $at_failed && at_fn_log_failure $at_traceon; } @@ -248853,15 +251964,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 badtable mychain 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1109" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 badtable mychain 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 108 $at_status "$at_srcdir/firewall-cmd.at:1109" $at_failed && at_fn_log_failure $at_traceon; } @@ -248871,16 +251982,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1111" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1111" $at_failed && at_fn_log_failure $at_traceon; } @@ -248891,15 +252003,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1112" $at_failed && at_fn_log_failure $at_traceon; } @@ -248910,15 +252022,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1113" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1349" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1113" $at_failed && at_fn_log_failure $at_traceon; } @@ -248928,18 +252040,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1114" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1114" $at_failed && at_fn_log_failure $at_traceon; } @@ -248950,15 +252060,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"3 -s 192.168.1.1 -j ACCEPT\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1115" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "3 -s 192.168.1.1 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1115" $at_failed && at_fn_log_failure $at_traceon; } @@ -248969,15 +252079,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"4 -s 192.168.1.2 -j ACCEPT\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "4 -s 192.168.1.2 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1116" $at_failed && at_fn_log_failure $at_traceon; } @@ -248988,15 +252098,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"5 -s 192.168.1.3 -j ACCEPT\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1117" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "5 -s 192.168.1.3 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1117" $at_failed && at_fn_log_failure $at_traceon; } @@ -249007,15 +252117,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep \"6 -s 192.168.1.4 -j ACCEPT\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1118" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-rules ipv4 filter mychain | grep "6 -s 192.168.1.4 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1118" $at_failed && at_fn_log_failure $at_traceon; } @@ -249026,15 +252136,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules ipv4 filter mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1119" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rules ipv4 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1119" $at_failed && at_fn_log_failure $at_traceon; } @@ -249045,15 +252155,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1120" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 3 -s 192.168.1.1 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1120" $at_failed && at_fn_log_failure $at_traceon; } @@ -249064,15 +252174,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1350" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1121" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 4 -s 192.168.1.2 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1350" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1121" $at_failed && at_fn_log_failure $at_traceon; } @@ -249082,18 +252192,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1122" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 5 -s 192.168.1.3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1122" $at_failed && at_fn_log_failure $at_traceon; } @@ -249104,15 +252212,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1123" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-rule ipv4 filter mychain 6 -s 192.168.1.4 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1123" $at_failed && at_fn_log_failure $at_traceon; } @@ -249122,16 +252230,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv5 filter mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1125" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv5 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1125" $at_failed && at_fn_log_failure $at_traceon; } @@ -249142,15 +252251,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 badtable mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1126" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 badtable mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 108 $at_status "$at_srcdir/firewall-cmd.at:1126" $at_failed && at_fn_log_failure $at_traceon; } @@ -249161,15 +252270,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1127" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1127" $at_failed && at_fn_log_failure $at_traceon; } @@ -249180,15 +252289,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1128: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1128" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-chain ipv4 filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1128" $at_failed && at_fn_log_failure $at_traceon; } @@ -249199,15 +252308,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1129" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-chain ipv4 filter dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1129" $at_failed && at_fn_log_failure $at_traceon; } @@ -249217,16 +252326,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1132" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1351" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1132" $at_failed && at_fn_log_failure $at_traceon; } @@ -249236,18 +252346,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --list-all " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1133" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1133" $at_failed && at_fn_log_failure $at_traceon; } @@ -249258,15 +252366,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-services " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1134" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1134" $at_failed && at_fn_log_failure $at_traceon; } @@ -249277,15 +252385,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-default-zone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1135" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-default-zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1135" $at_failed && at_fn_log_failure $at_traceon; } @@ -249296,15 +252404,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --zone=home --list-services " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1136" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --zone=home --list-services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1136" $at_failed && at_fn_log_failure $at_traceon; } @@ -249315,15 +252423,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1137: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --permanent --list-all " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1137" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --permanent --list-all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1137" $at_failed && at_fn_log_failure $at_traceon; } @@ -249333,16 +252441,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-chain ipv4 filter žluťoučký " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1140" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1140" $at_failed && at_fn_log_failure $at_traceon; } @@ -249353,15 +252462,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-chains ipv4 filter |grep \"žluťoučký\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1141" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-chains ipv4 filter |grep "žluťoučký" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1141" $at_failed && at_fn_log_failure $at_traceon; } @@ -249372,15 +252481,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1352" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-chains | grep \"ipv4 filter žluťoučký\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1142" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-chains | grep "ipv4 filter žluťoučký" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1352" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1142" $at_failed && at_fn_log_failure $at_traceon; } @@ -249390,18 +252499,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1143" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1143" $at_failed && at_fn_log_failure $at_traceon; } @@ -249412,15 +252519,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter žluťoučký 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1144" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1144" $at_failed && at_fn_log_failure $at_traceon; } @@ -249431,15 +252538,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-rules ipv4 filter žluťoučký | grep ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1145" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-rules ipv4 filter žluťoučký | grep ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1145" $at_failed && at_fn_log_failure $at_traceon; } @@ -249450,15 +252557,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 filter žluťoučký 3 -j ACCEPT\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1146" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep "ipv4 filter žluťoučký 3 -j ACCEPT" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1146" $at_failed && at_fn_log_failure $at_traceon; } @@ -249469,15 +252576,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1147" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1147" $at_failed && at_fn_log_failure $at_traceon; } @@ -249488,15 +252595,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 filter žluťoučký 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1148" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1148" $at_failed && at_fn_log_failure $at_traceon; } @@ -249507,15 +252614,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1149" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-rule ipv4 filter žluťoučký 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1149" $at_failed && at_fn_log_failure $at_traceon; } @@ -249526,15 +252633,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-chain ipv4 filter žluťoučký " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1150" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1353" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1150" $at_failed && at_fn_log_failure $at_traceon; } @@ -249544,25 +252651,16 @@ $at_traceon; } - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1151" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-chain ipv4 filter žluťoučký ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1151" $at_failed && at_fn_log_failure $at_traceon; } @@ -249572,16 +252670,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1154" $at_failed && at_fn_log_failure $at_traceon; } @@ -249592,15 +252691,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter FORWARD_direct 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1155" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter FORWARD_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1155" $at_failed && at_fn_log_failure $at_traceon; } @@ -249611,15 +252710,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1156: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 security INPUT_direct 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1156" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 security INPUT_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1156" $at_failed && at_fn_log_failure $at_traceon; } @@ -249630,15 +252729,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 raw PREROUTING_direct 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1157" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 raw PREROUTING_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1157" $at_failed && at_fn_log_failure $at_traceon; } @@ -249649,15 +252748,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 mangle PREROUTING_direct 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1158" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 mangle PREROUTING_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1158" $at_failed && at_fn_log_failure $at_traceon; } @@ -249668,15 +252767,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 nat PREROUTING_direct 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1159" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 nat PREROUTING_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1159" $at_failed && at_fn_log_failure $at_traceon; } @@ -249687,15 +252786,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1160" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT_direct 3 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1160" $at_failed && at_fn_log_failure $at_traceon; } @@ -249706,17 +252805,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1161" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1161" $at_failed && at_fn_log_failure $at_traceon; } @@ -249727,15 +252825,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1161" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1161" $at_failed && at_fn_log_failure $at_traceon; } @@ -249745,132 +252843,148 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"-e '/ERROR: INVALID_TABLE:/d' -e '/WARNING: NOT_ENABLED: chain/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:1162" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_TABLE:/d' -e '/WARNING: NOT_ENABLED: chain/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1162" + fi + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_249 +#AT_START_250 +at_fn_group_banner 250 'firewall-cmd.at:1165' \ + "direct nat" " " 8 +at_xfail=no +( + printf "%s\n" "250. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1165" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1165" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1165" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1165" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1165" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1165" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } - - + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1165: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1165" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1165" $at_failed && at_fn_log_failure $at_traceon; } @@ -249878,115 +252992,142 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } - + printf "%s\n" "firewall-cmd.at:1165" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1165" + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } - - + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1165" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1165" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:1165" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1165" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "firewall-cmd.at:1168" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1168" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -249995,15 +253136,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1173" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1173" $at_failed && at_fn_log_failure $at_traceon; } @@ -250013,18 +253154,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1174" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1174" $at_failed && at_fn_log_failure $at_traceon; } @@ -250035,15 +253174,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1175: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1175" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1175" $at_failed && at_fn_log_failure $at_traceon; } @@ -250054,15 +253193,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1176" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1176" $at_failed && at_fn_log_failure $at_traceon; } @@ -250073,15 +253212,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1177" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1177" $at_failed && at_fn_log_failure $at_traceon; } @@ -250092,15 +253231,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1178: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1178" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1178" $at_failed && at_fn_log_failure $at_traceon; } @@ -250111,15 +253250,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1179: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1179" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1179" $at_failed && at_fn_log_failure $at_traceon; } @@ -250130,15 +253269,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1180" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1180" $at_failed && at_fn_log_failure $at_traceon; } @@ -250149,15 +253288,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules |grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1181" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules |grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 81" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1181" $at_failed && at_fn_log_failure $at_traceon; } @@ -250167,18 +253306,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1182" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1182" $at_failed && at_fn_log_failure $at_traceon; } @@ -250189,15 +253326,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1183" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-rule ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1183" $at_failed && at_fn_log_failure $at_traceon; } @@ -250208,15 +253345,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1184" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1184" $at_failed && at_fn_log_failure $at_traceon; } @@ -250227,15 +253364,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-rules | grep \"ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1185" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-rules | grep "ipv4 nat OUTPUT 0 -s 1.2.3.4 -d 1.2.3.4 -p tcp --dport 80 -j REDIRECT --to-ports 82" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1185" $at_failed && at_fn_log_failure $at_traceon; } @@ -250245,132 +253382,149 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:1188" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1188" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_250 +#AT_START_251 +at_fn_group_banner 251 'firewall-cmd.at:1190' \ + "direct passthrough" " " 8 +at_xfail=no +( + printf "%s\n" "251. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1190" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1190" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1190" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1190" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" masquerade' + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1190" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1190" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" masquerade' + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1190: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1190" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1190" $at_failed && at_fn_log_failure $at_traceon; } @@ -250378,39 +253532,93 @@ $at_traceon; } + printf "%s\n" "firewall-cmd.at:1190" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1190" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1190" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" + fi + echo "kill $DBUS_PID" >> ./cleanup_late @@ -250418,38 +253626,43 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1190" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:1190" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1190" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1354" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "firewall-cmd.at:1192" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1192" @@ -250457,15 +253670,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1194: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --append POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1194" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --append POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1194" $at_failed && at_fn_log_failure $at_traceon; } @@ -250474,27 +253687,17 @@ $at_traceon; } - else - : - - fi - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1195: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --delete POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1195" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 --table mangle --delete POSTROUTING --out-interface dummy0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1195" $at_failed && at_fn_log_failure $at_traceon; } @@ -250504,16 +253707,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1197" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1197" $at_failed && at_fn_log_failure $at_traceon; } @@ -250524,15 +253728,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1198: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1198" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1198" $at_failed && at_fn_log_failure $at_traceon; } @@ -250543,15 +253747,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1199: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1199" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1199" $at_failed && at_fn_log_failure $at_traceon; } @@ -250562,15 +253766,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1200: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1200" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1200" $at_failed && at_fn_log_failure $at_traceon; } @@ -250581,15 +253785,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1201" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv7 --table filter -A INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1201" $at_failed && at_fn_log_failure $at_traceon; } @@ -250600,15 +253804,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1202" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1202" $at_failed && at_fn_log_failure $at_traceon; } @@ -250619,15 +253823,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1362" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1203" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --query-passthrough ipv4 --table filter --append INPUT --in-interface dummy0 --protocol tcp --destination-port 67 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1362" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1203" $at_failed && at_fn_log_failure $at_traceon; } @@ -250636,19 +253840,22 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-passthrough ipv6 --table filter --append FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-passthrough ipv6 --table filter --append FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1205" $at_failed && at_fn_log_failure $at_traceon; } @@ -250659,15 +253866,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-passthroughs ipv6 | grep \"fd00:dead:beef:ff0::/64\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-passthroughs ipv6 | grep "fd00:dead:beef:ff0::/64" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1205" $at_failed && at_fn_log_failure $at_traceon; } @@ -250678,15 +253885,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-all-passthroughs | grep \"fd00:dead:beef:ff0::/64\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-all-passthroughs | grep "fd00:dead:beef:ff0::/64" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1205" $at_failed && at_fn_log_failure $at_traceon; } @@ -250697,15 +253904,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -nvL | grep \"fd00:dead:beef:ff0::/64\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -nvL | grep "fd00:dead:beef:ff0::/64" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1205" $at_failed && at_fn_log_failure $at_traceon; } @@ -250716,15 +253923,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1205: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv6 --table filter --delete FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1205" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-passthrough ipv6 --table filter --delete FORWARD --destination fd00:dead:beef:ff0::/64 --in-interface dummy0 --out-interface dummy0 --jump ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1205" $at_failed && at_fn_log_failure $at_traceon; } @@ -250732,37 +253939,25 @@ $at_traceon; } + else + : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" -$at_failed && at_fn_log_failure -$at_traceon; } - - + fi { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1213: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv5 -nvL " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1213" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv5 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1213" $at_failed && at_fn_log_failure $at_traceon; } @@ -250773,15 +253968,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1363" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1214" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1363" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1214" $at_failed && at_fn_log_failure $at_traceon; } @@ -250792,17 +253987,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1216: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough --get-chains ipv4 filter " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1216" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough --get-chains ipv4 filter ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1216" $at_failed && at_fn_log_failure $at_traceon; } @@ -250812,16 +254006,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1218" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1218" $at_failed && at_fn_log_failure $at_traceon; } @@ -250832,15 +254027,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1219: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv5 -nvL " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1219" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv5 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:1219" $at_failed && at_fn_log_failure $at_traceon; } @@ -250851,15 +254046,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 -nvL " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1220" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1220" $at_failed && at_fn_log_failure $at_traceon; } @@ -250870,15 +254065,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-passthroughs ipv4 | grep \"[-]nvL\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1221" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-passthroughs ipv4 | grep "[-]nvL" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1221" $at_failed && at_fn_log_failure $at_traceon; } @@ -250889,15 +254084,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-all-passthroughs | grep \"ipv4 [-]nvL\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1222" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-all-passthroughs | grep "ipv4 [-]nvL" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1222" $at_failed && at_fn_log_failure $at_traceon; } @@ -250908,15 +254103,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1223" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1223" $at_failed && at_fn_log_failure $at_traceon; } @@ -250927,15 +254122,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1364" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --remove-passthrough ipv4 -nvL " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1224" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --remove-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1364" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1224" $at_failed && at_fn_log_failure $at_traceon; } @@ -250945,18 +254140,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1225" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --query-passthrough ipv4 -nvL ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1225" $at_failed && at_fn_log_failure $at_traceon; } @@ -250965,131 +254158,148 @@ $at_traceon; } + if test x"-e '/WARNING: NOT_ENABLED: passthrough/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:1226" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: NOT_ENABLED: passthrough/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1226" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" -$at_failed && at_fn_log_failure -$at_traceon; } + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_251 +#AT_START_252 +at_fn_group_banner 252 'firewall-cmd.at:1228' \ + "direct ebtables" " " 8 +at_xfail=no +( + printf "%s\n" "252. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1228" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1228" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1228" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1228" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1228" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1228" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1365" -$at_failed && at_fn_log_failure -$at_traceon; } + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1365: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1365" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1228: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1228" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1365" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1228" $at_failed && at_fn_log_failure $at_traceon; } @@ -251097,41 +254307,93 @@ $at_traceon; } + printf "%s\n" "firewall-cmd.at:1228" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1228" + + cat >./dbus.conf <<'_ATEOF' - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" -$at_failed && at_fn_log_failure -$at_traceon; } + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1228" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" + fi + echo "kill $DBUS_PID" >> ./cleanup_late @@ -251139,38 +254401,43 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1228" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:1228" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1228" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1366" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "firewall-cmd.at:1230" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1230" @@ -251178,15 +254445,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1232: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-chain eb filter mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1232" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-chain eb filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1232" $at_failed && at_fn_log_failure $at_traceon; } @@ -251197,15 +254464,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1233: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --get-chains eb filter | grep mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1233" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --get-chains eb filter | grep mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1233" $at_failed && at_fn_log_failure $at_traceon; } @@ -251216,15 +254483,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1234" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1234" $at_failed && at_fn_log_failure $at_traceon; } @@ -251235,15 +254502,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1366" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 999 -p IPv6 --ip6-protocol UDP --ip6-source-port ! 12345 -j DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1235" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter mychain 999 -p IPv6 --ip6-protocol UDP --ip6-source-port ! 12345 -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1366" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1235" $at_failed && at_fn_log_failure $at_traceon; } @@ -251253,18 +254520,26 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L mychain; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1236" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L mychain; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +echo >>"$at_stdout"; printf "%s\n" "-p IPv6 -j DROP +-p IPv6 --ip6-proto udp ! --ip6-sport 12345 -j DROP +-j RETURN +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1236" $at_failed && at_fn_log_failure $at_traceon; } @@ -251275,15 +254550,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule eb filter mychain 1 -p 0x86dd -j DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1241" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule eb filter mychain 1 -p 0x86dd -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1241" $at_failed && at_fn_log_failure $at_traceon; } @@ -251294,15 +254569,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L mychain; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1242" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L mychain; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +echo >>"$at_stdout"; printf "%s\n" "-p IPv6 --ip6-proto udp ! --ip6-sport 12345 -j DROP +-j RETURN +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1242" $at_failed && at_fn_log_failure $at_traceon; } @@ -251312,16 +254596,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1247: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT 1 -p 0x86dd -j DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1247" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT 1 -p 0x86dd -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1247" $at_failed && at_fn_log_failure $at_traceon; } @@ -251332,15 +254617,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT_direct 1 -p 0x86dd -j DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1248" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule eb filter INPUT_direct 1 -p 0x86dd -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1248" $at_failed && at_fn_log_failure $at_traceon; } @@ -251351,15 +254636,25 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L INPUT_direct; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1249" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L INPUT_direct; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +echo >>"$at_stdout"; printf "%s\n" "-p IPv6 -j DROP +-p IPv6 -j DROP +-j RETURN +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1249" $at_failed && at_fn_log_failure $at_traceon; } @@ -251369,16 +254664,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules eb filter INPUT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1261" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rules eb filter INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1261" $at_failed && at_fn_log_failure $at_traceon; } @@ -251389,15 +254686,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1367" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rules eb filter mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1262" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rules eb filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1367" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1262" $at_failed && at_fn_log_failure $at_traceon; } @@ -251408,17 +254705,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-chain eb filter mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1264" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-chain eb filter mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1264" $at_failed && at_fn_log_failure $at_traceon; } @@ -251429,15 +254725,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1265: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --get-chains eb filter | grep mychain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1265" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --get-chains eb filter | grep mychain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1265" $at_failed && at_fn_log_failure $at_traceon; } @@ -251448,15 +254744,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1266: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1266" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --direct --add-rule eb filter mychain 1 -p 0x86dd -j DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1266" $at_failed && at_fn_log_failure $at_traceon; } @@ -251466,16 +254762,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1267" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1267" $at_failed && at_fn_log_failure $at_traceon; } @@ -251486,15 +254783,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1267" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1267" $at_failed && at_fn_log_failure $at_traceon; } @@ -251504,16 +254801,26 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1268: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$EBTABLES --concurrent -t filter -L mychain; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^Bridge\" | sed -e 's/\\([-][-][-a-zA-Z0-9]\\+\\)[ ]\\+[!]/! \\1/g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1268" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $EBTABLES --concurrent -t filter -L mychain; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^Bridge" | sed -e 's/\([-][-][-a-zA-Z0-9]\+\)[ ]\+[!]/! \1/g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" +echo >>"$at_stdout"; printf "%s\n" "-p IPv6 -j DROP +-j RETURN +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1268" $at_failed && at_fn_log_failure $at_traceon; } @@ -251522,64 +254829,148 @@ $at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:1272" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1272" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1368" -$at_failed && at_fn_log_failure -$at_traceon; } + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_252 +#AT_START_253 +at_fn_group_banner 253 'firewall-cmd.at:1274' \ + "lockdown" " " 8 +at_xfail=no +( + printf "%s\n" "253. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1368" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1274" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1368" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1274" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1274" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1274" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1274" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1274" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } - if $IP6TABLES -L >/dev/null 2>&1; then - : + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1274: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1274" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1274" $at_failed && at_fn_log_failure $at_traceon; } @@ -251587,39 +254978,93 @@ $at_traceon; } + printf "%s\n" "firewall-cmd.at:1274" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1274" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" -$at_failed && at_fn_log_failure -$at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" -$at_failed && at_fn_log_failure -$at_traceon; } + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1274" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1274" + fi + echo "kill $DBUS_PID" >> ./cleanup_late @@ -251627,18 +255072,35 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1369" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1274" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1274" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:1274" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1274" + @@ -251647,15 +255109,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1277" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1277" $at_failed && at_fn_log_failure $at_traceon; } @@ -251666,15 +255130,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1279" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1279" $at_failed && at_fn_log_failure $at_traceon; } @@ -251685,15 +255151,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1281" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1281" $at_failed && at_fn_log_failure $at_traceon; } @@ -251704,15 +255172,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1283" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1283" $at_failed && at_fn_log_failure $at_traceon; } @@ -251722,18 +255192,18 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1285" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1285" $at_failed && at_fn_log_failure $at_traceon; } @@ -251744,15 +255214,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1287" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1287" $at_failed && at_fn_log_failure $at_traceon; } @@ -251763,15 +255235,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1289" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1289" $at_failed && at_fn_log_failure $at_traceon; } @@ -251782,15 +255256,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1291" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-command /usr/bin/command ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1291" $at_failed && at_fn_log_failure $at_traceon; } @@ -251800,16 +255276,19 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1294" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1294" $at_failed && at_fn_log_failure $at_traceon; } @@ -251820,15 +255299,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1296" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1296" $at_failed && at_fn_log_failure $at_traceon; } @@ -251839,15 +255320,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1298: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1298" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1298" $at_failed && at_fn_log_failure $at_traceon; } @@ -251858,15 +255341,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1300" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1369" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1300" $at_failed && at_fn_log_failure $at_traceon; } @@ -251875,10 +255360,21 @@ $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1302" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1302" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -251887,15 +255383,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1304" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1304" $at_failed && at_fn_log_failure $at_traceon; } @@ -251906,15 +255404,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1306" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1306" $at_failed && at_fn_log_failure $at_traceon; } @@ -251925,15 +255425,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1308" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-context system_u:system_r:MadDaemon_t:s0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1308" $at_failed && at_fn_log_failure $at_traceon; } @@ -251943,16 +255445,19 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1311: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1311" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1373" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1311" $at_failed && at_fn_log_failure $at_traceon; } @@ -251963,15 +255468,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1313" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1313" $at_failed && at_fn_log_failure $at_traceon; } @@ -251982,15 +255489,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1315: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1315" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1315" $at_failed && at_fn_log_failure $at_traceon; } @@ -252001,15 +255510,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1317" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1317" $at_failed && at_fn_log_failure $at_traceon; } @@ -252020,15 +255531,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666x " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1319" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-uid 6666x ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1373" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1319" $at_failed && at_fn_log_failure $at_traceon; } @@ -252038,147 +255549,121 @@ $at_traceon; } - if test x"-e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1374" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1374" - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1320" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1320" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_238 -#AT_START_239 -at_fn_group_banner 239 'firewall-cmd.at:1375' \ - "rich rules audit" " " 8 -at_xfail=no -( - $as_echo "239. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1322: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1322" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1322" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1324" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1324" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1375" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1375" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1326: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1326" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-uid 6666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1326" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1328: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666x " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1328" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-uid 6666x +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/firewall-cmd.at:1328" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1375: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1329: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1329" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1329" $at_failed && at_fn_log_failure $at_traceon; } @@ -252186,93 +255671,43 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1375" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1375" - - - - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1331: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1331" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1331" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "firewall-cmd.at:1375" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1375" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1333" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-lockdown-whitelist-user theboss +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1333" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -252280,39 +255715,41 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1375" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1335" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown-whitelist-user theboss +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1335" +$at_failed && at_fn_log_failure +$at_traceon; } - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:1375" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1375" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:1375" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1375" + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1337" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-lockdown-whitelist-user theboss +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1337" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -252321,15 +255758,17 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1375" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service name="ftp" audit limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1339: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1339" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1339" $at_failed && at_fn_log_failure $at_traceon; } @@ -252340,15 +255779,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1341: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1341" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1341" $at_failed && at_fn_log_failure $at_traceon; } @@ -252359,15 +255800,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule service name="ftp" audit limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1343: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1343" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-lockdown-whitelist-user theboss ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1343" $at_failed && at_fn_log_failure $at_traceon; } @@ -252375,18 +255818,24 @@ $at_traceon; } + printf "%s\n" "firewall-cmd.at:1346" >"$at_check_line_file" +(test `whoami` != 'root') \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1346" + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user root " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1347" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-lockdown-whitelist-user root ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1379" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1347" $at_failed && at_fn_log_failure $at_traceon; } @@ -252397,15 +255846,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name="ftp" audit limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --lockdown-on " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1349" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --lockdown-on ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1349" $at_failed && at_fn_log_failure $at_traceon; } @@ -252416,15 +255867,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1351: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1351" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1351" $at_failed && at_fn_log_failure $at_traceon; } @@ -252435,15 +255888,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule service name="ftp" audit limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1353: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --lockdown-off " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1353" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --lockdown-off ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1353" $at_failed && at_fn_log_failure $at_traceon; } @@ -252454,15 +255909,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-lockdown " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1355" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-lockdown ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1379" +echo >>"$at_stderr"; printf "%s\n" "Lockdown feature is deprecated and removed. +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1355" $at_failed && at_fn_log_failure $at_traceon; } @@ -252471,11 +255928,10 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "firewall-cmd.at:1380" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1357" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1380" + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1357" fi @@ -252484,13 +255940,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_239 -#AT_START_240 -at_fn_group_banner 240 'firewall-cmd.at:1383' \ - "rich rules priority" " " 8 +#AT_STOP_253 +#AT_START_254 +at_fn_group_banner 254 'firewall-cmd.at:1369' \ + "rich rules good" " " 8 at_xfail=no ( - $as_echo "240. $at_setup_line: testing $at_desc ..." + printf "%s\n" "254. $at_setup_line: testing $at_desc ..." $at_traceon @@ -252508,6 +255964,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -252524,29 +255981,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1369" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } @@ -252554,15 +256011,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1369" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } @@ -252604,15 +256061,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1383: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1383" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1369: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1369" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1383" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1369" $at_failed && at_fn_log_failure $at_traceon; } @@ -252620,9 +256077,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1383" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1369" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1383" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1369" @@ -252703,8 +256160,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1383" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" + printf "%s\n" "firewall-cmd.at:1369" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1369" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -252714,7 +256171,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -252722,8 +256179,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1383" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" + printf "%s\n" "firewall-cmd.at:1369" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1369" fi echo "$!" > firewalld.pid @@ -252739,13 +256196,9 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" fi sleep 1 done - $as_echo "firewall-cmd.at:1383" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1369" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" - - - - + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1369" @@ -252755,6 +256208,18 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="ah" reject' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -252763,28 +256228,15 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1383" { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1412: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1412" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_public_pre 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public_log 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public_deny 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public_allow 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public_post 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1412" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -252794,32 +256246,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1420: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_public; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1420" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_public; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_public_pre 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public_log 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public_deny 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public_allow 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public_post 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1420" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } @@ -252829,91 +256265,94 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="ah" reject' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1372" +$at_failed && at_fn_log_failure +$at_traceon; } + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1427: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1427" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_public_pre 0 -- ::/0 ::/0 -IN_public_log 0 -- ::/0 ::/0 -IN_public_deny 0 -- ::/0 ::/0 -IN_public_allow 0 -- ::/0 ::/0 -IN_public_post 0 -- ::/0 ::/0 -ACCEPT 58 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1427" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="ah" reject' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1435: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_public; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1435" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_public; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="ah" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_public_pre 0 -- ::/0 ::/0 -FWD_public_log 0 -- ::/0 ::/0 -FWD_public_deny 0 -- ::/0 ::/0 -FWD_public_allow 0 -- ::/0 ::/0 -FWD_public_post 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1435" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1372" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1372: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1372" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="ah" reject' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1372" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -252924,15 +256363,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1448: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"1111\" protocol=\"tcp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1448" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule port port="1111" protocol="tcp" log' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1448" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -252943,15 +256382,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1449: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port=\"1122\" protocol=\"tcp\" audit accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1449" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port="1122" protocol="tcp" audit accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1449" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -252962,15 +256401,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1450: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"2222\" protocol=\"tcp\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1450" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule port port="2222" protocol="tcp" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1450" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -252981,15 +256420,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1451: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"3333\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1451" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule port port="3333" protocol="tcp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1451" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -253000,15 +256439,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1452: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port=\"4444\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1452" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port="4444" protocol="tcp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1452" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -253018,10 +256457,18 @@ $at_traceon; } - - - - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="esp" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -253030,24 +256477,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1479: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1479" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1111 LOG flags 0 level 4 -AUDIT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1122 AUDIT accept -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1479" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -253057,28 +256495,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1483: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1483" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"esp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1373" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="esp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DROP 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2222 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1483" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1373" $at_failed && at_fn_log_failure $at_traceon; } @@ -253090,29 +256516,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1486: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1486" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1122 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3333 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1486" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } @@ -253122,128 +256535,132 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="sctp" log' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1492: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1492" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 6 -- ::/0 ::/0 tcp dpt:1111 LOG flags 0 level 4 -AUDIT 6 -- ::/0 ::/0 tcp dpt:1122 AUDIT accept -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1492" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="sctp" log' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1374" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1496: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1496" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DROP 6 -- ::/0 ::/0 tcp dpt:2222 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1496" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="sctp" log' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1499: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1499" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="sctp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:1122 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:3333 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1499" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1374" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"sctp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1374" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="sctp" log' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1374" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -253254,15 +256671,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1506: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1506" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1506" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -253273,15 +256690,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1506: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1506" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1506" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -253291,18 +256708,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1509: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32768 port port=\"1234\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1509" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32768 port port="1234" protocol="tcp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1509" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -253313,15 +256728,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1510: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32767 port port=\"1234\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1510" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32767 port port="1234" protocol="tcp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1510" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -253332,15 +256747,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1511: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32769 port port=\"1234\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1511" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32769 port port="1234" protocol="tcp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/firewall-cmd.at:1511" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -253351,15 +256766,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1512: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32768 port port=\"1234\" protocol=\"tcp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1512" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32768 port port="1234" protocol="tcp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/firewall-cmd.at:1512" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -253369,17 +256784,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1513" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1513" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -253390,15 +256804,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1513" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:1375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value=\"igmp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1375" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule protocol value="igmp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1513" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1375" $at_failed && at_fn_log_failure $at_traceon; } @@ -253410,17 +256824,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1517: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1517" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1517" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -253431,15 +256844,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1518: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1518" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1518" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -253449,29 +256862,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1526: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1526" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DROP 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1526" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -253481,59 +256881,54 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1376" +$at_failed && at_fn_log_failure +$at_traceon; } + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1529: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1529" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DROP 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1529" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1532: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1532" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=127 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1532" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -253544,15 +256939,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1533: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1533" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1533" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -253563,15 +256958,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1534: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1534" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=127 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"tftp\" log prefix=\"tftp: \" level=\"info\" limit value=\"1/m\" burst=5 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="tftp" log prefix="tftp: " level="info" limit value="1/m" burst=5 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1534" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1376" $at_failed && at_fn_log_failure $at_traceon; } @@ -253581,16 +256976,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1535: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1535" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1535" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -253601,15 +256998,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1536: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1536" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule priority=127 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1536" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -253620,15 +257017,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1537: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1537" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1537" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -253638,17 +257035,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1540" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1540" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -253659,15 +257055,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1541: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1541" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1541" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -253678,15 +257074,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1542: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule log prefix=\"foobar: \"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1542" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule log prefix="foobar: "' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1542" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -253696,17 +257092,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1543: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1543" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1543" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -253717,15 +257112,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1543: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1543" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:1377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"dns\" log prefix=\"dns: \" level=\"info\" limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1377" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="dns" log prefix="dns: " level="info" limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1543" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1377" $at_failed && at_fn_log_failure $at_traceon; } @@ -253738,15 +257133,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"10.10.0.0/16\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1546" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="10.10.0.0/16" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1546" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -253757,15 +257152,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1547: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 source address=\"10.1.1.0/24\" masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1547" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-10 source address="10.1.1.0/24" masquerade' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1547" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -253776,15 +257171,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1548: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-1 source address=\"10.1.0.0/16\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1548" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-1 source address="10.1.0.0/16" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1548" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -253795,15 +257190,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1550: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=0 forward-port port=\"222\" protocol=\"tcp\" to-port=\"22\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1550" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=0 forward-port port="222" protocol="tcp" to-port="22"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1550" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -253814,15 +257209,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1551: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=0 forward-port port=\"2222\" protocol=\"tcp\" to-port=\"22\" to-addr=\"10.1.1.1\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1551" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=0 forward-port port="2222" protocol="tcp" to-port="22" to-addr="10.1.1.1"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1551" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -253833,15 +257228,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1552: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 forward-port port=\"8888\" protocol=\"tcp\" to-port=\"80\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1552" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-10 forward-port port="8888" protocol="tcp" to-port="80"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1552" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -253852,15 +257247,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1553: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 forward-port port=\"8080\" protocol=\"tcp\" to-port=\"80\" to-addr=\"10.1.1.1\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1553" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-10 forward-port port="8080" protocol="tcp" to-port="80" to-addr="10.1.1.1"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1553" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1378" $at_failed && at_fn_log_failure $at_traceon; } @@ -253870,23 +257265,37 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" service name=\"irc\" nflog prefix=\"irc: \" group=1000 queue-size=10 limit value=\"1/m\" burst=\"5\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" service name="irc" nflog prefix="irc: " group=1000 queue-size=10 limit value="1/m" burst="5" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1378" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=0 forward-port port=\"9090\" protocol=\"tcp\" to-port=\"90\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1554" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" priority=0 forward-port port="9090" protocol="tcp" to-port="90"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1554" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -253897,15 +257306,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=-123 forward-port port=\"999\" protocol=\"tcp\" to-port=\"99\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1554" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" priority=-123 forward-port port="999" protocol="tcp" to-port="99"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1554" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -253916,15 +257325,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=-123 forward-port port=\"9999\" protocol=\"tcp\" to-port=\"9999\" to-addr=\"1234::4321\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1554" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" priority=-123 forward-port port="9999" protocol="tcp" to-port="9999" to-addr="1234::4321"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1554" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" $at_failed && at_fn_log_failure $at_traceon; } @@ -253932,14 +257341,20 @@ $at_traceon; } - else - : - - fi - - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1379" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -253947,6 +257362,18 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -253954,6 +257381,18 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -253961,6 +257400,18 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1379" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -253968,6 +257419,18 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source not address=\"192.168.0.0/24\" service name=\"mysql\" nflog prefix=\"mysql: \" queue-size=100 limit value=\"2/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1379" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source not address="192.168.0.0/24" service name="mysql" nflog prefix="mysql: " queue-size=100 limit value="2/m" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1379" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -253978,23 +257441,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1643: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1643" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DROP 0 -- 10.1.0.0/16 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1643" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -254004,28 +257459,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1646: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1646" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1646" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -254035,26 +257478,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1649: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1649" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1649" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -254064,26 +257497,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1651: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1651" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1651" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -254093,29 +257516,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1653: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PRE_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1653" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PRE_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8888 to::80 -DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8080 to:10.1.1.1:80 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1653" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -254125,29 +257535,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1657: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1657" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:222 to::22 -DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2222 to:10.1.1.1:22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1657" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -254157,28 +257554,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1661: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POST_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1661" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POST_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MASQUERADE 0 -- 10.1.1.0/24 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1661" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -254188,28 +257573,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1664: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POST_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1664" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POST_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"2222\" protocol=\"tcp\" nflog prefix=\"port-2222: \" queue-size=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1380" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="2222" protocol="tcp" nflog prefix="port-2222: " queue-size=0 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MASQUERADE 0 -- 10.10.0.0/16 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1664" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1380" $at_failed && at_fn_log_failure $at_traceon; } @@ -254221,24 +257594,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1667: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PRE_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1667" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PRE_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1667" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -254248,26 +257613,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1669" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1669" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } @@ -254277,284 +257632,274 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" +$at_failed && at_fn_log_failure +$at_traceon; } + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1671: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1671" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1671" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1673: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1673" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1673" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1381" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1677: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1677" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"3333\" protocol=\"udp\" nflog prefix=\"port-3333: \" queue-size=65535 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1381" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1677" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1381" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + if $IP6TABLES -L >/dev/null 2>&1; then + : - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1679: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1679" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1679" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1681: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PRE_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1681" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PRE_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- ::/0 ::/0 tcp dpt:999 to::99 -DNAT 6 -- ::/0 ::/0 tcp dpt:9999 to:[1234::4321]:9999 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1681" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1685: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1685" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- ::/0 ::/0 tcp dpt:9090 to::90 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1685" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1688: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PRE_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1688" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PRE_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1688" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" service name=\"radius\" log prefix=\"dns -- \" level=\"info\" limit value=\"3/m\" reject type=\"icmp6-addr-unreachable\" limit value=\"20/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" service name="radius" log prefix="dns -- " level="info" limit value="3/m" reject type="icmp6-addr-unreachable" limit value="20/m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -254562,38 +257907,40 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1690: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1690" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1690" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -254601,15 +257948,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1692" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1692" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254620,15 +257967,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1692" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1692" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254638,18 +257985,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1695: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-block name=\"destination-unreachable\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1695" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-block name="destination-unreachable"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1695" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254660,15 +258005,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1696: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-block name=\"destination-unreachable\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1696" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-block name="destination-unreachable"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1696" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254679,15 +258024,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1698: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-type name=\"echo-request\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1698" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-type name="echo-request" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1698" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254698,15 +258043,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1699: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-type name=\"echo-request\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1699" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-type name="echo-request" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" port port=\"4011\" protocol=\"tcp\" log prefix=\"port 4011: \" level=\"info\" limit value=\"4/m\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" port port="4011" protocol="tcp" log prefix="port 4011: " level="info" limit value="4/m" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1699" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254718,6 +258063,18 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -254725,10 +258082,18 @@ $at_traceon; } - - - - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -254737,24 +258102,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1746: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1746" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 3 reject-with icmp-host-prohibited -ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1746" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254764,28 +258120,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1750" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 3 reject-with icmp-host-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1750" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254795,29 +258139,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1753: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1753" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1753" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254827,26 +258158,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1757: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1757" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1757" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254856,26 +258177,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } + - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1759: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1759" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"1::2:3:4:7\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1759" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254887,24 +258217,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1761: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1761" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1761" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -254914,129 +258236,132 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1763: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1763" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 58 -- ::/0 ::/0 ipv6-icmptype 1 reject-with icmp6-adm-prohibited -ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1763" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1767: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1767" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 58 -- ::/0 ::/0 ipv6-icmptype 1 reject-with icmp6-adm-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1767" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1770: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1770" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1770" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log prefix=\"redirected: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -255044,116 +258369,116 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1775: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1775" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1775" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1777: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1777" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1777" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1779: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1779" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1779" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -255161,15 +258486,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1781: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1781" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1781" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -255180,15 +258505,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1781: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1781" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4::/64\" destination address=\"1:2:3:5::/64\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" source address="1:2:3:4::/64" destination address="1:2:3:5::/64" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1781" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -255201,15 +258526,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1784: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=70 service name=\"smtps\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1784" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=70 service name="smtps" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1784" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -255220,15 +258545,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1785: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-111 service name=\"ntp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1785" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-111 service name="ntp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1785" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -255239,15 +258564,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1786: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 port port=\"1111\" protocol=\"tcp\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1786" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 port port="1111" protocol="tcp" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1786" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -255258,15 +258583,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1787: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-100 port port=\"1111\" protocol=\"tcp\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1787" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-100 port port="1111" protocol="tcp" log' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1787" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -255277,15 +258602,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1788: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=\"-77\" service name=\"smtp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1788" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority="-77" service name="smtp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1788" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -255296,15 +258621,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1789: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=-111 service name=\"ntp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1789" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=-111 service name="ntp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1789" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -255315,15 +258640,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1790: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-32768 source address=\"10.0.0.0/8\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1790" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-32768 source address="10.0.0.0/8" log' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1790" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -255334,15 +258659,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1791: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-2 source address=\"10.0.0.0/8\" log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1791" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-2 source address="10.0.0.0/8" log' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv6\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv6" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1791" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1382" $at_failed && at_fn_log_failure $at_traceon; } @@ -255351,17 +258676,27 @@ $at_traceon; } + else + : + + fi + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1792: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-1 source address=\"10.0.0.0/8\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1792" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-1 source address="10.0.0.0/8" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1792" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -255372,15 +258707,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1793: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-5 source address=\"10.10.10.0/24\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1793" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-5 source address="10.10.10.0/24" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1793" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -255391,15 +258726,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1794: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-3 source address=\"10.100.100.0/24\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1794" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-3 source address="10.100.100.0/24" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1794" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -255410,15 +258745,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1795: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1795" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1795" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -255429,15 +258764,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1796: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=125 service name=\"imap\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1796" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=125 service name="imap" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1796" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -255448,15 +258783,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1797: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=126 log prefix=\"DROPPED: \"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1797" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=126 log prefix="DROPPED: "' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1797" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -255467,15 +258802,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1798: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=10 service name=\"ssh\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1798" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=10 service name="ssh" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1798" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -255486,15 +258821,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1799: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=1 service name=\"http\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1799" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=1 service name="http" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"1.2.3.4\" forward-port port=\"4011\" protocol=\"tcp\" to-port=\"4012\" to-addr=\"9.8.7.6\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1390" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="1.2.3.4" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="9.8.7.6"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1799" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1390" $at_failed && at_fn_log_failure $at_traceon; } @@ -255504,16 +258839,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1800: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=100 service name=\"https\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1800" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=100 service name="https" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1800" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -255524,15 +258861,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1801: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=5 service name=\"https\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1801" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=5 service name="https" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1801" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -255543,15 +258880,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1802: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=66 service name=\"smtp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1802" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=66 service name="smtp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1802" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -255562,15 +258899,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1803: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=66 service name=\"smtp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1803" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=66 service name="smtp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1803" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -255581,15 +258918,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1804: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=70 service name=\"smtps\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1804" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=70 service name="smtps" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1804" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -255600,15 +258937,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=5 service name=\"https\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1805" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=5 service name="https" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1805" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -255619,15 +258956,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1806: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=\"-77\" service name=\"smtp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1806" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority="-77" service name="smtp" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1806" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } @@ -255638,35 +258975,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1807: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" priority=-3 source address=\"10.100.100.0/24\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1807" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" priority=-3 source address="10.100.100.0/24" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.0.0/24\" icmp-block name=\"source-quench\" log prefix=\"source-quench: \" level=\"info\" limit value=\"4/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1391" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.0.0/24" icmp-block name="source-quench" log prefix="source-quench: " level="info" limit value="4/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1807" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1391" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - - - - - - - - @@ -255674,28 +258996,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1852: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1852" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 0 -- 10.0.0.0/8 0.0.0.0/0 LOG flags 0 level 4 -LOG 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1111 LOG flags 0 level 4 -DROP 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1111 -ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 -LOG 0 -- 10.0.0.0/8 0.0.0.0/0 LOG flags 0 level 4 -DROP 0 -- 10.0.0.0/8 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1852" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -255705,28 +259014,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1860: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1860" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1860" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -255736,26 +259033,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1863: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1863" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1863" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -255765,26 +259052,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1865: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1865" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1865" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -255794,33 +259071,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1867: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1867" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:143 -LOG 0 -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix \"DROPPED: \" -DROP 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1867" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } @@ -255830,226 +259090,113 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1875: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1875" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 6 -- ::/0 ::/0 tcp dpt:1111 LOG flags 0 level 4 -DROP 6 -- ::/0 ::/0 tcp dpt:1111 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1875" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1879: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1879" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1879" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1883: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1883" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1392" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1883" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1392" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1885: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1885" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1885" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1887: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1887" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:80 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:443 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:143 -LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"DROPPED: \" -DROP 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1887" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1895: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --runtime-to-permanent " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1895" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --runtime-to-permanent +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1895" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -256059,17 +259206,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1896: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1896" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1896" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -256080,15 +259226,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1896: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1896" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1896" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -256098,18 +259244,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1900: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 service name=\"http\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1900" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 service name="http" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1900" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -256120,195 +259264,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1901: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1901" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default, active) -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -rule priority=\"-32768\" family=\"ipv4\" source address=\"10.0.0.0/8\" log -rule priority=\"-100\" port port=\"1111\" protocol=\"tcp\" log -rule priority=\"-10\" port port=\"1111\" protocol=\"tcp\" drop -rule priority=\"-5\" family=\"ipv4\" source address=\"10.10.10.0/24\" accept -rule priority=\"-2\" family=\"ipv4\" source address=\"10.0.0.0/8\" log -rule priority=\"-1\" family=\"ipv4\" source address=\"10.0.0.0/8\" drop -rule service name=\"http\" accept -rule priority=\"1\" service name=\"http\" accept -rule priority=\"10\" service name=\"ssh\" accept -rule priority=\"100\" service name=\"https\" accept -rule priority=\"125\" service name=\"imap\" accept -rule priority=\"126\" log prefix=\"DROPPED: \" -rule priority=\"127\" drop -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1901" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - if test x"-e '/INVALID_RULE: no element, no source, no destination/d' -e '/INVALID_RULE: no element, no action/d' -e '/ERROR: INVALID_PRIORITY: /d' -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1933" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/INVALID_RULE: no element, no source, no destination/d' -e '/INVALID_RULE: no element, no action/d' -e '/ERROR: INVALID_PRIORITY: /d' -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1933" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_240 -#AT_START_241 -at_fn_group_banner 241 'firewall-cmd.at:1938' \ - "rich rules bad" " " 8 -at_xfail=no -( - $as_echo "241. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1938" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" -$at_failed && at_fn_log_failure -$at_traceon; } - - else - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1938" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" -$at_failed && at_fn_log_failure -$at_traceon; } - - fi - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1938" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1938: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1938" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" source address=\"10.1.1.0/24\" destination address=\"192.168.1.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1393" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" source address="10.1.1.0/24" destination address="192.168.1.0/24" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1938" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1393" $at_failed && at_fn_log_failure $at_traceon; } @@ -256316,148 +259299,20 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1938" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1938" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "firewall-cmd.at:1938" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1938" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "firewall-cmd.at:1938" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1938" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "firewall-cmd.at:1938" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1938" - - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1945: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1945" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1945" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -256468,15 +259323,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1945: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1945" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1945" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -256486,17 +259341,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1946: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='name=\"dns\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1946" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='name="dns" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1946" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -256507,15 +259361,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1946: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='name=\"dns\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1946" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='name="dns" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1946" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -256525,17 +259379,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1947" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='protocol value="ah" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1947" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -256546,15 +259399,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='protocol value=\"ah\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1947" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='protocol value="ah" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1947" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -256564,17 +259417,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1948: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1948" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="ah" reject type="icmp-host-prohibited"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1948" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -256585,15 +259437,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1948: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1948" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="ah" reject type="icmp-host-prohibited"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" destination address=\"192.168.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1394" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" destination address="192.168.1.0/24" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1948" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1394" $at_failed && at_fn_log_failure $at_traceon; } @@ -256604,16 +259456,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1949: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1949" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" protocol value="ah" reject type="dummy"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1949" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -256624,15 +259477,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1949: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1949" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" protocol value="ah" reject type="dummy"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1949" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -256642,17 +259495,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1950: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1950" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1950" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -256663,15 +259515,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1950: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1950" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1950" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -256681,17 +259533,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1951: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule bad_element' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1951" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule bad_element' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1951" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -256702,15 +259553,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1951: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule bad_element' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1951" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule bad_element' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1951" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -256720,17 +259571,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1952: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv5\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1952" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv5"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1952" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -256741,15 +259591,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1952: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv5\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1952" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv5"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" to-addr=\"192.168.100.2\" protocol=\"tcp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1395" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="2222" to-port="22" to-addr="192.168.100.2" protocol="tcp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1952" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1395" $at_failed && at_fn_log_failure $at_traceon; } @@ -256760,16 +259610,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1953: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule name=\"dns\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1953" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule name="dns" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1953" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -256780,15 +259631,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1953: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule name=\"dns\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1953" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule name="dns" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1953" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -256798,17 +259649,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1954: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol=\"ah\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1954" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol="ah" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1954" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -256819,15 +259669,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1954: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol=\"ah\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1954" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol="ah" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1954" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -256837,17 +259687,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1955: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" accept drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1955" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="ah" accept drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1955" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -256858,15 +259707,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1955: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" accept drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1955" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="ah" accept drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1955" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -256876,17 +259725,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1956: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1956" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service name="radius" port port="4011" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1956" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -256897,15 +259745,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1956: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1956" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name="radius" port port="4011" reject' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"66\" to-port=\"666\" to-addr=\"192.168.100.2\" protocol=\"sctp\" family=\"ipv4\" source address=\"192.168.2.100\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1396" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="66" to-port="666" to-addr="192.168.100.2" protocol="sctp" family="ipv4" source address="192.168.2.100"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1956" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -256916,35 +259764,24 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1957: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service bad_attribute=\"dns\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1957" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service bad_attribute="dns"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1957" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1957: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service bad_attribute=\"dns\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1957" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service bad_attribute="dns"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1957" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -256954,17 +259791,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1958: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1958" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="igmp" log level="eror"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:1958" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -256975,15 +259811,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1958: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1958" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="igmp" log level="eror"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:1958" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -256993,24 +259829,16 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='family=\"ipv6\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='family="ipv6" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257021,15 +259849,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='family=\"ipv6\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='family="ipv6" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257039,17 +259867,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 207 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257060,15 +259887,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 207 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257078,17 +259905,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257098,16 +259924,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1959: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1959" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:1959" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257115,27 +259943,18 @@ $at_traceon; } - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1964: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"esp\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1964" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="esp"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1964" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257146,15 +259965,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1964: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"esp\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1964" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="esp"' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1964" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257164,17 +259983,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1965: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" masquerade drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1965" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" masquerade drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1965" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257185,15 +260003,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1965: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" masquerade drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1965" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" masquerade drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1965" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257203,17 +260021,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1966: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" icmp-block name="redirect" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1966" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257224,15 +260041,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1966: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" icmp-block name="redirect" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1966" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257242,17 +260059,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1967: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1967" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="2222" to-port="22" protocol="tcp" family="ipv4" accept' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port=\"99\" to-port=\"10999\" to-addr=\"1::2:3:4:7\" protocol=\"dccp\" family=\"ipv6\" source address=\"1:2:3:4:6::\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1397" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule forward-port port="99" to-port="10999" to-addr="1::2:3:4:7" protocol="dccp" family="ipv6" source address="1:2:3:4:6::"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1967" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1397" $at_failed && at_fn_log_failure $at_traceon; } @@ -257261,20 +260077,10 @@ $at_traceon; } + else + : - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1967: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1967" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="2222" to-port="22" protocol="tcp" family="ipv4" accept' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1967" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi @@ -257283,15 +260089,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1968: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1968" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service name="ssh" log prefix="RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:1968" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -257302,15 +260108,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1968: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1968" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name="ssh" log prefix="RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc" drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:1968" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -257320,17 +260126,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1969: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1969" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="sctp" nflog group=-1 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:1969" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -257341,15 +260146,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1969: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1969" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="sctp" nflog group=-1 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:1969" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -257359,17 +260164,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1970: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1970" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" service name="https" nflog queue-size=-1 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1970" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -257380,15 +260184,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1970: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1970" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" service name="https" nflog queue-size=-1 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1970" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -257398,17 +260202,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1971: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1971" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" service name="https" nflog queue-size=65536 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1971" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -257419,15 +260222,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1971: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1971" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" service name="https" nflog queue-size=65536 drop' +printf "%s\n" "$at_srcdir/firewall-cmd.at:1401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family=\"ipv4\" port port=\"222\" protocol=\"tcp\" mark set=\"0xff\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1401" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule family="ipv4" port port="222" protocol="tcp" mark set="0xff"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1971" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1401" $at_failed && at_fn_log_failure $at_traceon; } @@ -257437,10 +260240,10 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_RULE:/d' -e '/ERROR: INVALID_LOG_LEVEL: eror/d' -e '/ERROR: MISSING_FAMILY/d' -e '/ERROR: INVALID_LIMIT: 1\/2m/d' -e '/ERROR: INVALID_LOG_PREFIX:/d' -e '/ERROR: INVALID_NFLOG_GROUP:/d' -e '/ERROR: INVALID_NFLOG_QUEUE:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:1973" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_RULE:/d' -e '/ERROR: INVALID_LOG_LEVEL: eror/d' -e '/ERROR: MISSING_FAMILY/d' -e '/ERROR: INVALID_LIMIT: 1\/2m/d' -e '/ERROR: INVALID_LOG_PREFIX:/d' -e '/ERROR: INVALID_NFLOG_GROUP:/d' -e '/ERROR: INVALID_NFLOG_QUEUE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1973" + if test x"-e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:1402" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1402" fi @@ -257449,13 +260252,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_241 -#AT_START_242 -at_fn_group_banner 242 'firewall-cmd.at:1981' \ - "config validation" " " 8 +#AT_STOP_254 +#AT_START_255 +at_fn_group_banner 255 'firewall-cmd.at:1403' \ + "rich rules audit" " " 8 at_xfail=no ( - $as_echo "242. $at_setup_line: testing $at_desc ..." + printf "%s\n" "255. $at_setup_line: testing $at_desc ..." $at_traceon @@ -257473,6 +260276,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -257489,29 +260293,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1403" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1403" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } @@ -257519,15 +260323,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1403" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } @@ -257569,15 +260373,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1981: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" +printf "%s\n" "$at_srcdir/firewall-cmd.at:1403: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1403" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1981" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1403" $at_failed && at_fn_log_failure $at_traceon; } @@ -257585,9 +260389,9 @@ $at_traceon; } - $as_echo "firewall-cmd.at:1981" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1403" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1981" + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1403" @@ -257668,8 +260472,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "firewall-cmd.at:1981" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1981" + printf "%s\n" "firewall-cmd.at:1403" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1403" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -257679,7 +260483,7 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1981" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -257687,8 +260491,8 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1981" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "firewall-cmd.at:1981" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1981" + printf "%s\n" "firewall-cmd.at:1403" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1403" fi echo "$!" > firewalld.pid @@ -257704,65 +260508,31 @@ at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1981" fi sleep 1 done - $as_echo "firewall-cmd.at:1981" >"$at_check_line_file" + printf "%s\n" "firewall-cmd.at:1403" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1981" - - - - - + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1403" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:1985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1985" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1985" -$at_failed && at_fn_log_failure -$at_traceon; } - - - cat >./direct.xml <<'_ATEOF' - - --j LOG - -_ATEOF - cat >./lockdown-whitelist.xml <<'_ATEOF' - - - - - - - -_ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2003: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2003" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2003" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -257773,15 +260543,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2003: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2003" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2003" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -257791,17 +260561,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2004: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2004" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2004" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -257810,85 +260579,55 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2009: cp ./firewalld.conf ./firewalld.conf.orig" -at_fn_check_prepare_trace "firewall-cmd.at:2009" -( $at_check_trace; cp ./firewalld.conf ./firewalld.conf.orig -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" -$at_failed && at_fn_log_failure -$at_traceon; } { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2010: echo \"SomeBogusField=yes\" >> ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:2010" -( $at_check_trace; echo "SomeBogusField=yes" >> ./firewalld.conf +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2010" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2011: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2011" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2011" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2016: cp ./firewalld.conf.orig ./firewalld.conf" -at_fn_check_prepare_trace "firewall-cmd.at:2016" -( $at_check_trace; cp ./firewalld.conf.orig ./firewalld.conf +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2016" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } - cat >./direct.xml <<'_ATEOF' - - - - -_ATEOF + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2025: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2025" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2025" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -257896,66 +260635,37 @@ $at_traceon; } - cat >./direct.xml <<'_ATEOF' - - - - -_ATEOF - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2033: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2033" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2033" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2034: rm ./direct.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2034" -( $at_check_trace; rm ./direct.xml -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2034" -$at_failed && at_fn_log_failure -$at_traceon; } - - - cat >./lockdown-whitelist.xml <<'_ATEOF' - - - - -_ATEOF - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2043: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2043" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name=\"ftp\" audit limit value=\"1/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1407" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule service name="ftp" audit limit value="1/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2043" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1407" $at_failed && at_fn_log_failure $at_traceon; } @@ -257963,133 +260673,150 @@ $at_traceon; } - cat >./lockdown-whitelist.xml <<'_ATEOF' - - - - -_ATEOF + if test x"" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:1408" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1408" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2051" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2051" -$at_failed && at_fn_log_failure -$at_traceon; } + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_255 +#AT_START_256 +at_fn_group_banner 256 'firewall-cmd.at:1411' \ + "rich rules priority" " " 8 +at_xfail=no +( + printf "%s\n" "256. $at_setup_line: testing $at_desc ..." + $at_traceon - cat >./lockdown-whitelist.xml <<'_ATEOF' - - - - -_ATEOF - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2059: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2059" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2059" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2060: rm ./lockdown-whitelist.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2060" -( $at_check_trace; rm ./lockdown-whitelist.xml + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1411" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2060" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } - + else { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2063: mkdir -p ./ipsets" -at_fn_check_prepare_trace "firewall-cmd.at:2063" -( $at_check_trace; mkdir -p ./ipsets +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1411" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2063" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } - cat >./ipsets/foobar.xml <<'_ATEOF' - - - 12:34:56:78:90 - -_ATEOF - - + fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2070: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2070" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1411" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2070" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { - cat >./ipsets/foobar.xml <<'_ATEOF' - - - 12:34:56:78:90:ab - -_ATEOF + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2082: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2082" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1411: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1411" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2082" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1411" $at_failed && at_fn_log_failure $at_traceon; } @@ -258097,120 +260824,338 @@ $at_traceon; } - cat >./ipsets/foobar.xml <<'_ATEOF' - - - -_ATEOF + printf "%s\n" "firewall-cmd.at:1411" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1411" - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2089: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2089" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1411" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1411" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1411" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1411" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:1411" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1411" + + + + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1440: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1440" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 119 $at_status "$at_srcdir/firewall-cmd.at:2089" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_public_pre 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public_log 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public_deny 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public_allow 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public_post 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1440" $at_failed && at_fn_log_failure $at_traceon; } + + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2090: rm ./ipsets/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2090" -( $at_check_trace; rm ./ipsets/foobar.xml +printf "%s\n" "$at_srcdir/firewall-cmd.at:1448: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_public; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1448" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_public; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2090" +echo >>"$at_stdout"; printf "%s\n" "FWD_public_pre 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public_log 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public_deny 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public_allow 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public_post 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1448" $at_failed && at_fn_log_failure $at_traceon; } -cat >./ipsets/foobar.xml <<'_ATEOF' - - - -_ATEOF + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2101" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1455: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1455" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 135 $at_status "$at_srcdir/firewall-cmd.at:2101" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_public_pre 0 -- ::/0 ::/0 +IN_public_log 0 -- ::/0 ::/0 +IN_public_deny 0 -- ::/0 ::/0 +IN_public_allow 0 -- ::/0 ::/0 +IN_public_post 0 -- ::/0 ::/0 +ACCEPT 58 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1455" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2102: rm ./ipsets/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2102" -( $at_check_trace; rm ./ipsets/foobar.xml +printf "%s\n" "$at_srcdir/firewall-cmd.at:1463: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_public; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1463" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_public; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2102" +echo >>"$at_stdout"; printf "%s\n" "FWD_public_pre 0 -- ::/0 ::/0 +FWD_public_log 0 -- ::/0 ::/0 +FWD_public_deny 0 -- ::/0 ::/0 +FWD_public_allow 0 -- ::/0 ::/0 +FWD_public_post 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1463" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2105: mkdir -p ./helpers" -at_fn_check_prepare_trace "firewall-cmd.at:2105" -( $at_check_trace; mkdir -p ./helpers + + else + : + + fi + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1476: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"1111\" protocol=\"tcp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1476" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule port port="1111" protocol="tcp" log' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2105" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1476" $at_failed && at_fn_log_failure $at_traceon; } - cat >./helpers/foobar.xml <<'_ATEOF' - - - -_ATEOF + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2111" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1477: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port=\"1122\" protocol=\"tcp\" audit accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1477" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port="1122" protocol="tcp" audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2111" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1477" $at_failed && at_fn_log_failure $at_traceon; } @@ -258218,25 +261163,160 @@ $at_traceon; } - cat >./helpers/foobar.xml <<'_ATEOF' - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1478: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"2222\" protocol=\"tcp\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1478" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule port port="2222" protocol="tcp" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1478" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2118" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1479: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule port port=\"3333\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1479" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule port port="3333" protocol="tcp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1479" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1480: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port=\"4444\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1480" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 port port="4444" protocol="tcp" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2118" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1480" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1507: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1507" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "LOG 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1111 LOG flags 0 level 4 +AUDIT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1122 AUDIT accept +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1507" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1511: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1511" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DROP 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2222 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1511" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1514: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1514" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1122 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3333 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:4444 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1514" $at_failed && at_fn_log_failure $at_traceon; } @@ -258248,34 +261328,120 @@ $at_traceon; } + + if $IP6TABLES -L >/dev/null 2>&1; then : - cat >./helpers/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1520: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1520" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "LOG 6 -- ::/0 ::/0 tcp dpt:1111 LOG flags 0 level 4 +AUDIT 6 -- ::/0 ::/0 tcp dpt:1122 AUDIT accept +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1520" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2120" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1524: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1524" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2120" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DROP 6 -- ::/0 ::/0 tcp dpt:2222 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1524" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1527: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1527" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:1122 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:3333 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:4444 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1527" +$at_failed && at_fn_log_failure +$at_traceon; } + else @@ -258285,53 +261451,62 @@ $at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2129: rm ./helpers/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2129" -( $at_check_trace; rm ./helpers/foobar.xml +printf "%s\n" "$at_srcdir/firewall-cmd.at:1534: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1534" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2129" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1534" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2132: mkdir -p ./icmptypes" -at_fn_check_prepare_trace "firewall-cmd.at:2132" -( $at_check_trace; mkdir -p ./icmptypes + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1534: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1534" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2132" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1534" $at_failed && at_fn_log_failure $at_traceon; } - cat >./icmptypes/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2139" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1537: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32768 port port=\"1234\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1537" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32768 port port="1234" protocol="tcp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2139" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1537" $at_failed && at_fn_log_failure $at_traceon; } @@ -258339,79 +261514,136 @@ $at_traceon; } - cat >./icmptypes/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1538: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32767 port port=\"1234\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1538" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32767 port port="1234" protocol="tcp" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1538" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2147" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1539: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32769 port port=\"1234\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1539" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-32769 port port="1234" protocol="tcp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2147" +at_fn_check_status 139 $at_status "$at_srcdir/firewall-cmd.at:1539" $at_failed && at_fn_log_failure $at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2148: rm ./icmptypes/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2148" -( $at_check_trace; rm ./icmptypes/foobar.xml +printf "%s\n" "$at_srcdir/firewall-cmd.at:1540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32768 port port=\"1234\" protocol=\"tcp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1540" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=32768 port port="1234" protocol="tcp" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/firewall-cmd.at:1540" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1541: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1541" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2148" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1541" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2151: mkdir -p ./services" -at_fn_check_prepare_trace "firewall-cmd.at:2151" -( $at_check_trace; mkdir -p ./services + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1541: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1541" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2151" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1541" $at_failed && at_fn_log_failure $at_traceon; } - cat >./services/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2158" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1545: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1545" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2158" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1545" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1546" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1546" $at_failed && at_fn_log_failure $at_traceon; } @@ -258419,26 +261651,31 @@ $at_traceon; } - cat >./services/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2166" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1554" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2166" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DROP 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1554" $at_failed && at_fn_log_failure $at_traceon; } @@ -258446,53 +261683,61 @@ $at_traceon; } - cat >./services/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2174" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1557: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1557" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2174" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DROP 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1557" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - cat >./services/foobar.xml <<'_ATEOF' - - - - -_ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2182" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1560: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1560" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2182" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1560" $at_failed && at_fn_log_failure $at_traceon; } @@ -258500,26 +261745,37 @@ $at_traceon; } - cat >./services/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1561: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1561" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule priority=127 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1561" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2190" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1562: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1562" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2190" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1562" $at_failed && at_fn_log_failure $at_traceon; } @@ -258527,26 +261783,37 @@ $at_traceon; } - cat >./services/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1563: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1563" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1563" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2198: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2198" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1564: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1564" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule priority=127 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2198" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1564" $at_failed && at_fn_log_failure $at_traceon; } @@ -258554,27 +261821,38 @@ $at_traceon; } - cat >./services/foobar.xml <<'_ATEOF' - - - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1565: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1565" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-rich-rule='rule priority=127 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/firewall-cmd.at:1565" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2207: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2207" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1568: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1568" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2207" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1568" $at_failed && at_fn_log_failure $at_traceon; } @@ -258582,76 +261860,97 @@ $at_traceon; } - cat >./services/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1569: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1569" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1569" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2215: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2215" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1570: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule log prefix=\"foobar: \"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1570" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule log prefix="foobar: "' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2215" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1570" $at_failed && at_fn_log_failure $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2216: rm ./services/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2216" -( $at_check_trace; rm ./services/foobar.xml +printf "%s\n" "$at_srcdir/firewall-cmd.at:1571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1571" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2216" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1571" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2219: mkdir -p ./zones" -at_fn_check_prepare_trace "firewall-cmd.at:2219" -( $at_check_trace; mkdir -p ./zones + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1571" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2219" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1571" $at_failed && at_fn_log_failure $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - -_ATEOF + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2223" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" source address=\"10.10.0.0/16\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1574" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" source address="10.10.0.0/16" masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/firewall-cmd.at:2223" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1574" $at_failed && at_fn_log_failure $at_traceon; } @@ -258659,26 +261958,37 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1575: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 source address=\"10.1.1.0/24\" masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1575" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-10 source address="10.1.1.0/24" masquerade' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1575" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2231" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1576: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-1 source address=\"10.1.0.0/16\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1576" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-1 source address="10.1.0.0/16" drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/firewall-cmd.at:2231" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1576" $at_failed && at_fn_log_failure $at_traceon; } @@ -258686,26 +261996,37 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1578: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=0 forward-port port=\"222\" protocol=\"tcp\" to-port=\"22\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1578" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=0 forward-port port="222" protocol="tcp" to-port="22"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1578" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2239" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1579: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=0 forward-port port=\"2222\" protocol=\"tcp\" to-port=\"22\" to-addr=\"10.1.1.1\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1579" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=0 forward-port port="2222" protocol="tcp" to-port="22" to-addr="10.1.1.1"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2239" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1579" $at_failed && at_fn_log_failure $at_traceon; } @@ -258713,26 +262034,37 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1580: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 forward-port port=\"8888\" protocol=\"tcp\" to-port=\"80\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1580" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-10 forward-port port="8888" protocol="tcp" to-port="80"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1580" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2247: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2247" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1581: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-10 forward-port port=\"8080\" protocol=\"tcp\" to-port=\"80\" to-addr=\"10.1.1.1\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1581" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-10 forward-port port="8080" protocol="tcp" to-port="80" to-addr="10.1.1.1"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2247" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1581" $at_failed && at_fn_log_failure $at_traceon; } @@ -258740,26 +262072,25 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2255" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1582: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=0 forward-port port=\"9090\" protocol=\"tcp\" to-port=\"90\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1582" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" priority=0 forward-port port="9090" protocol="tcp" to-port="90"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2255" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1582" $at_failed && at_fn_log_failure $at_traceon; } @@ -258767,26 +262098,37 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1582: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=-123 forward-port port=\"999\" protocol=\"tcp\" to-port=\"99\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1582" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" priority=-123 forward-port port="999" protocol="tcp" to-port="99"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1582" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2263" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1582: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" priority=-123 forward-port port=\"9999\" protocol=\"tcp\" to-port=\"9999\" to-addr=\"1234::4321\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1582" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" priority=-123 forward-port port="9999" protocol="tcp" to-port="9999" to-addr="1234::4321"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2263" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1582" $at_failed && at_fn_log_failure $at_traceon; } @@ -258794,26 +262136,69 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - -_ATEOF + else + : + + fi + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2271" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1671: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1671" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2271" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DROP 0 -- 10.1.0.0/16 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1671" $at_failed && at_fn_log_failure $at_traceon; } @@ -258821,26 +262206,30 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2279" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1674: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1674" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2279" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1674" $at_failed && at_fn_log_failure $at_traceon; } @@ -258848,26 +262237,28 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2287" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1677: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1677" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2287" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1677" $at_failed && at_fn_log_failure $at_traceon; } @@ -258875,26 +262266,28 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - -_ATEOF + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2295" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/firewall-cmd.at:1679: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1679" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2295" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1679" $at_failed && at_fn_log_failure $at_traceon; } @@ -258902,53 +262295,10061 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - -_ATEOF - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2303" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2303" -$at_failed && at_fn_log_failure -$at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1681: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PRE_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1681" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PRE_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8888 to::80 +DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8080 to:10.1.1.1:80 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1681" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1685: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1685" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:222 to::22 +DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2222 to:10.1.1.1:22 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1685" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1689: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POST_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1689" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POST_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "MASQUERADE 0 -- 10.1.1.0/24 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1689" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POST_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1692" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POST_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "MASQUERADE 0 -- 10.10.0.0/16 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1692" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1695: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PRE_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1695" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t mangle -L PRE_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1695" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1697: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1697" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1697" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1699: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1699" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1699" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1701: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1701" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1701" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1705: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1705" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1705" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1707: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1707" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1707" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1709: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PRE_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1709" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PRE_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- ::/0 ::/0 tcp dpt:999 to::99 +DNAT 6 -- ::/0 ::/0 tcp dpt:9999 to:[1234::4321]:9999 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1709" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1713: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1713" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- ::/0 ::/0 tcp dpt:9090 to::90 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1713" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1716: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PRE_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1716" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PRE_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1716" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1718: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1718" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1718" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1720: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1720" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1720" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1720: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1720" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1720" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1723: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-block name=\"destination-unreachable\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1723" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-block name="destination-unreachable"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1723" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1724: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-block name=\"destination-unreachable\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1724" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-block name="destination-unreachable"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1724" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1726: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-type name=\"echo-request\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1726" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule icmp-type name="echo-request" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1726" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1727: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-type name=\"echo-request\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1727" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 icmp-type name="echo-request" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1727" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1774: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1774" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 3 reject-with icmp-host-prohibited +ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1774" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1778: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1778" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 3 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1778" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1781: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1781" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1781" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1785: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1785" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1785" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1787: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1787" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1787" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1789: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1789" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1789" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1791: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1791" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "REJECT 58 -- ::/0 ::/0 ipv6-icmptype 1 reject-with icmp6-adm-prohibited +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1791" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1795: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1795" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "REJECT 58 -- ::/0 ::/0 ipv6-icmptype 1 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1795" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1798: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1798" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1798" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1803: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1803" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1803" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1805" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1805" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1807: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1807" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1807" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1809: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1809" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1809" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1809: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1809" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1809" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1812: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=70 service name=\"smtps\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1812" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=70 service name="smtps" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1812" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1813: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-111 service name=\"ntp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1813" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-111 service name="ntp" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1813" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1814: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 port port=\"1111\" protocol=\"tcp\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1814" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-10 port port="1111" protocol="tcp" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1814" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1815: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-100 port port=\"1111\" protocol=\"tcp\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1815" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=-100 port port="1111" protocol="tcp" log' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1815" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1816: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=\"-77\" service name=\"smtp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1816" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority="-77" service name="smtp" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1816" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1817: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=-111 service name=\"ntp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1817" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=-111 service name="ntp" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1817" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1818: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-32768 source address=\"10.0.0.0/8\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1818" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-32768 source address="10.0.0.0/8" log' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1818" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1819: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-2 source address=\"10.0.0.0/8\" log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1819" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-2 source address="10.0.0.0/8" log' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1819" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1820: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-1 source address=\"10.0.0.0/8\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1820" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-1 source address="10.0.0.0/8" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1820" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1821: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-5 source address=\"10.10.10.0/24\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1821" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-5 source address="10.10.10.0/24" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1821" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1822: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" priority=-3 source address=\"10.100.100.0/24\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1822" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" priority=-3 source address="10.100.100.0/24" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1822" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1823: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1823" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=127 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1823" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1824: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=125 service name=\"imap\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1824" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=125 service name="imap" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1824" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1825: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=126 log prefix=\"DROPPED: \"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1825" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=126 log prefix="DROPPED: "' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1825" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1826: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=10 service name=\"ssh\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1826" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=10 service name="ssh" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1826" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1827: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=1 service name=\"http\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1827" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=1 service name="http" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1827" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=100 service name=\"https\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1828" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=100 service name="https" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1828" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1829: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=5 service name=\"https\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1829" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=5 service name="https" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1829" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1830: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=66 service name=\"smtp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1830" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=66 service name="smtp" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1830" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1831: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=66 service name=\"smtp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1831" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=66 service name="smtp" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1831" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1832: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=70 service name=\"smtps\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1832" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=70 service name="smtps" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1832" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1833: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=5 service name=\"https\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1833" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=5 service name="https" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1833" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1834: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority=\"-77\" service name=\"smtp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1834" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule priority="-77" service name="smtp" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1834" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1835: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule family=\"ipv4\" priority=-3 source address=\"10.100.100.0/24\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1835" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule family="ipv4" priority=-3 source address="10.100.100.0/24" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1835" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1880: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1880" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "LOG 0 -- 10.0.0.0/8 0.0.0.0/0 LOG flags 0 level 4 +LOG 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1111 LOG flags 0 level 4 +DROP 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1111 +ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 +LOG 0 -- 10.0.0.0/8 0.0.0.0/0 LOG flags 0 level 4 +DROP 0 -- 10.0.0.0/8 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1880" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1888: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1888" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1888" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1891: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1891" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1891" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1893: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1893" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1893" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1895: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1895" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:143 +LOG 0 -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix \"DROPPED: \" +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1895" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1903: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1903" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "LOG 6 -- ::/0 ::/0 tcp dpt:1111 LOG flags 0 level 4 +DROP 6 -- ::/0 ::/0 tcp dpt:1111 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1903" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1907: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1907" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1907" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1911: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1911" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1911" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1913: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1913" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1913" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1915: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1915" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:80 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:443 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:143 +LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"DROPPED: \" +DROP 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1915" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1923: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --runtime-to-permanent " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1923" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --runtime-to-permanent +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1923" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1924: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1924" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1924" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1924: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1924" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1924" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1928: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 service name=\"http\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1928" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=0 service name="http" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1928" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1929: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "firewall-cmd.at:1929" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public (default, active) +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +rule priority=\"-32768\" family=\"ipv4\" source address=\"10.0.0.0/8\" log +rule priority=\"-100\" port port=\"1111\" protocol=\"tcp\" log +rule priority=\"-10\" port port=\"1111\" protocol=\"tcp\" drop +rule priority=\"-5\" family=\"ipv4\" source address=\"10.10.10.0/24\" accept +rule priority=\"-2\" family=\"ipv4\" source address=\"10.0.0.0/8\" log +rule priority=\"-1\" family=\"ipv4\" source address=\"10.0.0.0/8\" drop +rule service name=\"http\" accept +rule priority=\"1\" service name=\"http\" accept +rule priority=\"10\" service name=\"ssh\" accept +rule priority=\"100\" service name=\"https\" accept +rule priority=\"125\" service name=\"imap\" accept +rule priority=\"126\" log prefix=\"DROPPED: \" +rule priority=\"127\" drop +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1929" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + if test x"-e '/INVALID_RULE: no element, no source, no destination/d' -e '/INVALID_RULE: no element, no action/d' -e '/ERROR: INVALID_PRIORITY: /d' -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:1961" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/INVALID_RULE: no element, no source, no destination/d' -e '/INVALID_RULE: no element, no action/d' -e '/ERROR: INVALID_PRIORITY: /d' -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1961" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_256 +#AT_START_257 +at_fn_group_banner 257 'firewall-cmd.at:1966' \ + "rich rules bad" " " 8 +at_xfail=no +( + printf "%s\n" "257. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:1966" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:1966" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1966: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1966" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:1966" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "firewall-cmd.at:1966" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:1966" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1966" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1966" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:1966" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1966" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:1966" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:1966" + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1973: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1973" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1973" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1973: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1973" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1973" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1974: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='name=\"dns\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1974" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='name="dns" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1974" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1974: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='name=\"dns\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1974" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='name="dns" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1974" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1975: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1975" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='protocol value="ah" reject' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1975" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1975: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='protocol value=\"ah\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1975" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='protocol value="ah" reject' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1975" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1976: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1976" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="ah" reject type="icmp-host-prohibited"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1976" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1976: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" reject type=\"icmp-host-prohibited\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1976" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="ah" reject type="icmp-host-prohibited"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1976" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1977: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1977" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" protocol value="ah" reject type="dummy"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1977" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1977: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" protocol value=\"ah\" reject type=\"dummy\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1977" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" protocol value="ah" reject type="dummy"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1977" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1978: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1978" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1978" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1978: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1978" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1978" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1979: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule bad_element' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1979" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule bad_element' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1979" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1979: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule bad_element' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1979" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule bad_element' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1979" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv5\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1980" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv5"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1980" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv5\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1980" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv5"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1980" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1981: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule name=\"dns\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule name="dns" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1981" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1981: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule name=\"dns\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1981" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule name="dns" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1981" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1982: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol=\"ah\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1982" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol="ah" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1982" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1982: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol=\"ah\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1982" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol="ah" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1982" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1983: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"ah\" accept drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1983" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="ah" accept drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1983" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1983: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"ah\" accept drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1983" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="ah" accept drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1983" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1984: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1984" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service name="radius" port port="4011" reject' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1984" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1984: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"radius\" port port=\"4011\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1984" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name="radius" port port="4011" reject' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1984" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service bad_attribute=\"dns\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1985" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service bad_attribute="dns"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1985" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service bad_attribute=\"dns\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1985" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service bad_attribute="dns"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1985" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1986: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1986" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="igmp" log level="eror"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:1986" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1986: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"igmp\" log level=\"eror\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1986" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="igmp" log level="eror"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:1986" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='family=\"ipv6\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='family="ipv6" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1987" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='family=\"ipv6\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='family="ipv6" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1987" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 207 $at_status "$at_srcdir/firewall-cmd.at:1987" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 207 $at_status "$at_srcdir/firewall-cmd.at:1987" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:1987" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1987: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" source address=\"1:2:3:4:6::\" icmp-block name=\"redirect\" log level=\"info\" limit value=\"1/2m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1987" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log level="info" limit value="1/2m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:1987" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + else + : + + fi + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1992: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"esp\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1992" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="esp"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1992" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1992: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"esp\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1992" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="esp"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1992" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" masquerade drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1993" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" masquerade drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1993" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" masquerade drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1993" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" masquerade drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1993" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1994: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1994" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" icmp-block name="redirect" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1994" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1994: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" icmp-block name=\"redirect\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1994" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" icmp-block name="redirect" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1994" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1995: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1995" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule forward-port port="2222" to-port="22" protocol="tcp" family="ipv4" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1995" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1995: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port=\"2222\" to-port=\"22\" protocol=\"tcp\" family=\"ipv4\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1995" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule forward-port port="2222" to-port="22" protocol="tcp" family="ipv4" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/firewall-cmd.at:1995" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1996: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1996" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule service name="ssh" log prefix="RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:1996" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1996: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name=\"ssh\" log prefix=\"RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc\" drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1996" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule service name="ssh" log prefix="RRClag4hrBx9XZXk+46c6QavQehyRGdy3tjs7gzc+xfSzsd2smjoQ2NCPami6zVyjHtPGziBuqSWT0KII7QbHkwjNMr9pzbcbPue9PMTb5zXlMPphDjeuDdC3QTCH9rGQHooa9LiDWr+DqNPkBs+vb8r50eb+yEQIyhQaiDrQ0sc" drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:1996" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1997: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1997" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule protocol value="sctp" nflog group=-1 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:1997" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1997: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value=\"sctp\" nflog group=-1 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1997" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule protocol value="sctp" nflog group=-1 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:1997" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1998: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1998" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv4" service name="https" nflog queue-size=-1 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1998" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1998: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv4\" service name=\"https\" nflog queue-size=-1 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1998" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv4" service name="https" nflog queue-size=-1 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1998" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1999: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1999" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family="ipv6" service name="https" nflog queue-size=65536 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1999" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:1999: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=\"ipv6\" service name=\"https\" nflog queue-size=65536 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:1999" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family="ipv6" service name="https" nflog queue-size=65536 drop' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:1999" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + if test x"-e '/ERROR: INVALID_RULE:/d' -e '/ERROR: INVALID_LOG_LEVEL: eror/d' -e '/ERROR: MISSING_FAMILY/d' -e '/ERROR: INVALID_LIMIT: 1\/2m/d' -e '/ERROR: INVALID_LOG_PREFIX:/d' -e '/ERROR: INVALID_NFLOG_GROUP:/d' -e '/ERROR: INVALID_NFLOG_QUEUE:/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:2001" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_RULE:/d' -e '/ERROR: INVALID_LOG_LEVEL: eror/d' -e '/ERROR: MISSING_FAMILY/d' -e '/ERROR: INVALID_LIMIT: 1\/2m/d' -e '/ERROR: INVALID_LOG_PREFIX:/d' -e '/ERROR: INVALID_NFLOG_GROUP:/d' -e '/ERROR: INVALID_NFLOG_QUEUE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:2001" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_257 +#AT_START_258 +at_fn_group_banner 258 'firewall-cmd.at:2009' \ + "config validation" " " 8 +at_xfail=no +( + printf "%s\n" "258. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2009" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "firewall-cmd.at:2009" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:2009" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2009: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2009" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2009" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "firewall-cmd.at:2009" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/firewall-cmd.at:2009" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:2009" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:2009" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "firewall-cmd.at:2009" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:2009" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "firewall-cmd.at:2009" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:2009" + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2013" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2013" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./direct.xml <<'_ATEOF' + + +-j LOG + +_ATEOF + + cat >./lockdown-whitelist.xml <<'_ATEOF' + + + + + + + +_ATEOF + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2031" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2031" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2031" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2031" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2032: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2032" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2032" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2037: cp ./firewalld.conf ./firewalld.conf.orig" +at_fn_check_prepare_trace "firewall-cmd.at:2037" +( $at_check_trace; cp ./firewalld.conf ./firewalld.conf.orig +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2037" +$at_failed && at_fn_log_failure +$at_traceon; } + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2038: echo \"SomeBogusField=yes\" >> ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:2038" +( $at_check_trace; echo "SomeBogusField=yes" >> ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2038" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2039: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2039" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2039" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2044: cp ./firewalld.conf.orig ./firewalld.conf" +at_fn_check_prepare_trace "firewall-cmd.at:2044" +( $at_check_trace; cp ./firewalld.conf.orig ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2044" +$at_failed && at_fn_log_failure +$at_traceon; } + + + cat >./direct.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2053: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2053" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2053" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./direct.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2061: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2061" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2061" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2062: rm ./direct.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2062" +( $at_check_trace; rm ./direct.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2062" +$at_failed && at_fn_log_failure +$at_traceon; } + + + cat >./lockdown-whitelist.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2071: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2071" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2071" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./lockdown-whitelist.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2079: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2079" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2079" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./lockdown-whitelist.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2087: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2087" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2087" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2088: rm ./lockdown-whitelist.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2088" +( $at_check_trace; rm ./lockdown-whitelist.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2088" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2091: mkdir -p ./ipsets" +at_fn_check_prepare_trace "firewall-cmd.at:2091" +( $at_check_trace; mkdir -p ./ipsets +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2091" +$at_failed && at_fn_log_failure +$at_traceon; } + + cat >./ipsets/foobar.xml <<'_ATEOF' + + + 12:34:56:78:90 + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2098: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2098" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2098" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./ipsets/foobar.xml <<'_ATEOF' + + + 12:34:56:78:90:ab + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2110" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2110" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./ipsets/foobar.xml <<'_ATEOF' + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2117" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 119 $at_status "$at_srcdir/firewall-cmd.at:2117" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2118: rm ./ipsets/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2118" +( $at_check_trace; rm ./ipsets/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2118" +$at_failed && at_fn_log_failure +$at_traceon; } + + +cat >./ipsets/foobar.xml <<'_ATEOF' + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2129" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 135 $at_status "$at_srcdir/firewall-cmd.at:2129" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2130: rm ./ipsets/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2130" +( $at_check_trace; rm ./ipsets/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2130" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2133: mkdir -p ./helpers" +at_fn_check_prepare_trace "firewall-cmd.at:2133" +( $at_check_trace; mkdir -p ./helpers +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2133" +$at_failed && at_fn_log_failure +$at_traceon; } + + cat >./helpers/foobar.xml <<'_ATEOF' + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2139" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2139" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./helpers/foobar.xml <<'_ATEOF' + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2146" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 111 $at_status "$at_srcdir/firewall-cmd.at:2146" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + cat >./helpers/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2148" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2148" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + else + : + + fi + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2157: rm ./helpers/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2157" +( $at_check_trace; rm ./helpers/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2157" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2160: mkdir -p ./icmptypes" +at_fn_check_prepare_trace "firewall-cmd.at:2160" +( $at_check_trace; mkdir -p ./icmptypes +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2160" +$at_failed && at_fn_log_failure +$at_traceon; } + + cat >./icmptypes/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2167" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2167" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./icmptypes/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2175: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2175" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2175" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2176: rm ./icmptypes/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2176" +( $at_check_trace; rm ./icmptypes/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2176" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2179: mkdir -p ./services" +at_fn_check_prepare_trace "firewall-cmd.at:2179" +( $at_check_trace; mkdir -p ./services +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2179" +$at_failed && at_fn_log_failure +$at_traceon; } + + cat >./services/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2186: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2186" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2186" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./services/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2194: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2194" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2194" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./services/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2202" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2202" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./services/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2210: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2210" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2210" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./services/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2218" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2218" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./services/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2226" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2226" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./services/foobar.xml <<'_ATEOF' + + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2235" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 102 $at_status "$at_srcdir/firewall-cmd.at:2235" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./services/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2243" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2243" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2244: rm ./services/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2244" +( $at_check_trace; rm ./services/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2244" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2247: mkdir -p ./zones" +at_fn_check_prepare_trace "firewall-cmd.at:2247" +( $at_check_trace; mkdir -p ./zones +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2247" +$at_failed && at_fn_log_failure +$at_traceon; } + + cat >./zones/foobar.xml <<'_ATEOF' + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2251" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/firewall-cmd.at:2251" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2259" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 101 $at_status "$at_srcdir/firewall-cmd.at:2259" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2267" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2267" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2275: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2275" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/firewall-cmd.at:2275" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2283" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2283" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2291" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2291" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2299" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2299" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2307" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2307" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2315: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2315" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2315" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2323" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2323" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2331: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2331" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2331" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2339: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2339" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 144 $at_status "$at_srcdir/firewall-cmd.at:2339" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2350" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2350" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + + + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2363" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 123 $at_status "$at_srcdir/firewall-cmd.at:2363" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2374" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 141 $at_status "$at_srcdir/firewall-cmd.at:2374" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2385" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 125 $at_status "$at_srcdir/firewall-cmd.at:2385" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2396" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 142 $at_status "$at_srcdir/firewall-cmd.at:2396" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2407" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 143 $at_status "$at_srcdir/firewall-cmd.at:2407" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + cat >./zones/foobar.xml <<'_ATEOF' + + + + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2418: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2418" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2418" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + cat >./zones/foobar.xml <<'_ATEOF' + + + + + + + +_ATEOF + + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2420: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2420" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 105 $at_status "$at_srcdir/firewall-cmd.at:2420" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + else + : + + fi + + + + { set +x +printf "%s\n" "$at_srcdir/firewall-cmd.at:2432: rm ./zones/foobar.xml" +at_fn_check_prepare_trace "firewall-cmd.at:2432" +( $at_check_trace; rm ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2432" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + if test x"-e '/ERROR:/d' -e '/WARNING:/d'" != x"ignore"; then + printf "%s\n" "firewall-cmd.at:2434" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR:/d' -e '/WARNING:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:2434" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_258 +#AT_START_259 +at_fn_group_banner 259 'rhbz1514043.at:1' \ + "--set-log-denied does not zero config" " " 9 +at_xfail=no +( + printf "%s\n" "259. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1514043.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1514043.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "rhbz1514043.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1514043.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rhbz1514043.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rhbz1514043.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rhbz1514043.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=all " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --set-log-denied=all +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-service=samba " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-service=samba +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^services " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^services +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "services: dhcpv6-client samba ssh +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1514043.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +LOG 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID +INPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +INPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +LOG 0 -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:42" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1514043.at:52" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +LOG 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID +FORWARD_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +FORWARD_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +LOG 0 -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:52" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1514043.at:62" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +LOG 0 -- ::/0 ::/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" +DROP 0 -- ::/0 ::/0 ctstate INVALID +INPUT_direct 0 -- ::/0 ::/0 +INPUT_POLICIES 0 -- ::/0 ::/0 +LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:62" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1514043.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1514043.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +LOG 0 -- ::/0 ::/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" +DROP 0 -- ::/0 ::/0 ctstate INVALID +FORWARD_direct 0 -- ::/0 ::/0 +RFC3964_IPv4 0 -- ::/0 ::/0 +FORWARD_POLICIES 0 -- ::/0 ::/0 +LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "rhbz1514043.at:84" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:84" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_259 +#AT_START_260 +at_fn_group_banner 260 'rhbz1498923.at:1' \ + "invalid direct rule causes reload error" " " 9 +at_xfail=no +( + printf "%s\n" "260. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1498923.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1498923.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "rhbz1498923.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1498923.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rhbz1498923.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rhbz1498923.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rhbz1498923.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" + + + + + + + printf "%s\n" "rhbz1498923.at:3" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1498923.at:3" + + + +{ set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:6: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1498923.at:6" +( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:12" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:12" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "no zone +" | \ + $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 2 $at_status "$at_srcdir/rhbz1498923.at:13" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + +{ set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:18: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1498923.at:18" +( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:18" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 8080 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 8080 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:21" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 1 --a-bogus-flag " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 1 --a-bogus-flag +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:22" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:25" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --add-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --direct --add-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:26" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 13 $at_status "$at_srcdir/rhbz1498923.at:28" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 251 $at_status "$at_srcdir/rhbz1498923.at:28" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "failed +" | \ + $at_diff - "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 251 $at_status "$at_srcdir/rhbz1498923.at:29" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:33" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:36" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:36" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter INPUT 1 --a-bogus-flag" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter INPUT 1 --a-bogus-flag" "rhbz1498923.at:39" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter INPUT 1 --a-bogus-flag +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:39" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:40" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:40" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:40" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:40" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "public +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:43" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1498923.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:46" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + if test x"-e '/.*a-bogus-flag.*/d'" != x"ignore"; then + printf "%s\n" "rhbz1498923.at:47" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/.*a-bogus-flag.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:47" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_260 +#AT_START_261 +at_fn_group_banner 261 'pr181.at:1' \ + "combined zones name length check" " " 9 +at_xfail=no +( + printf "%s\n" "261. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/pr181.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/pr181.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "pr181.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/pr181.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "pr181.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/pr181.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "pr181.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/pr181.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "pr181.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/pr181.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "pr181.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/pr181.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "pr181.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/pr181.at:1" + + + + + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:4: mkdir -p ./zones/foobar" +at_fn_check_prepare_trace "pr181.at:4" +( $at_check_trace; mkdir -p ./zones/foobar +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:6: echo '' > ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:6" +( $at_check_trace; echo '' > ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:7: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:7" +( $at_check_trace; echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:8: echo 'foobar' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:8" +( $at_check_trace; echo 'foobar' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:9: echo 'foobar desc' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:9" +( $at_check_trace; echo 'foobar desc' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:10: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:10" +( $at_check_trace; echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:10" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:11: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:11" +( $at_check_trace; echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } + + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:13: echo '' > ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:13" +( $at_check_trace; echo '' > ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:13" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:14: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:14" +( $at_check_trace; echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:14" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:15: echo 'foobar' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:15" +( $at_check_trace; echo 'foobar' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:16: echo 'foobar desc' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:16" +( $at_check_trace; echo 'foobar desc' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:16" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:17: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:17" +( $at_check_trace; echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:17" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/pr181.at:18: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" +at_fn_check_prepare_trace "pr181.at:18" +( $at_check_trace; echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:18" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/pr181.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:20" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/pr181.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:20" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/pr181.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=foobar --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^services " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=foobar --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^services +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "services: http ssh +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:21" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "pr181.at:24" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/pr181.at:24" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_261 +#AT_START_262 +at_fn_group_banner 262 'gh287.at:1' \ + "ICMP block inversion" " " 9 +at_xfail=no +( + printf "%s\n" "262. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/gh287.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/gh287.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh287.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/gh287.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh287.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/gh287.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "gh287.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh287.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "gh287.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh287.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh287.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh287.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh287.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh287.at:1" + + + + + +{ set +x +printf "%s\n" "$at_srcdir/gh287.at:4: mkdir -p ./zones" +at_fn_check_prepare_trace "gh287.at:4" +( $at_check_trace; mkdir -p ./zones +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh287.at:5: echo '' > ./zones/foobar.xml" +at_fn_check_prepare_trace "gh287.at:5" +( $at_check_trace; echo '' > ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh287.at:6: echo '' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh287.at:6" +( $at_check_trace; echo '' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh287.at:7: echo 'foobar' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh287.at:7" +( $at_check_trace; echo 'foobar' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh287.at:8: echo 'foobar desc' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh287.at:8" +( $at_check_trace; echo 'foobar desc' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh287.at:9: echo '' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh287.at:9" +( $at_check_trace; echo '' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh287.at:10: echo '' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh287.at:10" +( $at_check_trace; echo '' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:10" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh287.at:11: echo '' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh287.at:11" +( $at_check_trace; echo '' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh287.at:12: echo '' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh287.at:12" +( $at_check_trace; echo '' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:12" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh287.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:14" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh287.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:14" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "gh287.at:15" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh287.at:15" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_262 +#AT_START_263 +at_fn_group_banner 263 'individual_calls.at:1' \ + "individual calls" " " 9 +at_xfail=no +( + printf "%s\n" "263. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/individual_calls.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/individual_calls.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "individual_calls.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/individual_calls.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "individual_calls.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/individual_calls.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "individual_calls.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/individual_calls.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "individual_calls.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/individual_calls.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "individual_calls.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/individual_calls.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "individual_calls.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/individual_calls.at:1" + + + + + +{ set +x +printf "%s\n" "$at_srcdir/individual_calls.at:4: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "individual_calls.at:4" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/individual_calls.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/individual_calls.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "individual_calls.at:7" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/individual_calls.at:7" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_263 +#AT_START_264 +at_fn_group_banner 264 'rhbz1534571.at:3' \ + "rule deduplication" " " 9 +at_xfail=no +( + printf "%s\n" "264. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:3" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:3" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1534571.at:3" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:3" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1534571.at:3" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:3" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:3: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:3" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:3" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "rhbz1534571.at:3" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1534571.at:3" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rhbz1534571.at:3" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:3" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rhbz1534571.at:3" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:3" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rhbz1534571.at:3" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:3" + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service nfs --add-service nfs3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service nfs --add-service nfs3 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs3 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-service nfs --add-service nfs3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-service nfs --add-service nfs3 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:12" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:13" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:13" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs3 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:14" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1534571.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "rhbz1534571.at:17" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:17" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_264 +#AT_START_265 +at_fn_group_banner 265 'gh290.at:1' \ + "invalid syntax in xml files" " " 9 +at_xfail=no +( + printf "%s\n" "265. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/gh290.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/gh290.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh290.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/gh290.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh290.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/gh290.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "gh290.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh290.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "gh290.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh290.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh290.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh290.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh290.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh290.at:1" + + + + + + + printf "%s\n" "gh290.at:3" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh290.at:3" + + + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:6: mkdir -p ./zones" +at_fn_check_prepare_trace "gh290.at:6" +( $at_check_trace; mkdir -p ./zones +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:7: echo '' > ./direct.xml" +at_fn_check_prepare_trace "gh290.at:7" +( $at_check_trace; echo '' > ./direct.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:8: echo '' >> ./direct.xml" +at_fn_check_prepare_trace "gh290.at:8" +( $at_check_trace; echo '' >> ./direct.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:9: echo '' >> ./direct.xml" +at_fn_check_prepare_trace "gh290.at:9" +( $at_check_trace; echo '' >> ./direct.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:10: echo '--destination 127.0.0.1 --jump RETURN' >> ./direct.xml" +at_fn_check_prepare_trace "gh290.at:10" +( $at_check_trace; echo '--destination 127.0.0.1 --jump RETURN' >> ./direct.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:10" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:12: echo '' >> ./direct.xml" +at_fn_check_prepare_trace "gh290.at:12" +( $at_check_trace; echo '' >> ./direct.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:12" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh290.at:14" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh290.at:14" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh290.at:14" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh290.at:14" + + + + { set +x +printf "%s\n" "$at_srcdir/gh290.at:15: grep \"ERROR:.*mismatched tag\" ./firewalld.log" +at_fn_check_prepare_trace "gh290.at:15" +( $at_check_trace; grep "ERROR:.*mismatched tag" ./firewalld.log +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + if test x"-e '/ERROR:.*mismatched tag.*/d'" != x"ignore"; then + printf "%s\n" "gh290.at:16" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR:.*mismatched tag.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh290.at:16" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_265 +#AT_START_266 +at_fn_group_banner 266 'gh290.at:19' \ + "invalid syntax in xml files" " " 9 +at_xfail=no +( + printf "%s\n" "266. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/gh290.at:19: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:19" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/gh290.at:19: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh290.at:19" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/gh290.at:19: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh290.at:19" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/gh290.at:19: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:19" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "gh290.at:19" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh290.at:19" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "gh290.at:19" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh290.at:19" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh290.at:19" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh290.at:19" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh290.at:19" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh290.at:19" + + + + + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:23: mkdir -p ./zones" +at_fn_check_prepare_trace "gh290.at:23" +( $at_check_trace; mkdir -p ./zones +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:23" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:24: echo '' > ./zones/foobar.xml" +at_fn_check_prepare_trace "gh290.at:24" +( $at_check_trace; echo '' > ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:24" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:25: echo '' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh290.at:25" +( $at_check_trace; echo '' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:25" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:26: echo 'foobar' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh290.at:26" +( $at_check_trace; echo 'foobar' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:26" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:28: echo '' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh290.at:28" +( $at_check_trace; echo '' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:28" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:29: echo '' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh290.at:29" +( $at_check_trace; echo '' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:29" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/gh290.at:30: echo '' >> ./zones/foobar.xml" +at_fn_check_prepare_trace "gh290.at:30" +( $at_check_trace; echo '' >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:30" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh290.at:32" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh290.at:32" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="251" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh290.at:32" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh290.at:32" + + + + { set +x +printf "%s\n" "$at_srcdir/gh290.at:33: grep \"ERROR:.*Missing attribute protocol for port\" ./firewalld.log" +at_fn_check_prepare_trace "gh290.at:33" +( $at_check_trace; grep "ERROR:.*Missing attribute protocol for port" ./firewalld.log +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:33" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + if test x"ignore" != x"ignore"; then + printf "%s\n" "gh290.at:34" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh290.at:34" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_266 +#AT_START_267 +at_fn_group_banner 267 'icmp_block_in_forward_chain.at:1' \ + "ICMP block not present FORWARD chain" " " 9 +at_xfail=no +( + printf "%s\n" "267. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "icmp_block_in_forward_chain.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "icmp_block_in_forward_chain.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/icmp_block_in_forward_chain.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-icmp-block=host-prohibited " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-icmp-block=host-prohibited +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_block_in_forward_chain.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 3 code 10 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:20" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_block_in_forward_chain.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_block_in_forward_chain.at:23" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:23" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "icmp_block_in_forward_chain.at:26" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:26" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_267 +#AT_START_268 +at_fn_group_banner 268 'pr323.at:1' \ + "GRE proto helper" " " 9 +at_xfail=no +( + printf "%s\n" "268. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/pr323.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/pr323.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "pr323.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/pr323.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "pr323.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/pr323.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "pr323.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/pr323.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "pr323.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/pr323.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "pr323.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/pr323.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "pr323.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/pr323.at:1" + + + + + + + printf "%s\n" "pr323.at:4" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} modinfo nf_conntrack_proto_gre ) \ + && at_fn_check_skip 77 "$at_srcdir/pr323.at:4" + + + + + + { set +x +printf "%s\n" "$at_srcdir/pr323.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-protocol=gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-protocol=gre +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/pr323.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-protocol=gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-protocol=gre +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/pr323.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=gre +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + +{ set +x +printf "%s\n" "$at_srcdir/pr323.at:10: lsmod | grep nf_conntrack_proto_gre" +at_fn_check_prepare_notrace 'a shell pipeline' "pr323.at:10" +( $at_check_trace; lsmod | grep nf_conntrack_proto_gre +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:10" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + if test x"" != x"ignore"; then + printf "%s\n" "pr323.at:12" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/pr323.at:12" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_268 +#AT_START_269 +at_fn_group_banner 269 'rhbz1506742.at:1' \ + "ipset with timeout" " " 9 +at_xfail=no +( + printf "%s\n" "269. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1506742.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1506742.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1506742.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + printf "%s\n" "rhbz1506742.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1506742.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rhbz1506742.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rhbz1506742.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rhbz1506742.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" + + + + + + + + + + printf "%s\n" "rhbz1506742.at:4" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1506742.at:4" - cat >./zones/foobar.xml <<'_ATEOF' - - - - -_ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2311: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2311" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/rhbz1506742.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --option=maxelem=1000000 --option=family=inet --option=hashsize=4096 --option=timeout=600 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --option=maxelem=1000000 --option=family=inet --option=hashsize=4096 --option=timeout=600 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2311" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -258956,29 +272357,19 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - - - - -_ATEOF - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2326: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2326" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/rhbz1506742.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2326" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -258986,31 +272377,18 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - - - - - - -_ATEOF - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2339: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2339" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/rhbz1506742.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2339" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -259018,29 +272396,22 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - - - - -_ATEOF + + { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/rhbz1506742.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2354" +at_fn_check_status 32 $at_status "$at_srcdir/rhbz1506742.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -259048,29 +272419,18 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - - - - -_ATEOF - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/rhbz1506742.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2369" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:19" $at_failed && at_fn_log_failure $at_traceon; } @@ -259078,29 +272438,18 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - - - - -_ATEOF - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2384: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2384" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/rhbz1506742.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2384" +at_fn_check_status 32 $at_status "$at_srcdir/rhbz1506742.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -259108,29 +272457,18 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - - - - -_ATEOF - - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2399: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2399" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/rhbz1506742.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2399" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -259138,29 +272476,25 @@ $at_traceon; } - cat >./zones/foobar.xml <<'_ATEOF' - - - - - - - +cat >foobar_entries.txt <<'_ATEOF' + +1.2.3.4 +10.0.1.1 _ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2414: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2414" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/rhbz1506742.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entries-from-file=foobar_entries.txt " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entries-from-file=foobar_entries.txt ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 28 $at_status "$at_srcdir/firewall-cmd.at:2414" +at_fn_check_status 32 $at_status "$at_srcdir/rhbz1506742.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -259170,34 +272504,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1506742.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entries-from-file=foobar_entries.txt " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entries-from-file=foobar_entries.txt +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:28" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - cat >./zones/foobar.xml <<'_ATEOF' - - - - - - - -_ATEOF { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2416: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "firewall-cmd.at:2416" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/rhbz1506742.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2416" +at_fn_check_status 32 $at_status "$at_srcdir/rhbz1506742.at:29" $at_failed && at_fn_log_failure $at_traceon; } @@ -259205,33 +272540,30 @@ $at_traceon; } - else - : - - fi - { set +x -$as_echo "$at_srcdir/firewall-cmd.at:2432: rm ./zones/foobar.xml" -at_fn_check_prepare_trace "firewall-cmd.at:2432" -( $at_check_trace; rm ./zones/foobar.xml +printf "%s\n" "$at_srcdir/rhbz1506742.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entries-from-file=foobar_entries.txt " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entries-from-file=foobar_entries.txt ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/firewall-cmd.at:2432" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:30" $at_failed && at_fn_log_failure $at_traceon; } - if test x"-e '/ERROR:/d' -e '/WARNING:/d'" != x"ignore"; then - $as_echo "firewall-cmd.at:2434" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR:/d' -e '/WARNING:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/firewall-cmd.at:2434" + + + if test x"-e '/Error: IPSET_WITH_TIMEOUT/d' -e '/ERROR: IPSET_WITH_TIMEOUT/d' -e '/WARNING: NOT_ENABLED/d'" != x"ignore"; then + printf "%s\n" "rhbz1506742.at:31" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/Error: IPSET_WITH_TIMEOUT/d' -e '/ERROR: IPSET_WITH_TIMEOUT/d' -e '/WARNING: NOT_ENABLED/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:31" fi @@ -259240,13 +272572,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_242 -#AT_START_243 -at_fn_group_banner 243 'rhbz1514043.at:1' \ - "--set-log-denied does not zero config" " " 9 +#AT_STOP_269 +#AT_START_270 +at_fn_group_banner 270 'rhbz1594657.at:1' \ + "no log untracked passthrough queries" " " 9 at_xfail=no ( - $as_echo "243. $at_setup_line: testing $at_desc ..." + printf "%s\n" "270. $at_setup_line: testing $at_desc ..." $at_traceon @@ -259264,6 +272596,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -259280,29 +272613,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:1" +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1514043.at:1" +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1594657.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -259310,15 +272643,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1514043.at:1" +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1594657.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -259360,15 +272693,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1514043.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:1" +printf "%s\n" "$at_srcdir/rhbz1594657.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -259376,9 +272709,9 @@ $at_traceon; } - $as_echo "rhbz1514043.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1594657.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1514043.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1594657.at:1" @@ -259459,8 +272792,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1514043.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" + printf "%s\n" "rhbz1594657.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -259470,7 +272803,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -259478,8 +272811,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1514043.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" + printf "%s\n" "rhbz1594657.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" fi echo "$!" > firewalld.pid @@ -259495,30 +272828,18 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" fi sleep 1 done - $as_echo "rhbz1514043.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1594657.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:1" - - - + && at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" - { set +x -$as_echo "$at_srcdir/rhbz1514043.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=all " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --set-log-denied=all -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "rhbz1594657.at:3" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1594657.at:3" @@ -259526,15 +272847,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1514043.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-service=samba " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-service=samba +printf "%s\n" "$at_srcdir/rhbz1594657.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L dummy_chain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L dummy_chain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:5" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 13 $at_status "$at_srcdir/rhbz1594657.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -259544,17 +272865,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1514043.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1594657.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L INPUT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:6" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -259564,16 +272884,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1514043.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1594657.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -C dummy_chain -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -C dummy_chain -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:6" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 13 $at_status "$at_srcdir/rhbz1594657.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -259583,19 +272904,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1514043.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^services " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1514043.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^services +printf "%s\n" "$at_srcdir/rhbz1594657.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L dummy_chain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L dummy_chain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "services: dhcpv6-client samba ssh -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:7" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 13 $at_status "$at_srcdir/rhbz1594657.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -259605,41 +272923,16 @@ $at_traceon; } - - - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1514043.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1514043.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1594657.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L INPUT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -LOG 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" -DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID -INPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -INPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 -LOG 0 -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:42" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -259648,36 +272941,22 @@ $at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1514043.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1514043.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -C dummy_chain -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -C dummy_chain -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -LOG 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" -DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID -FORWARD_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -FORWARD_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 -LOG 0 -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:52" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 13 $at_status "$at_srcdir/rhbz1594657.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -259687,93 +272966,42 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/rhbz1514043.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1514043.at:62" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L dummy_chain " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L dummy_chain ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- ::/0 ::/0 -LOG 0 -- ::/0 ::/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" -DROP 0 -- ::/0 ::/0 ctstate INVALID -INPUT_direct 0 -- ::/0 ::/0 -INPUT_POLICIES 0 -- ::/0 ::/0 -LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" -REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:62" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 13 $at_status "$at_srcdir/rhbz1594657.at:12" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/rhbz1514043.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1514043.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L INPUT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- ::/0 ::/0 -LOG 0 -- ::/0 ::/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" -DROP 0 -- ::/0 ::/0 ctstate INVALID -FORWARD_direct 0 -- ::/0 ::/0 -RFC3964_IPv4 0 -- ::/0 ::/0 -FORWARD_POLICIES 0 -- ::/0 ::/0 -LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" -REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1514043.at:72" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:12" $at_failed && at_fn_log_failure $at_traceon; } + + else : @@ -259781,15 +273009,10 @@ $at_traceon; } - - - - - if test x"" != x"ignore"; then - $as_echo "rhbz1514043.at:84" >"$at_check_line_file" + printf "%s\n" "rhbz1594657.at:17" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1514043.at:84" + && at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:17" fi @@ -259798,13 +273021,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_243 -#AT_START_244 -at_fn_group_banner 244 'rhbz1498923.at:1' \ - "invalid direct rule causes reload error" " " 9 +#AT_STOP_270 +#AT_START_271 +at_fn_group_banner 271 'rhbz1571957.at:1' \ + "set-log-denied w/ ICMP block inversion" " " 9 at_xfail=no ( - $as_echo "244. $at_setup_line: testing $at_desc ..." + printf "%s\n" "271. $at_setup_line: testing $at_desc ..." $at_traceon @@ -259822,6 +273045,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -259838,29 +273062,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:1" +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1498923.at:1" +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1571957.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -259868,15 +273092,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1498923.at:1" +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1571957.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -259918,15 +273142,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1498923.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:1" +printf "%s\n" "$at_srcdir/rhbz1571957.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -259934,9 +273158,9 @@ $at_traceon; } - $as_echo "rhbz1498923.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1571957.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1498923.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1571957.at:1" @@ -260017,8 +273241,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1498923.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" + printf "%s\n" "rhbz1571957.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -260028,7 +273252,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -260036,8 +273260,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1498923.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" + printf "%s\n" "rhbz1571957.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" fi echo "$!" > firewalld.pid @@ -260053,31 +273277,27 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" fi sleep 1 done - $as_echo "rhbz1498923.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1571957.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:1" - + && at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" - $as_echo "rhbz1498923.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1498923.at:3" -{ set +x -$as_echo "$at_srcdir/rhbz1498923.at:6: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1498923.at:6" -( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/rhbz1571957.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-icmp-block-inversion " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -260085,16 +273305,19 @@ $at_traceon; } + + + { set +x -$as_echo "$at_srcdir/rhbz1498923.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:7" +printf "%s\n" "$at_srcdir/rhbz1571957.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -260105,15 +273328,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:7" +printf "%s\n" "$at_srcdir/rhbz1571957.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -260125,36 +273348,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 +printf "%s\n" "$at_srcdir/rhbz1571957.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=all " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --set-log-denied=all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:6" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/rhbz1498923.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 +{ set +x +printf "%s\n" "$at_srcdir/rhbz1571957.at:7: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1571957.at:7" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:9" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -260162,19 +273380,16 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1498923.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:12" +printf "%s\n" "$at_srcdir/rhbz1571957.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -260185,15 +273400,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:12" +printf "%s\n" "$at_srcdir/rhbz1571957.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:8" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -260205,17 +273420,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 +printf "%s\n" "$at_srcdir/rhbz1571957.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=broadcast " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --set-log-denied=broadcast ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "no zone -" | \ - $at_diff - "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 2 $at_status "$at_srcdir/rhbz1498923.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -260223,16 +273436,19 @@ $at_traceon; } -{ set +x -$as_echo "$at_srcdir/rhbz1498923.at:18: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1498923.at:18" -( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1571957.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -260240,16 +273456,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/rhbz1498923.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1571957.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -260259,37 +273477,149 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1498923.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state + + if test x"" != x"ignore"; then + printf "%s\n" "rhbz1571957.at:12" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:12" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_271 +#AT_START_272 +at_fn_group_banner 272 'rhbz1404076.at:1' \ + "query single port added with range" " " 9 +at_xfail=no +( + printf "%s\n" "272. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1404076.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1404076.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } - { set +x -$as_echo "$at_srcdir/rhbz1498923.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 8080 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 8080 -j ACCEPT + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -260297,18 +273627,148 @@ $at_traceon; } + printf "%s\n" "rhbz1404076.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1404076.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rhbz1404076.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rhbz1404076.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rhbz1404076.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" + + + + + + + + { set +x -$as_echo "$at_srcdir/rhbz1498923.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 1 --a-bogus-flag " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 1 --a-bogus-flag +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=8070-8080/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=8070-8080/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:22" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260318,17 +273778,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1498923.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-interface=foobar0 +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9050-10050/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9050-10050/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:25" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260339,15 +273798,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --add-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --direct --add-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9000/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9000/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:26" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260358,17 +273817,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1498923.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=8080-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 13 $at_status "$at_srcdir/rhbz1498923.at:28" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260379,15 +273837,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 251 $at_status "$at_srcdir/rhbz1498923.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260397,19 +273855,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1498923.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085-8087/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8085-8087/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "failed -" | \ - $at_diff - "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 251 $at_status "$at_srcdir/rhbz1498923.at:29" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260419,19 +273874,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1498923.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8080-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:33" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260442,15 +273894,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1498923.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:36" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8080-8089/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8080-8089/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:36" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260459,21 +273911,17 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi { set +x -$as_echo "$at_srcdir/rhbz1498923.at:39: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter INPUT 1 --a-bogus-flag" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter INPUT 1 --a-bogus-flag" "rhbz1498923.at:39" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --direct --remove-rule ipv4 filter INPUT 1 --a-bogus-flag +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8081-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8081-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:39" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260482,16 +273930,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1498923.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:40" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=webcache/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=webcache/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:40" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260500,17 +273949,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1498923.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:40" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8091/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8091/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:40" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260519,21 +273967,36 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8085/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/rhbz1498923.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zone-of-interface=foobar0 +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:43" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260543,16 +274006,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1498923.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1498923.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --direct --query-rule ipv4 filter FORWARD 0 -p tcp -j ACCEPT +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10000-10010/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10000-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1498923.at:46" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260561,147 +274025,143 @@ $at_traceon; } - if test x"-e '/.*a-bogus-flag.*/d'" != x"ignore"; then - $as_echo "rhbz1498923.at:47" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/.*a-bogus-flag.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1498923.at:47" - fi - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_244 -#AT_START_245 -at_fn_group_banner 245 'pr181.at:1' \ - "combined zones name length check" " " 9 -at_xfail=no -( - $as_echo "245. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9000/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9010-9020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9010-9020/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/pr181.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10050-10060/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/pr181.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "pr181.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9999/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9999/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/pr181.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "pr181.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10011/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10011/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9095-10000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9095-10000/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9090-9094/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9090-9094/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } + - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/pr181.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9099-10001/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=9099-10001/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -260709,301 +274169,310 @@ $at_traceon; } - $as_echo "pr181.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/pr181.at:1" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10005-10020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10005-10020/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10021-10022/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10021-10022/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "pr181.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/pr181.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10010-10015/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10010-10015/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "pr181.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/pr181.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "pr181.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/pr181.at:1" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9080-10040/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9080-10040/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:4: mkdir -p ./zones/foobar" -at_fn_check_prepare_trace "pr181.at:4" -( $at_check_trace; mkdir -p ./zones/foobar + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9079-10041/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9079-10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:6: echo '' > ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:6" -( $at_check_trace; echo '' > ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9093-10025/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=9093-10025/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:7: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:7" -( $at_check_trace; echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10010-10015/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:8: echo 'foobar' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:8" -( $at_check_trace; echo 'foobar' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" +at_fn_check_prepare_trace "rhbz1404076.at:70" +( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:8" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:9: echo 'foobar desc' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:9" -( $at_check_trace; echo 'foobar desc' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9090-10030/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=9090-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:10: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:10" -( $at_check_trace; echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:10" +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:11: echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:11" -( $at_check_trace; echo '' >> ./zones/foobar/a_really_long_name_that_trigger_the_bug.xml + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:13: echo '' > ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:13" -( $at_check_trace; echo '' > ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9010-9020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:14: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:14" -( $at_check_trace; echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10050-10060/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:15: echo 'foobar' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:15" -( $at_check_trace; echo 'foobar' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9079/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9079/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:16: echo 'foobar desc' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:16" -( $at_check_trace; echo 'foobar desc' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10041/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:17: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:17" -( $at_check_trace; echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9080-9085/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9080-9085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr181.at:18: echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml" -at_fn_check_prepare_trace "pr181.at:18" -( $at_check_trace; echo '' >> ./zones/foobar/another_really_long_name_that_trigger_the_bug.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10035-10040/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10035-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -261013,15 +274482,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/pr181.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10005-10009/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10005-10009/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:20" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -261030,39 +274499,49 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/pr181.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10100-10110/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10100-10110/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:20" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" +at_fn_check_prepare_trace "rhbz1404076.at:70" +( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x -$as_echo "$at_srcdir/pr181.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=foobar --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | grep ^services " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr181.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=foobar --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | grep ^services +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10001-10004/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10001-10004/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "services: http ssh -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr181.at:21" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -261071,147 +274550,131 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "pr181.at:24" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/pr181.at:24" - fi - + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10016-10019/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10016-10019/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_245 -#AT_START_246 -at_fn_group_banner 246 'gh287.at:1' \ - "ICMP block inversion" " " 9 -at_xfail=no -( - $as_echo "246. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10005/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10005/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/gh287.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10003-10030/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10003-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/gh287.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh287.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10004-10005/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10004-10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/gh287.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh287.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10009-10010/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10009-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ports +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/gh287.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=8070-8080/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=8070-8080/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -261219,93 +274682,40 @@ $at_traceon; } - $as_echo "gh287.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh287.at:1" - - - cat >./dbus.conf <<'_ATEOF' + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9050-10050/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9050-10050/sctp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/dccp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "gh287.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh287.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late @@ -261313,153 +274723,186 @@ at_fn_check_skip 99 "$at_srcdir/gh287.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=8080-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=8080-8090/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "gh287.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh287.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "gh287.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh287.at:1" -{ set +x -$as_echo "$at_srcdir/gh287.at:4: mkdir -p ./zones" -at_fn_check_prepare_trace "gh287.at:4" -( $at_check_trace; mkdir -p ./zones + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh287.at:5: echo '' > ./zones/foobar.xml" -at_fn_check_prepare_trace "gh287.at:5" -( $at_check_trace; echo '' > ./zones/foobar.xml + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085-8087/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8085-8087/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh287.at:6: echo '' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh287.at:6" -( $at_check_trace; echo '' >> ./zones/foobar.xml + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh287.at:7: echo 'foobar' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh287.at:7" -( $at_check_trace; echo 'foobar' >> ./zones/foobar.xml + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8089/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8089/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh287.at:8: echo 'foobar desc' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh287.at:8" -( $at_check_trace; echo 'foobar desc' >> ./zones/foobar.xml + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8081-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8081-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh287.at:9: echo '' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh287.at:9" -( $at_check_trace; echo '' >> ./zones/foobar.xml + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=webcache/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=webcache/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh287.at:10: echo '' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh287.at:10" -( $at_check_trace; echo '' >> ./zones/foobar.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8091/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8091/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:10" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh287.at:11: echo '' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh287.at:11" -( $at_check_trace; echo '' >> ./zones/foobar.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:11" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh287.at:12: echo '' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh287.at:12" -( $at_check_trace; echo '' >> ./zones/foobar.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:12" +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -261468,16 +274911,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/gh287.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10000-10010/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10000-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -261488,15 +274933,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh287.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh287.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh287.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -261505,148 +274950,124 @@ $at_traceon; } - - if test x"" != x"ignore"; then - $as_echo "gh287.at:15" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh287.at:15" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_246 -#AT_START_247 -at_fn_group_banner 247 'individual_calls.at:1' \ - "individual calls" " " 9 -at_xfail=no -( - $as_echo "247. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9010-9020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9010-9020/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10050-10060/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10050-10060/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/individual_calls.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9999/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9999/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/individual_calls.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "individual_calls.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10011/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10011/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/individual_calls.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "individual_calls.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9095-10000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9095-10000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9090-9094/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9090-9094/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/individual_calls.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9099-10001/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=9099-10001/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -261654,143 +275075,91 @@ $at_traceon; } - $as_echo "individual_calls.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/individual_calls.at:1" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10005-10020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10005-10020/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10021-10022/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10021-10022/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "individual_calls.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/individual_calls.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10010-10015/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10010-10015/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } + - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "individual_calls.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/individual_calls.at:1" - fi - echo "$!" > firewalld.pid + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9080-10040/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9080-10040/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "individual_calls.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/individual_calls.at:1" -{ set +x -$as_echo "$at_srcdir/individual_calls.at:4: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "individual_calls.at:4" -( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9079-10041/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9079-10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -261798,16 +275167,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/individual_calls.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9093-10025/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=9093-10025/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -261818,166 +275188,161 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/individual_calls.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "individual_calls.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10010-10015/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/individual_calls.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" +at_fn_check_prepare_trace "rhbz1404076.at:71" +( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } + - if test x"" != x"ignore"; then - $as_echo "individual_calls.at:7" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/individual_calls.at:7" - fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9090-10030/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=9090-10030/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_247 -#AT_START_248 -at_fn_group_banner 248 'rhbz1534571.at:3' \ - "rule deduplication" " " 9 -at_xfail=no -( - $as_echo "248. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ports +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:3" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1534571.at:3" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9010-9020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1534571.at:3" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10050-10060/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9079/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9079/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1534571.at:3: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:3" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10041/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:3" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -261985,146 +275350,104 @@ $at_traceon; } - $as_echo "rhbz1534571.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1534571.at:3" - + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9080-9085/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9080-9085/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10035-10040/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10035-10040/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "rhbz1534571.at:3" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:3" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10005-10009/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10005-10009/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "rhbz1534571.at:3" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:3" - fi - echo "$!" > firewalld.pid + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10100-10110/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10100-10110/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "rhbz1534571.at:3" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:3" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" +at_fn_check_prepare_trace "rhbz1404076.at:71" +( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service nfs --add-service nfs3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service nfs --add-service nfs3 +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10001-10004/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10001-10004/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -262135,15 +275458,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs3 +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10016-10019/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10016-10019/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -262154,15 +275477,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10005/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:9" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -262171,18 +275494,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1534571.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-service nfs --add-service nfs3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-service nfs --add-service nfs3 +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10003-10030/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10003-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:12" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -262191,18 +275512,34 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10004-10005/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10004-10005/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/rhbz1534571.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10009-10010/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10009-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:13" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -262211,17 +275548,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1534571.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:13" +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -262232,16 +275570,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1534571.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs3 +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=8070-8080/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=8070-8080/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } @@ -262252,15 +275591,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1534571.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-service nfs " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1534571.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-service nfs +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9050-10050/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9050-10050/sctp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1534571.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } @@ -262270,147 +275609,131 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "rhbz1534571.at:17" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1534571.at:17" - fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9000/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9000/dccp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_248 -#AT_START_249 -at_fn_group_banner 249 'gh290.at:1' \ - "invalid syntax in xml files" " " 9 -at_xfail=no -( - $as_echo "249. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=8080-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=8080-8090/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/gh290.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/gh290.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh290.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085-8087/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8085-8087/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/gh290.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh290.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8080-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8080-8089/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8080-8089/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/gh290.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8081-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8081-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } @@ -262418,418 +275741,313 @@ $at_traceon; } - $as_echo "gh290.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh290.at:1" - - - cat >./dbus.conf <<'_ATEOF' + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=webcache/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=webcache/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8091/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8091/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "gh290.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh290.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8085/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "gh290.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh290.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "gh290.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh290.at:1" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-source-ports +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - $as_echo "gh290.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh290.at:3" -{ set +x -$as_echo "$at_srcdir/gh290.at:6: mkdir -p ./zones" -at_fn_check_prepare_trace "gh290.at:6" -( $at_check_trace; mkdir -p ./zones + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10000-10010/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10000-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:7: echo '' > ./direct.xml" -at_fn_check_prepare_trace "gh290.at:7" -( $at_check_trace; echo '' > ./direct.xml + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:8: echo '' >> ./direct.xml" -at_fn_check_prepare_trace "gh290.at:8" -( $at_check_trace; echo '' >> ./direct.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9010-9020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:9: echo '' >> ./direct.xml" -at_fn_check_prepare_trace "gh290.at:9" -( $at_check_trace; echo '' >> ./direct.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10050-10060/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:10: echo '--destination 127.0.0.1 --jump RETURN' >> ./direct.xml" -at_fn_check_prepare_trace "gh290.at:10" -( $at_check_trace; echo '--destination 127.0.0.1 --jump RETURN' >> ./direct.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9999/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9999/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:12: echo '' >> ./direct.xml" -at_fn_check_prepare_trace "gh290.at:12" -( $at_check_trace; echo '' >> ./direct.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10011/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10011/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "gh290.at:14" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh290.at:14" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "gh290.at:14" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh290.at:14" - { set +x -$as_echo "$at_srcdir/gh290.at:15: grep \"ERROR:.*mismatched tag\" ./firewalld.log" -at_fn_check_prepare_trace "gh290.at:15" -( $at_check_trace; grep "ERROR:.*mismatched tag" ./firewalld.log +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9095-10000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9095-10000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:15" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - if test x"-e '/ERROR:.*mismatched tag.*/d'" != x"ignore"; then - $as_echo "gh290.at:16" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR:.*mismatched tag.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh290.at:16" - fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9090-9094/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9090-9094/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_249 -#AT_START_250 -at_fn_group_banner 250 'gh290.at:19' \ - "invalid syntax in xml files" " " 9 -at_xfail=no -( - $as_echo "250. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9099-10001/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=9099-10001/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/gh290.at:19: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:19" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10005-10020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10005-10020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/gh290.at:19: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh290.at:19" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10021-10022/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10021-10022/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/gh290.at:19: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh290.at:19" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10010-10015/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/gh290.at:19: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh290.at:19" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9080-10040/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9080-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } @@ -262837,424 +276055,379 @@ $at_traceon; } - $as_echo "gh290.at:19" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh290.at:19" - - + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9079-10041/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9079-10041/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9093-10025/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=9093-10025/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "gh290.at:19" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh290.at:19" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10010-10015/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10010-10015/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "gh290.at:19" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh290.at:19" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "gh290.at:19" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh290.at:19" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" +at_fn_check_prepare_trace "rhbz1404076.at:72" +( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:23: mkdir -p ./zones" -at_fn_check_prepare_trace "gh290.at:23" -( $at_check_trace; mkdir -p ./zones + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9090-10030/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=9090-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:23" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:24: echo '' > ./zones/foobar.xml" -at_fn_check_prepare_trace "gh290.at:24" -( $at_check_trace; echo '' > ./zones/foobar.xml + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:24" +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:25: echo '' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh290.at:25" -( $at_check_trace; echo '' >> ./zones/foobar.xml + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:25" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:26: echo 'foobar' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh290.at:26" -( $at_check_trace; echo 'foobar' >> ./zones/foobar.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9010-9020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9010-9020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:26" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:28: echo '' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh290.at:28" -( $at_check_trace; echo '' >> ./zones/foobar.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10050-10060/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10050-10060/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:29: echo '' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh290.at:29" -( $at_check_trace; echo '' >> ./zones/foobar.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9079/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9079/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:29" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh290.at:30: echo '' >> ./zones/foobar.xml" -at_fn_check_prepare_trace "gh290.at:30" -( $at_check_trace; echo '' >> ./zones/foobar.xml + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10041/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:30" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9080-9085/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9080-9085/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } + - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "gh290.at:32" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh290.at:32" - fi - echo "$!" > firewalld.pid - WANTED_CODE="251" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "gh290.at:32" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh290.at:32" { set +x -$as_echo "$at_srcdir/gh290.at:33: grep \"ERROR:.*Missing attribute protocol for port\" ./firewalld.log" -at_fn_check_prepare_trace "gh290.at:33" -( $at_check_trace; grep "ERROR:.*Missing attribute protocol for port" ./firewalld.log +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10035-10040/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10035-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh290.at:33" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "gh290.at:34" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh290.at:34" - fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10005-10009/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10005-10009/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_250 -#AT_START_251 -at_fn_group_banner 251 'icmp_block_in_forward_chain.at:1' \ - "ICMP block not present FORWARD chain" " " 9 -at_xfail=no -( - $as_echo "251. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10100-10110/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10100-10110/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" +at_fn_check_prepare_trace "rhbz1404076.at:72" +( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10001-10004/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10001-10004/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "icmp_block_in_forward_chain.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10016-10019/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10016-10019/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "icmp_block_in_forward_chain.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10005/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10003-10030/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10003-10030/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10004-10005/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10004-10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" $at_failed && at_fn_log_failure $at_traceon; } @@ -263262,129 +276435,79 @@ $at_traceon; } - $as_echo "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/icmp_block_in_forward_chain.at:1" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10009-10010/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10009-10010/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-source-ports +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8070-8080/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8070-8080/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } + - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "icmp_block_in_forward_chain.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9050-10050/sctp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9050-10050/sctp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -263393,15 +276516,15 @@ at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:1" { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-icmp-block=host-prohibited " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_block_in_forward_chain.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-icmp-block=host-prohibited +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -263412,8 +276535,18 @@ $at_traceon; } - - + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8080-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8080-8090/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -263422,23 +276555,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_block_in_forward_chain.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 3 code 10 reject-with icmp-host-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:20" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -263448,26 +276573,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085-8087/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085-8087/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/icmp_block_in_forward_chain.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_block_in_forward_chain.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8090/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_block_in_forward_chain.at:23" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -263477,149 +276611,130 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8089/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8089/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - if test x"" != x"ignore"; then - $as_echo "icmp_block_in_forward_chain.at:26" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/icmp_block_in_forward_chain.at:26" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_251 -#AT_START_252 -at_fn_group_banner 252 'pr323.at:1' \ - "GRE proto helper" " " 9 -at_xfail=no -( - $as_echo "252. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8081-8090/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8081-8090/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/pr323.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=webcache/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=webcache/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/pr323.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "pr323.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8091/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8091/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/pr323.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "pr323.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:1" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-source-ports +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/pr323.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10000-10010/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10000-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -263627,152 +276742,108 @@ $at_traceon; } - $as_echo "pr323.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/pr323.at:1" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9010-9020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9010-9020/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "pr323.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/pr323.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10050-10060/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10050-10060/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "pr323.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/pr323.at:1" - fi - echo "$!" > firewalld.pid + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9999/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9999/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "pr323.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/pr323.at:1" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10011/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10011/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - $as_echo "pr323.at:4" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} modinfo nf_conntrack_proto_gre ) \ - && at_fn_check_skip 77 "$at_srcdir/pr323.at:4" { set +x -$as_echo "$at_srcdir/pr323.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-protocol=gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-protocol=gre +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9095-10000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9095-10000/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -263781,17 +276852,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/pr323.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-protocol=gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-protocol=gre +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9090-9094/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9090-9094/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -263800,181 +276870,199 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9099-10001/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9099-10001/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/pr323.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "pr323.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=gre +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10005-10020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10005-10020/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/pr323.at:10: lsmod | grep nf_conntrack_proto_gre" -at_fn_check_prepare_notrace 'a shell pipeline' "pr323.at:10" -( $at_check_trace; lsmod | grep nf_conntrack_proto_gre + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10021-10022/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10021-10022/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/pr323.at:10" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "pr323.at:12" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/pr323.at:12" - fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10010-10015/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10010-10015/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_252 -#AT_START_253 -at_fn_group_banner 253 'rhbz1506742.at:1' \ - "ipset with timeout" " " 9 -at_xfail=no -( - $as_echo "253. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9080-10040/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9080-10040/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9079-10041/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9079-10041/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1506742.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9093-10025/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9093-10025/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1506742.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10010-10015/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" +at_fn_check_prepare_trace "rhbz1404076.at:73" +( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9090-10030/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9090-10030/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1506742.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:1" +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -263982,141 +277070,93 @@ $at_traceon; } - $as_echo "rhbz1506742.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1506742.at:1" - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9000/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9000/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "rhbz1506742.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9010-9020/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9010-9020/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10050-10060/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10050-10060/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "rhbz1506742.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "rhbz1506742.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9079/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9079/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } - $as_echo "rhbz1506742.at:4" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1506742.at:4" + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10041/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10041/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -264124,15 +277164,15 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:1" { set +x -$as_echo "$at_srcdir/rhbz1506742.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --option=maxelem=1000000 --option=family=inet --option=hashsize=4096 --option=timeout=600 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --option=maxelem=1000000 --option=family=inet --option=hashsize=4096 --option=timeout=600 +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9080-9085/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9080-9085/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -264141,18 +277181,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1506742.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10035-10040/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10035-10040/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -264161,17 +277199,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1506742.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10005-10009/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10005-10009/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -264180,21 +277217,32 @@ $at_traceon; } - + { set +x +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10100-10110/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10100-10110/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entry=1.2.3.4 +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" +at_fn_check_prepare_trace "rhbz1404076.at:73" +( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 32 $at_status "$at_srcdir/rhbz1506742.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -264202,18 +277250,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1506742.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=1.2.3.4 +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10001-10004/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10001-10004/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -264224,15 +277270,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10016-10019/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10016-10019/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 32 $at_status "$at_srcdir/rhbz1506742.at:20" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -264243,15 +277289,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1506742.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=1.2.3.4 +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10005/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:21" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -264259,25 +277305,17 @@ $at_traceon; } -cat >foobar_entries.txt <<'_ATEOF' - -1.2.3.4 -10.0.1.1 -_ATEOF - - - { set +x -$as_echo "$at_srcdir/rhbz1506742.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entries-from-file=foobar_entries.txt " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --add-entries-from-file=foobar_entries.txt +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10003-10030/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10003-10030/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 32 $at_status "$at_srcdir/rhbz1506742.at:27" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -264286,17 +277324,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1506742.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entries-from-file=foobar_entries.txt " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entries-from-file=foobar_entries.txt +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10004-10005/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10004-10005/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:28" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -264305,17 +277342,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1506742.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --query-entry=1.2.3.4 +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10009-10010/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10009-10010/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 32 $at_status "$at_srcdir/rhbz1506742.at:29" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -264324,17 +277360,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1506742.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entries-from-file=foobar_entries.txt " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1506742.at:30" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entries-from-file=foobar_entries.txt +printf "%s\n" "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1506742.at:30" +echo >>"$at_stdout"; printf "%s\n" "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -264343,10 +277380,13 @@ $at_traceon; } - if test x"-e '/Error: IPSET_WITH_TIMEOUT/d' -e '/ERROR: IPSET_WITH_TIMEOUT/d' -e '/WARNING: NOT_ENABLED/d'" != x"ignore"; then - $as_echo "rhbz1506742.at:31" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/Error: IPSET_WITH_TIMEOUT/d' -e '/ERROR: IPSET_WITH_TIMEOUT/d' -e '/WARNING: NOT_ENABLED/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1506742.at:31" + + + + if test x"-e '/WARNING: ALREADY_ENABLED:/d' -e '/WARNING: NOT_ENABLED:/d'" != x"ignore"; then + printf "%s\n" "rhbz1404076.at:76" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: ALREADY_ENABLED:/d' -e '/WARNING: NOT_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:76" fi @@ -264355,13 +277395,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_253 -#AT_START_254 -at_fn_group_banner 254 'rhbz1594657.at:1' \ - "no log untracked passthrough queries" " " 9 +#AT_STOP_272 +#AT_START_273 +at_fn_group_banner 273 'gh366.at:1' \ + "service destination multiple IP versions" " " 9 at_xfail=no ( - $as_echo "254. $at_setup_line: testing $at_desc ..." + printf "%s\n" "273. $at_setup_line: testing $at_desc ..." $at_traceon @@ -264379,6 +277419,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -264395,29 +277436,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:1" +printf "%s\n" "$at_srcdir/gh366.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1594657.at:1" +printf "%s\n" "$at_srcdir/gh366.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh366.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -264425,15 +277466,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1594657.at:1" +printf "%s\n" "$at_srcdir/gh366.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh366.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -264475,15 +277516,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1594657.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:1" +printf "%s\n" "$at_srcdir/gh366.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -264491,9 +277532,9 @@ $at_traceon; } - $as_echo "rhbz1594657.at:1" >"$at_check_line_file" + printf "%s\n" "gh366.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1594657.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh366.at:1" @@ -264574,8 +277615,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1594657.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" + printf "%s\n" "gh366.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh366.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -264585,7 +277626,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -264593,8 +277634,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1594657.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" + printf "%s\n" "gh366.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh366.at:1" fi echo "$!" > firewalld.pid @@ -264610,18 +277651,13 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" fi sleep 1 done - $as_echo "rhbz1594657.at:1" >"$at_check_line_file" + printf "%s\n" "gh366.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" - - + && at_fn_check_skip 99 "$at_srcdir/gh366.at:1" - $as_echo "rhbz1594657.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1594657.at:3" @@ -264629,15 +277665,15 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:1" { set +x -$as_echo "$at_srcdir/rhbz1594657.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L dummy_chain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L dummy_chain +printf "%s\n" "$at_srcdir/gh366.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-service=mdns " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-service=mdns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 13 $at_status "$at_srcdir/rhbz1594657.at:5" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -264647,16 +277683,31 @@ $at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/rhbz1594657.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L INPUT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough eb -t filter -L INPUT +printf "%s\n" "$at_srcdir/gh366.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh366.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:6" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -264667,35 +277718,60 @@ $at_traceon; } + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rhbz1594657.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -C dummy_chain -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -C dummy_chain -j ACCEPT +printf "%s\n" "$at_srcdir/gh366.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh366.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 13 $at_status "$at_srcdir/rhbz1594657.at:8" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +ACCEPT 17 -- ::/0 ff02::fb udp dpt:5353 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:26" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/rhbz1594657.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L dummy_chain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L dummy_chain +printf "%s\n" "$at_srcdir/gh366.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --remove-service=mdns " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --remove-service=mdns ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 13 $at_status "$at_srcdir/rhbz1594657.at:9" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -264705,16 +277781,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1594657.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L INPUT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv4 -t filter -L INPUT +printf "%s\n" "$at_srcdir/gh366.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule=\"rule service name=\"mdns\" accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule="rule service name="mdns" accept" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:10" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:29" $at_failed && at_fn_log_failure $at_traceon; } @@ -264723,22 +277800,32 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : + + + { set +x -$as_echo "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -C dummy_chain -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -C dummy_chain -j ACCEPT +printf "%s\n" "$at_srcdir/gh366.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh366.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 13 $at_status "$at_srcdir/rhbz1594657.at:12" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:30" $at_failed && at_fn_log_failure $at_traceon; } @@ -264748,35 +277835,62 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L dummy_chain " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L dummy_chain +printf "%s\n" "$at_srcdir/gh366.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh366.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 13 $at_status "$at_srcdir/rhbz1594657.at:12" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +ACCEPT 17 -- ::/0 ff02::fb udp dpt:5353 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:30" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + + { set +x -$as_echo "$at_srcdir/rhbz1594657.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L INPUT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1594657.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --passthrough ipv6 -t filter -L INPUT +printf "%s\n" "$at_srcdir/gh366.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule='rule family=\"ipv4\" destination address=\"10.10.10.0/24\" service name=\"mdns\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule='rule family="ipv4" destination address="10.10.10.0/24" service name="mdns" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1594657.at:12" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 122 $at_status "$at_srcdir/gh366.at:33" $at_failed && at_fn_log_failure $at_traceon; } @@ -264784,17 +277898,13 @@ $at_traceon; } - else - : - - fi - if test x"" != x"ignore"; then - $as_echo "rhbz1594657.at:17" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1594657.at:17" + if test x"-e '/ERROR: INVALID_RULE: Destination conflict with service/d'" != x"ignore"; then + printf "%s\n" "gh366.at:36" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_RULE: Destination conflict with service/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh366.at:36" fi @@ -264803,13 +277913,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_254 -#AT_START_255 -at_fn_group_banner 255 'rhbz1571957.at:1' \ - "set-log-denied w/ ICMP block inversion" " " 9 +#AT_STOP_273 +#AT_START_274 +at_fn_group_banner 274 'rhbz1601610.at:1' \ + "ipset duplicate entries" " " 9 at_xfail=no ( - $as_echo "255. $at_setup_line: testing $at_desc ..." + printf "%s\n" "274. $at_setup_line: testing $at_desc ..." $at_traceon @@ -264827,6 +277937,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -264843,29 +277954,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:1" +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1571957.at:1" +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1601610.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -264873,15 +277984,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1571957.at:1" +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1601610.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -264923,15 +278034,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1571957.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:1" +printf "%s\n" "$at_srcdir/rhbz1601610.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -264939,9 +278050,9 @@ $at_traceon; } - $as_echo "rhbz1571957.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1571957.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1601610.at:1" @@ -265022,8 +278133,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1571957.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" + printf "%s\n" "rhbz1601610.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -265033,7 +278144,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -265041,8 +278152,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1571957.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" + printf "%s\n" "rhbz1601610.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" fi echo "$!" > firewalld.pid @@ -265058,9 +278169,9 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" fi sleep 1 done - $as_echo "rhbz1571957.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1601610.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" @@ -265069,19 +278180,10 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:1" - { set +x -$as_echo "$at_srcdir/rhbz1571957.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-icmp-block-inversion " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=public --add-icmp-block-inversion -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "rhbz1601610.at:4" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1601610.at:4" @@ -265090,15 +278192,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1601610.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --new-ipset=foobar --permanent --type=hash:net " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --new-ipset=foobar --permanent --type=hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -265108,16 +278210,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1571957.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1601610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -265127,50 +278230,37 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1571957.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=all " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --set-log-denied=all +printf "%s\n" "$at_srcdir/rhbz1601610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:7" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/rhbz1571957.at:7: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1571957.at:7" -( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:7" -$at_failed && at_fn_log_failure -$at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1601610.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.1.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.1.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:8" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -265181,15 +278271,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1601610.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:8" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -265199,17 +278289,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1571957.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --set-log-denied=broadcast " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --set-log-denied=broadcast +printf "%s\n" "$at_srcdir/rhbz1601610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.2.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.2.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:9" +echo >>"$at_stderr"; printf "%s\n" "Warning: ALREADY_ENABLED: '10.1.0.0/22' already is in 'foobar' +" | \ + $at_diff - "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -265219,17 +278310,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1571957.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1601610.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.2.0.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.2.0.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:10" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -265240,15 +278330,18 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1571957.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1571957.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1601610.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1571957.at:10" +echo >>"$at_stdout"; printf "%s\n" "10.1.0.0/22 +10.2.0.0/22 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -265259,147 +278352,113 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "rhbz1571957.at:12" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1571957.at:12" - fi - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_255 -#AT_START_256 -at_fn_group_banner 256 'rhbz1404076.at:1' \ - "query single port added with range" " " 9 -at_xfail=no -( - $as_echo "256. $at_setup_line: testing $at_desc ..." - $at_traceon + if $IPSET list >/dev/null 2>&1; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1601610.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1601610.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:net +Members: +10.1.0.0/22 +10.2.0.0/22 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:28" +$at_failed && at_fn_log_failure +$at_traceon; } + fi - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1601610.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=10.1.1.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:36" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=10.1.1.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:36" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1404076.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1404076.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1601610.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.1.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:37" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.1.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1601610.at:37" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1601610.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1601610.at:38" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rhbz1601610.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.2.0.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.2.0.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:39" $at_failed && at_fn_log_failure $at_traceon; } @@ -265407,130 +278466,61 @@ $at_traceon; } - $as_echo "rhbz1404076.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1404076.at:1" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/rhbz1601610.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:40" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "10.2.0.0/22 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:40" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "rhbz1404076.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + if $IPSET list >/dev/null 2>&1; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1601610.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1601610.at:52" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:net +Members: +10.2.0.0/22 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:52" +$at_failed && at_fn_log_failure +$at_traceon; } - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "rhbz1404076.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break fi - sleep 1 - done - $as_echo "rhbz1404076.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" - - @@ -265540,15 +278530,15 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:1" { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=8070-8080/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=8070-8080/udp +printf "%s\n" "$at_srcdir/rhbz1601610.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --add-entry=10.1.1.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:59" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --add-entry=10.1.1.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:59" $at_failed && at_fn_log_failure $at_traceon; } @@ -265559,15 +278549,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9050-10050/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9050-10050/sctp +printf "%s\n" "$at_srcdir/rhbz1601610.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:60" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +echo >>"$at_stdout"; printf "%s\n" "10.1.0.0/22 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:60" $at_failed && at_fn_log_failure $at_traceon; } @@ -265578,15 +278570,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9000/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9000/dccp +printf "%s\n" "$at_srcdir/rhbz1601610.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --remove-entry=10.1.1.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:63" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --remove-entry=10.1.1.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:63" $at_failed && at_fn_log_failure $at_traceon; } @@ -265596,17 +278588,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=8080-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=8080-8090/tcp +printf "%s\n" "$at_srcdir/rhbz1601610.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:64" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +echo >>"$at_stdout"; printf "%s\n" " +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:64" $at_failed && at_fn_log_failure $at_traceon; } @@ -265616,16 +278609,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8085/tcp +printf "%s\n" "$at_srcdir/rhbz1601610.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=10.3.0.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:68" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=10.3.0.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:68" $at_failed && at_fn_log_failure $at_traceon; } @@ -265636,15 +278630,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085-8087/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8085-8087/tcp +printf "%s\n" "$at_srcdir/rhbz1601610.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --runtime-to-permanent " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:69" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:69" $at_failed && at_fn_log_failure $at_traceon; } @@ -265654,16 +278648,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8080-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8080-8090/tcp +printf "%s\n" "$at_srcdir/rhbz1601610.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -265674,15 +278669,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8080-8089/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8080-8089/tcp +printf "%s\n" "$at_srcdir/rhbz1601610.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:70" $at_failed && at_fn_log_failure $at_traceon; } @@ -265692,35 +278687,55 @@ $at_traceon; } + + + + + + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8081-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8081-8090/tcp +printf "%s\n" "$at_srcdir/rhbz1601610.at:80: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1601610.at:80" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:net +Members: +10.2.0.0/22 +10.3.0.0/22 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:80" $at_failed && at_fn_log_failure $at_traceon; } + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=webcache/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=webcache/tcp +{ set +x +printf "%s\n" "$at_srcdir/rhbz1601610.at:89: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1601610.at:89" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:89" $at_failed && at_fn_log_failure $at_traceon; } @@ -265728,17 +278743,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8091/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8091/tcp +printf "%s\n" "$at_srcdir/rhbz1601610.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:90" $at_failed && at_fn_log_failure $at_traceon; } @@ -265747,16 +278761,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=8085/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=8085/udp +printf "%s\n" "$at_srcdir/rhbz1601610.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:90" $at_failed && at_fn_log_failure $at_traceon; } @@ -265765,129 +278780,190 @@ $at_traceon; } + + + + + + + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ports +printf "%s\n" "$at_srcdir/rhbz1601610.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1601610.at:100" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:net +Members: +10.2.0.0/22 +10.3.0.0/22 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:100" $at_failed && at_fn_log_failure $at_traceon; } + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10000-10010/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10000-10010/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + + if test x"-e '/ERROR: COMMAND_FAILED:.*already added.*/d' -e '/ERROR: COMMAND_FAILED:.*element.*exists/d' -e '/Kernel support protocol versions/d' -e '/WARNING: ALREADY_ENABLED:/d'" != x"ignore"; then + printf "%s\n" "rhbz1601610.at:108" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: COMMAND_FAILED:.*already added.*/d' -e '/ERROR: COMMAND_FAILED:.*element.*exists/d' -e '/Kernel support protocol versions/d' -e '/WARNING: ALREADY_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:108" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_274 +#AT_START_275 +at_fn_group_banner 275 'gh303.at:1' \ + "unicode in XML" " " 9 +at_xfail=no +( + printf "%s\n" "275. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9000/tcp + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/gh303.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9010-9020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9010-9020/tcp + else + { set +x +printf "%s\n" "$at_srcdir/gh303.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh303.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10050-10060/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10050-10060/tcp + { set +x +printf "%s\n" "$at_srcdir/gh303.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh303.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9999/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9999/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10011/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10011/tcp + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/gh303.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -265895,129 +278971,217 @@ $at_traceon; } + printf "%s\n" "gh303.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh303.at:1" - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9095-10000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9095-10000/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9090-9094/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9090-9094/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "gh303.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh303.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9099-10001/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=9099-10001/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10005-10020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10005-10020/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh303.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh303.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh303.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh303.at:1" - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10021-10022/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10021-10022/tcp +{ set +x +printf "%s\n" "$at_srcdir/gh303.at:4: mkdir -p ./services" +at_fn_check_prepare_trace "gh303.at:4" +( $at_check_trace; mkdir -p ./services ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:4" $at_failed && at_fn_log_failure $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/gh303.at:5: cat < ./services/unicode-service-test.xml + + + unicode-service-test + A string with unicode characters; Ё ώ € ⇶ ▜ ◯ ★ ☠ ☯ ☺ ♻ + + +HERE +" +at_fn_check_prepare_notrace 'an embedded newline' "gh303.at:5" +( $at_check_trace; cat < ./services/unicode-service-test.xml + + + unicode-service-test + A string with unicode characters; Ё ώ € ⇶ ▜ ◯ ★ ☠ ☯ ☺ ♻ + + +HERE - - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10010-10015/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10010-10015/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:5" $at_failed && at_fn_log_failure $at_traceon; } +LC_ALL="C" +export LC_ALL + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9080-10040/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9080-10040/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh303.at:17" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh303.at:17" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh303.at:17" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh303.at:17" @@ -266025,15 +279189,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=9079-10041/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=9079-10041/tcp +printf "%s\n" "$at_srcdir/gh303.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-service=unicode-service-test " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-service=unicode-service-test ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:19" $at_failed && at_fn_log_failure $at_traceon; } @@ -266042,16 +279206,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9093-10025/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=9093-10025/tcp +printf "%s\n" "$at_srcdir/gh303.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -266062,161 +279228,167 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-port=10010-10015/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-port=10010-10015/tcp +printf "%s\n" "$at_srcdir/gh303.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:20" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1404076.at:70" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=9090-10030/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=9090-10030/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "gh303.at:22" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh303.at:22" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_275 +#AT_START_276 +at_fn_group_banner 276 'gh335.at:1' \ + "forward-port toaddr enables IP forwarding" " " 9 +at_xfail=no +( + printf "%s\n" "276. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ports -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9000/tcp + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/gh335.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9010-9020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9010-9020/tcp + else + { set +x +printf "%s\n" "$at_srcdir/gh335.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh335.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10050-10060/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10050-10060/tcp + { set +x +printf "%s\n" "$at_srcdir/gh335.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh335.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9079/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9079/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10041/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10041/tcp + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/gh335.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -266224,123 +279396,186 @@ $at_traceon; } + printf "%s\n" "gh335.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh335.at:1" - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=9080-9085/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=9080-9085/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10035-10040/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10035-10040/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "gh335.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh335.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10005-10009/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10005-10009/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh335.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh335.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh335.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh335.at:1" - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-port=10100-10110/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-port=10100-10110/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1404076.at:70" -( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log +printf "%s\n" "$at_srcdir/gh335.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:4" $at_failed && at_fn_log_failure $at_traceon; } + if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10001-10004/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10001-10004/tcp +printf "%s\n" "$at_srcdir/gh335.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:5" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10016-10019/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10016-10019/tcp +printf "%s\n" "$at_srcdir/gh335.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -266348,36 +279583,31 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10005/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10005/tcp +printf "%s\n" "$at_srcdir/gh335.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:9" $at_failed && at_fn_log_failure $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10003-10030/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10003-10030/tcp +printf "%s\n" "$at_srcdir/gh335.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -266387,15 +279617,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10004-10005/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10004-10005/tcp +printf "%s\n" "$at_srcdir/gh335.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -266404,16 +279634,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-port=10009-10010/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-port=10009-10010/tcp +printf "%s\n" "$at_srcdir/gh335.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -266422,77 +279653,66 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ports -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:70" -$at_failed && at_fn_log_failure -$at_traceon; } - - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=8070-8080/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=8070-8080/udp +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" $at_failed && at_fn_log_failure $at_traceon; } - - + if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9050-10050/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9050-10050/sctp +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/dccp +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321:toaddr=\"1234:5678::4321\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321:toaddr="1234:5678::4321" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -266500,57 +279720,59 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=8080-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=8080-8090/tcp +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:13" $at_failed && at_fn_log_failure $at_traceon; } - - + if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/tcp +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085-8087/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8085-8087/tcp +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -266561,15 +279783,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8090/tcp +printf "%s\n" "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -266578,73 +279800,67 @@ $at_traceon; } + else + : - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8089/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8080-8089/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } - - + fi { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8081-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8081-8090/tcp +printf "%s\n" "$at_srcdir/gh335.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:26" $at_failed && at_fn_log_failure $at_traceon; } - - + if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=webcache/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=webcache/tcp +printf "%s\n" "$at_srcdir/gh335.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:27" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8091/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8091/tcp +printf "%s\n" "$at_srcdir/gh335.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\" to-addr=\"10.10.10.10\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port="12345" protocol="tcp" to-port="54321" to-addr="10.10.10.10"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:30" $at_failed && at_fn_log_failure $at_traceon; } @@ -266652,37 +279868,31 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=8085/udp +printf "%s\n" "$at_srcdir/gh335.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:31" $at_failed && at_fn_log_failure $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ports +printf "%s\n" "$at_srcdir/gh335.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -266691,18 +279901,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10000-10010/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10000-10010/tcp +printf "%s\n" "$at_srcdir/gh335.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:33" $at_failed && at_fn_log_failure $at_traceon; } @@ -266713,15 +279921,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9000/tcp +printf "%s\n" "$at_srcdir/gh335.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:33" $at_failed && at_fn_log_failure $at_traceon; } @@ -266730,70 +279938,66 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9010-9020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9010-9020/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10050-10060/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10050-10060/tcp +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" $at_failed && at_fn_log_failure $at_traceon; } - + if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9999/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9999/tcp +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10011/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10011/tcp +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\" to-addr=\"1234:5678::4321\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port="12345" protocol="tcp" to-port="54321" to-addr="1234:5678::4321"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" $at_failed && at_fn_log_failure $at_traceon; } @@ -266801,53 +280005,59 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9095-10000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9095-10000/tcp +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:35" $at_failed && at_fn_log_failure $at_traceon; } - + if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9090-9094/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9090-9094/tcp +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9099-10001/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=9099-10001/tcp +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" $at_failed && at_fn_log_failure $at_traceon; } @@ -266858,15 +280068,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10005-10020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10005-10020/tcp +printf "%s\n" "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" $at_failed && at_fn_log_failure $at_traceon; } @@ -266875,89 +280085,68 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10021-10022/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10021-10022/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } + else + : + fi { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10010-10015/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10010-10015/tcp +printf "%s\n" "$at_srcdir/gh335.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:49" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:49" $at_failed && at_fn_log_failure $at_traceon; } - - + if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9080-10040/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9080-10040/tcp +printf "%s\n" "$at_srcdir/gh335.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:50" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:50" $at_failed && at_fn_log_failure $at_traceon; } + else + : - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=9079-10041/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=9079-10041/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9093-10025/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=9093-10025/tcp +printf "%s\n" "$at_srcdir/gh335.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:54" $at_failed && at_fn_log_failure $at_traceon; } @@ -266965,34 +280154,31 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-port=10010-10015/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-port=10010-10015/tcp +printf "%s\n" "$at_srcdir/gh335.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:55" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1404076.at:71" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log +printf "%s\n" "$at_srcdir/gh335.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:56" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:56" $at_failed && at_fn_log_failure $at_traceon; } @@ -267000,16 +280186,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=9090-10030/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=9090-10030/tcp +printf "%s\n" "$at_srcdir/gh335.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port="12345" protocol="tcp" to-port="54321"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -267017,40 +280204,31 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ports +printf "%s\n" "$at_srcdir/gh335.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:59" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:59" $at_failed && at_fn_log_failure $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9000/tcp +printf "%s\n" "$at_srcdir/gh335.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:60" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:60" $at_failed && at_fn_log_failure $at_traceon; } @@ -267059,34 +280237,23 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9010-9020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9010-9020/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10050-10060/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10050-10060/tcp +printf "%s\n" "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:62" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port="12345" protocol="tcp" to-port="54321"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:62" $at_failed && at_fn_log_failure $at_traceon; } @@ -267094,178 +280261,188 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9079/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9079/tcp +printf "%s\n" "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:62" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:62" $at_failed && at_fn_log_failure $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10041/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10041/tcp +printf "%s\n" "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:62" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:62" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=9080-9085/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=9080-9085/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"-e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then + printf "%s\n" "gh335.at:68" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh335.at:68" + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10035-10040/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10035-10040/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_276 +#AT_START_277 +at_fn_group_banner 277 'gh482.at:1' \ + "remove forward-port after reload" " " 9 +at_xfail=no +( + printf "%s\n" "277. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10005-10009/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10005-10009/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-port=10100-10110/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-port=10100-10110/tcp + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/gh482.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1404076.at:71" -( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log + else + { set +x +printf "%s\n" "$at_srcdir/gh482.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh482.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10001-10004/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10001-10004/tcp + { set +x +printf "%s\n" "$at_srcdir/gh482.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh482.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10016-10019/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10016-10019/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10005/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10005/tcp + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/gh482.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -267273,76 +280450,128 @@ $at_traceon; } + printf "%s\n" "gh482.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh482.at:1" + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10003-10030/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10003-10030/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10004-10005/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10004-10005/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "gh482.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh482.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-port=10009-10010/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-port=10009-10010/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ports -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh482.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh482.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh482.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh482.at:1" @@ -267352,15 +280581,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=8070-8080/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=8070-8080/udp +printf "%s\n" "$at_srcdir/gh482.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -267371,15 +280600,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9050-10050/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9050-10050/sctp +printf "%s\n" "$at_srcdir/gh482.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -267389,16 +280618,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9000/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9000/dccp +printf "%s\n" "$at_srcdir/gh482.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -267410,15 +280640,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=8080-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=8080-8090/tcp +printf "%s\n" "$at_srcdir/gh482.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -267429,15 +280659,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8085/tcp +printf "%s\n" "$at_srcdir/gh482.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -267447,16 +280677,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085-8087/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8085-8087/tcp +printf "%s\n" "$at_srcdir/gh482.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -267467,15 +280698,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8080-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8080-8090/tcp +printf "%s\n" "$at_srcdir/gh482.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -267485,16 +280716,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8080-8089/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8080-8089/tcp +printf "%s\n" "$at_srcdir/gh482.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-forward-port=port=1234:proto=tcp:toport=4321 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-forward-port=port=1234:proto=tcp:toport=4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -267504,16 +280736,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8081-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8081-8090/tcp +printf "%s\n" "$at_srcdir/gh482.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -267524,15 +280757,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=webcache/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=webcache/tcp +printf "%s\n" "$at_srcdir/gh482.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -267541,16 +280774,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8091/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8091/tcp +printf "%s\n" "$at_srcdir/gh482.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-forward-port=port=1234:proto=tcp:toport=4321 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-forward-port=port=1234:proto=tcp:toport=4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -267559,16 +280794,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=8085/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=8085/udp +printf "%s\n" "$at_srcdir/gh482.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-forward-port=port=1234:proto=tcp:toport=4321 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-forward-port=port=1234:proto=tcp:toport=4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -267577,129 +280813,149 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-source-ports -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } + + if test x"" != x"ignore"; then + printf "%s\n" "gh482.at:17" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh482.at:17" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_277 +#AT_START_278 +at_fn_group_banner 278 'gh478.at:1' \ + "rich rule marks every packet" " " 9 +at_xfail=no +( + printf "%s\n" "278. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10000-10010/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10000-10010/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9000/tcp + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/gh478.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9010-9020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9010-9020/tcp + else + { set +x +printf "%s\n" "$at_srcdir/gh478.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh478.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10050-10060/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10050-10060/tcp + { set +x +printf "%s\n" "$at_srcdir/gh478.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh478.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9999/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9999/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10011/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10011/tcp + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/gh478.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -267707,19 +280963,130 @@ $at_traceon; } + printf "%s\n" "gh478.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh478.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "gh478.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh478.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh478.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh478.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh478.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh478.at:1" + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9095-10000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9095-10000/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -267727,15 +281094,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9090-9094/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9090-9094/tcp +printf "%s\n" "$at_srcdir/gh478.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule port port=1234 protocol=tcp mark set=10' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule port port=1234 protocol=tcp mark set=10' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -267744,16 +281111,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9099-10001/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=9099-10001/tcp +printf "%s\n" "$at_srcdir/gh478.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule protocol value=icmp mark set=11' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule protocol value=icmp mark set=11' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -267764,15 +281132,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10005-10020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10005-10020/tcp +printf "%s\n" "$at_srcdir/gh478.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule source-port port=4321 protocol=tcp mark set=12' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule source-port port=4321 protocol=tcp mark set=12' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -267781,16 +281149,33 @@ $at_traceon; } + + + + + + + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10021-10022/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10021-10022/tcp +printf "%s\n" "$at_srcdir/gh478.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh478.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +echo >>"$at_stdout"; printf "%s\n" "MARK 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1234 MARK set 0xa +MARK 1 -- 0.0.0.0/0 0.0.0.0/0 MARK set 0xb +MARK 6 -- 0.0.0.0/0 0.0.0.0/0 tcp spt:4321 MARK set 0xc +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -267799,146 +281184,323 @@ $at_traceon; } + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10010-10015/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10010-10015/tcp +printf "%s\n" "$at_srcdir/gh478.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh478.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +echo >>"$at_stdout"; printf "%s\n" "MARK 6 -- ::/0 ::/0 tcp dpt:1234 MARK set 0xa +MARK 1 -- ::/0 ::/0 MARK set 0xb +MARK 6 -- ::/0 ::/0 tcp spt:4321 MARK set 0xc +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:22" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9080-10040/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9080-10040/tcp + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "gh478.at:28" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh478.at:28" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_278 +#AT_START_279 +at_fn_group_banner 279 'gh258.at:1' \ + "zone dispatch layout" " " 9 +at_xfail=no +( + printf "%s\n" "279. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/gh258.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=9079-10041/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=9079-10041/tcp + else + { set +x +printf "%s\n" "$at_srcdir/gh258.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh258.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9093-10025/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=9093-10025/tcp + { set +x +printf "%s\n" "$at_srcdir/gh258.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh258.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-source-port=10010-10015/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-source-port=10010-10015/tcp + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/gh258.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:1" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1404076.at:72" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "gh258.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh258.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "gh258.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh258.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=9090-10030/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=9090-10030/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh258.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh258.at:1" + fi + echo "$!" > firewalld.pid - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-source-ports -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh258.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh258.at:1" @@ -267948,15 +281510,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9000/tcp +printf "%s\n" "$at_srcdir/gh258.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-source=\"1.2.3.0/24\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-source="1.2.3.0/24" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -267965,34 +281527,24 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9010-9020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9010-9020/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10050-10060/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10050-10060/tcp +printf "%s\n" "$at_srcdir/gh258.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=\"dead:beef::/54\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source="dead:beef::/54" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -268000,19 +281552,10 @@ $at_traceon; } + else + : - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9079/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9079/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } + fi @@ -268020,15 +281563,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10041/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10041/tcp +printf "%s\n" "$at_srcdir/gh258.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=dummy0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -268037,16 +281580,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=9080-9085/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=9080-9085/tcp +printf "%s\n" "$at_srcdir/gh258.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=dummy1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=dummy1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -268055,16 +281599,19 @@ $at_traceon; } + + + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10035-10040/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10035-10040/tcp +printf "%s\n" "$at_srcdir/gh258.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -268073,16 +281620,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10005-10009/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10005-10009/tcp +printf "%s\n" "$at_srcdir/gh258.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -268091,143 +281639,55 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-source-port=10100-10110/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-source-port=10100-10110/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1404076.at:72" -( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10001-10004/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10001-10004/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } + KERNEL_MAJOR=`uname -r | cut -d. -f1` + KERNEL_MINOR=`uname -r | cut -d. -f2` + if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then + : - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10016-10019/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10016-10019/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } + else + : - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10005/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10005/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } + fi + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10003-10030/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10003-10030/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10004-10005/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10004-10005/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --query-source-port=10009-10010/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --query-source-port=10009-10010/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -268235,17 +281695,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1404076.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-source-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-source-ports +printf "%s\n" "$at_srcdir/gh258.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:277" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID +INPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +INPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:277" $at_failed && at_fn_log_failure $at_traceon; } @@ -268257,16 +281728,37 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8070-8080/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8070-8080/udp +printf "%s\n" "$at_srcdir/gh258.at:285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:285" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 1.2.3.0/24 0.0.0.0/0 +IN_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 +ACCEPT 0 -- 1.2.3.0/24 0.0.0.0/0 +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:285" $at_failed && at_fn_log_failure $at_traceon; } @@ -268276,35 +281768,33 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9050-10050/sctp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9050-10050/sctp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/dccp +printf "%s\n" "$at_srcdir/gh258.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:299" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID +FORWARD_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +FORWARD_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:299" $at_failed && at_fn_log_failure $at_traceon; } @@ -268315,35 +281805,58 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8080-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=8080-8090/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/tcp +printf "%s\n" "$at_srcdir/gh258.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:307" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "FWD_trusted 0 -- 1.2.3.0/24 1.2.3.0/24 +ACCEPT 0 -- 1.2.3.0/24 1.2.3.0/24 +FWD_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 +ACCEPT 0 -- 1.2.3.0/24 0.0.0.0/0 +FWD_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 +ACCEPT 0 -- 1.2.3.0/24 0.0.0.0/0 +FWD_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 +ACCEPT 0 -- 1.2.3.0/24 0.0.0.0/0 +FWD_public 0 -- 0.0.0.0/0 1.2.3.0/24 +REJECT 0 -- 0.0.0.0/0 1.2.3.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_trusted 0 -- 0.0.0.0/0 1.2.3.0/24 +ACCEPT 0 -- 0.0.0.0/0 1.2.3.0/24 +FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public 0 -- 0.0.0.0/0 1.2.3.0/24 +REJECT 0 -- 0.0.0.0/0 1.2.3.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:307" $at_failed && at_fn_log_failure $at_traceon; } @@ -268353,35 +281866,29 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085-8087/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085-8087/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8090/tcp +printf "%s\n" "$at_srcdir/gh258.at:341: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:341" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t raw -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:341" $at_failed && at_fn_log_failure $at_traceon; } @@ -268391,35 +281898,39 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8089/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8080-8089/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8081-8090/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8081-8090/tcp +printf "%s\n" "$at_srcdir/gh258.at:345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:345" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 1.2.3.0/24 0.0.0.0/0 +PRE_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 +RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:345" $at_failed && at_fn_log_failure $at_traceon; } @@ -268429,34 +281940,29 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=webcache/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=webcache/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8091/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8091/tcp +printf "%s\n" "$at_srcdir/gh258.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:359" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t mangle -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:359" $at_failed && at_fn_log_failure $at_traceon; } @@ -268465,36 +281971,48 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=8085/udp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-source-ports +printf "%s\n" "$at_srcdir/gh258.at:363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:363" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 1.2.3.0/24 0.0.0.0/0 +PRE_trusted 0 -- 1.2.3.0/24 1.2.3.0/24 +RETURN 0 -- 1.2.3.0/24 1.2.3.0/24 +PRE_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 +RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 1.2.3.0/24 +RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_trusted 0 -- 0.0.0.0/0 1.2.3.0/24 +RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 +PRE_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 1.2.3.0/24 +RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:363" $at_failed && at_fn_log_failure $at_traceon; } @@ -268505,35 +282023,28 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10000-10010/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10000-10010/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9000/tcp +printf "%s\n" "$at_srcdir/gh258.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:385" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:385" $at_failed && at_fn_log_failure $at_traceon; } @@ -268542,34 +282053,48 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9010-9020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9010-9020/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10050-10060/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10050-10060/tcp +printf "%s\n" "$at_srcdir/gh258.at:389: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:389" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 1.2.3.0/24 0.0.0.0/0 +PRE_trusted 0 -- 1.2.3.0/24 1.2.3.0/24 +RETURN 0 -- 1.2.3.0/24 1.2.3.0/24 +PRE_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 +RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 1.2.3.0/24 +RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_trusted 0 -- 0.0.0.0/0 1.2.3.0/24 +RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 +PRE_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 1.2.3.0/24 +RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:389" $at_failed && at_fn_log_failure $at_traceon; } @@ -268578,34 +282103,30 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9999/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9999/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10011/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10011/tcp +printf "%s\n" "$at_srcdir/gh258.at:411: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:411" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POSTROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "POSTROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +POSTROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:411" $at_failed && at_fn_log_failure $at_traceon; } @@ -268614,34 +282135,44 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9095-10000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9095-10000/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9090-9094/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9090-9094/tcp +printf "%s\n" "$at_srcdir/gh258.at:415: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:415" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "POST_trusted 0 -- 1.2.3.0/24 1.2.3.0/24 +RETURN 0 -- 1.2.3.0/24 1.2.3.0/24 +POST_trusted 0 -- 0.0.0.0/0 1.2.3.0/24 +RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 +POST_public 0 -- 1.2.3.0/24 0.0.0.0/0 +RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 +POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 +RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 +POST_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_public 0 -- 1.2.3.0/24 0.0.0.0/0 +RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 +POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:415" $at_failed && at_fn_log_failure $at_traceon; } @@ -268650,523 +282181,630 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9099-10001/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9099-10001/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10005-10020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10005-10020/tcp +printf "%s\n" "$at_srcdir/gh258.at:434: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:434" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +DROP 0 -- ::/0 ::/0 ctstate INVALID +INPUT_direct 0 -- ::/0 ::/0 +INPUT_POLICIES 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:434" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10021-10022/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10021-10022/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10010-10015/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10010-10015/tcp +printf "%s\n" "$at_srcdir/gh258.at:442: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:442" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- dead:beef::/54 ::/0 +IN_public 0 -- dead:beef::/54 ::/0 +REJECT 0 -- dead:beef::/54 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_trusted 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:442" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9080-10040/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9080-10040/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9079-10041/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=9079-10041/tcp +printf "%s\n" "$at_srcdir/gh258.at:456: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:456" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +DROP 0 -- ::/0 ::/0 ctstate INVALID +FORWARD_direct 0 -- ::/0 ::/0 +RFC3964_IPv4 0 -- ::/0 ::/0 +FORWARD_POLICIES 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:456" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9093-10025/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9093-10025/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10010-10015/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-source-port=10010-10015/tcp +printf "%s\n" "$at_srcdir/gh258.at:465: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:465" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "FWD_public 0 -- dead:beef::/54 dead:beef::/54 +REJECT 0 -- dead:beef::/54 dead:beef::/54 reject-with icmp6-port-unreachable +FWD_public 0 -- dead:beef::/54 ::/0 +REJECT 0 -- dead:beef::/54 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- dead:beef::/54 ::/0 +REJECT 0 -- dead:beef::/54 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- dead:beef::/54 ::/0 +REJECT 0 -- dead:beef::/54 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 dead:beef::/54 +REJECT 0 -- ::/0 dead:beef::/54 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_trusted 0 -- ::/0 dead:beef::/54 +ACCEPT 0 -- ::/0 dead:beef::/54 +FWD_trusted 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +FWD_trusted 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +FWD_trusted 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +FWD_public 0 -- ::/0 dead:beef::/54 +REJECT 0 -- ::/0 dead:beef::/54 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:465" $at_failed && at_fn_log_failure $at_traceon; } + else + : - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: grep \"WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1404076.at:73" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '10010-10015:tcp' already in 'public'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9090-10030/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=9090-10030/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-source-ports +printf "%s\n" "$at_srcdir/gh258.at:499: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:499" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t raw -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9000/tcp 9010-9020/tcp 9079-10041/tcp 10050-10060/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "PREROUTING_direct 0 -- ::/0 ::/0 +PREROUTING_POLICIES 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:499" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9000/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9000/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9010-9020/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9010-9020/tcp +printf "%s\n" "$at_srcdir/gh258.at:503: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:503" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- dead:beef::/54 ::/0 +PRE_public 0 -- dead:beef::/54 ::/0 +RETURN 0 -- dead:beef::/54 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_trusted 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:503" $at_failed && at_fn_log_failure $at_traceon; } + else + : - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10050-10060/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10050-10060/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9079/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9079/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10041/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10041/tcp +printf "%s\n" "$at_srcdir/gh258.at:517: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:517" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 134 +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 135 +DROP 0 -- ::/0 ::/0 rpfilter validmark invert +PREROUTING_direct 0 -- ::/0 ::/0 +PREROUTING_POLICIES 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:517" $at_failed && at_fn_log_failure $at_traceon; } + else + : - - - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9080-9085/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=9080-9085/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10035-10040/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10035-10040/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10005-10009/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10005-10009/tcp +printf "%s\n" "$at_srcdir/gh258.at:524: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:524" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- dead:beef::/54 ::/0 +PRE_public 0 -- dead:beef::/54 dead:beef::/54 +RETURN 0 -- dead:beef::/54 dead:beef::/54 +PRE_public 0 -- dead:beef::/54 ::/0 +RETURN 0 -- dead:beef::/54 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 dead:beef::/54 +RETURN 0 -- ::/0 dead:beef::/54 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_trusted 0 -- ::/0 dead:beef::/54 +RETURN 0 -- ::/0 dead:beef::/54 +PRE_trusted 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 dead:beef::/54 +RETURN 0 -- ::/0 dead:beef::/54 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:524" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10100-10110/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-source-port=10100-10110/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: grep \"WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1404076.at:73" -( $at_check_trace; grep "WARNING: NOT_ENABLED: '10100-10110:tcp' not in 'public'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x +printf "%s\n" "$at_srcdir/gh258.at:546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:546" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10001-10004/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10001-10004/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "PREROUTING_direct 0 -- ::/0 ::/0 +PREROUTING_POLICIES 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:546" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10016-10019/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10016-10019/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10005/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10005/tcp +printf "%s\n" "$at_srcdir/gh258.at:550: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:550" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- dead:beef::/54 ::/0 +PRE_public 0 -- dead:beef::/54 dead:beef::/54 +RETURN 0 -- dead:beef::/54 dead:beef::/54 +PRE_public 0 -- dead:beef::/54 ::/0 +RETURN 0 -- dead:beef::/54 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 dead:beef::/54 +RETURN 0 -- ::/0 dead:beef::/54 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_trusted 0 -- ::/0 dead:beef::/54 +RETURN 0 -- ::/0 dead:beef::/54 +PRE_trusted 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 dead:beef::/54 +RETURN 0 -- ::/0 dead:beef::/54 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:550" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10003-10030/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10003-10030/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10004-10005/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10004-10005/tcp +printf "%s\n" "$at_srcdir/gh258.at:572: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:572" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" +echo >>"$at_stdout"; printf "%s\n" "POSTROUTING_direct 0 -- ::/0 ::/0 +POSTROUTING_POLICIES 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:572" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10009-10010/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --query-source-port=10009-10010/tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1404076.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/rhbz1404076.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-source-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1404076.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-source-ports +printf "%s\n" "$at_srcdir/gh258.at:576: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:576" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "9000/dccp 9050-10050/sctp 8080-8090/tcp 9086-10004/tcp 10010-10034/tcp 8070-8080/udp +echo >>"$at_stdout"; printf "%s\n" "POST_public 0 -- dead:beef::/54 dead:beef::/54 +RETURN 0 -- dead:beef::/54 dead:beef::/54 +POST_public 0 -- ::/0 dead:beef::/54 +RETURN 0 -- ::/0 dead:beef::/54 +POST_public 0 -- dead:beef::/54 ::/0 +RETURN 0 -- dead:beef::/54 ::/0 +POST_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +POST_trusted 0 -- dead:beef::/54 ::/0 +RETURN 0 -- dead:beef::/54 ::/0 +POST_trusted 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +POST_public 0 -- dead:beef::/54 ::/0 +RETURN 0 -- dead:beef::/54 ::/0 +POST_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1404076.at:73" +at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:576" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - if test x"-e '/WARNING: ALREADY_ENABLED:/d' -e '/WARNING: NOT_ENABLED:/d'" != x"ignore"; then - $as_echo "rhbz1404076.at:76" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: ALREADY_ENABLED:/d' -e '/WARNING: NOT_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1404076.at:76" + + + + if test x"" != x"ignore"; then + printf "%s\n" "gh258.at:595" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh258.at:595" fi @@ -269175,13 +282813,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_256 -#AT_START_257 -at_fn_group_banner 257 'gh366.at:1' \ - "service destination multiple IP versions" " " 9 +#AT_STOP_279 +#AT_START_280 +at_fn_group_banner 280 'rhbz1715977.at:1' \ + "rich rule src/dst with service destination" " " 9 at_xfail=no ( - $as_echo "257. $at_setup_line: testing $at_desc ..." + printf "%s\n" "280. $at_setup_line: testing $at_desc ..." $at_traceon @@ -269199,6 +282837,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -269215,29 +282854,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh366.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:1" +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh366.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh366.at:1" +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1715977.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -269245,15 +282884,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh366.at:1" +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1715977.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -269295,15 +282934,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh366.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:1" +printf "%s\n" "$at_srcdir/rhbz1715977.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -269311,9 +282950,9 @@ $at_traceon; } - $as_echo "gh366.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1715977.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh366.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1715977.at:1" @@ -269394,8 +283033,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh366.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh366.at:1" + printf "%s\n" "rhbz1715977.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -269405,7 +283044,7 @@ at_fn_check_skip 99 "$at_srcdir/gh366.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -269413,8 +283052,8 @@ at_fn_check_skip 99 "$at_srcdir/gh366.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh366.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh366.at:1" + printf "%s\n" "rhbz1715977.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" fi echo "$!" > firewalld.pid @@ -269430,29 +283069,85 @@ at_fn_check_skip 99 "$at_srcdir/gh366.at:1" fi sleep 1 done - $as_echo "gh366.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1715977.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh366.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1715977.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + + { set +x +printf "%s\n" "$at_srcdir/rhbz1715977.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"ssh\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.122.235/32" service name="ssh" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/gh366.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-service=mdns " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-service=mdns +printf "%s\n" "$at_srcdir/rhbz1715977.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:25" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1715977.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -269469,24 +283164,27 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rhbz1715977.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh366.at:26" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 ACCEPT 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:137 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:138 +ACCEPT 6 -- 0.0.0.0/0 192.168.122.235 tcp dpt:22 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:26" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -269505,25 +283203,27 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rhbz1715977.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh366.at:26" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 ACCEPT 17 -- ::/0 ff02::fb udp dpt:5353 +ACCEPT 17 -- ::/0 ::/0 udp dpt:137 +ACCEPT 17 -- ::/0 ::/0 udp dpt:138 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:26" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -269541,16 +283241,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/gh366.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --remove-service=mdns " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --remove-service=mdns +printf "%s\n" "$at_srcdir/rhbz1715977.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.111.222/32\" source address=\"10.10.10.0/24\" service name=\"ssh\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:36" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.111.222/32" source address="10.10.10.0/24" service name="ssh" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:27" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:36" $at_failed && at_fn_log_failure $at_traceon; } @@ -269561,16 +283262,33 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/gh366.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule=\"rule service name=\"mdns\" accept\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule="rule service name="mdns" accept" +printf "%s\n" "$at_srcdir/rhbz1715977.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:52" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:29" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:137 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:138 +ACCEPT 6 -- 0.0.0.0/0 192.168.122.235 tcp dpt:22 +ACCEPT 6 -- 10.10.10.0/24 192.168.111.222 tcp dpt:22 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -269584,27 +283302,98 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/gh366.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rhbz1715977.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh366.at:30" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:60" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 ff02::fb udp dpt:5353 +ACCEPT 17 -- ::/0 ::/0 udp dpt:137 +ACCEPT 17 -- ::/0 ::/0 udp dpt:138 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:60" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1715977.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 service name=\"ssdp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:68" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 service name="ssdp" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:68" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1715977.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:85" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 ACCEPT 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:137 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:138 +ACCEPT 6 -- 0.0.0.0/0 192.168.122.235 tcp dpt:22 +ACCEPT 6 -- 10.10.10.0/24 192.168.111.222 tcp dpt:22 +ACCEPT 17 -- 0.0.0.0/0 239.255.255.250 udp dpt:1900 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:30" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:85" $at_failed && at_fn_log_failure $at_traceon; } @@ -269623,25 +283412,27 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rhbz1715977.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh366.at:30" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:94" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 ACCEPT 17 -- ::/0 ff02::fb udp dpt:5353 +ACCEPT 17 -- ::/0 ::/0 udp dpt:137 +ACCEPT 17 -- ::/0 ::/0 udp dpt:138 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh366.at:30" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:94" $at_failed && at_fn_log_failure $at_traceon; } @@ -269661,15 +283452,73 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh366.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule='rule family=\"ipv4\" destination address=\"10.10.10.0/24\" service name=\"mdns\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh366.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-rich-rule='rule family="ipv4" destination address="10.10.10.0/24" service name="mdns" accept' +printf "%s\n" "$at_srcdir/rhbz1715977.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"mdns\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:102" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.122.235/32" service name="mdns" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/rhbz1715977.at:102" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1715977.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"mdns\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:103" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.122.235/32" service name="mdns" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 122 $at_status "$at_srcdir/gh366.at:33" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:103" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1715977.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:104" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/rhbz1715977.at:104" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1715977.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:104" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 251 $at_status "$at_srcdir/rhbz1715977.at:104" $at_failed && at_fn_log_failure $at_traceon; } @@ -269681,9 +283530,9 @@ $at_traceon; } if test x"-e '/ERROR: INVALID_RULE: Destination conflict with service/d'" != x"ignore"; then - $as_echo "gh366.at:36" >"$at_check_line_file" + printf "%s\n" "rhbz1715977.at:106" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_RULE: Destination conflict with service/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh366.at:36" + && at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:106" fi @@ -269692,13 +283541,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_257 -#AT_START_258 -at_fn_group_banner 258 'rhbz1601610.at:1' \ - "ipset duplicate entries" " " 9 +#AT_STOP_280 +#AT_START_281 +at_fn_group_banner 281 'rhbz1723610.at:1' \ + "direct remove-rules per family" " " 9 at_xfail=no ( - $as_echo "258. $at_setup_line: testing $at_desc ..." + printf "%s\n" "281. $at_setup_line: testing $at_desc ..." $at_traceon @@ -269716,6 +283565,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -269732,29 +283582,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:1" +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1601610.at:1" +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1723610.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -269762,15 +283612,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1601610.at:1" +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1723610.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -269812,15 +283662,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1601610.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:1" +printf "%s\n" "$at_srcdir/rhbz1723610.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -269828,9 +283678,9 @@ $at_traceon; } - $as_echo "rhbz1601610.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1723610.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1601610.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1723610.at:1" @@ -269911,8 +283761,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1601610.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" + printf "%s\n" "rhbz1723610.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -269922,7 +283772,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -269930,8 +283780,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1601610.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" + printf "%s\n" "rhbz1723610.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" fi echo "$!" > firewalld.pid @@ -269947,22 +283797,18 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" fi sleep 1 done - $as_echo "rhbz1601610.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1723610.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" - - - - + && at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" - $as_echo "rhbz1601610.at:4" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1601610.at:4" + printf "%s\n" "rhbz1723610.at:3" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1723610.at:3" @@ -269970,15 +283816,15 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:1" { set +x -$as_echo "$at_srcdir/rhbz1601610.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --new-ipset=foobar --permanent --type=hash:net " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --new-ipset=foobar --permanent --type=hash:net +printf "%s\n" "$at_srcdir/rhbz1723610.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -269988,17 +283834,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1723610.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -270009,177 +283854,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1723610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:7" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.1.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.1.0/22 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:10" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.2.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.1.2.0/22 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo >>"$at_stderr"; $as_echo "Warning: ALREADY_ENABLED: '10.1.0.0/22' already is in 'foobar' -" | \ - $at_diff - "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:11" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.2.0.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --add-entry=10.2.0.0/22 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:14" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "10.1.0.0/22 -10.2.0.0/22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:15" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1601610.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:net -Members: -10.1.0.0/22 -10.2.0.0/22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:7" $at_failed && at_fn_log_failure $at_traceon; } - fi - - - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=10.1.1.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:36" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --remove-entry=10.1.1.0/22 +printf "%s\n" "$at_srcdir/rhbz1723610.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:36" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -270190,15 +283892,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.1.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:37" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.1.0/22 +printf "%s\n" "$at_srcdir/rhbz1723610.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1601610.at:37" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -270209,15 +283911,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.1.2.0/22 +printf "%s\n" "$at_srcdir/rhbz1723610.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1601610.at:38" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -270227,37 +283929,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.2.0.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --query-entry 10.2.0.0/22 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:39" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset=foobar --get-entries " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:40" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset=foobar --get-entries +printf "%s\n" "$at_srcdir/rhbz1723610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "10.2.0.0/22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:40" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -270267,40 +283949,20 @@ $at_traceon; } - - - - - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1601610.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1723610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:net -Members: -10.2.0.0/22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:52" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:11" $at_failed && at_fn_log_failure $at_traceon; } - fi - - @@ -270308,36 +283970,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --add-entry=10.1.1.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:59" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --add-entry=10.1.1.0/22 +printf "%s\n" "$at_srcdir/rhbz1723610.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:59" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:60" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "10.1.0.0/22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:60" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -270348,15 +283989,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --remove-entry=10.1.1.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:63" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset=foobar --remove-entry=10.1.1.0/22 +printf "%s\n" "$at_srcdir/rhbz1723610.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:63" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -270367,17 +284008,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:64" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=foobar --get-entries +printf "%s\n" "$at_srcdir/rhbz1723610.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:64" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -270389,15 +284028,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=10.3.0.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:68" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset=foobar --add-entry=10.3.0.0/22 +printf "%s\n" "$at_srcdir/rhbz1723610.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv6 filter INPUT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv6 filter INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:68" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -270408,15 +284047,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --runtime-to-permanent " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:69" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --runtime-to-permanent +printf "%s\n" "$at_srcdir/rhbz1723610.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv4 filter INPUT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv4 filter INPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:69" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -270426,17 +284065,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1723610.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -270447,15 +284085,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1723610.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:70" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:19" $at_failed && at_fn_log_failure $at_traceon; } @@ -270465,72 +284103,36 @@ $at_traceon; } - - - - - - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:80: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1601610.at:80" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1723610.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:net -Members: -10.2.0.0/22 -10.3.0.0/22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:80" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:20" $at_failed && at_fn_log_failure $at_traceon; } - fi - - -{ set +x -$as_echo "$at_srcdir/rhbz1601610.at:89: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1601610.at:89" -( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:89" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:90" +printf "%s\n" "$at_srcdir/rhbz1723610.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:90" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -270541,206 +284143,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1601610.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1601610.at:90" +printf "%s\n" "$at_srcdir/rhbz1723610.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:90" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/rhbz1601610.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1601610.at:100" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:net -Members: -10.2.0.0/22 -10.3.0.0/22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1601610.at:100" -$at_failed && at_fn_log_failure -$at_traceon; } - - - fi - - - - - - - - if test x"-e '/ERROR: COMMAND_FAILED:.*already added.*/d' -e '/ERROR: COMMAND_FAILED:.*element.*exists/d' -e '/Kernel support protocol versions/d' -e '/WARNING: ALREADY_ENABLED:/d'" != x"ignore"; then - $as_echo "rhbz1601610.at:108" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: COMMAND_FAILED:.*already added.*/d' -e '/ERROR: COMMAND_FAILED:.*element.*exists/d' -e '/Kernel support protocol versions/d' -e '/WARNING: ALREADY_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1601610.at:108" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_258 -#AT_START_259 -at_fn_group_banner 259 'gh303.at:1' \ - "unicode in XML" " " 9 -at_xfail=no -( - $as_echo "259. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/gh303.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - else - { set +x -$as_echo "$at_srcdir/gh303.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh303.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - fi - - - { set +x -$as_echo "$at_srcdir/gh303.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh303.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/gh303.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -270748,93 +284159,40 @@ $at_traceon; } - $as_echo "gh303.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh303.at:1" - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/rhbz1723610.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:22" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "gh303.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh303.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1723610.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:23" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:23" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -270842,123 +284200,76 @@ at_fn_check_skip 99 "$at_srcdir/gh303.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1723610.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:24" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:24" +$at_failed && at_fn_log_failure +$at_traceon; } - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "gh303.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh303.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "gh303.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh303.at:1" -{ set +x -$as_echo "$at_srcdir/gh303.at:4: mkdir -p ./services" -at_fn_check_prepare_trace "gh303.at:4" -( $at_check_trace; mkdir -p ./services + { set +x +printf "%s\n" "$at_srcdir/rhbz1723610.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:25" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh303.at:5: cat < ./services/unicode-service-test.xml - - - unicode-service-test - A string with unicode characters; Ё ώ € ⇶ ▜ ◯ ★ ☠ ☯ ☺ ♻ - - -HERE -" -at_fn_check_prepare_notrace 'an embedded newline' "gh303.at:5" -( $at_check_trace; cat < ./services/unicode-service-test.xml - - - unicode-service-test - A string with unicode characters; Ё ώ € ⇶ ▜ ◯ ★ ☠ ☯ ☺ ♻ - - -HERE + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1723610.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --remove-rules ipv4 filter OUTPUT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --remove-rules ipv4 filter OUTPUT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:26" $at_failed && at_fn_log_failure $at_traceon; } -LC_ALL="C" -export LC_ALL - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "gh303.at:17" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh303.at:17" - fi - echo "$!" > firewalld.pid + { set +x +printf "%s\n" "$at_srcdir/rhbz1723610.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:27" +$at_failed && at_fn_log_failure +$at_traceon; } - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "gh303.at:17" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh303.at:17" @@ -270966,15 +284277,15 @@ at_fn_check_skip 99 "$at_srcdir/gh303.at:17" { set +x -$as_echo "$at_srcdir/gh303.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-service=unicode-service-test " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-service=unicode-service-test +printf "%s\n" "$at_srcdir/rhbz1723610.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:19" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -270984,17 +284295,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh303.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1723610.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:20" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:29" $at_failed && at_fn_log_failure $at_traceon; } @@ -271005,15 +284315,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh303.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh303.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1723610.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh303.at:20" +at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:30" $at_failed && at_fn_log_failure $at_traceon; } @@ -271023,11 +284333,10 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "gh303.at:22" >"$at_check_line_file" + printf "%s\n" "rhbz1723610.at:32" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh303.at:22" + && at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:32" fi @@ -271036,13 +284345,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_259 -#AT_START_260 -at_fn_group_banner 260 'gh335.at:1' \ - "forward-port toaddr enables IP forwarding" " " 9 +#AT_STOP_281 +#AT_START_282 +at_fn_group_banner 282 'rhbz1734765.at:1' \ + "zone sources ordered by name" " " 9 at_xfail=no ( - $as_echo "260. $at_setup_line: testing $at_desc ..." + printf "%s\n" "282. $at_setup_line: testing $at_desc ..." $at_traceon @@ -271060,6 +284369,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -271076,29 +284386,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh335.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:1" +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh335.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh335.at:1" +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1734765.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -271106,15 +284416,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh335.at:1" +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1734765.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -271156,15 +284466,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh335.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:1" +printf "%s\n" "$at_srcdir/rhbz1734765.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -271172,9 +284482,9 @@ $at_traceon; } - $as_echo "gh335.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1734765.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh335.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1734765.at:1" @@ -271255,8 +284565,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh335.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh335.at:1" + printf "%s\n" "rhbz1734765.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -271266,7 +284576,7 @@ at_fn_check_skip 99 "$at_srcdir/gh335.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -271274,8 +284584,8 @@ at_fn_check_skip 99 "$at_srcdir/gh335.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh335.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh335.at:1" + printf "%s\n" "rhbz1734765.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" fi echo "$!" > firewalld.pid @@ -271291,67 +284601,50 @@ at_fn_check_skip 99 "$at_srcdir/gh335.at:1" fi sleep 1 done - $as_echo "gh335.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1734765.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh335.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" + - { set +x -$as_echo "$at_srcdir/gh335.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/gh335.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 +printf "%s\n" "$at_srcdir/rhbz1734765.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_00 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_00 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:5" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:9" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi { set +x -$as_echo "$at_srcdir/gh335.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toaddr=10.10.10.10 +printf "%s\n" "$at_srcdir/rhbz1734765.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_05 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_05 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -271359,31 +284652,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh335.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/gh335.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" +printf "%s\n" "$at_srcdir/rhbz1734765.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_02 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_02 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:10" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -271392,16 +284672,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/gh335.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1734765.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_03 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_03 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -271412,15 +284693,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1734765.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_01 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_01 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -271430,65 +284711,54 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 +printf "%s\n" "$at_srcdir/rhbz1734765.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_04 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_04 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:14" $at_failed && at_fn_log_failure $at_traceon; } - if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then - : + + { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 +printf "%s\n" "$at_srcdir/rhbz1734765.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_010 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_010 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:15" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321:toaddr=\"1234:5678::4321\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321:toaddr="1234:5678::4321" +printf "%s\n" "$at_srcdir/rhbz1734765.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_011 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_011 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -271496,59 +284766,38 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:13" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" +printf "%s\n" "$at_srcdir/rhbz1734765.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_012 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_012 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:17" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1734765.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv4' --type hash:ip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv4' --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:19" $at_failed && at_fn_log_failure $at_traceon; } @@ -271559,15 +284808,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1734765.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv6' --type hash:ip --family=inet6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv6' --type hash:ip --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -271576,67 +284825,56 @@ $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/gh335.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 +printf "%s\n" "$at_srcdir/rhbz1734765.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv4 --add-entry '192.0.2.12' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv4 --add-entry '192.0.2.12' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:26" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:21" $at_failed && at_fn_log_failure $at_traceon; } - if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then - : + + { set +x -$as_echo "$at_srcdir/gh335.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 +printf "%s\n" "$at_srcdir/rhbz1734765.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv6 --add-entry '::2' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv6 --add-entry '::2' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:27" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:22" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi { set +x -$as_echo "$at_srcdir/gh335.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\" to-addr=\"10.10.10.10\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:30" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port="12345" protocol="tcp" to-port="54321" to-addr="10.10.10.10"' +printf "%s\n" "$at_srcdir/rhbz1734765.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_011 --add-source ipset:ipsetv4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:24" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_011 --add-source ipset:ipsetv4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:30" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:24" $at_failed && at_fn_log_failure $at_traceon; } @@ -271644,31 +284882,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh335.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:31" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/gh335.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" +printf "%s\n" "$at_srcdir/rhbz1734765.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source=\"10.1.1.0/24\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source="10.1.1.0/24" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:32" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -271677,16 +284902,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/gh335.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1734765.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source=\"10.1.0.0/16\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source="10.1.0.0/16" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:33" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -271697,15 +284923,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1734765.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source=\"10.2.0.0/16\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source="10.2.0.0/16" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:33" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -271715,65 +284941,54 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 +printf "%s\n" "$at_srcdir/rhbz1734765.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source=\"10.1.1.1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source="10.1.1.1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:28" $at_failed && at_fn_log_failure $at_traceon; } - if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then - : + + { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 +printf "%s\n" "$at_srcdir/rhbz1734765.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source=\"10.2.2.0/24\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source="10.2.2.0/24" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:29" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\" to-addr=\"1234:5678::4321\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port="12345" protocol="tcp" to-port="54321" to-addr="1234:5678::4321"' +printf "%s\n" "$at_srcdir/rhbz1734765.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source=\"10.0.0.0/8\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source="10.0.0.0/8" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:30" $at_failed && at_fn_log_failure $at_traceon; } @@ -271781,59 +284996,44 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:35" -$at_failed && at_fn_log_failure -$at_traceon; } - if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then + if $IP6TABLES -L >/dev/null 2>&1; then : + + { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source=\"1234:5678::1:1:0/112\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source="1234:5678::1:1:0/112" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source=\"1234:5678::1:0:0/96\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source="1234:5678::1:0:0/96" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" $at_failed && at_fn_log_failure $at_traceon; } @@ -271844,15 +285044,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source=\"1234:5678::2:0:0/96\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source="1234:5678::2:0:0/96" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:35" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" $at_failed && at_fn_log_failure $at_traceon; } @@ -271861,68 +285061,55 @@ $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/gh335.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:49" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv4.conf.all.forwarding=0 +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source=\"1234:5678::2:2:0/112\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source="1234:5678::2:2:0/112" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:49" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" $at_failed && at_fn_log_failure $at_traceon; } - if sysctl -a |grep -F "net.ipv6" >/dev/null 2>&1; then - : + + { set +x -$as_echo "$at_srcdir/gh335.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:50" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -w net.ipv6.conf.all.forwarding=0 +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source=\"1234:5678::0:0:0/80\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source="1234:5678::0:0:0/80" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:50" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - { set +x -$as_echo "$at_srcdir/gh335.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-forward-port=port=12345:proto=tcp:toport=54321 +printf "%s\n" "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source=\"1234:5678::1:1:1\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source="1234:5678::1:1:1" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:54" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" $at_failed && at_fn_log_failure $at_traceon; } @@ -271930,33 +285117,11 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh335.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:55" -$at_failed && at_fn_log_failure -$at_traceon; } - + else + : + fi - { set +x -$as_echo "$at_srcdir/gh335.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:56" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:56" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -271964,15 +285129,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh335.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv4 forward-port port="12345" protocol="tcp" to-port="54321"' +printf "%s\n" "$at_srcdir/rhbz1734765.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:40" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:40" $at_failed && at_fn_log_failure $at_traceon; } @@ -271980,31 +285145,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh335.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:59" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:59" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/gh335.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:60" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" +printf "%s\n" "$at_srcdir/rhbz1734765.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=trusted --add-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:41" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=trusted --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:60" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:41" $at_failed && at_fn_log_failure $at_traceon; } @@ -272014,22 +285166,18 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port=\"12345\" protocol=\"tcp\" to-port=\"54321\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:62" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=ipv6 forward-port port="12345" protocol="tcp" to-port="54321"' +printf "%s\n" "$at_srcdir/rhbz1734765.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh335.at:62" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:43" $at_failed && at_fn_log_failure $at_traceon; } @@ -272037,66 +285185,23 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv4.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:62" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv4.conf.all.forwarding[ ]*=[ ]*1" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:62" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/gh335.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sysctl -a |grep \"net.ipv6.conf.all.forwarding[ ]*=[ ]*1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh335.at:62" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sysctl -a |grep "net.ipv6.conf.all.forwarding[ ]*=[ ]*1" +printf "%s\n" "$at_srcdir/rhbz1734765.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh335.at:62" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:43" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - if test x"-e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d'" != x"ignore"; then - $as_echo "gh335.at:68" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: Failed to write to file .*\/proc\/sys\/net\/ipv6\/conf\/all\/forwarding.*/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh335.at:68" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_260 -#AT_START_261 -at_fn_group_banner 261 'gh482.at:1' \ - "remove forward-port after reload" " " 9 -at_xfail=no -( - $as_echo "261. $at_setup_line: testing $at_desc ..." - $at_traceon @@ -272106,118 +285211,39 @@ at_xfail=no - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/gh482.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - else - { set +x -$as_echo "$at_srcdir/gh482.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh482.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/gh482.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh482.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/rhbz1734765.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source=\"10.10.10.10\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:64" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source="10.10.10.10" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:64" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/gh482.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rhbz1734765.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-source=\"20.20.20.20\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:65" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-source="20.20.20.20" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:65" $at_failed && at_fn_log_failure $at_traceon; } @@ -272225,146 +285251,25 @@ $at_traceon; } - $as_echo "gh482.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh482.at:1" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "gh482.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh482.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "gh482.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh482.at:1" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "gh482.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh482.at:1" - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/gh482.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' +printf "%s\n" "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source=\"1234:5678::10:10:10\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:66" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source="1234:5678::10:10:10" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:66" $at_failed && at_fn_log_failure $at_traceon; } @@ -272375,15 +285280,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' +printf "%s\n" "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-source=\"1234:5678::20:20:20\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:66" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-source="1234:5678::20:20:20" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:66" $at_failed && at_fn_log_failure $at_traceon; } @@ -272393,17 +285298,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh482.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' +printf "%s\n" "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_012 --add-source ipset:ipsetv6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:66" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_012 --add-source ipset:ipsetv6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:66" $at_failed && at_fn_log_failure $at_traceon; } @@ -272411,22 +285315,10 @@ $at_traceon; } + else + : - - - { set +x -$as_echo "$at_srcdir/gh482.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi @@ -272434,15 +285326,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1734765.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-interface=foobar2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-interface=foobar2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -272453,37 +285345,7 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh482.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/gh482.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-rich-rule='rule family=\"ipv4\" forward-port port=\"49152\" protocol=\"tcp\" to-port=\"49153\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-rich-rule='rule family="ipv4" forward-port port="49152" protocol="tcp" to-port="49153"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:10" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -272493,15 +285355,61 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh482.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-forward-port=port=1234:proto=tcp:toport=4321 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-forward-port=port=1234:proto=tcp:toport=4321 +printf "%s\n" "$at_srcdir/rhbz1734765.at:796: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1734765.at:796" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:12" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 10.1.1.1 0.0.0.0/0 +IN_foobar_00 0 -- 10.1.1.1 0.0.0.0/0 +REJECT 0 -- 10.1.1.1 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 10.1.1.0/24 0.0.0.0/0 +IN_foobar_01 0 -- 10.1.1.0/24 0.0.0.0/0 +REJECT 0 -- 10.1.1.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 10.10.10.10 0.0.0.0/0 +IN_foobar_010 0 -- 10.10.10.10 0.0.0.0/0 +REJECT 0 -- 10.10.10.10 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 match-set ipsetv4 src +IN_foobar_011 0 -- 0.0.0.0/0 0.0.0.0/0 match-set ipsetv4 src +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 match-set ipsetv4 src reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 10.1.0.0/16 0.0.0.0/0 +IN_foobar_02 0 -- 10.1.0.0/16 0.0.0.0/0 +REJECT 0 -- 10.1.0.0/16 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 10.2.2.0/24 0.0.0.0/0 +IN_foobar_03 0 -- 10.2.2.0/24 0.0.0.0/0 +REJECT 0 -- 10.2.2.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 10.2.0.0/16 0.0.0.0/0 +IN_foobar_04 0 -- 10.2.0.0/16 0.0.0.0/0 +REJECT 0 -- 10.2.0.0/16 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 10.0.0.0/8 0.0.0.0/0 +IN_foobar_05 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 20.20.20.20 0.0.0.0/0 +IN_public 0 -- 20.20.20.20 0.0.0.0/0 +REJECT 0 -- 20.20.20.20 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_010 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:796" $at_failed && at_fn_log_failure $at_traceon; } @@ -272512,87 +285420,90 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh482.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:13" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/gh482.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:13" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - +printf "%s\n" "$at_srcdir/rhbz1734765.at:837: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1734765.at:837" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/gh482.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --remove-forward-port=port=1234:proto=tcp:toport=4321 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --remove-forward-port=port=1234:proto=tcp:toport=4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:14" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 1234:5678::1:1:1 ::/0 +IN_foobar_00 0 -- 1234:5678::1:1:1 ::/0 +REJECT 0 -- 1234:5678::1:1:1 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- 1234:5678::1:1:0/112 ::/0 +IN_foobar_01 0 -- 1234:5678::1:1:0/112 ::/0 +REJECT 0 -- 1234:5678::1:1:0/112 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- 1234:5678::10:10:10 ::/0 +IN_foobar_010 0 -- 1234:5678::10:10:10 ::/0 +REJECT 0 -- 1234:5678::10:10:10 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 match-set ipsetv6 src +IN_foobar_012 0 -- ::/0 ::/0 match-set ipsetv6 src +REJECT 0 -- ::/0 ::/0 match-set ipsetv6 src reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- 1234:5678::1:0:0/96 ::/0 +IN_foobar_02 0 -- 1234:5678::1:0:0/96 ::/0 +REJECT 0 -- 1234:5678::1:0:0/96 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- 1234:5678::2:2:0/112 ::/0 +IN_foobar_03 0 -- 1234:5678::2:2:0/112 ::/0 +REJECT 0 -- 1234:5678::2:2:0/112 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- 1234:5678::2:0:0/96 ::/0 +IN_foobar_04 0 -- 1234:5678::2:0:0/96 ::/0 +REJECT 0 -- 1234:5678::2:0:0/96 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- 1234:5678::/80 ::/0 +IN_foobar_05 0 -- 1234:5678::/80 ::/0 +REJECT 0 -- 1234:5678::/80 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- 1234:5678::20:20:20 ::/0 +IN_public 0 -- 1234:5678::20:20:20 ::/0 +REJECT 0 -- 1234:5678::20:20:20 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_foobar_010 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_trusted 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:837" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/gh482.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --remove-forward-port=port=1234:proto=tcp:toport=4321 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh482.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --remove-forward-port=port=1234:proto=tcp:toport=4321 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh482.at:15" -$at_failed && at_fn_log_failure -$at_traceon; } - - if test x"" != x"ignore"; then - $as_echo "gh482.at:17" >"$at_check_line_file" + printf "%s\n" "rhbz1734765.at:879" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh482.at:17" + && at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:879" fi @@ -272601,13 +285512,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_261 -#AT_START_262 -at_fn_group_banner 262 'gh478.at:1' \ - "rich rule marks every packet" " " 9 +#AT_STOP_282 +#AT_START_283 +at_fn_group_banner 283 'gh567.at:1' \ + "rich rule source w/ mark action" " " 9 at_xfail=no ( - $as_echo "262. $at_setup_line: testing $at_desc ..." + printf "%s\n" "283. $at_setup_line: testing $at_desc ..." $at_traceon @@ -272625,6 +285536,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -272641,29 +285553,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh478.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:1" +printf "%s\n" "$at_srcdir/gh567.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh478.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh478.at:1" +printf "%s\n" "$at_srcdir/gh567.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh567.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -272671,15 +285583,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh478.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh478.at:1" +printf "%s\n" "$at_srcdir/gh567.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh567.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -272721,15 +285633,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh478.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:1" +printf "%s\n" "$at_srcdir/gh567.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -272737,9 +285649,9 @@ $at_traceon; } - $as_echo "gh478.at:1" >"$at_check_line_file" + printf "%s\n" "gh567.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh478.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh567.at:1" @@ -272820,8 +285732,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh478.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh478.at:1" + printf "%s\n" "gh567.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh567.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -272831,7 +285743,7 @@ at_fn_check_skip 99 "$at_srcdir/gh478.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -272839,8 +285751,8 @@ at_fn_check_skip 99 "$at_srcdir/gh478.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh478.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh478.at:1" + printf "%s\n" "gh567.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh567.at:1" fi echo "$!" > firewalld.pid @@ -272856,9 +285768,9 @@ at_fn_check_skip 99 "$at_srcdir/gh478.at:1" fi sleep 1 done - $as_echo "gh478.at:1" >"$at_check_line_file" + printf "%s\n" "gh567.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh478.at:1" + && at_fn_check_skip 99 "$at_srcdir/gh567.at:1" @@ -272867,18 +285779,9 @@ at_fn_check_skip 99 "$at_srcdir/gh478.at:1" - { set +x -$as_echo "$at_srcdir/gh478.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule port port=1234 protocol=tcp mark set=10' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule port port=1234 protocol=tcp mark set=10' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "gh567.at:3" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh567.at:3" @@ -272887,15 +285790,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh478.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule protocol value=icmp mark set=11' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule protocol value=icmp mark set=11' +printf "%s\n" "$at_srcdir/gh567.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=Teste --type=hash:net " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=Teste --type=hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -272906,15 +285809,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh478.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-rich-rule='rule source-port port=4321 protocol=tcp mark set=12' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh478.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-rich-rule='rule source-port port=4321 protocol=tcp mark set=12' +printf "%s\n" "$at_srcdir/gh567.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule \"rule family=ipv4 source ipset=Teste mark set=2\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule "rule family=ipv4 source ipset=Teste mark set=2" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -272925,31 +285828,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/gh478.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh478.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh567.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MARK 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1234 MARK set 0xa -MARK 1 -- 0.0.0.0/0 0.0.0.0/0 MARK set 0xb -MARK 6 -- 0.0.0.0/0 0.0.0.0/0 tcp spt:4321 MARK set 0xc -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:17" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -272959,55 +285847,30 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/gh478.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh478.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh567.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MARK 6 -- ::/0 ::/0 tcp dpt:1234 MARK set 0xa -MARK 1 -- ::/0 ::/0 MARK set 0xb -MARK 6 -- ::/0 ::/0 tcp spt:4321 MARK set 0xc -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh478.at:22" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:7" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - if test x"" != x"ignore"; then - $as_echo "gh478.at:28" >"$at_check_line_file" + printf "%s\n" "gh567.at:9" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh478.at:28" + && at_fn_check_skip 99 "$at_srcdir/gh567.at:9" fi @@ -273016,13 +285879,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_262 -#AT_START_263 -at_fn_group_banner 263 'gh258.at:1' \ - "zone dispatch layout" " " 9 +#AT_STOP_283 +#AT_START_284 +at_fn_group_banner 284 'rhbz1779835.at:1' \ + "ipv6 address with brackets" " " 9 at_xfail=no ( - $as_echo "263. $at_setup_line: testing $at_desc ..." + printf "%s\n" "284. $at_setup_line: testing $at_desc ..." $at_traceon @@ -273040,6 +285903,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -273056,29 +285920,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh258.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:1" +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh258.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh258.at:1" +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1779835.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -273086,15 +285950,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh258.at:1" +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1779835.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -273136,15 +286000,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh258.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:1" +printf "%s\n" "$at_srcdir/rhbz1779835.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -273152,9 +286016,9 @@ $at_traceon; } - $as_echo "gh258.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh258.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:1" @@ -273235,8 +286099,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh258.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh258.at:1" + printf "%s\n" "rhbz1779835.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -273246,7 +286110,7 @@ at_fn_check_skip 99 "$at_srcdir/gh258.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -273254,8 +286118,8 @@ at_fn_check_skip 99 "$at_srcdir/gh258.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh258.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh258.at:1" + printf "%s\n" "rhbz1779835.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" fi echo "$!" > firewalld.pid @@ -273271,9 +286135,9 @@ at_fn_check_skip 99 "$at_srcdir/gh258.at:1" fi sleep 1 done - $as_echo "gh258.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh258.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" @@ -273282,18 +286146,9 @@ at_fn_check_skip 99 "$at_srcdir/gh258.at:1" - { set +x -$as_echo "$at_srcdir/gh258.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-source=\"1.2.3.0/24\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-source="1.2.3.0/24" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "rhbz1779835.at:3" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:3" @@ -273305,29 +286160,10 @@ $at_traceon; } if $IP6TABLES -L >/dev/null 2>&1; then : - - - - { set +x -$as_echo "$at_srcdir/gh258.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source=\"dead:beef::/54\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source="dead:beef::/54" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:5" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - else : - + printf "%s\n" "rhbz1779835.at:5" >"$at_check_line_file" +at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:5" fi @@ -273335,56 +286171,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh258.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=dummy0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=trusted --add-interface=dummy0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/gh258.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=dummy1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=dummy1 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/gh258.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1779835.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --family=inet6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -273395,315 +286192,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh258.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh258.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1779835.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry='[1234::4321]' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry='[1234::4321]' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:11" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - - - - - - KERNEL_MAJOR=`uname -r | cut -d. -f1` - KERNEL_MINOR=`uname -r | cut -d. -f2` - if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then - : - - - - - - else - : - - - - - - fi - - - - - - - - - - - - - - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh258.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:277" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID -INPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -INPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:277" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh258.at:285: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:285" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 1.2.3.0/24 0.0.0.0/0 -IN_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 -ACCEPT 0 -- 1.2.3.0/24 0.0.0.0/0 -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:285" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh258.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:299" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID -FORWARD_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -FORWARD_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:299" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh258.at:307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:307" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_trusted 0 -- 1.2.3.0/24 1.2.3.0/24 -ACCEPT 0 -- 1.2.3.0/24 1.2.3.0/24 -FWD_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 -ACCEPT 0 -- 1.2.3.0/24 0.0.0.0/0 -FWD_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 -ACCEPT 0 -- 1.2.3.0/24 0.0.0.0/0 -FWD_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 -ACCEPT 0 -- 1.2.3.0/24 0.0.0.0/0 -FWD_public 0 -- 0.0.0.0/0 1.2.3.0/24 -REJECT 0 -- 0.0.0.0/0 1.2.3.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_trusted 0 -- 0.0.0.0/0 1.2.3.0/24 -ACCEPT 0 -- 0.0.0.0/0 1.2.3.0/24 -FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public 0 -- 0.0.0.0/0 1.2.3.0/24 -REJECT 0 -- 0.0.0.0/0 1.2.3.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:307" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh258.at:341: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:341" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:341" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh258.at:345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:345" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 1.2.3.0/24 0.0.0.0/0 -PRE_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 -RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:345" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -273713,29 +286210,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/gh258.at:359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:359" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1779835.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar2 --type=hash:net --family=inet6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar2 --type=hash:net --family=inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:359" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -273745,47 +286229,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/gh258.at:363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:363" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1779835.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar2 --add-entry='[1234::]/64' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar2 --add-entry='[1234::]/64' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 1.2.3.0/24 0.0.0.0/0 -PRE_trusted 0 -- 1.2.3.0/24 1.2.3.0/24 -RETURN 0 -- 1.2.3.0/24 1.2.3.0/24 -PRE_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 -RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 1.2.3.0/24 -RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_trusted 0 -- 0.0.0.0/0 1.2.3.0/24 -RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 -PRE_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 1.2.3.0/24 -RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:363" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -273796,28 +286249,16 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/gh258.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:385" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1779835.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:385" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -273827,47 +286268,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/gh258.at:389: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:389" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1779835.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 1.2.3.0/24 0.0.0.0/0 -PRE_trusted 0 -- 1.2.3.0/24 1.2.3.0/24 -RETURN 0 -- 1.2.3.0/24 1.2.3.0/24 -PRE_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 -RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 1.2.3.0/24 -RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_trusted 0 -- 0.0.0.0/0 1.2.3.0/24 -RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 -PRE_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 1.2.3.0/24 -RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:389" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -273878,30 +286288,26 @@ $at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "rhbz1779835.at:14" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:14" + fi - { set +x -$as_echo "$at_srcdir/gh258.at:411: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:411" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POSTROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -POSTROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:411" -$at_failed && at_fn_log_failure -$at_traceon; } + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_284 +#AT_START_285 +at_fn_group_banner 285 'rhbz1779835.at:16' \ + "ipv6 address with brackets" " " 9 +at_xfail=no +( + printf "%s\n" "285. $at_setup_line: testing $at_desc ..." + $at_traceon @@ -273911,265 +286317,213 @@ $at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi - { set +x -$as_echo "$at_srcdir/gh258.at:415: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:415" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:16" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_trusted 0 -- 1.2.3.0/24 1.2.3.0/24 -RETURN 0 -- 1.2.3.0/24 1.2.3.0/24 -POST_trusted 0 -- 0.0.0.0/0 1.2.3.0/24 -RETURN 0 -- 0.0.0.0/0 1.2.3.0/24 -POST_public 0 -- 1.2.3.0/24 0.0.0.0/0 -RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 -POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_trusted 0 -- 1.2.3.0/24 0.0.0.0/0 -RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 -POST_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_public 0 -- 1.2.3.0/24 0.0.0.0/0 -RETURN 0 -- 1.2.3.0/24 0.0.0.0/0 -POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:415" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:16" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/gh258.at:434: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:434" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + else + { set +x +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1779835.at:16" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- ::/0 ::/0 -DROP 0 -- ::/0 ::/0 ctstate INVALID -INPUT_direct 0 -- ::/0 ::/0 -INPUT_POLICIES 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:434" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:16" $at_failed && at_fn_log_failure $at_traceon; } - - - else - : - fi - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/gh258.at:442: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:442" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + { set +x +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1779835.at:16" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- dead:beef::/54 ::/0 -IN_public 0 -- dead:beef::/54 ::/0 -REJECT 0 -- dead:beef::/54 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_trusted 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:442" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:16" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/gh258.at:456: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:456" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1779835.at:16: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:16" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- ::/0 ::/0 -DROP 0 -- ::/0 ::/0 ctstate INVALID -FORWARD_direct 0 -- ::/0 ::/0 -RFC3964_IPv4 0 -- ::/0 ::/0 -FORWARD_POLICIES 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:456" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:16" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - + printf "%s\n" "rhbz1779835.at:16" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:16" - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/gh258.at:465: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:465" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + cat >./dbus.conf <<'_ATEOF' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_public 0 -- dead:beef::/54 dead:beef::/54 -REJECT 0 -- dead:beef::/54 dead:beef::/54 reject-with icmp6-port-unreachable -FWD_public 0 -- dead:beef::/54 ::/0 -REJECT 0 -- dead:beef::/54 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- dead:beef::/54 ::/0 -REJECT 0 -- dead:beef::/54 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- dead:beef::/54 ::/0 -REJECT 0 -- dead:beef::/54 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 dead:beef::/54 -REJECT 0 -- ::/0 dead:beef::/54 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_trusted 0 -- ::/0 dead:beef::/54 -ACCEPT 0 -- ::/0 dead:beef::/54 -FWD_trusted 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -FWD_trusted 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -FWD_trusted 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -FWD_public 0 -- ::/0 dead:beef::/54 -REJECT 0 -- ::/0 dead:beef::/54 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:465" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - else - : + + + + + + + + + + + + + + - fi + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rhbz1779835.at:16" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" + fi + echo "kill $DBUS_PID" >> ./cleanup_late @@ -274177,407 +286531,235 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rhbz1779835.at:16" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" + fi + echo "$!" > firewalld.pid - { set +x -$as_echo "$at_srcdir/gh258.at:499: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:499" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rhbz1779835.at:16" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PREROUTING_direct 0 -- ::/0 ::/0 -PREROUTING_POLICIES 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:499" -$at_failed && at_fn_log_failure -$at_traceon; } - else - : - fi + if $IP6TABLES -L >/dev/null 2>&1; then + : + else + : + printf "%s\n" "rhbz1779835.at:19" >"$at_check_line_file" +at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:19" + fi - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/gh258.at:503: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:503" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1779835.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-source='[::1234]' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-source='[::1234]' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- dead:beef::/54 ::/0 -PRE_public 0 -- dead:beef::/54 ::/0 -RETURN 0 -- dead:beef::/54 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_trusted 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:503" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:22" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/gh258.at:517: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:517" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1779835.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-source='[1234::]/64' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:23" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-source='[1234::]/64' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 134 -ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 135 -DROP 0 -- ::/0 ::/0 rpfilter validmark invert -PREROUTING_direct 0 -- ::/0 ::/0 -PREROUTING_POLICIES 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:517" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:23" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/gh258.at:524: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:524" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1779835.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-forward-port=port=1234:proto=tcp:toport=4321:toaddr=[::1234] " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-forward-port=port=1234:proto=tcp:toport=4321:toaddr=[::1234] ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- dead:beef::/54 ::/0 -PRE_public 0 -- dead:beef::/54 dead:beef::/54 -RETURN 0 -- dead:beef::/54 dead:beef::/54 -PRE_public 0 -- dead:beef::/54 ::/0 -RETURN 0 -- dead:beef::/54 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 dead:beef::/54 -RETURN 0 -- ::/0 dead:beef::/54 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_trusted 0 -- ::/0 dead:beef::/54 -RETURN 0 -- ::/0 dead:beef::/54 -PRE_trusted 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 dead:beef::/54 -RETURN 0 -- ::/0 dead:beef::/54 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:524" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:26" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/gh258.at:546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:546" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1779835.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] forward-port port=\"1234\" protocol=tcp to-port=\"4321\" to-addr=\"[::1234]\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] forward-port port="1234" protocol=tcp to-port="4321" to-addr="[::1234]"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PREROUTING_direct 0 -- ::/0 ::/0 -PREROUTING_POLICIES 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:546" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:27" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/gh258.at:550: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:550" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1779835.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 forward-port port=\"1234\" protocol=tcp to-port=\"4321\" to-addr=\"[::1234]\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 forward-port port="1234" protocol=tcp to-port="4321" to-addr="[::1234]"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- dead:beef::/54 ::/0 -PRE_public 0 -- dead:beef::/54 dead:beef::/54 -RETURN 0 -- dead:beef::/54 dead:beef::/54 -PRE_public 0 -- dead:beef::/54 ::/0 -RETURN 0 -- dead:beef::/54 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 dead:beef::/54 -RETURN 0 -- ::/0 dead:beef::/54 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_trusted 0 -- ::/0 dead:beef::/54 -RETURN 0 -- ::/0 dead:beef::/54 -PRE_trusted 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 dead:beef::/54 -RETURN 0 -- ::/0 dead:beef::/54 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:550" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:28" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1779835.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:31" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/gh258.at:572: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:572" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1779835.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POSTROUTING_direct 0 -- ::/0 ::/0 -POSTROUTING_POLICIES 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:572" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:32" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/rhbz1779835.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[::4321] accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[::4321] accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:33" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/gh258.at:576: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh258.at:576" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1779835.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[1234::]/64 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:34" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[1234::]/64 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_public 0 -- dead:beef::/54 dead:beef::/54 -RETURN 0 -- dead:beef::/54 dead:beef::/54 -POST_public 0 -- ::/0 dead:beef::/54 -RETURN 0 -- ::/0 dead:beef::/54 -POST_public 0 -- dead:beef::/54 ::/0 -RETURN 0 -- dead:beef::/54 ::/0 -POST_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -POST_trusted 0 -- dead:beef::/54 ::/0 -RETURN 0 -- dead:beef::/54 ::/0 -POST_trusted 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -POST_public 0 -- dead:beef::/54 ::/0 -RETURN 0 -- dead:beef::/54 ::/0 -POST_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh258.at:576" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:34" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - if test x"" != x"ignore"; then - $as_echo "gh258.at:595" >"$at_check_line_file" + printf "%s\n" "rhbz1779835.at:36" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh258.at:595" + && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:36" fi @@ -274586,13 +286768,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_263 -#AT_START_264 -at_fn_group_banner 264 'rhbz1715977.at:1' \ - "rich rule src/dst with service destination" " " 9 +#AT_STOP_285 +#AT_START_286 +at_fn_group_banner 286 'gh330.at:1' \ + "ipset cleanup on reload/stop" " " 9 at_xfail=no ( - $as_echo "264. $at_setup_line: testing $at_desc ..." + printf "%s\n" "286. $at_setup_line: testing $at_desc ..." $at_traceon @@ -274610,6 +286792,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -274626,29 +286809,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:1" +printf "%s\n" "$at_srcdir/gh330.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1715977.at:1" +printf "%s\n" "$at_srcdir/gh330.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh330.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -274656,15 +286839,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1715977.at:1" +printf "%s\n" "$at_srcdir/gh330.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh330.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -274706,15 +286889,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1715977.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:1" +printf "%s\n" "$at_srcdir/gh330.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -274722,9 +286905,9 @@ $at_traceon; } - $as_echo "rhbz1715977.at:1" >"$at_check_line_file" + printf "%s\n" "gh330.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1715977.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh330.at:1" @@ -274805,8 +286988,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1715977.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" + printf "%s\n" "gh330.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh330.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -274816,7 +286999,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -274824,8 +287007,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1715977.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" + printf "%s\n" "gh330.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh330.at:1" fi echo "$!" > firewalld.pid @@ -274841,27 +287024,40 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" fi sleep 1 done - $as_echo "rhbz1715977.at:1" >"$at_check_line_file" + printf "%s\n" "gh330.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:1" + && at_fn_check_skip 99 "$at_srcdir/gh330.at:1" + +{ set +x +printf "%s\n" "$at_srcdir/gh330.at:4: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "gh330.at:4" +( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 +printf "%s\n" "$at_srcdir/gh330.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -274872,15 +287068,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"ssh\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.122.235/32" service name="ssh" accept' +printf "%s\n" "$at_srcdir/gh330.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -274892,15 +287088,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:6" +printf "%s\n" "$at_srcdir/gh330.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -274911,15 +287107,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:6" +printf "%s\n" "$at_srcdir/gh330.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:7" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -274930,33 +287126,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/rhbz1715977.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh330.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:137 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:138 -ACCEPT 6 -- 0.0.0.0/0 192.168.122.235 tcp dpt:22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:21" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -274967,44 +287146,36 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/rhbz1715977.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/gh330.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:28" +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 ff02::fb udp dpt:5353 -ACCEPT 17 -- ::/0 ::/0 udp dpt:137 -ACCEPT 17 -- ::/0 ::/0 udp dpt:138 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:ip +Members: +1.2.3.4 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:10" $at_failed && at_fn_log_failure $at_traceon; } + fi - else - : - fi @@ -275015,15 +287186,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.111.222/32\" source address=\"10.10.10.0/24\" service name=\"ssh\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:36" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.111.222/32" source address="10.10.10.0/24" service name="ssh" accept' +printf "%s\n" "$at_srcdir/gh330.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:36" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -275033,34 +287204,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/rhbz1715977.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh330.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:137 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:138 -ACCEPT 6 -- 0.0.0.0/0 192.168.122.235 tcp dpt:22 -ACCEPT 6 -- 10.10.10.0/24 192.168.111.222 tcp dpt:22 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:52" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -275072,44 +287225,29 @@ $at_traceon; } - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/rhbz1715977.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/gh330.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:60" +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:27" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 ff02::fb udp dpt:5353 -ACCEPT 17 -- ::/0 ::/0 udp dpt:137 -ACCEPT 17 -- ::/0 ::/0 udp dpt:138 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:60" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/gh330.at:27" $at_failed && at_fn_log_failure $at_traceon; } - - else - : - - fi - + fi @@ -275118,23 +287256,34 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1715977.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 service name=\"ssdp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:68" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 service name="ssdp" accept' +{ set +x +printf "%s\n" "$at_srcdir/gh330.at:30: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf" +at_fn_check_prepare_trace "gh330.at:30" +( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:68" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:30" $at_failed && at_fn_log_failure $at_traceon; } - + { set +x +printf "%s\n" "$at_srcdir/gh330.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:31" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -275143,29 +287292,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:85" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh330.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:137 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:138 -ACCEPT 6 -- 0.0.0.0/0 192.168.122.235 tcp dpt:22 -ACCEPT 6 -- 10.10.10.0/24 192.168.111.222 tcp dpt:22 -ACCEPT 17 -- 0.0.0.0/0 239.255.255.250 udp dpt:1900 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:85" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -275176,47 +287311,39 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/rhbz1715977.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_internal_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1715977.at:94" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_internal_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh330.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 ff02::fb udp dpt:5353 -ACCEPT 17 -- ::/0 ::/0 udp dpt:137 -ACCEPT 17 -- ::/0 ::/0 udp dpt:138 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:94" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:33" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/gh330.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:33" +$at_failed && at_fn_log_failure +$at_traceon; } + + @@ -275224,15 +287351,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"mdns\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:102" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.122.235/32" service name="mdns" accept' +printf "%s\n" "$at_srcdir/gh330.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:34" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rhbz1715977.at:102" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -275242,20 +287369,41 @@ $at_traceon; } + + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/rhbz1715977.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address=\"192.168.122.235/32\" service name=\"mdns\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:103" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-rich-rule='rule family=ipv4 destination address="192.168.122.235/32" service name="mdns" accept' +printf "%s\n" "$at_srcdir/gh330.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:36" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1715977.at:103" +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:ip +Members: +1.2.3.4 +10.10.10.10 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:36" $at_failed && at_fn_log_failure $at_traceon; } + fi + + + + + @@ -275263,15 +287411,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:104" +printf "%s\n" "$at_srcdir/gh330.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rhbz1715977.at:104" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -275282,15 +287430,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1715977.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1715977.at:104" +printf "%s\n" "$at_srcdir/gh330.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:52" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 251 $at_status "$at_srcdir/rhbz1715977.at:104" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -275301,28 +287449,36 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_RULE: Destination conflict with service/d'" != x"ignore"; then - $as_echo "rhbz1715977.at:106" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_RULE: Destination conflict with service/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1715977.at:106" - fi + if $IPSET list >/dev/null 2>&1; then + { set +x +printf "%s\n" "$at_srcdir/gh330.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_264 -#AT_START_265 -at_fn_group_banner 265 'rhbz1723610.at:1' \ - "direct remove-rules per family" " " 9 -at_xfail=no -( - $as_echo "265. $at_setup_line: testing $at_desc ..." - $at_traceon +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:ip +Members: +1.2.3.4 +10.10.10.10 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:54" +$at_failed && at_fn_log_failure +$at_traceon; } + fi @@ -275330,118 +287486,58 @@ at_xfail=no - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/gh330.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:70" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1723610.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1723610.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/gh330.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 4.3.2.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 4.3.2.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:71" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/gh330.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:72" $at_failed && at_fn_log_failure $at_traceon; } @@ -275449,137 +287545,63 @@ $at_traceon; } - $as_echo "rhbz1723610.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1723610.at:1" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/gh330.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:72" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "rhbz1723610.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + if $IPSET list >/dev/null 2>&1; then + { set +x +printf "%s\n" "$at_srcdir/gh330.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:74" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:ip +Members: +1.2.3.4 +10.10.10.10 +4.3.2.1 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:74" +$at_failed && at_fn_log_failure +$at_traceon; } - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "rhbz1723610.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break fi - sleep 1 - done - $as_echo "rhbz1723610.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" - - - $as_echo "rhbz1723610.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1723610.at:3" @@ -275587,15 +287609,15 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:1" { set +x -$as_echo "$at_srcdir/rhbz1723610.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh330.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:94" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:94" $at_failed && at_fn_log_failure $at_traceon; } @@ -275606,15 +287628,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh330.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:95" $at_failed && at_fn_log_failure $at_traceon; } @@ -275625,15 +287647,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --add-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh330.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 6.6.6.6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:96" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 6.6.6.6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:96" $at_failed && at_fn_log_failure $at_traceon; } @@ -275643,16 +287665,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1723610.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh330.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:97" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:97" $at_failed && at_fn_log_failure $at_traceon; } @@ -275663,15 +287686,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh330.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:97" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:97" $at_failed && at_fn_log_failure $at_traceon; } @@ -275681,20 +287704,43 @@ $at_traceon; } + + + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/rhbz1723610.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh330.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:98" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:10" +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:ip +Members: +1.2.3.4 +10.10.10.10 +4.3.2.1 +6.6.6.6 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:98" $at_failed && at_fn_log_failure $at_traceon; } + fi + + + + @@ -275702,15 +287748,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/gh330.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:117" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:117" $at_failed && at_fn_log_failure $at_traceon; } @@ -275718,38 +287764,32 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +{ set +x +printf "%s\n" "$at_srcdir/gh330.at:120: sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf" +at_fn_check_prepare_trace "gh330.at:120" +( $at_check_trace; sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:120" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh330.at:121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:121" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:121" $at_failed && at_fn_log_failure $at_traceon; } @@ -275760,15 +287800,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1723610.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh330.at:122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:122" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:122" $at_failed && at_fn_log_failure $at_traceon; } @@ -275777,17 +287817,58 @@ $at_traceon; } + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh330.at:123" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh330.at:123" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh330.at:123" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh330.at:123" + + + + { set +x -$as_echo "$at_srcdir/rhbz1723610.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh330.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:124" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:124" $at_failed && at_fn_log_failure $at_traceon; } @@ -275795,173 +287876,228 @@ $at_traceon; } + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + + + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/rhbz1723610.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv6 filter INPUT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv6 filter INPUT +printf "%s\n" "$at_srcdir/gh330.at:127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:127" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:16" +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:ip +Members: +1.2.3.4 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:127" $at_failed && at_fn_log_failure $at_traceon; } + fi - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv4 filter INPUT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --remove-rules ipv4 filter INPUT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:17" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh330.at:142" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh330.at:142" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh330.at:142" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh330.at:142" - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:18" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "gh330.at:144" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh330.at:144" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_286 +#AT_START_287 +at_fn_group_banner 287 'gh599.at:1' \ + "writing to log after copytruncate" " " 9 +at_xfail=no +( + printf "%s\n" "287. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:19" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/gh599.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:20" +at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload + else + { set +x +printf "%s\n" "$at_srcdir/gh599.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh599.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state + { set +x +printf "%s\n" "$at_srcdir/gh599.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh599.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:22" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/gh599.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:23" +at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -275969,94 +288105,154 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:24" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:24" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "gh599.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh599.at:1" + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:25" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "gh599.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh599.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --remove-rules ipv4 filter OUTPUT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --remove-rules ipv4 filter OUTPUT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:26" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh599.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh599.at:1" + fi + echo "$!" > firewalld.pid - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -p tcp --dport 22 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1723610.at:27" -$at_failed && at_fn_log_failure -$at_traceon; } + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh599.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh599.at:1" +printf "%s\n" "gh599.at:4" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which truncate >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh599.at:4" +printf "%s\n" "gh599.at:5" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which wc >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh599.at:5" +printf "%s\n" "gh599.at:6" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which expr >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh599.at:6" { set +x -$as_echo "$at_srcdir/rhbz1723610.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter OUTPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh599.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} truncate -s 0 ./firewalld.log " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} truncate -s 0 ./firewalld.log ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -276065,17 +288261,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.1 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh599.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=this_does_not_exist " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=this_does_not_exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:29" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 101 $at_status "$at_srcdir/gh599.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -276084,17 +288279,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1723610.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1723610.at:30" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --query-rule ipv4 filter INPUT 0 -d 127.0.0.2 -p tcp --dport 22 -j ACCEPT +printf "%s\n" "$at_srcdir/gh599.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} expr \$(cat ./firewalld.log | wc -c) \">\" 0 " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh599.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} expr $(cat ./firewalld.log | wc -c) ">" 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1723610.at:30" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -276102,12 +288296,10 @@ $at_traceon; } - - - if test x"" != x"ignore"; then - $as_echo "rhbz1723610.at:32" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1723610.at:32" + if test x"-e '/ERROR: INVALID_SERVICE: this_does_not_exist/d'" != x"ignore"; then + printf "%s\n" "gh599.at:17" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE: this_does_not_exist/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh599.at:17" fi @@ -276116,13 +288308,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_265 -#AT_START_266 -at_fn_group_banner 266 'rhbz1734765.at:1' \ - "zone sources ordered by name" " " 9 +#AT_STOP_287 +#AT_START_288 +at_fn_group_banner 288 'rhbz1829104.at:1' \ + "direct rule in zone chain" " " 9 at_xfail=no ( - $as_echo "266. $at_setup_line: testing $at_desc ..." + printf "%s\n" "288. $at_setup_line: testing $at_desc ..." $at_traceon @@ -276140,6 +288332,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -276156,29 +288349,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:1" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1734765.at:1" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1829104.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276186,15 +288379,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1734765.at:1" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1829104.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276236,15 +288429,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1734765.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:1" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276252,9 +288445,9 @@ $at_traceon; } - $as_echo "rhbz1734765.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1829104.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1734765.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1829104.at:1" @@ -276335,8 +288528,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1734765.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" + printf "%s\n" "rhbz1829104.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -276346,7 +288539,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -276354,8 +288547,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1734765.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" + printf "%s\n" "rhbz1829104.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" fi echo "$!" > firewalld.pid @@ -276371,15 +288564,18 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" fi sleep 1 done - $as_echo "rhbz1734765.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1829104.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" + printf "%s\n" "rhbz1829104.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1829104.at:1" @@ -276387,15 +288583,15 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:1" { set +x -$as_echo "$at_srcdir/rhbz1734765.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_00 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_00 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276406,15 +288602,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_05 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_05 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276425,15 +288621,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_02 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_02 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276444,15 +288640,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_03 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_03 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276463,15 +288659,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_01 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_01 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276482,15 +288678,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_04 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_04 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276500,16 +288696,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1734765.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_010 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_010 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276520,15 +288717,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_011 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_011 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276539,15 +288736,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_012 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-zone=foobar_012 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276557,17 +288754,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1734765.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv4' --type hash:ip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv4' --type hash:ip +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276578,15 +288774,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv6' --type hash:ip --family=inet6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset 'ipsetv6' --type hash:ip --family=inet6 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:20" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276597,15 +288793,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv4 --add-entry '192.0.2.12' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv4 --add-entry '192.0.2.12' +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276615,16 +288811,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1734765.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv6 --add-entry '::2' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset ipsetv6 --add-entry '::2' +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:22" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276634,17 +288831,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1734765.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_011 --add-source ipset:ipsetv4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:24" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_011 --add-source ipset:ipsetv4 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:24" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276655,15 +288851,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source=\"10.1.1.0/24\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source="10.1.1.0/24" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:25" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276674,15 +288870,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source=\"10.1.0.0/16\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source="10.1.0.0/16" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:26" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276693,15 +288889,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source=\"10.2.0.0/16\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source="10.2.0.0/16" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:27" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276712,15 +288908,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source=\"10.1.1.1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source="10.1.1.1" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276730,16 +288926,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1734765.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source=\"10.2.2.0/24\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source="10.2.2.0/24" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:29" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276750,15 +288947,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source=\"10.0.0.0/8\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:30" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source="10.0.0.0/8" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:30" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276768,23 +288965,16 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source=\"1234:5678::1:1:0/112\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_01 --add-source="1234:5678::1:1:0/112" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276795,15 +288985,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source=\"1234:5678::1:0:0/96\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_02 --add-source="1234:5678::1:0:0/96" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276814,15 +289004,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source=\"1234:5678::2:0:0/96\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_04 --add-source="1234:5678::2:0:0/96" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276833,15 +289023,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source=\"1234:5678::2:2:0/112\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_03 --add-source="1234:5678::2:2:0/112" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276851,16 +289041,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source=\"1234:5678::0:0:0/80\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_05 --add-source="1234:5678::0:0:0/80" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276871,15 +289062,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source=\"1234:5678::1:1:1\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=foobar_00 --add-source="1234:5678::1:1:1" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:31" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276887,27 +289078,18 @@ $at_traceon; } - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/rhbz1734765.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:40" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=internal --add-interface=foobar0 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:40" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276918,15 +289100,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --zone=trusted --add-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:41" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --zone=trusted --add-interface=foobar1 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:41" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276936,18 +289118,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1734765.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:43" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276958,15 +289138,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:43" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -276977,7 +289157,18 @@ $at_traceon; } - + { set +x +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -276986,15 +289177,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source=\"10.10.10.10\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:64" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source="10.10.10.10" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:64" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277005,15 +289196,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-source=\"20.20.20.20\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:65" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-source="20.20.20.20" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:65" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277023,23 +289214,16 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - { set +x -$as_echo "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source=\"1234:5678::10:10:10\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:66" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-source="1234:5678::10:10:10" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:66" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277050,15 +289234,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=public --add-source=\"1234:5678::20:20:20\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:66" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=public --add-source="1234:5678::20:20:20" +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:66" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277069,15 +289253,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1734765.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_012 --add-source ipset:ipsetv6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:66" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_012 --add-source ipset:ipsetv6 +printf "%s\n" "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:66" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277085,101 +289269,150 @@ $at_traceon; } - else - : - fi + + if test x"" != x"ignore"; then + printf "%s\n" "rhbz1829104.at:1" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_288 +#AT_START_289 +at_fn_group_banner 289 'rhbz1843398.at:1' \ + "rich rule source mac" " " 9 +at_xfail=no +( + printf "%s\n" "289. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/rhbz1734765.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-interface=foobar2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1734765.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=foobar_010 --add-interface=foobar2 + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1843398.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1843398.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/rhbz1734765.at:796: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1734765.at:796" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1843398.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 10.1.1.1 0.0.0.0/0 -IN_foobar_00 0 -- 10.1.1.1 0.0.0.0/0 -REJECT 0 -- 10.1.1.1 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 10.1.1.0/24 0.0.0.0/0 -IN_foobar_01 0 -- 10.1.1.0/24 0.0.0.0/0 -REJECT 0 -- 10.1.1.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 10.10.10.10 0.0.0.0/0 -IN_foobar_010 0 -- 10.10.10.10 0.0.0.0/0 -REJECT 0 -- 10.10.10.10 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 match-set ipsetv4 src -IN_foobar_011 0 -- 0.0.0.0/0 0.0.0.0/0 match-set ipsetv4 src -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 match-set ipsetv4 src reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 10.1.0.0/16 0.0.0.0/0 -IN_foobar_02 0 -- 10.1.0.0/16 0.0.0.0/0 -REJECT 0 -- 10.1.0.0/16 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 10.2.2.0/24 0.0.0.0/0 -IN_foobar_03 0 -- 10.2.2.0/24 0.0.0.0/0 -REJECT 0 -- 10.2.2.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 10.2.0.0/16 0.0.0.0/0 -IN_foobar_04 0 -- 10.2.0.0/16 0.0.0.0/0 -REJECT 0 -- 10.2.0.0/16 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 10.0.0.0/8 0.0.0.0/0 -IN_foobar_05 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 20.20.20.20 0.0.0.0/0 -IN_public 0 -- 20.20.20.20 0.0.0.0/0 -REJECT 0 -- 20.20.20.20 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_010 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:796" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277187,81 +289420,206 @@ $at_traceon; } + printf "%s\n" "rhbz1843398.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1843398.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rhbz1843398.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rhbz1843398.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rhbz1843398.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/rhbz1734765.at:837: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1734765.at:837" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/rhbz1843398.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source mac=\"11:22:33:44:55:66\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source mac="11:22:33:44:55:66" reject' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1843398.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule source mac=\"11:22:33:44:55:66\" reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule source mac="11:22:33:44:55:66" reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 1234:5678::1:1:1 ::/0 -IN_foobar_00 0 -- 1234:5678::1:1:1 ::/0 -REJECT 0 -- 1234:5678::1:1:1 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- 1234:5678::1:1:0/112 ::/0 -IN_foobar_01 0 -- 1234:5678::1:1:0/112 ::/0 -REJECT 0 -- 1234:5678::1:1:0/112 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- 1234:5678::10:10:10 ::/0 -IN_foobar_010 0 -- 1234:5678::10:10:10 ::/0 -REJECT 0 -- 1234:5678::10:10:10 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 match-set ipsetv6 src -IN_foobar_012 0 -- ::/0 ::/0 match-set ipsetv6 src -REJECT 0 -- ::/0 ::/0 match-set ipsetv6 src reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- 1234:5678::1:0:0/96 ::/0 -IN_foobar_02 0 -- 1234:5678::1:0:0/96 ::/0 -REJECT 0 -- 1234:5678::1:0:0/96 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- 1234:5678::2:2:0/112 ::/0 -IN_foobar_03 0 -- 1234:5678::2:2:0/112 ::/0 -REJECT 0 -- 1234:5678::2:2:0/112 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- 1234:5678::2:0:0/96 ::/0 -IN_foobar_04 0 -- 1234:5678::2:0:0/96 ::/0 -REJECT 0 -- 1234:5678::2:0:0/96 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- 1234:5678::/80 ::/0 -IN_foobar_05 0 -- 1234:5678::/80 ::/0 -REJECT 0 -- 1234:5678::/80 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- 1234:5678::20:20:20 ::/0 -IN_public 0 -- 1234:5678::20:20:20 ::/0 -REJECT 0 -- 1234:5678::20:20:20 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_foobar_010 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_trusted 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1734765.at:837" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1843398.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:6" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1843398.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -277271,9 +289629,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1734765.at:879" >"$at_check_line_file" + printf "%s\n" "rhbz1843398.at:8" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1734765.at:879" + && at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:8" fi @@ -277282,13 +289640,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_266 -#AT_START_267 -at_fn_group_banner 267 'gh567.at:1' \ - "rich rule source w/ mark action" " " 9 +#AT_STOP_289 +#AT_START_290 +at_fn_group_banner 290 'rhbz1839781.at:1' \ + "service RH-Satellite-6" " " 9 at_xfail=no ( - $as_echo "267. $at_setup_line: testing $at_desc ..." + printf "%s\n" "290. $at_setup_line: testing $at_desc ..." $at_traceon @@ -277306,6 +289664,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -277322,29 +289681,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh567.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:1" +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh567.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh567.at:1" +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1839781.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277352,15 +289711,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh567.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh567.at:1" +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1839781.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277402,15 +289761,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh567.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:1" +printf "%s\n" "$at_srcdir/rhbz1839781.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277418,9 +289777,9 @@ $at_traceon; } - $as_echo "gh567.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1839781.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh567.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1839781.at:1" @@ -277501,8 +289860,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh567.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh567.at:1" + printf "%s\n" "rhbz1839781.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -277512,7 +289871,7 @@ at_fn_check_skip 99 "$at_srcdir/gh567.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -277520,8 +289879,8 @@ at_fn_check_skip 99 "$at_srcdir/gh567.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh567.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh567.at:1" + printf "%s\n" "rhbz1839781.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" fi echo "$!" > firewalld.pid @@ -277537,9 +289896,9 @@ at_fn_check_skip 99 "$at_srcdir/gh567.at:1" fi sleep 1 done - $as_echo "gh567.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1839781.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh567.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" @@ -277548,9 +289907,18 @@ at_fn_check_skip 99 "$at_srcdir/gh567.at:1" - $as_echo "gh567.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh567.at:3" + { set +x +printf "%s\n" "$at_srcdir/rhbz1839781.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface dummy0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface dummy0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -277559,15 +289927,15 @@ at_fn_check_skip 99 "$at_srcdir/gh567.at:1" { set +x -$as_echo "$at_srcdir/gh567.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=Teste --type=hash:net " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=Teste --type=hash:net +printf "%s\n" "$at_srcdir/rhbz1839781.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:5" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -277577,36 +289945,120 @@ $at_traceon; } + + + + + + + { set +x -$as_echo "$at_srcdir/gh567.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule \"rule family=ipv4 source ipset=Teste mark set=2\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --add-rich-rule "rule family=ipv4 source ipset=Teste mark set=2" +printf "%s\n" "$at_srcdir/rhbz1839781.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_trusted_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1839781.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_trusted_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:6" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:69 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:68 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8140 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5000 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:5646:5647 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5671 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8000 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8080 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:9090 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:29" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1839781.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_trusted_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1839781.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_trusted_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:53 +ACCEPT 17 -- ::/0 ::/0 udp dpt:53 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:80 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:443 +ACCEPT 17 -- ::/0 ::/0 udp dpt:67 +ACCEPT 17 -- ::/0 ::/0 udp dpt:69 +ACCEPT 17 -- ::/0 ::/0 udp dpt:68 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:8140 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:5000 +ACCEPT 6 -- ::/0 ::/0 tcp dpts:5646:5647 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:5671 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:8000 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:8080 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:9090 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:45" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/gh567.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1839781.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --remove-service RH-Satellite-6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:62" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --remove-service RH-Satellite-6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:7" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:62" $at_failed && at_fn_log_failure $at_traceon; } @@ -277617,29 +290069,133 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh567.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh567.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1839781.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6-capsule " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:63" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6-capsule ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh567.at:7" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:63" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1839781.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_trusted_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1839781.at:88" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_trusted_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:69 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:68 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8140 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5000 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:5646:5647 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5671 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8000 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8080 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:9090 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8443 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:88" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1839781.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_trusted_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1839781.at:105" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_trusted_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:53 +ACCEPT 17 -- ::/0 ::/0 udp dpt:53 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:80 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:443 +ACCEPT 17 -- ::/0 ::/0 udp dpt:67 +ACCEPT 17 -- ::/0 ::/0 udp dpt:69 +ACCEPT 17 -- ::/0 ::/0 udp dpt:68 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:8140 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:5000 +ACCEPT 6 -- ::/0 ::/0 tcp dpts:5646:5647 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:5671 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:8000 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:8080 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:9090 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:8443 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:105" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + if test x"" != x"ignore"; then - $as_echo "gh567.at:9" >"$at_check_line_file" + printf "%s\n" "rhbz1839781.at:123" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh567.at:9" + && at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:123" fi @@ -277648,13 +290204,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_267 -#AT_START_268 -at_fn_group_banner 268 'rhbz1779835.at:1' \ - "ipv6 address with brackets" " " 9 +#AT_STOP_290 +#AT_START_291 +at_fn_group_banner 291 'rhbz1689429.at:1' \ + "rich rule invalid priority" " " 9 at_xfail=no ( - $as_echo "268. $at_setup_line: testing $at_desc ..." + printf "%s\n" "291. $at_setup_line: testing $at_desc ..." $at_traceon @@ -277672,6 +290228,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -277688,29 +290245,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:1" +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1779835.at:1" +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1689429.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277718,15 +290275,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1779835.at:1" +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1689429.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277768,15 +290325,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1779835.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:1" +printf "%s\n" "$at_srcdir/rhbz1689429.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -277784,9 +290341,9 @@ $at_traceon; } - $as_echo "rhbz1779835.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1689429.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1689429.at:1" @@ -277867,8 +290424,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1779835.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" + printf "%s\n" "rhbz1689429.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -277878,7 +290435,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -277886,8 +290443,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1779835.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" + printf "%s\n" "rhbz1689429.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" fi echo "$!" > firewalld.pid @@ -277903,74 +290460,10 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" fi sleep 1 done - $as_echo "rhbz1779835.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1689429.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:1" - - - - - - - - - $as_echo "rhbz1779835.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:3" - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - else - : - $as_echo "rhbz1779835.at:5" >"$at_check_line_file" -at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:5" - fi - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1779835.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --family=inet6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar --type=hash:ip --family=inet6 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - + && at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" - { set +x -$as_echo "$at_srcdir/rhbz1779835.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry='[1234::4321]' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry='[1234::4321]' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -277979,15 +290472,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar2 --type=hash:net --family=inet6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset=foobar2 --type=hash:net --family=inet6 +printf "%s\n" "$at_srcdir/rhbz1689429.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=foo accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=foo accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stderr"; printf "%s\n" "Error: INVALID_PRIORITY: invalid 'priority' attribute value 'foo'. +" | \ + $at_diff - "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:10" +at_fn_check_status 139 $at_status "$at_srcdir/rhbz1689429.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -277998,15 +290493,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar2 --add-entry='[1234::]/64' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar2 --add-entry='[1234::]/64' +printf "%s\n" "$at_srcdir/rhbz1689429.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=foo accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=foo accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stderr"; printf "%s\n" "Error: INVALID_PRIORITY: invalid 'priority' attribute value 'foo'. +" | \ + $at_diff - "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:11" +at_fn_check_status 139 $at_status "$at_srcdir/rhbz1689429.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -278018,15 +290515,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:12" +printf "%s\n" "$at_srcdir/rhbz1689429.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -278037,15 +290534,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:12" +printf "%s\n" "$at_srcdir/rhbz1689429.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -278056,10 +290553,10 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "rhbz1779835.at:14" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:14" + if test x"ignore" != x"ignore"; then + printf "%s\n" "rhbz1689429.at:12" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:12" fi @@ -278068,13 +290565,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_268 -#AT_START_269 -at_fn_group_banner 269 'rhbz1779835.at:16' \ - "ipv6 address with brackets" " " 9 +#AT_STOP_291 +#AT_START_292 +at_fn_group_banner 292 'rhbz1483921.at:1' \ + "direct and zone mutually exclusive" " " 9 at_xfail=no ( - $as_echo "269. $at_setup_line: testing $at_desc ..." + printf "%s\n" "292. $at_setup_line: testing $at_desc ..." $at_traceon @@ -278092,6 +290589,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -278108,29 +290606,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:16" +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1483921.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1779835.at:16" +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1483921.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1483921.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -278138,15 +290636,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1779835.at:16" +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1483921.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1483921.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -278188,15 +290686,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1779835.at:16: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:16" +printf "%s\n" "$at_srcdir/rhbz1483921.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1483921.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -278204,9 +290702,9 @@ $at_traceon; } - $as_echo "rhbz1779835.at:16" >"$at_check_line_file" + printf "%s\n" "rhbz1483921.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:16" + && at_fn_check_skip 77 "$at_srcdir/rhbz1483921.at:1" @@ -278287,8 +290785,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1779835.at:16" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" + printf "%s\n" "rhbz1483921.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -278298,7 +290796,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -278306,8 +290804,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1779835.at:16" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" + printf "%s\n" "rhbz1483921.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" fi echo "$!" > firewalld.pid @@ -278323,143 +290821,18 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" fi sleep 1 done - $as_echo "rhbz1779835.at:16" >"$at_check_line_file" + printf "%s\n" "rhbz1483921.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:16" - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - else - : - $as_echo "rhbz1779835.at:19" >"$at_check_line_file" -at_fn_check_skip 77 "$at_srcdir/rhbz1779835.at:19" - fi - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1779835.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-source='[::1234]' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-source='[::1234]' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:22" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1779835.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-source='[1234::]/64' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-source='[1234::]/64' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:23" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1779835.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-forward-port=port=1234:proto=tcp:toport=4321:toaddr=[::1234] " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-forward-port=port=1234:proto=tcp:toport=4321:toaddr=[::1234] -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:26" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1779835.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] forward-port port=\"1234\" protocol=tcp to-port=\"4321\" to-addr=\"[::1234]\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] forward-port port="1234" protocol=tcp to-port="4321" to-addr="[::1234]"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:27" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1779835.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 forward-port port=\"1234\" protocol=tcp to-port=\"4321\" to-addr=\"[::1234]\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 forward-port port="1234" protocol=tcp to-port="4321" to-addr="[::1234]"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:28" -$at_failed && at_fn_log_failure -$at_traceon; } - - - + && at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" - { set +x -$as_echo "$at_srcdir/rhbz1779835.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[::4321] accept' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:31" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "rhbz1483921.at:3" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1483921.at:3" @@ -278467,15 +290840,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1779835.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 source address=[1234::]/64 accept' +printf "%s\n" "$at_srcdir/rhbz1483921.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --permanent --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --permanent --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:32" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/rhbz1483921.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -278485,35 +290858,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1779835.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[::4321] accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[::4321] accept' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:33" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1779835.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[1234::]/64 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1779835.at:34" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone internal --add-rich-rule='rule family=ipv6 destination address=[1234::]/64 accept' +printf "%s\n" "$at_srcdir/rhbz1483921.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1779835.at:34" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/rhbz1483921.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -278524,9 +290879,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1779835.at:36" >"$at_check_line_file" + printf "%s\n" "rhbz1483921.at:9" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1779835.at:36" + && at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:9" fi @@ -278535,13 +290890,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_269 -#AT_START_270 -at_fn_group_banner 270 'gh330.at:1' \ - "ipset cleanup on reload/stop" " " 9 +#AT_STOP_292 +#AT_START_293 +at_fn_group_banner 293 'rhbz1541077.at:1' \ + "hash:mac and family mutually exclusive" " " 9 at_xfail=no ( - $as_echo "270. $at_setup_line: testing $at_desc ..." + printf "%s\n" "293. $at_setup_line: testing $at_desc ..." $at_traceon @@ -278559,6 +290914,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -278575,29 +290931,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh330.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:1" +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1541077.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh330.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh330.at:1" +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1541077.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1541077.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -278605,15 +290961,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh330.at:1" +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1541077.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1541077.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -278655,15 +291011,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh330.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:1" +printf "%s\n" "$at_srcdir/rhbz1541077.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1541077.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -278671,9 +291027,9 @@ $at_traceon; } - $as_echo "gh330.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1541077.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh330.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1541077.at:1" @@ -278754,8 +291110,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh330.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh330.at:1" + printf "%s\n" "rhbz1541077.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -278765,7 +291121,7 @@ at_fn_check_skip 99 "$at_srcdir/gh330.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -278773,8 +291129,8 @@ at_fn_check_skip 99 "$at_srcdir/gh330.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh330.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh330.at:1" + printf "%s\n" "rhbz1541077.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" fi echo "$!" > firewalld.pid @@ -278790,61 +291146,9 @@ at_fn_check_skip 99 "$at_srcdir/gh330.at:1" fi sleep 1 done - $as_echo "gh330.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1541077.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh330.at:1" - - - - - -{ set +x -$as_echo "$at_srcdir/gh330.at:4: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "gh330.at:4" -( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=yes/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/gh330.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:5" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/gh330.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } + && at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" @@ -278854,15 +291158,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1541077.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset hashmacv6 --type hash:mac --family inet6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset hashmacv6 --type hash:mac --family inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:7" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/rhbz1541077.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -278873,15 +291177,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1541077.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --new-ipset hashmacv6 --type hash:mac --family inet6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --new-ipset hashmacv6 --type hash:mac --family inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:7" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/rhbz1541077.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -278890,18 +291194,21 @@ $at_traceon; } - + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi { set +x -$as_echo "$at_srcdir/gh330.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar +printf "%s\n" "$at_srcdir/rhbz1541077.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset hashmacv6 --type hash:mac --family inet6" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset hashmacv6 --type hash:mac --family inet6" "rhbz1541077.at:7" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset hashmacv6 --type hash:mac --family inet6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:8" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/rhbz1541077.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -278909,40 +291216,26 @@ $at_traceon; } - - - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/gh330.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:ip -Members: -1.2.3.4 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:10" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if test x"" != x"ignore"; then + printf "%s\n" "rhbz1541077.at:9" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:9" fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_293 +#AT_START_294 +at_fn_group_banner 294 'rhbz1855140.at:1' \ + "rich rule icmptypes with one family" " " 9 +at_xfail=no +( + printf "%s\n" "294. $at_setup_line: testing $at_desc ..." + $at_traceon @@ -278951,142 +291244,120 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh330.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:25" -$at_failed && at_fn_log_failure -$at_traceon; } - - - + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/gh330.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:25" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - if $IPSET list >/dev/null 2>&1; then - - { set +x -$as_echo "$at_srcdir/gh330.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh330.at:27" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - fi - - - - - - - - -{ set +x -$as_echo "$at_srcdir/gh330.at:30: sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf" -at_fn_check_prepare_trace "gh330.at:30" -( $at_check_trace; sed -i 's/^FlushAllOnReload.*/FlushAllOnReload=no/' ./firewalld.conf + else + { set +x +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1855140.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:30" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - { set +x -$as_echo "$at_srcdir/gh330.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip + { set +x +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1855140.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:31" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/gh330.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:32" -$at_failed && at_fn_log_failure -$at_traceon; } - + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/gh330.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1855140.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:33" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -279094,80 +291365,128 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/gh330.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:33" -$at_failed && at_fn_log_failure -$at_traceon; } - - + printf "%s\n" "rhbz1855140.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1855140.at:1" + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/gh330.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:34" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 10.10.10.10 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:34" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rhbz1855140.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/gh330.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:36" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:ip -Members: -1.2.3.4 -10.10.10.10 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:36" -$at_failed && at_fn_log_failure -$at_traceon; } - fi + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rhbz1855140.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rhbz1855140.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" @@ -279177,15 +291496,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1855140.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"echo-request\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name="echo-request" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:52" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -279196,15 +291515,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1855140.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"neighbour-advertisement\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name="neighbour-advertisement" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:52" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -279214,57 +291533,35 @@ $at_traceon; } - - - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/gh330.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1855140.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"timestamp-request\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name="timestamp-request" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:ip -Members: -1.2.3.4 -10.10.10.10 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:54" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:6" $at_failed && at_fn_log_failure $at_traceon; } - fi - - - - - { set +x -$as_echo "$at_srcdir/gh330.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar +printf "%s\n" "$at_srcdir/rhbz1855140.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule 'rule icmp-type name=bad-header mark set=0x86/0x86' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule 'rule icmp-type name=bad-header mark set=0x86/0x86' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:70" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -279274,16 +291571,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/gh330.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 4.3.2.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --ipset foobar --add-entry 4.3.2.1 +printf "%s\n" "$at_srcdir/rhbz1855140.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -279293,17 +291591,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh330.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1855140.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -279313,19 +291610,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh330.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } - @@ -279334,37 +291618,27 @@ $at_traceon; } - if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/gh330.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rhbz1855140.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:74" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1855140.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:ip -Members: -1.2.3.4 -10.10.10.10 -4.3.2.1 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:74" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:28" $at_failed && at_fn_log_failure $at_traceon; } - fi - @@ -279375,34 +291649,25 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:94" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:94" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - +printf "%s\n" "$at_srcdir/rhbz1855140.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1855140.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/gh330.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:95" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:95" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 +ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 13 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:30" $at_failed && at_fn_log_failure $at_traceon; } @@ -279412,58 +291677,44 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh330.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 6.6.6.6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:96" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 6.6.6.6 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:96" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/gh330.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:97" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1855140.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1855140.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:97" +echo >>"$at_stdout"; printf "%s\n" "MARK 58 -- ::/0 ::/0 ipv6-icmptype 4 code 0 MARK or 0x86 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:35" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/gh330.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:97" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:97" -$at_failed && at_fn_log_failure -$at_traceon; } - @@ -279471,91 +291722,59 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : - if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/gh330.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rhbz1855140.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:98" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1855140.at:38" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:ip -Members: -1.2.3.4 -10.10.10.10 -4.3.2.1 -6.6.6.6 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 136 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:98" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:38" $at_failed && at_fn_log_failure $at_traceon; } - fi - - - - - - - - + else + : - { set +x -$as_echo "$at_srcdir/gh330.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:117" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:117" -$at_failed && at_fn_log_failure -$at_traceon; } + fi -{ set +x -$as_echo "$at_srcdir/gh330.at:120: sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf" -at_fn_check_prepare_trace "gh330.at:120" -( $at_check_trace; sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:120" -$at_failed && at_fn_log_failure -$at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:121: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:121" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset foobar --type hash:ip +printf "%s\n" "$at_srcdir/rhbz1855140.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:121" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 107 $at_status "$at_srcdir/rhbz1855140.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -279566,15 +291785,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh330.at:122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:122" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --ipset foobar --add-entry 1.2.3.4 +printf "%s\n" "$at_srcdir/rhbz1855140.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:122" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 107 $at_status "$at_srcdir/rhbz1855140.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -279583,58 +291802,17 @@ $at_traceon; } - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "gh330.at:123" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh330.at:123" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "gh330.at:123" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh330.at:123" - - - - { set +x -$as_echo "$at_srcdir/gh330.at:124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh330.at:124" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --delete-ipset foobar +printf "%s\n" "$at_srcdir/rhbz1855140.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:48" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:124" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 107 $at_status "$at_srcdir/rhbz1855140.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -279642,90 +291820,46 @@ $at_traceon; } - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + if $IP6TABLES -L >/dev/null 2>&1; then + : - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/gh330.at:127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh330.at:127" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/rhbz1855140.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:49" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:ip -Members: -1.2.3.4 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh330.at:127" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 107 $at_status "$at_srcdir/rhbz1855140.at:49" $at_failed && at_fn_log_failure $at_traceon; } - fi - - - - + else + : - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "gh330.at:142" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh330.at:142" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "gh330.at:142" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh330.at:142" - if test x"" != x"ignore"; then - $as_echo "gh330.at:144" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh330.at:144" + if test x"-e '/ERROR: INVALID_ICMPTYPE:/d'" != x"ignore"; then + printf "%s\n" "rhbz1855140.at:53" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ICMPTYPE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:53" fi @@ -279734,13 +291868,13 @@ at_fn_check_skip 99 "$at_srcdir/gh330.at:142" $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_270 -#AT_START_271 -at_fn_group_banner 271 'gh599.at:1' \ - "writing to log after copytruncate" " " 9 +#AT_STOP_294 +#AT_START_295 +at_fn_group_banner 295 'rhbz1871298.at:1' \ + "rich rule parsing bottleneck" " " 9 at_xfail=no ( - $as_echo "271. $at_setup_line: testing $at_desc ..." + printf "%s\n" "295. $at_setup_line: testing $at_desc ..." $at_traceon @@ -279758,6 +291892,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -279774,29 +291909,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh599.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:1" +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh599.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh599.at:1" +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1871298.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -279804,15 +291939,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh599.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh599.at:1" +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1871298.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -279854,15 +291989,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh599.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:1" +printf "%s\n" "$at_srcdir/rhbz1871298.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -279870,9 +292005,9 @@ $at_traceon; } - $as_echo "gh599.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1871298.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh599.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1871298.at:1" @@ -279953,8 +292088,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh599.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh599.at:1" + printf "%s\n" "rhbz1871298.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -279964,7 +292099,7 @@ at_fn_check_skip 99 "$at_srcdir/gh599.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -279972,8 +292107,8 @@ at_fn_check_skip 99 "$at_srcdir/gh599.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh599.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh599.at:1" + printf "%s\n" "rhbz1871298.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:1" fi echo "$!" > firewalld.pid @@ -279989,71 +292124,123 @@ at_fn_check_skip 99 "$at_srcdir/gh599.at:1" fi sleep 1 done - $as_echo "gh599.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1871298.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh599.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:1" -$as_echo "gh599.at:4" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which truncate >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh599.at:4" -$as_echo "gh599.at:5" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which wc >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh599.at:5" -$as_echo "gh599.at:6" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which expr >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh599.at:6" +printf "%s\n" "rhbz1871298.at:4" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which timeout >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1871298.at:4" { set +x -$as_echo "$at_srcdir/gh599.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} truncate -s 0 ./firewalld.log " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} truncate -s 0 ./firewalld.log +printf "%s\n" "$at_srcdir/rhbz1871298.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} mkdir -p ./zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:6" $at_failed && at_fn_log_failure $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1871298.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo '' > ./zones/foobar.xml " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo '' > ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/gh599.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=this_does_not_exist " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh599.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=this_does_not_exist +printf "%s\n" "$at_srcdir/rhbz1871298.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"\" >> ./zones/foobar.xml " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "" >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/gh599.at:13" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1871298.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"foobar\" >> ./zones/foobar.xml " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "foobar" >> ./zones/foobar.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:9" $at_failed && at_fn_log_failure $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1871298.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh -c 'for I in \$(seq 10000); do echo \"\" >> ./zones/foobar.xml; done' " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1871298.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c 'for I in $(seq 10000); do echo "" >> ./zones/foobar.xml; done' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:10" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/gh599.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} expr \$(cat ./firewalld.log | wc -c) \">\" 0 " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh599.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} expr $(cat ./firewalld.log | wc -c) ">" 0 +printf "%s\n" "$at_srcdir/rhbz1871298.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"\" >> ./zones/foobar.xml " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "" >> ./zones/foobar.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } + + + +if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" +fi + + { set +x +printf "%s\n" "$at_srcdir/rhbz1871298.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} timeout 120 firewall-offline-cmd --system-config ./ \$FIREWALL_OFFLINE_CMD_ARGS --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} timeout 120 firewall-offline-cmd --system-config ./ $FIREWALL_OFFLINE_CMD_ARGS --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh599.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -280061,10 +292248,10 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_SERVICE: this_does_not_exist/d'" != x"ignore"; then - $as_echo "gh599.at:17" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE: this_does_not_exist/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh599.at:17" + if test x"" != x"ignore"; then + printf "%s\n" "rhbz1871298.at:18" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:18" fi @@ -280073,13 +292260,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_271 -#AT_START_272 -at_fn_group_banner 272 'rhbz1829104.at:1' \ - "direct rule in zone chain" " " 9 +#AT_STOP_295 +#AT_START_296 +at_fn_group_banner 296 'rhbz1596304.at:1' \ + "rich rules strip non-printable characters" " " 9 at_xfail=no ( - $as_echo "272. $at_setup_line: testing $at_desc ..." + printf "%s\n" "296. $at_setup_line: testing $at_desc ..." $at_traceon @@ -280097,6 +292284,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -280113,29 +292301,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1829104.at:1" +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1596304.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -280143,15 +292331,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1829104.at:1" +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1596304.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -280193,15 +292381,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" +printf "%s\n" "$at_srcdir/rhbz1596304.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -280209,9 +292397,9 @@ $at_traceon; } - $as_echo "rhbz1829104.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1596304.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1829104.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1596304.at:1" @@ -280292,8 +292480,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1829104.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" + printf "%s\n" "rhbz1596304.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -280303,7 +292491,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -280311,8 +292499,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1829104.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" + printf "%s\n" "rhbz1596304.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" fi echo "$!" > firewalld.pid @@ -280328,18 +292516,11 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" fi sleep 1 done - $as_echo "rhbz1829104.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1596304.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" - - - - + && at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" - $as_echo "rhbz1829104.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1829104.at:1" @@ -280347,15 +292528,15 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/rhbz1596304.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-rich-rule 'rule family=\"ipv4\" source address=\"104.243.250.0/22 \" port port=80 protocol=tcp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-rich-rule 'rule family="ipv4" source address="104.243.250.0/22 " port port=80 protocol=tcp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -280365,16 +292546,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/rhbz1596304.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -280385,15 +292567,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/rhbz1596304.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -280403,16 +292585,35 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/rhbz1596304.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1596304.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo >>"$at_stdout"; printf "%s\n" "public (default, active) +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +rule family=\"ipv4\" source address=\"104.243.250.0/22\" port port=\"80\" protocol=\"tcp\" accept +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -280421,132 +292622,148 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "rhbz1596304.at:26" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:26" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_296 +#AT_START_297 +at_fn_group_banner 297 'gh703.at:1' \ + "add source with mac address" " " 9 +at_xfail=no +( + printf "%s\n" "297. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 raw PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/gh703.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh703.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT + else + { set +x +printf "%s\n" "$at_srcdir/gh703.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh703.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh703.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT + { set +x +printf "%s\n" "$at_srcdir/gh703.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh703.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh703.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/gh703.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh703.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -280554,59 +292771,129 @@ $at_traceon; } + printf "%s\n" "gh703.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh703.at:1" - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 mangle PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "gh703.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh703.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "gh703.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh703.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh703.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh703.at:1" - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -280615,15 +292902,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/gh703.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-source=34:7e:5c:3a:4c:32 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-source=34:7e:5c:3a:4c:32 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh703.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -280633,112 +292920,153 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "gh703.at:23" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh703.at:23" + fi - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_297 +#AT_START_298 +at_fn_group_banner 298 'ipset_netmask_allowed.at:1' \ + "ipset netmask allowed type hash:ip" " " 9 +at_xfail=no +( + printf "%s\n" "298. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat PRE_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT + else + { set +x +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "ipset_netmask_allowed.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT + { set +x +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "ipset_netmask_allowed.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -280746,58 +293074,128 @@ $at_traceon; } + printf "%s\n" "ipset_netmask_allowed.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/ipset_netmask_allowed.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "ipset_netmask_allowed.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "ipset_netmask_allowed.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" + fi + echo "$!" > firewalld.pid - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter IN_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "ipset_netmask_allowed.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" @@ -280807,15 +293205,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:ip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -280825,16 +293223,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -280845,15 +293244,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -280863,35 +293262,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -280902,15 +293284,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 filter FWD_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -280922,15 +293304,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 4.3.2.1/32 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 4.3.2.1/32 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -280941,15 +293323,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_pre 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 4.3.2.1/32 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 4.3.2.1/32 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -280959,16 +293341,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_log 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 136 $at_status "$at_srcdir/ipset_netmask_allowed.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -280979,15 +293362,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_deny 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.0/22 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.0/22 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 136 $at_status "$at_srcdir/ipset_netmask_allowed.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -280998,15 +293381,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_allow 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/30 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/30 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 136 $at_status "$at_srcdir/ipset_netmask_allowed.at:22" $at_failed && at_fn_log_failure $at_traceon; } @@ -281017,15 +293400,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1829104.at:1: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1829104.at:1" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --direct --add-rule ipv4 nat POST_public_post 0 -s 10.10.10.0/24 ! -d 10.0.0.0/8 -j ACCEPT +printf "%s\n" "$at_srcdir/ipset_netmask_allowed.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/30 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:23" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/30 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1829104.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 136 $at_status "$at_srcdir/ipset_netmask_allowed.at:23" $at_failed && at_fn_log_failure $at_traceon; } @@ -281035,10 +293418,10 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "rhbz1829104.at:1" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1829104.at:1" + if test x"-e '/ERROR: INVALID_ENTRY:/d'" != x"ignore"; then + printf "%s\n" "ipset_netmask_allowed.at:25" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ENTRY:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:25" fi @@ -281047,13 +293430,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_272 -#AT_START_273 -at_fn_group_banner 273 'rhbz1843398.at:1' \ - "rich rule source mac" " " 9 +#AT_STOP_298 +#AT_START_299 +at_fn_group_banner 299 'rhbz1940928.at:1' \ + "direct -s/-d multiple addresses" " " 9 at_xfail=no ( - $as_echo "273. $at_setup_line: testing $at_desc ..." + printf "%s\n" "299. $at_setup_line: testing $at_desc ..." $at_traceon @@ -281071,6 +293454,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -281087,29 +293471,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:1" +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1843398.at:1" +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1940928.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -281117,15 +293501,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1843398.at:1" +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1940928.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -281167,15 +293551,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1843398.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:1" +printf "%s\n" "$at_srcdir/rhbz1940928.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -281183,9 +293567,9 @@ $at_traceon; } - $as_echo "rhbz1843398.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1940928.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1843398.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1940928.at:1" @@ -281266,8 +293650,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1843398.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" + printf "%s\n" "rhbz1940928.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -281277,7 +293661,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -281285,8 +293669,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1843398.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" + printf "%s\n" "rhbz1940928.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" fi echo "$!" > firewalld.pid @@ -281302,27 +293686,88 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" fi sleep 1 done - $as_echo "rhbz1843398.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1940928.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" + + + + + + + printf "%s\n" "rhbz1940928.at:3" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1940928.at:3" +{ set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:7: sed -i 's/^IndividualCalls.*/IndividualCalls=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1940928.at:7" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1843398.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source mac=\"11:22:33:44:55:66\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule source mac="11:22:33:44:55:66" reject' +printf "%s\n" "$at_srcdir/rhbz1940928.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -281333,15 +293778,108 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1843398.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule source mac=\"11:22:33:44:55:66\" reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule source mac="11:22:33:44:55:66" reject' +printf "%s\n" "$at_srcdir/rhbz1940928.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:12" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 9 -j DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 9 -j DROP +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:13" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_direct; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1940928.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L OUTPUT_direct; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED +ACCEPT 6 -- 0.0.0.0/0 10.0.0.0/8 +ACCEPT 6 -- 0.0.0.0/0 172.16.0.0/16 +ACCEPT 6 -- 0.0.0.0/0 192.168.0.0/24 +ACCEPT 17 -- 0.0.0.0/0 10.0.0.0/8 +ACCEPT 17 -- 0.0.0.0/0 172.16.0.0/16 +ACCEPT 17 -- 0.0.0.0/0 192.168.0.0/24 +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -281353,15 +293891,33 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1843398.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz1940928.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_direct; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1940928.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L OUTPUT_direct; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:6" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED +ACCEPT 132 -- 0.0.0.0/0 10.0.0.0/8 +ACCEPT 132 -- 0.0.0.0/0 172.16.0.0/16 +ACCEPT 132 -- 0.0.0.0/0 192.168.0.0/24 +ACCEPT 6 -- 0.0.0.0/0 10.0.0.0/8 +ACCEPT 6 -- 0.0.0.0/0 172.16.0.0/16 +ACCEPT 6 -- 0.0.0.0/0 192.168.0.0/24 +ACCEPT 17 -- 0.0.0.0/0 10.0.0.0/8 +ACCEPT 17 -- 0.0.0.0/0 172.16.0.0/16 +ACCEPT 17 -- 0.0.0.0/0 192.168.0.0/24 +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -281371,16 +293927,120 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1843398.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1843398.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz1940928.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:42" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:43" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:44" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:45" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 9 -j DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 9 -j DROP +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:46" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1940928.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_direct; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1940928.at:49" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L OUTPUT_direct; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1843398.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:49" $at_failed && at_fn_log_failure $at_traceon; } @@ -281390,11 +294050,10 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "rhbz1843398.at:8" >"$at_check_line_file" + printf "%s\n" "rhbz1940928.at:52" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1843398.at:8" + && at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:52" fi @@ -281403,13 +294062,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_273 -#AT_START_274 -at_fn_group_banner 274 'rhbz1839781.at:1' \ - "service RH-Satellite-6" " " 9 +#AT_STOP_299 +#AT_START_300 +at_fn_group_banner 300 'rhbz1936896.at:1' \ + "ipset type hash:net,net" " " 9 at_xfail=no ( - $as_echo "274. $at_setup_line: testing $at_desc ..." + printf "%s\n" "300. $at_setup_line: testing $at_desc ..." $at_traceon @@ -281427,6 +294086,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -281443,29 +294103,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:1" +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1839781.at:1" +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1936896.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -281473,15 +294133,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1839781.at:1" +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1936896.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -281523,15 +294183,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1839781.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:1" +printf "%s\n" "$at_srcdir/rhbz1936896.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -281539,9 +294199,9 @@ $at_traceon; } - $as_echo "rhbz1839781.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1839781.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1936896.at:1" @@ -281622,8 +294282,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1839781.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" + printf "%s\n" "rhbz1936896.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -281633,7 +294293,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -281641,8 +294301,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1839781.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" + printf "%s\n" "rhbz1936896.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" fi echo "$!" > firewalld.pid @@ -281658,48 +294318,10 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" fi sleep 1 done - $as_echo "rhbz1839781.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:1" - - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1839781.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface dummy0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface dummy0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - + && at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" - { set +x -$as_echo "$at_srcdir/rhbz1839781.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:5" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -281707,6 +294329,9 @@ $at_traceon; } + printf "%s\n" "rhbz1936896.at:3" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz1936896.at:3" @@ -281715,36 +294340,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1839781.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_trusted_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1839781.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_trusted_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1936896.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset testset --type hash:net,net " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset testset --type hash:net,net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:69 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:68 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8140 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5000 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:5646:5647 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5671 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8000 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8080 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:9090 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:29" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -281754,73 +294358,36 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/rhbz1839781.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_trusted_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1839781.at:45" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_trusted_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1936896.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=testset --add-entry=192.168.0.0/24,10.0.1.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=testset --add-entry=192.168.0.0/24,10.0.1.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:53 -ACCEPT 17 -- ::/0 ::/0 udp dpt:53 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:80 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:443 -ACCEPT 17 -- ::/0 ::/0 udp dpt:67 -ACCEPT 17 -- ::/0 ::/0 udp dpt:69 -ACCEPT 17 -- ::/0 ::/0 udp dpt:68 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:8140 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:5000 -ACCEPT 6 -- ::/0 ::/0 tcp dpts:5646:5647 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:5671 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:8000 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:8080 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:9090 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:45" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:6" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/rhbz1839781.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --remove-service RH-Satellite-6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:62" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --remove-service RH-Satellite-6 +printf "%s\n" "$at_srcdir/rhbz1936896.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:62" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -281831,15 +294398,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1839781.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6-capsule " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1839781.at:63" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-service RH-Satellite-6-capsule +printf "%s\n" "$at_srcdir/rhbz1936896.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:63" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -281850,44 +294417,21 @@ $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1839781.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_trusted_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1839781.at:88" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_trusted_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz1936896.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset=testset | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1936896.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-ipset=testset | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:69 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:68 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8140 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5000 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:5646:5647 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5671 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8000 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8080 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:9090 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:8443 +echo >>"$at_stdout"; printf "%s\n" "testset +type: hash:net,net +options: +entries: 192.168.0.0/24,10.0.1.0/24 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:88" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -281899,53 +294443,37 @@ $at_traceon; } - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - + if $IPSET list >/dev/null 2>&1; then { set +x -$as_echo "$at_srcdir/rhbz1839781.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_trusted_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rhbz1936896.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list testset; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1839781.at:105" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1936896.at:15" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_trusted_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPSET list testset; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:53 -ACCEPT 17 -- ::/0 ::/0 udp dpt:53 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:80 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:443 -ACCEPT 17 -- ::/0 ::/0 udp dpt:67 -ACCEPT 17 -- ::/0 ::/0 udp dpt:69 -ACCEPT 17 -- ::/0 ::/0 udp dpt:68 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:8140 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:5000 -ACCEPT 6 -- ::/0 ::/0 tcp dpts:5646:5647 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:5671 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:8000 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:8080 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:9090 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:8443 +echo >>"$at_stdout"; printf "%s\n" "Name: testset +Type: hash:net,net +Members: +192.168.0.0/24,10.0.1.0/24 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1839781.at:105" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:15" $at_failed && at_fn_log_failure $at_traceon; } + fi + - else - : - fi @@ -281955,9 +294483,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1839781.at:123" >"$at_check_line_file" + printf "%s\n" "rhbz1936896.at:32" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1839781.at:123" + && at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:32" fi @@ -281966,13 +294494,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_274 -#AT_START_275 -at_fn_group_banner 275 'rhbz1689429.at:1' \ - "rich rule invalid priority" " " 9 +#AT_STOP_300 +#AT_START_301 +at_fn_group_banner 301 'gh795.at:1' \ + "ipset entry delete w/ timeout=0" " " 9 at_xfail=no ( - $as_echo "275. $at_setup_line: testing $at_desc ..." + printf "%s\n" "301. $at_setup_line: testing $at_desc ..." $at_traceon @@ -281990,6 +294518,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -282006,29 +294535,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:1" +printf "%s\n" "$at_srcdir/gh795.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1689429.at:1" +printf "%s\n" "$at_srcdir/gh795.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh795.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -282036,15 +294565,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1689429.at:1" +printf "%s\n" "$at_srcdir/gh795.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh795.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -282086,15 +294615,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1689429.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:1" +printf "%s\n" "$at_srcdir/gh795.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -282102,9 +294631,9 @@ $at_traceon; } - $as_echo "rhbz1689429.at:1" >"$at_check_line_file" + printf "%s\n" "gh795.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1689429.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh795.at:1" @@ -282185,8 +294714,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1689429.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" + printf "%s\n" "gh795.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh795.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -282196,7 +294725,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -282204,28 +294733,283 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1689429.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" + printf "%s\n" "gh795.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh795.at:1" fi echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "rhbz1689429.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "gh795.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/gh795.at:1" + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type=hash:ip --option=timeout=0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type=hash:ip --option=timeout=0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "1.2.3.4 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" " +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:12" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:16" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo >>"$at_stderr"; printf "%s\n" "Warning: ALREADY_ENABLED: '1.2.3.4' already is in 'foobar' +" | \ + $at_diff - "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:17" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:20" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh795.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:21" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -282233,17 +295017,17 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:1" { set +x -$as_echo "$at_srcdir/rhbz1689429.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=foo accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule priority=foo accept' +printf "%s\n" "$at_srcdir/gh795.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --get-entries " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "Error: INVALID_PRIORITY: invalid 'priority' attribute value 'foo'. +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "1.2.3.4 " | \ - $at_diff - "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 139 $at_status "$at_srcdir/rhbz1689429.at:4" + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:22" $at_failed && at_fn_log_failure $at_traceon; } @@ -282253,22 +295037,42 @@ $at_traceon; } + + + + + + + if $IPSET list >/dev/null 2>&1; then + { set +x -$as_echo "$at_srcdir/rhbz1689429.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=foo accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule priority=foo accept' +printf "%s\n" "$at_srcdir/gh795.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh795.at:36" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "Error: INVALID_PRIORITY: invalid 'priority' attribute value 'foo'. +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "Name: foobar +Type: hash:ip +Members: +1.2.3.4 timeout 0 " | \ - $at_diff - "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 139 $at_status "$at_srcdir/rhbz1689429.at:7" + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:36" $at_failed && at_fn_log_failure $at_traceon; } + fi + + @@ -282276,15 +295080,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1689429.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/gh795.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:10" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:43" $at_failed && at_fn_log_failure $at_traceon; } @@ -282295,15 +295099,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1689429.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1689429.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/gh795.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --get-entries " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --get-entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1689429.at:10" +echo >>"$at_stdout"; printf "%s\n" " +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -282313,11 +295119,10 @@ $at_traceon; } - - if test x"ignore" != x"ignore"; then - $as_echo "rhbz1689429.at:12" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1689429.at:12" + if test x"-e '/WARNING: ALREADY_ENABLED:/d'" != x"ignore"; then + printf "%s\n" "gh795.at:48" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: ALREADY_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh795.at:48" fi @@ -282326,13 +295131,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_275 -#AT_START_276 -at_fn_group_banner 276 'rhbz1483921.at:1' \ - "direct and zone mutually exclusive" " " 9 +#AT_STOP_301 +#AT_START_302 +at_fn_group_banner 302 'rhbz1914935.at:1' \ + "zone overlapping ports" " " 9 at_xfail=no ( - $as_echo "276. $at_setup_line: testing $at_desc ..." + printf "%s\n" "302. $at_setup_line: testing $at_desc ..." $at_traceon @@ -282350,6 +295155,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -282366,29 +295172,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:1" +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1483921.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1483921.at:1" +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1914935.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1483921.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -282396,15 +295202,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1483921.at:1" +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1914935.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1483921.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -282446,15 +295252,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1483921.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:1" +printf "%s\n" "$at_srcdir/rhbz1914935.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1483921.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -282462,9 +295268,9 @@ $at_traceon; } - $as_echo "rhbz1483921.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1914935.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1483921.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1914935.at:1" @@ -282545,8 +295351,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1483921.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" + printf "%s\n" "rhbz1914935.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -282556,7 +295362,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -282564,8 +295370,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1483921.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" + printf "%s\n" "rhbz1914935.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" fi echo "$!" > firewalld.pid @@ -282581,34 +295387,51 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" fi sleep 1 done - $as_echo "rhbz1483921.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1914935.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" +{ set +x +printf "%s\n" "$at_srcdir/rhbz1914935.at:4: mkdir -p ./zones" +at_fn_check_prepare_trace "rhbz1914935.at:4" +( $at_check_trace; mkdir -p ./zones +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } - $as_echo "rhbz1483921.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1483921.at:3" +cat >./zones/foobar.xml <<'_ATEOF' + + + + + + +_ATEOF { set +x -$as_echo "$at_srcdir/rhbz1483921.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --permanent --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --permanent --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 +printf "%s\n" "$at_srcdir/rhbz1914935.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/rhbz1483921.at:5" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -282618,17 +295441,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1483921.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1483921.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --direct --add-rule ipv4 nat OUTPUT 1 -p tcp --dport 8443 -j DNAT --to-port 9443 +printf "%s\n" "$at_srcdir/rhbz1914935.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/rhbz1483921.at:7" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -282638,147 +295460,90 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "rhbz1483921.at:9" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1483921.at:9" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_276 -#AT_START_277 -at_fn_group_banner 277 'rhbz1541077.at:1' \ - "hash:mac and family mutually exclusive" " " 9 -at_xfail=no -( - $as_echo "277. $at_setup_line: testing $at_desc ..." - $at_traceon - + { set +x +printf "%s\n" "$at_srcdir/rhbz1914935.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-ports +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "1024-65535/tcp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } +cat >./zones/foobar.xml <<'_ATEOF' + + + + + + +_ATEOF - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/rhbz1914935.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1541077.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:27" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1541077.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1541077.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1541077.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz1914935.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1541077.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:27" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1541077.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rhbz1914935.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-source-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1541077.at:1" +echo >>"$at_stdout"; printf "%s\n" "1024-65535/tcp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -282786,93 +295551,49 @@ $at_traceon; } - $as_echo "rhbz1541077.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1541077.at:1" +cat >./zones/foobar.xml <<'_ATEOF' + + + + + +_ATEOF - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/rhbz1914935.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:39" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "rhbz1541077.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rhbz1914935.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:39" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -282880,52 +295601,48 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "rhbz1541077.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" - fi - echo "$!" > firewalld.pid + { set +x +printf "%s\n" "$at_srcdir/rhbz1914935.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:40" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-ports +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "1024-2500/tcp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:40" +$at_failed && at_fn_log_failure +$at_traceon; } - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "rhbz1541077.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:1" +cat >./zones/foobar.xml <<'_ATEOF' + + + + + +_ATEOF + { set +x -$as_echo "$at_srcdir/rhbz1541077.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset hashmacv6 --type hash:mac --family inet6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset hashmacv6 --type hash:mac --family inet6 +printf "%s\n" "$at_srcdir/rhbz1914935.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:51" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/rhbz1541077.at:4" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -282936,15 +295653,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1541077.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --new-ipset hashmacv6 --type hash:mac --family inet6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1541077.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --new-ipset hashmacv6 --type hash:mac --family inet6 +printf "%s\n" "$at_srcdir/rhbz1914935.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:51" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/rhbz1541077.at:5" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -282953,21 +295670,20 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi + { set +x -$as_echo "$at_srcdir/rhbz1541077.at:7: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --new-ipset hashmacv6 --type hash:mac --family inet6" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset hashmacv6 --type hash:mac --family inet6" "rhbz1541077.at:7" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --new-ipset hashmacv6 --type hash:mac --family inet6 +printf "%s\n" "$at_srcdir/rhbz1914935.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-source-ports " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:52" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-source-ports ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/rhbz1541077.at:7" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "1024-2500/tcp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -282975,10 +295691,12 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "rhbz1541077.at:9" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1541077.at:9" + + + if test x"-e '/WARNING: ALREADY_ENABLED:/d'" != x"ignore"; then + printf "%s\n" "rhbz1914935.at:56" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: ALREADY_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:56" fi @@ -282987,13 +295705,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_277 -#AT_START_278 -at_fn_group_banner 278 'rhbz1855140.at:1' \ - "rich rule icmptypes with one family" " " 9 +#AT_STOP_302 +#AT_START_303 +at_fn_group_banner 303 'gh696.at:1' \ + "icmp-block-inversion no log blocked" " " 9 at_xfail=no ( - $as_echo "278. $at_setup_line: testing $at_desc ..." + printf "%s\n" "303. $at_setup_line: testing $at_desc ..." $at_traceon @@ -283011,6 +295729,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -283027,29 +295746,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:1" +printf "%s\n" "$at_srcdir/gh696.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1855140.at:1" +printf "%s\n" "$at_srcdir/gh696.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh696.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -283057,15 +295776,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1855140.at:1" +printf "%s\n" "$at_srcdir/gh696.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh696.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -283107,15 +295826,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1855140.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:1" +printf "%s\n" "$at_srcdir/gh696.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -283123,9 +295842,9 @@ $at_traceon; } - $as_echo "rhbz1855140.at:1" >"$at_check_line_file" + printf "%s\n" "gh696.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1855140.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh696.at:1" @@ -283206,8 +295925,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1855140.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" + printf "%s\n" "gh696.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh696.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -283217,7 +295936,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -283225,8 +295944,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1855140.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" + printf "%s\n" "gh696.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh696.at:1" fi echo "$!" > firewalld.pid @@ -283242,9 +295961,9 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" fi sleep 1 done - $as_echo "rhbz1855140.at:1" >"$at_check_line_file" + printf "%s\n" "gh696.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" + && at_fn_check_skip 99 "$at_srcdir/gh696.at:1" @@ -283254,15 +295973,15 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:1" { set +x -$as_echo "$at_srcdir/rhbz1855140.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"echo-request\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name="echo-request" accept' +printf "%s\n" "$at_srcdir/gh696.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --remove-icmp-block-inversion " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --remove-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -283273,15 +295992,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"neighbour-advertisement\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name="neighbour-advertisement" accept' +printf "%s\n" "$at_srcdir/gh696.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -283291,16 +296010,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1855140.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name=\"timestamp-request\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule icmp-type name="timestamp-request" accept' +printf "%s\n" "$at_srcdir/gh696.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:6" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -283311,15 +296031,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule 'rule icmp-type name=bad-header mark set=0x86/0x86' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule 'rule icmp-type name=bad-header mark set=0x86/0x86' +printf "%s\n" "$at_srcdir/gh696.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:7" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -283330,18 +296050,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1855140.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -283350,15 +296058,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/gh696.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:8" +echo >>"$at_stdout"; printf "%s\n" "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -283372,32 +296088,38 @@ $at_traceon; } - - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz1855140.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/gh696.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1855140.at:28" +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:28" +echo >>"$at_stdout"; printf "%s\n" "REJECT 58 -- ::/0 ::/0 ipv6-icmptype 128 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:20" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + @@ -283407,25 +296129,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1855140.at:30" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh696.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied all " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-log-denied all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 -ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 13 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:30" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -283439,39 +296151,33 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : + { set +x -$as_echo "$at_srcdir/rhbz1855140.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/gh696.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1855140.at:35" +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:38" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MARK 58 -- ::/0 ::/0 ipv6-icmptype 4 code 0 MARK or 0x86 +echo >>"$at_stdout"; printf "%s\n" "LOG 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 LOG flags 0 level 4 prefix \"zone_public_HOST_ICMP_BLOCK: \" +REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 reject-with icmp-host-prohibited " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:35" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:38" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - @@ -283485,26 +296191,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/gh696.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1855140.at:38" +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:42" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 -ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 136 +echo >>"$at_stdout"; printf "%s\n" "LOG 58 -- ::/0 ::/0 ipv6-icmptype 128 LOG flags 0 level 4 prefix \"zone_public_HOST_ICMP_BLOCK: \" +REJECT 58 -- ::/0 ::/0 ipv6-icmptype 128 reject-with icmp6-adm-prohibited " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1855140.at:38" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -283523,16 +296227,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1855140.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' +printf "%s\n" "$at_srcdir/gh696.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block-inversion " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:53" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block-inversion ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/rhbz1855140.at:46" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -283543,15 +296248,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1855140.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule 'rule icmp-type name=bogus mark set=0x86/0x86' +printf "%s\n" "$at_srcdir/gh696.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied off " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-log-denied off ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/rhbz1855140.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:54" $at_failed && at_fn_log_failure $at_traceon; } @@ -283561,42 +296266,32 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1855140.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:48" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/rhbz1855140.at:48" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/rhbz1855140.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1855140.at:49" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule 'rule family=ipv6 icmp-type name=timestamp-request drop' +printf "%s\n" "$at_srcdir/gh696.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:67" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/rhbz1855140.at:49" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:67" $at_failed && at_fn_log_failure $at_traceon; } @@ -283604,157 +296299,64 @@ $at_traceon; } - else - : - - fi - - - - - - - if test x"-e '/ERROR: INVALID_ICMPTYPE:/d'" != x"ignore"; then - $as_echo "rhbz1855140.at:53" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ICMPTYPE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1855140.at:53" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_278 -#AT_START_279 -at_fn_group_banner 279 'rhbz1871298.at:1' \ - "rich rule parsing bottleneck" " " 9 -at_xfail=no -( - $as_echo "279. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - else - { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1871298.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : - fi + { set +x +printf "%s\n" "$at_srcdir/gh696.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1871298.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:1" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:71" $at_failed && at_fn_log_failure $at_traceon; } + else + : - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rhbz1871298.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/gh696.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied all " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:79" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-log-denied all ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:79" $at_failed && at_fn_log_failure $at_traceon; } @@ -283762,253 +296364,92 @@ $at_traceon; } - $as_echo "rhbz1871298.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1871298.at:1" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "rhbz1871298.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "rhbz1871298.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "rhbz1871298.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:1" -$as_echo "rhbz1871298.at:4" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which timeout >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1871298.at:4" { set +x -$as_echo "$at_srcdir/rhbz1871298.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} mkdir -p ./zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} mkdir -p ./zones +printf "%s\n" "$at_srcdir/gh696.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:92" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:6" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:92" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1871298.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo '' > ./zones/foobar.xml " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo '' > ./zones/foobar.xml -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:7" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1871298.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"\" >> ./zones/foobar.xml " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "" >> ./zones/foobar.xml -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1871298.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"foobar\" >> ./zones/foobar.xml " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "foobar" >> ./zones/foobar.xml -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/rhbz1871298.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh -c 'for I in \$(seq 10000); do echo \"\" >> ./zones/foobar.xml; done' " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1871298.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c 'for I in $(seq 10000); do echo "" >> ./zones/foobar.xml; done' +printf "%s\n" "$at_srcdir/gh696.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:96" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:10" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:96" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1871298.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"\" >> ./zones/foobar.xml " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "" >> ./zones/foobar.xml -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:11" -$at_failed && at_fn_log_failure -$at_traceon; } + else + : + fi -if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" -fi - { set +x -$as_echo "$at_srcdir/rhbz1871298.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} timeout 120 firewall-offline-cmd --system-config ./ \$FIREWALL_OFFLINE_CMD_ARGS --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1871298.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} timeout 120 firewall-offline-cmd --system-config ./ $FIREWALL_OFFLINE_CMD_ARGS --check-config -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1871298.at:16" -$at_failed && at_fn_log_failure -$at_traceon; } - if test x"" != x"ignore"; then - $as_echo "rhbz1871298.at:18" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1871298.at:18" + if test x"-d '/WARNING: NOT_ENABLED: icmp-block-inversion/d'" != x"ignore"; then + printf "%s\n" "gh696.at:102" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -d '/WARNING: NOT_ENABLED: icmp-block-inversion/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh696.at:102" fi @@ -284017,13 +296458,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_279 -#AT_START_280 -at_fn_group_banner 280 'rhbz1596304.at:1' \ - "rich rules strip non-printable characters" " " 9 +#AT_STOP_303 +#AT_START_304 +at_fn_group_banner 304 'rhbz1917766.at:1' \ + "rich rule source with netmask" " " 9 at_xfail=no ( - $as_echo "280. $at_setup_line: testing $at_desc ..." + printf "%s\n" "304. $at_setup_line: testing $at_desc ..." $at_traceon @@ -284041,6 +296482,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -284057,29 +296499,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:1" +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1596304.at:1" +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz1917766.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -284087,15 +296529,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1596304.at:1" +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz1917766.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -284137,15 +296579,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1596304.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:1" +printf "%s\n" "$at_srcdir/rhbz1917766.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -284153,9 +296595,9 @@ $at_traceon; } - $as_echo "rhbz1596304.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1917766.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1596304.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz1917766.at:1" @@ -284236,8 +296678,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1596304.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" + printf "%s\n" "rhbz1917766.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -284247,7 +296689,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -284255,8 +296697,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1596304.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" + printf "%s\n" "rhbz1917766.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" fi echo "$!" > firewalld.pid @@ -284272,9 +296714,10 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" fi sleep 1 done - $as_echo "rhbz1596304.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz1917766.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" + @@ -284284,15 +296727,15 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:1" { set +x -$as_echo "$at_srcdir/rhbz1596304.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-rich-rule 'rule family=\"ipv4\" source address=\"104.243.250.0/22 \" port port=80 protocol=tcp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-rich-rule 'rule family="ipv4" source address="104.243.250.0/22 " port port=80 protocol=tcp accept' +printf "%s\n" "$at_srcdir/rhbz1917766.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-rich-rule='rule family=ipv4 source address=\"192.168.1.0/255.255.255.0\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-rich-rule='rule family=ipv4 source address="192.168.1.0/255.255.255.0" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -284302,17 +296745,49 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz1917766.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule family=ipv4 source address=\"192.168.1.0/255.255.255.0\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule family=ipv4 source address="192.168.1.0/255.255.255.0" accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + +cat >./zones/foobar.xml <<'_ATEOF' + + + foobar + foobar + + + + + +_ATEOF + + + + { set +x -$as_echo "$at_srcdir/rhbz1596304.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:6" +printf "%s\n" "$at_srcdir/rhbz1917766.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -284323,15 +296798,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1596304.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1596304.at:6" +printf "%s\n" "$at_srcdir/rhbz1917766.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -284343,33 +296818,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1596304.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1596304.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/rhbz1917766.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "public (default, active) -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -rule family=\"ipv4\" source address=\"104.243.250.0/22\" port port=\"80\" protocol=\"tcp\" accept -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1596304.at:7" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:22" $at_failed && at_fn_log_failure $at_traceon; } @@ -284378,10 +296835,11 @@ $at_traceon; } + if test x"" != x"ignore"; then - $as_echo "rhbz1596304.at:26" >"$at_check_line_file" + printf "%s\n" "rhbz1917766.at:24" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1596304.at:26" + && at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:24" fi @@ -284390,13 +296848,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_280 -#AT_START_281 -at_fn_group_banner 281 'gh703.at:1' \ - "add source with mac address" " " 9 +#AT_STOP_304 +#AT_START_305 +at_fn_group_banner 305 'rhbz2014383.at:1' \ + "same source in two zone xml" " " 9 at_xfail=no ( - $as_echo "281. $at_setup_line: testing $at_desc ..." + printf "%s\n" "305. $at_setup_line: testing $at_desc ..." $at_traceon @@ -284414,6 +296872,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -284430,29 +296889,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh703.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:1" +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh703.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2014383.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh703.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh703.at:1" +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz2014383.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh703.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2014383.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -284460,15 +296919,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh703.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh703.at:1" +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz2014383.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh703.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2014383.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -284510,15 +296969,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh703.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:1" +printf "%s\n" "$at_srcdir/rhbz2014383.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh703.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2014383.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -284526,9 +296985,9 @@ $at_traceon; } - $as_echo "gh703.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2014383.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh703.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz2014383.at:1" @@ -284609,8 +297068,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh703.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh703.at:1" + printf "%s\n" "rhbz2014383.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -284620,7 +297079,7 @@ at_fn_check_skip 99 "$at_srcdir/gh703.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -284628,8 +297087,8 @@ at_fn_check_skip 99 "$at_srcdir/gh703.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh703.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh703.at:1" + printf "%s\n" "rhbz2014383.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" fi echo "$!" > firewalld.pid @@ -284645,27 +297104,65 @@ at_fn_check_skip 99 "$at_srcdir/gh703.at:1" fi sleep 1 done - $as_echo "gh703.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2014383.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh703.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" +{ set +x +printf "%s\n" "$at_srcdir/rhbz2014383.at:4: mkdir -p ./zones" +at_fn_check_prepare_trace "rhbz2014383.at:4" +( $at_check_trace; mkdir -p ./zones +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2014383.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + + +cat >./zones/foobar.xml <<'_ATEOF' + + + foobar + foobar + + + + +_ATEOF + + +cat >./zones/foobar2.xml <<'_ATEOF' + + + foobar2 + foobar2 + + + + +_ATEOF + + { set +x -$as_echo "$at_srcdir/gh703.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=home --add-source=34:7e:5c:3a:4c:32 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh703.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=home --add-source=34:7e:5c:3a:4c:32 +printf "%s\n" "$at_srcdir/rhbz2014383.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh703.at:4" +at_fn_check_status 105 $at_status "$at_srcdir/rhbz2014383.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -284674,16 +297171,56 @@ $at_traceon; } +cat >./zones/foobar.xml <<'_ATEOF' + + + foobar + foobar + + + + +_ATEOF +cat >./zones/foobar2.xml <<'_ATEOF' + + + foobar2 + foobar2 + + + + +_ATEOF - if test x"" != x"ignore"; then - $as_echo "gh703.at:23" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh703.at:23" + + { set +x +printf "%s\n" "$at_srcdir/rhbz2014383.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 104 $at_status "$at_srcdir/rhbz2014383.at:54" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + if test x"ignore" != x"ignore"; then + printf "%s\n" "rhbz2014383.at:56" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:56" fi @@ -284692,13 +297229,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_281 -#AT_START_282 -at_fn_group_banner 282 'ipset_netmask_allowed.at:1' \ - "ipset netmask allowed type hash:ip" " " 9 +#AT_STOP_305 +#AT_START_306 +at_fn_group_banner 306 'gh874.at:1' \ + "policy masquerade w/ ingress interface" " " 9 at_xfail=no ( - $as_echo "282. $at_setup_line: testing $at_desc ..." + printf "%s\n" "306. $at_setup_line: testing $at_desc ..." $at_traceon @@ -284716,6 +297253,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -284732,29 +297270,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:1" +printf "%s\n" "$at_srcdir/gh874.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "ipset_netmask_allowed.at:1" +printf "%s\n" "$at_srcdir/gh874.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh874.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -284762,15 +297300,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "ipset_netmask_allowed.at:1" +printf "%s\n" "$at_srcdir/gh874.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh874.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -284812,15 +297350,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:1" +printf "%s\n" "$at_srcdir/gh874.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -284828,9 +297366,9 @@ $at_traceon; } - $as_echo "ipset_netmask_allowed.at:1" >"$at_check_line_file" + printf "%s\n" "gh874.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/ipset_netmask_allowed.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh874.at:1" @@ -284911,8 +297449,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "ipset_netmask_allowed.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" + printf "%s\n" "gh874.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh874.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -284922,7 +297460,7 @@ at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -284930,8 +297468,8 @@ at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "ipset_netmask_allowed.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" + printf "%s\n" "gh874.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh874.at:1" fi echo "$!" > firewalld.pid @@ -284947,9 +297485,9 @@ at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" fi sleep 1 done - $as_echo "ipset_netmask_allowed.at:1" >"$at_check_line_file" + printf "%s\n" "gh874.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" + && at_fn_check_skip 99 "$at_srcdir/gh874.at:1" @@ -284959,15 +297497,15 @@ at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:1" { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:ip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:ip +printf "%s\n" "$at_srcdir/gh874.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone foobar_zone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone foobar_zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -284977,17 +297515,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/gh874.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar_policy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar_policy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:5" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -284998,15 +297535,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/gh874.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:5" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -285016,18 +297553,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/24 +printf "%s\n" "$at_srcdir/gh874.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-ingress-zone foobar_zone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-ingress-zone foobar_zone ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -285038,15 +297573,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/24 +printf "%s\n" "$at_srcdir/gh874.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -285058,15 +297593,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 4.3.2.1/32 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 4.3.2.1/32 +printf "%s\n" "$at_srcdir/gh874.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:16" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -285077,15 +297612,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 4.3.2.1/32 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 4.3.2.1/32 +printf "%s\n" "$at_srcdir/gh874.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_netmask_allowed.at:17" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -285096,35 +297631,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.0/22 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 136 $at_status "$at_srcdir/ipset_netmask_allowed.at:20" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.0/22 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.0/22 +printf "%s\n" "$at_srcdir/gh874.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar_zone --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar_zone --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 136 $at_status "$at_srcdir/ipset_netmask_allowed.at:21" +at_fn_check_status 112 $at_status "$at_srcdir/gh874.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -285135,15 +297653,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/30 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4/30 +printf "%s\n" "$at_srcdir/gh874.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -i '2a \\ + +' ./zones/foobar_zone.xml + " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:23" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sed -i '2a \ + +' ./zones/foobar_zone.xml + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 136 $at_status "$at_srcdir/ipset_netmask_allowed.at:22" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:23" $at_failed && at_fn_log_failure $at_traceon; } @@ -285152,17 +297676,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/ipset_netmask_allowed.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/30 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_netmask_allowed.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4/30 +printf "%s\n" "$at_srcdir/gh874.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 136 $at_status "$at_srcdir/ipset_netmask_allowed.at:23" +at_fn_check_status 112 $at_status "$at_srcdir/gh874.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -285172,10 +297695,11 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_ENTRY:/d'" != x"ignore"; then - $as_echo "ipset_netmask_allowed.at:25" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ENTRY:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/ipset_netmask_allowed.at:25" + + if test x"ignore" != x"ignore"; then + printf "%s\n" "gh874.at:33" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh874.at:33" fi @@ -285184,13 +297708,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_282 -#AT_START_283 -at_fn_group_banner 283 'rhbz1940928.at:1' \ - "direct -s/-d multiple addresses" " " 9 +#AT_STOP_306 +#AT_START_307 +at_fn_group_banner 307 'gh881.at:1' \ + "ipset entry overlap detect perf" " " 9 at_xfail=no ( - $as_echo "283. $at_setup_line: testing $at_desc ..." + printf "%s\n" "307. $at_setup_line: testing $at_desc ..." $at_traceon @@ -285208,6 +297732,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -285224,29 +297749,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:1" +printf "%s\n" "$at_srcdir/gh881.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1940928.at:1" +printf "%s\n" "$at_srcdir/gh881.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh881.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -285254,15 +297779,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1940928.at:1" +printf "%s\n" "$at_srcdir/gh881.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh881.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -285304,15 +297829,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1940928.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:1" +printf "%s\n" "$at_srcdir/gh881.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -285320,9 +297845,9 @@ $at_traceon; } - $as_echo "rhbz1940928.at:1" >"$at_check_line_file" + printf "%s\n" "gh881.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1940928.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh881.at:1" @@ -285403,8 +297928,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1940928.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" + printf "%s\n" "gh881.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh881.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -285414,7 +297939,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -285422,8 +297947,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1940928.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" + printf "%s\n" "gh881.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh881.at:1" fi echo "$!" > firewalld.pid @@ -285439,107 +297964,53 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" fi sleep 1 done - $as_echo "rhbz1940928.at:1" >"$at_check_line_file" + printf "%s\n" "gh881.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:1" - - - - - - - $as_echo "rhbz1940928.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1940928.at:3" - - + && at_fn_check_skip 99 "$at_srcdir/gh881.at:1" -{ set +x -$as_echo "$at_srcdir/rhbz1940928.at:7: sed -i 's/^IndividualCalls.*/IndividualCalls=no/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1940928.at:7" -( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=no/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:7" -$at_failed && at_fn_log_failure -$at_traceon; } +: >./deny_cidr { set +x -$as_echo "$at_srcdir/rhbz1940928.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/gh881.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh -c ' +for I in \$(seq 250); do + for J in \$(seq 250); do + echo \"10.\${I}.\${J}.0/24\" >> ./deny_cidr + done +done +' " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh881.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c ' +for I in $(seq 250); do + for J in $(seq 250); do + echo "10.${I}.${J}.0/24" >> ./deny_cidr + done +done +' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:7" $at_failed && at_fn_log_failure $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/rhbz1940928.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/gh881.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"10.254.0.0/16\" >> ./deny_cidr " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "10.254.0.0/16" >> ./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1940928.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:10" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1940928.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -285548,17 +298019,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1940928.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT +printf "%s\n" "$at_srcdir/gh881.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=deny_set --type=hash:net --option=family=inet --option=hashsize=16384 --option=maxelem=62503 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=deny_set --type=hash:net --option=family=inet --option=hashsize=16384 --option=maxelem=62503 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -285566,234 +298036,145 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1940928.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 9 -j DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 9 -j DROP +printf "%s\n" "$at_srcdir/gh881.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:13" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1940928.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_direct; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1940928.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_direct; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED -ACCEPT 6 -- 0.0.0.0/0 10.0.0.0/8 -ACCEPT 6 -- 0.0.0.0/0 172.16.0.0/16 -ACCEPT 6 -- 0.0.0.0/0 192.168.0.0/24 -ACCEPT 17 -- 0.0.0.0/0 10.0.0.0/8 -ACCEPT 17 -- 0.0.0.0/0 172.16.0.0/16 -ACCEPT 17 -- 0.0.0.0/0 192.168.0.0/24 -DROP 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:19" $at_failed && at_fn_log_failure $at_traceon; } +cat >./deny_cidr <<'_ATEOF' - - +9.0.0.0/8 +11.1.0.0/16 +_ATEOF { set +x -$as_echo "$at_srcdir/rhbz1940928.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --add-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT +printf "%s\n" "$at_srcdir/gh881.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:26" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1940928.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_direct; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1940928.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_direct; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED -ACCEPT 132 -- 0.0.0.0/0 10.0.0.0/8 -ACCEPT 132 -- 0.0.0.0/0 172.16.0.0/16 -ACCEPT 132 -- 0.0.0.0/0 192.168.0.0/24 -ACCEPT 6 -- 0.0.0.0/0 10.0.0.0/8 -ACCEPT 6 -- 0.0.0.0/0 172.16.0.0/16 -ACCEPT 6 -- 0.0.0.0/0 192.168.0.0/24 -ACCEPT 17 -- 0.0.0.0/0 10.0.0.0/8 -ACCEPT 17 -- 0.0.0.0/0 172.16.0.0/16 -ACCEPT 17 -- 0.0.0.0/0 192.168.0.0/24 -DROP 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:27" $at_failed && at_fn_log_failure $at_traceon; } +cat >./deny_cidr <<'_ATEOF' - - +10.1.0.0/16 +10.2.0.0/16 +10.250.0.0/16 +_ATEOF { set +x -$as_echo "$at_srcdir/rhbz1940928.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 0 -m state --state ESTABLISHED,RELATED -j ACCEPT +printf "%s\n" "$at_srcdir/gh881.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:36" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:42" +at_fn_check_status 136 $at_status "$at_srcdir/gh881.at:36" $at_failed && at_fn_log_failure $at_traceon; } +cat >./deny_cidr <<'_ATEOF' - +10.253.0.0/16 +10.253.128.0/17 +_ATEOF { set +x -$as_echo "$at_srcdir/rhbz1940928.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 1 -p sctp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT +printf "%s\n" "$at_srcdir/gh881.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:43" +at_fn_check_status 136 $at_status "$at_srcdir/gh881.at:42" $at_failed && at_fn_log_failure $at_traceon; } +cat >./deny_cidr <<'_ATEOF' - +10.1.1.1/32 +_ATEOF { set +x -$as_echo "$at_srcdir/rhbz1940928.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p tcp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT +printf "%s\n" "$at_srcdir/gh881.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:44" +at_fn_check_status 136 $at_status "$at_srcdir/gh881.at:47" $at_failed && at_fn_log_failure $at_traceon; } +cat >./deny_cidr <<'_ATEOF' - +10.0.0.0/8 +10.0.0.0/25 +_ATEOF { set +x -$as_echo "$at_srcdir/rhbz1940928.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:45" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 2 -p udp -d 10.0.0.0/8,172.16.0.0/16,192.168.0.0/24 -j ACCEPT +printf "%s\n" "$at_srcdir/gh881.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:53" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:45" +at_fn_check_status 136 $at_status "$at_srcdir/gh881.at:53" $at_failed && at_fn_log_failure $at_traceon; } - +: >./deny_cidr { set +x -$as_echo "$at_srcdir/rhbz1940928.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 9 -j DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1940928.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --direct --remove-rule ipv4 filter OUTPUT 9 -j DROP +printf "%s\n" "$at_srcdir/gh881.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:57" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:46" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1940928.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_direct; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1940928.at:49" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_direct; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1940928.at:49" +at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:57" $at_failed && at_fn_log_failure $at_traceon; } @@ -285804,9 +298185,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "rhbz1940928.at:52" >"$at_check_line_file" + printf "%s\n" "gh881.at:59" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1940928.at:52" + && at_fn_check_skip 99 "$at_srcdir/gh881.at:59" fi @@ -285815,13 +298196,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_283 -#AT_START_284 -at_fn_group_banner 284 'rhbz1936896.at:1' \ - "ipset type hash:net,net" " " 9 +#AT_STOP_307 +#AT_START_308 +at_fn_group_banner 308 'service_includes_for_builtin.at:1' \ + "service include for built-in" " " 9 at_xfail=no ( - $as_echo "284. $at_setup_line: testing $at_desc ..." + printf "%s\n" "308. $at_setup_line: testing $at_desc ..." $at_traceon @@ -285839,6 +298220,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -285855,29 +298237,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:1" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_includes_for_builtin.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1936896.at:1" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "service_includes_for_builtin.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -285885,15 +298267,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1936896.at:1" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "service_includes_for_builtin.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -285935,15 +298317,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1936896.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:1" +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_includes_for_builtin.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -285951,9 +298333,9 @@ $at_traceon; } - $as_echo "rhbz1936896.at:1" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1936896.at:1" + && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:1" @@ -286034,8 +298416,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1936896.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" + printf "%s\n" "service_includes_for_builtin.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -286045,7 +298427,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -286053,8 +298435,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1936896.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" + printf "%s\n" "service_includes_for_builtin.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" fi echo "$!" > firewalld.pid @@ -286070,174 +298452,240 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" fi sleep 1 done - $as_echo "rhbz1936896.at:1" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:1" - + && at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" + printf "%s\n" "service_includes_for_builtin.at:6" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:6" - $as_echo "rhbz1936896.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $IPSET -h >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1936896.at:3" + { set +x +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getServiceByName \"ssh\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getServiceByName "ssh"; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; tee stdout <"$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } +SERVICE_OBJ=$(sed -e "s/.*config\/service\/\([^']\+\)['].*/\1/" ./stdout) +export SERVICE_OBJ + printf "%s\n" "service_includes_for_builtin.at:13" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:13" { set +x -$as_echo "$at_srcdir/rhbz1936896.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-ipset testset --type hash:net,net " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-ipset testset --type hash:net,net +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:5" +echo >>"$at_stdout"; printf "%s\n" "(@as [],) +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:13" $at_failed && at_fn_log_failure $at_traceon; } - - + printf "%s\n" "service_includes_for_builtin.at:16" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:16" { set +x -$as_echo "$at_srcdir/rhbz1936896.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=testset --add-entry=192.168.0.0/24,10.0.1.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=testset --add-entry=192.168.0.0/24,10.0.1.0/24 +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.setIncludes '[\"https\", \"http\"]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.setIncludes '["https", "http"]'; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:16" $at_failed && at_fn_log_failure $at_traceon; } + printf "%s\n" "service_includes_for_builtin.at:17" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:17" + { set +x +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - - - { set +x -$as_echo "$at_srcdir/rhbz1936896.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:7" +echo >>"$at_stdout"; printf "%s\n" "(['https', 'http'],) +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:17" $at_failed && at_fn_log_failure $at_traceon; } - - + printf "%s\n" "service_includes_for_builtin.at:20" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:20" { set +x -$as_echo "$at_srcdir/rhbz1936896.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1936896.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.addInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.addInclude '"http"'; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:7" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:20" $at_failed && at_fn_log_failure $at_traceon; } - - - + printf "%s\n" "service_includes_for_builtin.at:21" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:21" { set +x -$as_echo "$at_srcdir/rhbz1936896.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset=testset | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1936896.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-ipset=testset | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '"http"'; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "testset -type: hash:net,net -options: -entries: 192.168.0.0/24,10.0.1.0/24 +echo >>"$at_stdout"; printf "%s\n" "(true,) " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:21" $at_failed && at_fn_log_failure $at_traceon; } + printf "%s\n" "service_includes_for_builtin.at:24" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:24" + + { set +x +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.removeInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:24" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.removeInclude '"http"'; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:24" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IPSET list >/dev/null 2>&1; then + printf "%s\n" "service_includes_for_builtin.at:25" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:25" { set +x -$as_echo "$at_srcdir/rhbz1936896.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list testset; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/service_includes_for_builtin.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz1936896.at:15" +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list testset; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '"http"'; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: testset -Type: hash:net,net -Members: -192.168.0.0/24,10.0.1.0/24 +echo >>"$at_stdout"; printf "%s\n" "(false,) " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1936896.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:25" $at_failed && at_fn_log_failure $at_traceon; } - fi - - - - - - - if test x"" != x"ignore"; then - $as_echo "rhbz1936896.at:32" >"$at_check_line_file" + printf "%s\n" "service_includes_for_builtin.at:29" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1936896.at:32" + && at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:29" fi @@ -286246,13 +298694,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_284 -#AT_START_285 -at_fn_group_banner 285 'gh795.at:1' \ - "ipset entry delete w/ timeout=0" " " 9 +#AT_STOP_308 +#AT_START_309 +at_fn_group_banner 309 'gh940.at:1' \ + "log prefix" " " 9 at_xfail=no ( - $as_echo "285. $at_setup_line: testing $at_desc ..." + printf "%s\n" "309. $at_setup_line: testing $at_desc ..." $at_traceon @@ -286270,6 +298718,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -286286,29 +298735,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh795.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:1" +printf "%s\n" "$at_srcdir/gh940.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh795.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh795.at:1" +printf "%s\n" "$at_srcdir/gh940.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh940.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -286316,15 +298765,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh795.at:1" +printf "%s\n" "$at_srcdir/gh940.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh940.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -286366,15 +298815,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh795.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:1" +printf "%s\n" "$at_srcdir/gh940.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -286382,9 +298831,9 @@ $at_traceon; } - $as_echo "gh795.at:1" >"$at_check_line_file" + printf "%s\n" "gh940.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh795.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh940.at:1" @@ -286465,8 +298914,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh795.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh795.at:1" + printf "%s\n" "gh940.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh940.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -286476,7 +298925,7 @@ at_fn_check_skip 99 "$at_srcdir/gh795.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -286484,8 +298933,8 @@ at_fn_check_skip 99 "$at_srcdir/gh795.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh795.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh795.at:1" + printf "%s\n" "gh940.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh940.at:1" fi echo "$!" > firewalld.pid @@ -286501,46 +298950,37 @@ at_fn_check_skip 99 "$at_srcdir/gh795.at:1" fi sleep 1 done - $as_echo "gh795.at:1" >"$at_check_line_file" + printf "%s\n" "gh940.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh795.at:1" - - - + && at_fn_check_skip 99 "$at_srcdir/gh940.at:1" - { set +x -$as_echo "$at_srcdir/gh795.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type=hash:ip --option=timeout=0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type=hash:ip --option=timeout=0 +{ set +x +printf "%s\n" "$at_srcdir/gh940.at:4: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "gh940.at:4" +( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:4" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:4" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/gh795.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 +{ set +x +printf "%s\n" "$at_srcdir/gh940.at:5: sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf" +at_fn_check_prepare_trace "gh940.at:5" +( $at_check_trace; sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:5" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -286548,18 +298988,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/gh795.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 +printf "%s\n" "$at_srcdir/gh940.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -286567,39 +299005,48 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/gh795.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 1.2.3.4 +{ set +x +printf "%s\n" "$at_srcdir/gh940.at:9: mkdir -p ./policies" +at_fn_check_prepare_trace "gh940.at:9" +( $at_check_trace; mkdir -p ./policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:7" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:9" $at_failed && at_fn_log_failure $at_traceon; } - - +cat >./policies/log-denied.xml <<'_ATEOF' + + +log-denied +log denied policy + + + + + + + + + +_ATEOF { set +x -$as_echo "$at_srcdir/gh795.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries +printf "%s\n" "$at_srcdir/gh940.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1.2.3.4 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:8" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -286609,16 +299056,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/gh795.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entry 1.2.3.4 +printf "%s\n" "$at_srcdir/gh940.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:11" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -286629,17 +299077,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --get-entries +printf "%s\n" "$at_srcdir/gh940.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:12" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -286650,18 +299096,10 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh795.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:15" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + @@ -286670,15 +299108,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/gh940.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_log-denied; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:59" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_log-denied; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:15" +echo >>"$at_stdout"; printf "%s\n" "IN_log-denied_pre 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_log-denied_log 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_log-denied_deny 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_log-denied_allow 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_log-denied_post 0 -- 0.0.0.0/0 0.0.0.0/0 +LOG 0 -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix \"IN_log-denied_DROP: \" +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:59" $at_failed && at_fn_log_failure $at_traceon; } @@ -286689,77 +299141,54 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh795.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:16" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/gh795.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 +printf "%s\n" "$at_srcdir/gh940.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_log-denied; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:68" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_log-denied; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo >>"$at_stderr"; $as_echo "Warning: ALREADY_ENABLED: '1.2.3.4' already is in 'foobar' +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_log-denied_pre 0 -- ::/0 ::/0 +IN_log-denied_log 0 -- ::/0 ::/0 +IN_log-denied_deny 0 -- ::/0 ::/0 +IN_log-denied_allow 0 -- ::/0 ::/0 +IN_log-denied_post 0 -- ::/0 ::/0 +LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"IN_log-denied_DROP: \" +DROP 0 -- ::/0 ::/0 " | \ - $at_diff - "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:17" + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:68" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/gh795.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:20" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/gh795.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 1.2.3.4 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:21" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -286768,17 +299197,25 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --get-entries " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --get-entries +printf "%s\n" "$at_srcdir/gh940.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_log-denied_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_log-denied_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1.2.3.4 +echo >>"$at_stdout"; printf "%s\n" "LOG 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 LOG flags 0 level 4 prefix \"log-denied_ICMP_BLOCK: \" +REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 reject-with icmp-host-prohibited +DROP 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6667 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:22" +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:90" $at_failed && at_fn_log_failure $at_traceon; } @@ -286792,36 +299229,46 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : - if $IPSET list >/dev/null 2>&1; then - { set +x -$as_echo "$at_srcdir/gh795.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPSET list foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | grep -v \"^\\(Revision\\|Header\\|Size\\|References\\|Number\\)\" | awk 'NR <= 3; NR > 3 {print | \"sort\"}' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/gh940.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_log-denied_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh795.at:36" +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:95" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPSET list foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | grep -v "^\(Revision\|Header\|Size\|References\|Number\)" | awk 'NR <= 3; NR > 3 {print | "sort"}' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_log-denied_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "Name: foobar -Type: hash:ip -Members: -1.2.3.4 timeout 0 +echo >>"$at_stdout"; printf "%s\n" "LOG 58 -- ::/0 ::/0 ipv6-icmptype 128 LOG flags 0 level 4 prefix \"log-denied_ICMP_BLOCK: \" +REJECT 58 -- ::/0 ::/0 ipv6-icmptype 128 reject-with icmp6-adm-prohibited +DROP 6 -- ::/0 ::/0 tcp dpt:6667 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:36" +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:95" $at_failed && at_fn_log_failure $at_traceon; } - fi + + else + : + + fi + + + + + + + @@ -286831,15 +299278,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh795.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --remove-entry 1.2.3.4 +printf "%s\n" "$at_srcdir/gh940.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_log-denied_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:109" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_log-denied_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:43" +echo >>"$at_stdout"; printf "%s\n" "LOG 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6667 LOG flags 0 level 4 prefix \"Dropped IRC Packet: \" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:109" $at_failed && at_fn_log_failure $at_traceon; } @@ -286849,31 +299304,53 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/gh795.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --get-entries " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh795.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --get-entries +printf "%s\n" "$at_srcdir/gh940.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_log-denied_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_log-denied_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " +echo >>"$at_stdout"; printf "%s\n" "LOG 6 -- ::/0 ::/0 tcp dpt:6667 LOG flags 0 level 4 prefix \"Dropped IRC Packet: \" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh795.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:112" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - if test x"-e '/WARNING: ALREADY_ENABLED:/d'" != x"ignore"; then - $as_echo "gh795.at:48" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: ALREADY_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh795.at:48" + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "gh940.at:116" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh940.at:116" fi @@ -286882,13 +299359,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_285 -#AT_START_286 -at_fn_group_banner 286 'rhbz1914935.at:1' \ - "zone overlapping ports" " " 9 +#AT_STOP_309 +#AT_START_310 +at_fn_group_banner 310 'build_policy_split_wildcard.at:1' \ + "build policy split wildcards" " " 9 at_xfail=no ( - $as_echo "286. $at_setup_line: testing $at_desc ..." + printf "%s\n" "310. $at_setup_line: testing $at_desc ..." $at_traceon @@ -286906,6 +299383,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -286922,29 +299400,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:1" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1914935.at:1" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "build_policy_split_wildcard.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -286952,15 +299430,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1914935.at:1" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "build_policy_split_wildcard.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -287002,15 +299480,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1914935.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:1" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -287018,9 +299496,9 @@ $at_traceon; } - $as_echo "rhbz1914935.at:1" >"$at_check_line_file" + printf "%s\n" "build_policy_split_wildcard.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1914935.at:1" + && at_fn_check_skip 77 "$at_srcdir/build_policy_split_wildcard.at:1" @@ -287101,8 +299579,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1914935.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" + printf "%s\n" "build_policy_split_wildcard.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -287112,7 +299590,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -287120,8 +299598,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1914935.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" + printf "%s\n" "build_policy_split_wildcard.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" fi echo "$!" > firewalld.pid @@ -287137,51 +299615,27 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" fi sleep 1 done - $as_echo "rhbz1914935.at:1" >"$at_check_line_file" + printf "%s\n" "build_policy_split_wildcard.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:1" - - - - + && at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" -{ set +x -$as_echo "$at_srcdir/rhbz1914935.at:4: mkdir -p ./zones" -at_fn_check_prepare_trace "rhbz1914935.at:4" -( $at_check_trace; mkdir -p ./zones -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } -cat >./zones/foobar.xml <<'_ATEOF' - - - - - - -_ATEOF { set +x -$as_echo "$at_srcdir/rhbz1914935.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:14" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -287192,67 +299646,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:14" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:15: grep \"WARNING: ALREADY_ENABLED: '1234:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:15" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '1234:tcp' already in 'foobar'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:8" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:16: grep \"WARNING: ALREADY_ENABLED: '2000-3000:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:16" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '2000-3000:tcp' already in 'foobar'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:16" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-ports +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1024-65535/tcp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:17" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -287260,29 +299681,18 @@ $at_traceon; } -cat >./zones/foobar.xml <<'_ATEOF' - - - - - - -_ATEOF - - - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:29" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -287293,15 +299703,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:29" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -287310,50 +299720,36 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1914935.at:30: grep \"WARNING: ALREADY_ENABLED: '1234:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:30" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '1234:tcp' already in 'foobar'" ./firewalld.log +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:30" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:12" $at_failed && at_fn_log_failure $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:31: grep \"WARNING: ALREADY_ENABLED: '2000-3000:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:31" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '2000-3000:tcp' already in 'foobar'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:31" -$at_failed && at_fn_log_failure -$at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-source-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-source-ports +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1024-65535/tcp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:32" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -287361,28 +299757,19 @@ $at_traceon; } -cat >./zones/foobar.xml <<'_ATEOF' - - - - - -_ATEOF - - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:44" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -287393,15 +299780,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:44" +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:14" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -287410,35 +299797,19 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:45: grep \"WARNING: ALREADY_ENABLED: '1500-2500:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:45" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '1500-2500:tcp' already in 'foobar'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1914935.at:45" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-ports +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface tun+ " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-interface tun+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1024-2500/tcp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:46" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -287446,28 +299817,21 @@ $at_traceon; } -cat >./zones/foobar.xml <<'_ATEOF' - - - - - -_ATEOF { set +x -$as_echo "$at_srcdir/rhbz1914935.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-interface tun+ " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:106" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-interface tun+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:58" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:106" $at_failed && at_fn_log_failure $at_traceon; } @@ -287477,16 +299841,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/rhbz1914935.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface tun+ " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:111" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface tun+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:58" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:111" $at_failed && at_fn_log_failure $at_traceon; } @@ -287495,35 +299861,21 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz1914935.at:59: grep \"WARNING: ALREADY_ENABLED: '1500-2500:tcp' already in 'foobar'\" ./firewalld.log" -at_fn_check_prepare_trace "rhbz1914935.at:59" -( $at_check_trace; grep "WARNING: ALREADY_ENABLED: '1500-2500:tcp' already in 'foobar'" ./firewalld.log -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/rhbz1914935.at:59" -$at_failed && at_fn_log_failure -$at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1914935.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --list-source-ports " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1914935.at:60" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --list-source-ports +printf "%s\n" "$at_srcdir/build_policy_split_wildcard.at:201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface net+ " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:201" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-interface net+ ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "1024-2500/tcp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1914935.at:60" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:201" $at_failed && at_fn_log_failure $at_traceon; } @@ -287533,10 +299885,13 @@ $at_traceon; } - if test x"-e '/WARNING: ALREADY_ENABLED:/d'" != x"ignore"; then - $as_echo "rhbz1914935.at:64" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/WARNING: ALREADY_ENABLED:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1914935.at:64" + + + + if test x"" != x"ignore"; then + printf "%s\n" "build_policy_split_wildcard.at:319" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:319" fi @@ -287545,13 +299900,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_286 -#AT_START_287 -at_fn_group_banner 287 'gh696.at:1' \ - "icmp-block-inversion no log blocked" " " 9 +#AT_STOP_310 +#AT_START_311 +at_fn_group_banner 311 'gh1011.at:1' \ + "remove entries results in empty" " " 9 at_xfail=no ( - $as_echo "287. $at_setup_line: testing $at_desc ..." + printf "%s\n" "311. $at_setup_line: testing $at_desc ..." $at_traceon @@ -287569,6 +299924,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -287585,29 +299941,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh696.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:1" +printf "%s\n" "$at_srcdir/gh1011.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh696.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh696.at:1" +printf "%s\n" "$at_srcdir/gh1011.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh1011.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -287615,15 +299971,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh696.at:1" +printf "%s\n" "$at_srcdir/gh1011.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh1011.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -287665,15 +300021,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh696.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:1" +printf "%s\n" "$at_srcdir/gh1011.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -287681,9 +300037,9 @@ $at_traceon; } - $as_echo "gh696.at:1" >"$at_check_line_file" + printf "%s\n" "gh1011.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh696.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh1011.at:1" @@ -287764,8 +300120,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh696.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh696.at:1" + printf "%s\n" "gh1011.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1011.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -287775,7 +300131,7 @@ at_fn_check_skip 99 "$at_srcdir/gh696.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -287783,8 +300139,8 @@ at_fn_check_skip 99 "$at_srcdir/gh696.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh696.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh696.at:1" + printf "%s\n" "gh1011.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1011.at:1" fi echo "$!" > firewalld.pid @@ -287800,165 +300156,9 @@ at_fn_check_skip 99 "$at_srcdir/gh696.at:1" fi sleep 1 done - $as_echo "gh696.at:1" >"$at_check_line_file" + printf "%s\n" "gh1011.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh696.at:1" - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh696.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --remove-icmp-block-inversion " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --remove-icmp-block-inversion -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/gh696.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block echo-request -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:5" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh696.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/gh696.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh696.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 reject-with icmp-host-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:17" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/gh696.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 58 -- ::/0 ::/0 ipv6-icmptype 128 reject-with icmp6-adm-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:20" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - + && at_fn_check_skip 99 "$at_srcdir/gh1011.at:1" @@ -287968,115 +300168,38 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied all " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-log-denied all +printf "%s\n" "$at_srcdir/gh1011.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:25" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh696.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 LOG flags 0 level 4 prefix \"zone_public_HOST_ICMP_BLOCK: \" -REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 reject-with icmp-host-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:38" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/gh696.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 58 -- ::/0 ::/0 ipv6-icmptype 128 LOG flags 0 level 4 prefix \"zone_public_HOST_ICMP_BLOCK: \" -REJECT 58 -- ::/0 ::/0 ipv6-icmptype 128 reject-with icmp6-adm-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:42" +at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:4" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - +cat >./empty <<'_ATEOF' +10.10.10.0/24 +_ATEOF { set +x -$as_echo "$at_srcdir/gh696.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block-inversion " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-icmp-block-inversion +printf "%s\n" "$at_srcdir/gh1011.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:53" +at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -288087,15 +300210,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh696.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied off " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-log-denied off +printf "%s\n" "$at_srcdir/gh1011.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entries-from-file ./empty " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entries-from-file ./empty ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:54" +at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -288107,30 +300230,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/gh696.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:67" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh1011.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:67" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -288140,97 +300249,36 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/gh696.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh1011.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:71" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:11" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/gh696.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --set-log-denied all " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh696.at:79" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --set-log-denied all +printf "%s\n" "$at_srcdir/gh1011.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:79" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh696.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:92" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:92" +at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -288240,55 +300288,29 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/gh696.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh696.at:96" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh1011.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entries-from-file ./empty " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --remove-entries-from-file ./empty ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh696.at:96" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:13" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - if test x"-d '/WARNING: NOT_ENABLED: icmp-block-inversion/d'" != x"ignore"; then - $as_echo "gh696.at:102" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -d '/WARNING: NOT_ENABLED: icmp-block-inversion/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh696.at:102" + if test x"" != x"ignore"; then + printf "%s\n" "gh1011.at:15" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh1011.at:15" fi @@ -288297,13 +300319,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_287 -#AT_START_288 -at_fn_group_banner 288 'rhbz1917766.at:1' \ - "rich rule source with netmask" " " 9 +#AT_STOP_311 +#AT_START_312 +at_fn_group_banner 312 'rhbz2181406.at:1' \ + "rich rule limit" " " 9 at_xfail=no ( - $as_echo "288. $at_setup_line: testing $at_desc ..." + printf "%s\n" "312. $at_setup_line: testing $at_desc ..." $at_traceon @@ -288321,6 +300343,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -288337,29 +300360,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:1" +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz1917766.at:1" +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz2181406.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -288367,15 +300390,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz1917766.at:1" +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz2181406.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -288417,15 +300440,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz1917766.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:1" +printf "%s\n" "$at_srcdir/rhbz2181406.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -288433,9 +300456,9 @@ $at_traceon; } - $as_echo "rhbz1917766.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2181406.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz1917766.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz2181406.at:1" @@ -288516,8 +300539,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz1917766.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" + printf "%s\n" "rhbz2181406.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -288527,7 +300550,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -288535,8 +300558,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz1917766.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" + printf "%s\n" "rhbz2181406.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" fi echo "$!" > firewalld.pid @@ -288552,9 +300575,9 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" fi sleep 1 done - $as_echo "rhbz1917766.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2181406.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" @@ -288563,17 +300586,35 @@ at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:1" + { set +x +printf "%s\n" "$at_srcdir/rhbz2181406.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=ssh log limit value=\"2/d\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=ssh log limit value="2/d"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/rhbz1917766.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-rich-rule='rule family=ipv4 source address=\"192.168.1.0/255.255.255.0\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-rich-rule='rule family=ipv4 source address="192.168.1.0/255.255.255.0" accept' +printf "%s\n" "$at_srcdir/rhbz2181406.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=ssh audit limit value=\"5/m\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=ssh audit limit value="5/m" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -288583,16 +300624,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz1917766.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule family=ipv4 source address=\"192.168.1.0/255.255.255.0\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-rich-rule='rule family=ipv4 source address="192.168.1.0/255.255.255.0" accept' +printf "%s\n" "$at_srcdir/rhbz2181406.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=http accept limit value=\"2/d\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=http accept limit value="2/d"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -288600,32 +300642,55 @@ $at_traceon; } -cat >./zones/foobar.xml <<'_ATEOF' - - - foobar - foobar - - - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/rhbz2181406.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=http accept limit value=\"5/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=http accept limit value="5/m"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x -$as_echo "$at_srcdir/rhbz1917766.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz2181406.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz2181406.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:21" +echo >>"$at_stdout"; printf "%s\n" "LOG 6 -- 10.10.10.10 0.0.0.0/0 tcp dpt:22 limit: avg 2/day burst 5 LOG flags 0 level 4 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:31" $at_failed && at_fn_log_failure $at_traceon; } @@ -288635,16 +300700,29 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/rhbz1917766.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz2181406.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz2181406.at:34" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:21" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 6 -- 10.10.10.10 0.0.0.0/0 tcp dpt:80 limit: avg 2/day burst 5 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -288655,29 +300733,97 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rhbz1917766.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz1917766.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --add-interface foobar0 +printf "%s\n" "$at_srcdir/rhbz2181406.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz2181406.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz1917766.at:22" +echo >>"$at_stdout"; printf "%s\n" "AUDIT 6 -- ::/0 fc00::10:10:10:10 tcp dpt:22 limit: avg 5/min burst 5 AUDIT accept +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:39" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/rhbz2181406.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz2181406.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +ACCEPT 6 -- ::/0 fc00::10:10:10:10 tcp dpt:22 +ACCEPT 6 -- ::/0 fc00::10:10:10:10 tcp dpt:80 limit: avg 5/min burst 5 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:42" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + if test x"" != x"ignore"; then - $as_echo "rhbz1917766.at:24" >"$at_check_line_file" + printf "%s\n" "rhbz2181406.at:49" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz1917766.at:24" + && at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:49" fi @@ -288686,13 +300832,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_288 -#AT_START_289 -at_fn_group_banner 289 'rhbz2014383.at:1' \ - "same source in two zone xml" " " 9 +#AT_STOP_312 +#AT_START_313 +at_fn_group_banner 313 'ipset_scale.at:1' \ + "ipset scale" " " 9 at_xfail=no ( - $as_echo "289. $at_setup_line: testing $at_desc ..." + printf "%s\n" "313. $at_setup_line: testing $at_desc ..." $at_traceon @@ -288710,13 +300856,14 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" export LC_ALL fi - ULIMIT_VAL="" + ULIMIT_VAL="307200" if test -z "$ULIMIT_VAL" ; then ULIMIT_VAL=102400 fi @@ -288726,29 +300873,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:1" +printf "%s\n" "$at_srcdir/ipset_scale.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2014383.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz2014383.at:1" +printf "%s\n" "$at_srcdir/ipset_scale.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "ipset_scale.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2014383.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -288756,15 +300903,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz2014383.at:1" +printf "%s\n" "$at_srcdir/ipset_scale.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "ipset_scale.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2014383.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -288806,15 +300953,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz2014383.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:1" +printf "%s\n" "$at_srcdir/ipset_scale.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2014383.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -288822,9 +300969,9 @@ $at_traceon; } - $as_echo "rhbz2014383.at:1" >"$at_check_line_file" + printf "%s\n" "ipset_scale.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz2014383.at:1" + && at_fn_check_skip 77 "$at_srcdir/ipset_scale.at:1" @@ -288905,8 +301052,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz2014383.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" + printf "%s\n" "ipset_scale.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -288916,7 +301063,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -288924,8 +301071,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz2014383.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" + printf "%s\n" "ipset_scale.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" fi echo "$!" > firewalld.pid @@ -288941,65 +301088,90 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" fi sleep 1 done - $as_echo "rhbz2014383.at:1" >"$at_check_line_file" + printf "%s\n" "ipset_scale.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:1" + && at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" + + + + + { set +x -$as_echo "$at_srcdir/rhbz2014383.at:4: mkdir -p ./zones" -at_fn_check_prepare_trace "rhbz2014383.at:4" -( $at_check_trace; mkdir -p ./zones +printf "%s\n" "$at_srcdir/ipset_scale.at:8: touch ./entries" +at_fn_check_prepare_trace "ipset_scale.at:8" +( $at_check_trace; touch ./entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2014383.at:4" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:8" $at_failed && at_fn_log_failure $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/ipset_scale.at:9: sh -c ' +for I in \$(seq 250); do + for J in \$(seq 250); do + echo \"10.10.\${I}.\${J}/32\" >> ./entries + done +done +'" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_scale.at:9" +( $at_check_trace; sh -c ' +for I in $(seq 250); do + for J in $(seq 250); do + echo "10.10.${I}.${J}/32" >> ./entries + done +done +' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } -cat >./zones/foobar.xml <<'_ATEOF' - - - foobar - foobar - - - - -_ATEOF -cat >./zones/foobar2.xml <<'_ATEOF' - - - foobar2 - foobar2 - - - - -_ATEOF + + + { set +x +printf "%s\n" "$at_srcdir/ipset_scale.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:17" +$at_failed && at_fn_log_failure +$at_traceon; } + + { set +x -$as_echo "$at_srcdir/rhbz2014383.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/ipset_scale.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entries-from-file ./entries " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entries-from-file ./entries ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 105 $at_status "$at_srcdir/rhbz2014383.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -289008,43 +301180,38 @@ $at_traceon; } -cat >./zones/foobar.xml <<'_ATEOF' - - - foobar - foobar - - - - -_ATEOF -cat >./zones/foobar2.xml <<'_ATEOF' - - - foobar2 - foobar2 - - - - -_ATEOF + + { set +x +printf "%s\n" "$at_srcdir/ipset_scale.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:20" +$at_failed && at_fn_log_failure +$at_traceon; } + + { set +x -$as_echo "$at_srcdir/rhbz2014383.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2014383.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/ipset_scale.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 104 $at_status "$at_srcdir/rhbz2014383.at:54" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -289054,10 +301221,11 @@ $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "rhbz2014383.at:56" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz2014383.at:56" + + if test x"" != x"ignore"; then + printf "%s\n" "ipset_scale.at:22" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:22" fi @@ -289066,13 +301234,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_289 -#AT_START_290 -at_fn_group_banner 290 'gh874.at:1' \ - "policy masquerade w/ ingress interface" " " 9 +#AT_STOP_313 +#AT_START_314 +at_fn_group_banner 314 'gh1129.at:16' \ + "switch backend to nftables and reload" " " 9 at_xfail=no ( - $as_echo "290. $at_setup_line: testing $at_desc ..." + printf "%s\n" "314. $at_setup_line: testing $at_desc ..." $at_traceon @@ -289090,6 +301258,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -289106,29 +301275,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh874.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:1" +printf "%s\n" "$at_srcdir/gh1129.at:16: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:16" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh874.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh874.at:1" +printf "%s\n" "$at_srcdir/gh1129.at:16: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh1129.at:16" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -289136,15 +301305,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh874.at:1" +printf "%s\n" "$at_srcdir/gh1129.at:16: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh1129.at:16" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -289186,15 +301355,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh874.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:1" +printf "%s\n" "$at_srcdir/gh1129.at:16: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:16" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -289202,9 +301371,9 @@ $at_traceon; } - $as_echo "gh874.at:1" >"$at_check_line_file" + printf "%s\n" "gh1129.at:16" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh874.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh1129.at:16" @@ -289285,8 +301454,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh874.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh874.at:1" + printf "%s\n" "gh1129.at:16" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1129.at:16" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -289296,7 +301465,7 @@ at_fn_check_skip 99 "$at_srcdir/gh874.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -289304,8 +301473,8 @@ at_fn_check_skip 99 "$at_srcdir/gh874.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh874.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh874.at:1" + printf "%s\n" "gh1129.at:16" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1129.at:16" fi echo "$!" > firewalld.pid @@ -289321,103 +301490,27 @@ at_fn_check_skip 99 "$at_srcdir/gh874.at:1" fi sleep 1 done - $as_echo "gh874.at:1" >"$at_check_line_file" + printf "%s\n" "gh1129.at:16" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh874.at:1" - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh874.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone foobar_zone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone foobar_zone -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/gh874.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar_policy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar_policy -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:5" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/gh874.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-masquerade -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/gh874.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-ingress-zone foobar_zone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-ingress-zone foobar_zone -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:7" -$at_failed && at_fn_log_failure -$at_traceon; } - - + && at_fn_check_skip 99 "$at_srcdir/gh1129.at:16" +printf "%s\n" "gh1129.at:16" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v iptables-save >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/gh1129.at:16" - { set +x -$as_echo "$at_srcdir/gh874.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar_policy --add-egress-zone ANY +{ set +x +printf "%s\n" "$at_srcdir/gh1129.at:16: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh1129.at:16" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:8" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -289425,19 +301518,16 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/gh874.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:9" +printf "%s\n" "$at_srcdir/gh1129.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -289448,37 +301538,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:9" +printf "%s\n" "$at_srcdir/gh1129.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:16" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh874.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar_zone --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar_zone --add-interface foobar0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/gh874.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -289489,39 +301557,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh874.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sed -i '2a \\ - -' ./zones/foobar_zone.xml - " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sed -i '2a \ - -' ./zones/foobar_zone.xml - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh874.at:23" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/gh874.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh874.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/gh1129.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save |grep DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save |grep DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/gh874.at:27" +at_fn_check_status 1 $at_status "$at_srcdir/gh1129.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -289529,13 +301573,10 @@ $at_traceon; } - - - - if test x"ignore" != x"ignore"; then - $as_echo "gh874.at:33" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh874.at:33" + if test x"" != x"ignore"; then + printf "%s\n" "gh1129.at:16" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/gh1129.at:16" fi @@ -289544,13 +301585,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_290 -#AT_START_291 -at_fn_group_banner 291 'gh881.at:1' \ - "ipset entry overlap detect perf" " " 9 +#AT_STOP_314 +#AT_START_315 +at_fn_group_banner 315 'gh1146.at:1' \ + "policy with mixed family zone source" " " 9 at_xfail=no ( - $as_echo "291. $at_setup_line: testing $at_desc ..." + printf "%s\n" "315. $at_setup_line: testing $at_desc ..." $at_traceon @@ -289568,6 +301609,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -289584,29 +301626,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh881.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:1" +printf "%s\n" "$at_srcdir/gh1146.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh881.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh881.at:1" +printf "%s\n" "$at_srcdir/gh1146.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh1146.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -289614,15 +301656,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh881.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh881.at:1" +printf "%s\n" "$at_srcdir/gh1146.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh1146.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -289664,15 +301706,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh881.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:1" +printf "%s\n" "$at_srcdir/gh1146.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -289680,9 +301722,9 @@ $at_traceon; } - $as_echo "gh881.at:1" >"$at_check_line_file" + printf "%s\n" "gh1146.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh881.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh1146.at:1" @@ -289763,8 +301805,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh881.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh881.at:1" + printf "%s\n" "gh1146.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -289774,7 +301816,7 @@ at_fn_check_skip 99 "$at_srcdir/gh881.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -289782,8 +301824,8 @@ at_fn_check_skip 99 "$at_srcdir/gh881.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh881.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh881.at:1" + printf "%s\n" "gh1146.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" fi echo "$!" > firewalld.pid @@ -289799,53 +301841,118 @@ at_fn_check_skip 99 "$at_srcdir/gh881.at:1" fi sleep 1 done - $as_echo "gh881.at:1" >"$at_check_line_file" + printf "%s\n" "gh1146.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh881.at:1" + && at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" + + -: >./deny_cidr { set +x -$as_echo "$at_srcdir/gh881.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh -c ' -for I in \$(seq 250); do - for J in \$(seq 250); do - echo \"10.\${I}.\${J}.0/24\" >> ./deny_cidr - done -done -' " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh881.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c ' -for I in $(seq 250); do - for J in $(seq 250); do - echo "10.${I}.${J}.0/24" >> ./deny_cidr - done -done -' +printf "%s\n" "$at_srcdir/gh1146.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface dummy1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface dummy1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:7" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1146.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.11.11.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.11.11.0/24 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:6" $at_failed && at_fn_log_failure $at_traceon; } + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + { set +x -$as_echo "$at_srcdir/gh881.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} echo \"10.254.0.0/16\" >> ./deny_cidr " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} echo "10.254.0.0/16" >> ./deny_cidr +printf "%s\n" "$at_srcdir/gh1146.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source fc00:1111:1111:1111::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source fc00:1111:1111:1111::/64 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:7" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + else + : + + fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1146.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy2 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1146.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.22.22.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.22.22.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:14" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -289854,16 +301961,24 @@ $at_traceon; } + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + { set +x -$as_echo "$at_srcdir/gh881.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=deny_set --type=hash:net --option=family=inet --option=hashsize=16384 --option=maxelem=62503 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=deny_set --type=hash:net --option=family=inet --option=hashsize=16384 --option=maxelem=62503 +printf "%s\n" "$at_srcdir/gh1146.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source fc00:2222:2222:2222::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-source fc00:2222:2222:2222::/64 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -289871,158 +301986,306 @@ $at_traceon; } + else + : + + fi + + + + + + + { set +x -$as_echo "$at_srcdir/gh881.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr +printf "%s\n" "$at_srcdir/gh1146.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:17" $at_failed && at_fn_log_failure $at_traceon; } -cat >./deny_cidr <<'_ATEOF' -9.0.0.0/8 -11.1.0.0/16 -_ATEOF + { set +x -$as_echo "$at_srcdir/gh881.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr +printf "%s\n" "$at_srcdir/gh1146.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:27" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:18" $at_failed && at_fn_log_failure $at_traceon; } -cat >./deny_cidr <<'_ATEOF' -10.1.0.0/16 -10.2.0.0/16 -10.250.0.0/16 -_ATEOF + { set +x -$as_echo "$at_srcdir/gh881.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:36" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr +printf "%s\n" "$at_srcdir/gh1146.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 136 $at_status "$at_srcdir/gh881.at:36" +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:19" $at_failed && at_fn_log_failure $at_traceon; } -cat >./deny_cidr <<'_ATEOF' -10.253.0.0/16 -10.253.128.0/17 -_ATEOF + + + { set +x -$as_echo "$at_srcdir/gh881.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr +printf "%s\n" "$at_srcdir/gh1146.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 136 $at_status "$at_srcdir/gh881.at:42" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:21" $at_failed && at_fn_log_failure $at_traceon; } -cat >./deny_cidr <<'_ATEOF' -10.1.1.1/32 -_ATEOF + { set +x -$as_echo "$at_srcdir/gh881.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr +printf "%s\n" "$at_srcdir/gh1146.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 136 $at_status "$at_srcdir/gh881.at:47" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:21" $at_failed && at_fn_log_failure $at_traceon; } -cat >./deny_cidr <<'_ATEOF' -10.0.0.0/8 -10.0.0.0/25 -_ATEOF + + + + + + + + + { set +x -$as_echo "$at_srcdir/gh881.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} time firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr +printf "%s\n" "$at_srcdir/gh1146.at:125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1146.at:125" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 136 $at_status "$at_srcdir/gh881.at:53" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 10.11.11.0/24 10.11.11.0/24 +REJECT 0 -- 10.11.11.0/24 10.11.11.0/24 reject-with icmp-port-unreachable +FWD_foobar 0 -- 10.11.11.0/24 10.22.22.0/24 +FWD_internal 0 -- 10.11.11.0/24 10.22.22.0/24 +REJECT 0 -- 10.11.11.0/24 10.22.22.0/24 reject-with icmp-port-unreachable +FWD_internal 0 -- 10.11.11.0/24 0.0.0.0/0 +REJECT 0 -- 10.11.11.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 10.11.11.0/24 0.0.0.0/0 +FWD_internal 0 -- 10.11.11.0/24 0.0.0.0/0 +REJECT 0 -- 10.11.11.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 10.11.11.0/24 0.0.0.0/0 +FWD_internal 0 -- 10.11.11.0/24 0.0.0.0/0 +REJECT 0 -- 10.11.11.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 10.22.22.0/24 10.11.11.0/24 +REJECT 0 -- 10.22.22.0/24 10.11.11.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 10.22.22.0/24 10.22.22.0/24 +REJECT 0 -- 10.22.22.0/24 10.22.22.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 10.22.22.0/24 0.0.0.0/0 +REJECT 0 -- 10.22.22.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 10.22.22.0/24 0.0.0.0/0 +REJECT 0 -- 10.22.22.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 10.22.22.0/24 0.0.0.0/0 +REJECT 0 -- 10.22.22.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 10.11.11.0/24 +REJECT 0 -- 0.0.0.0/0 10.11.11.0/24 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 10.22.22.0/24 +FWD_internal 0 -- 0.0.0.0/0 10.22.22.0/24 +REJECT 0 -- 0.0.0.0/0 10.22.22.0/24 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.11.11.0/24 +REJECT 0 -- 0.0.0.0/0 10.11.11.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.22.22.0/24 +REJECT 0 -- 0.0.0.0/0 10.22.22.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.11.11.0/24 +REJECT 0 -- 0.0.0.0/0 10.11.11.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.22.22.0/24 +REJECT 0 -- 0.0.0.0/0 10.22.22.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:125" $at_failed && at_fn_log_failure $at_traceon; } -: >./deny_cidr + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/gh881.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh881.at:57" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset=deny_set --add-entries-from-file=./deny_cidr +printf "%s\n" "$at_srcdir/gh1146.at:183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1146.at:183" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh881.at:57" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- fc00:1111:1111:1111::/64 fc00:1111:1111:1111::/64 +REJECT 0 -- fc00:1111:1111:1111::/64 fc00:1111:1111:1111::/64 reject-with icmp6-port-unreachable +FWD_foobar 0 -- fc00:1111:1111:1111::/64 fc00:2222:2222:2222::/64 +FWD_internal 0 -- fc00:1111:1111:1111::/64 fc00:2222:2222:2222::/64 +REJECT 0 -- fc00:1111:1111:1111::/64 fc00:2222:2222:2222::/64 reject-with icmp6-port-unreachable +FWD_internal 0 -- fc00:1111:1111:1111::/64 ::/0 +REJECT 0 -- fc00:1111:1111:1111::/64 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- fc00:1111:1111:1111::/64 ::/0 +FWD_internal 0 -- fc00:1111:1111:1111::/64 ::/0 +REJECT 0 -- fc00:1111:1111:1111::/64 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- fc00:1111:1111:1111::/64 ::/0 +FWD_internal 0 -- fc00:1111:1111:1111::/64 ::/0 +REJECT 0 -- fc00:1111:1111:1111::/64 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- fc00:2222:2222:2222::/64 fc00:1111:1111:1111::/64 +REJECT 0 -- fc00:2222:2222:2222::/64 fc00:1111:1111:1111::/64 reject-with icmp6-port-unreachable +FWD_public 0 -- fc00:2222:2222:2222::/64 fc00:2222:2222:2222::/64 +REJECT 0 -- fc00:2222:2222:2222::/64 fc00:2222:2222:2222::/64 reject-with icmp6-port-unreachable +FWD_public 0 -- fc00:2222:2222:2222::/64 ::/0 +REJECT 0 -- fc00:2222:2222:2222::/64 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- fc00:2222:2222:2222::/64 ::/0 +REJECT 0 -- fc00:2222:2222:2222::/64 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- fc00:2222:2222:2222::/64 ::/0 +REJECT 0 -- fc00:2222:2222:2222::/64 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 fc00:1111:1111:1111::/64 +REJECT 0 -- ::/0 fc00:1111:1111:1111::/64 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 fc00:2222:2222:2222::/64 +FWD_internal 0 -- ::/0 fc00:2222:2222:2222::/64 +REJECT 0 -- ::/0 fc00:2222:2222:2222::/64 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 fc00:1111:1111:1111::/64 +REJECT 0 -- ::/0 fc00:1111:1111:1111::/64 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 fc00:2222:2222:2222::/64 +REJECT 0 -- ::/0 fc00:2222:2222:2222::/64 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 fc00:1111:1111:1111::/64 +REJECT 0 -- ::/0 fc00:1111:1111:1111::/64 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 fc00:2222:2222:2222::/64 +REJECT 0 -- ::/0 fc00:2222:2222:2222::/64 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:183" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + if test x"" != x"ignore"; then - $as_echo "gh881.at:59" >"$at_check_line_file" + printf "%s\n" "gh1146.at:242" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh881.at:59" + && at_fn_check_skip 99 "$at_srcdir/gh1146.at:242" fi @@ -290031,13 +302294,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_291 -#AT_START_292 -at_fn_group_banner 292 'service_includes_for_builtin.at:1' \ - "service include for built-in" " " 9 +#AT_STOP_315 +#AT_START_316 +at_fn_group_banner 316 'gh1152.at:1' \ + "list-all identical content" " " 9 at_xfail=no ( - $as_echo "292. $at_setup_line: testing $at_desc ..." + printf "%s\n" "316. $at_setup_line: testing $at_desc ..." $at_traceon @@ -290055,6 +302318,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -290071,29 +302335,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_includes_for_builtin.at:1" +printf "%s\n" "$at_srcdir/gh1152.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "service_includes_for_builtin.at:1" +printf "%s\n" "$at_srcdir/gh1152.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh1152.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -290101,15 +302365,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "service_includes_for_builtin.at:1" +printf "%s\n" "$at_srcdir/gh1152.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh1152.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -290151,15 +302415,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_includes_for_builtin.at:1" +printf "%s\n" "$at_srcdir/gh1152.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -290167,9 +302431,9 @@ $at_traceon; } - $as_echo "service_includes_for_builtin.at:1" >"$at_check_line_file" + printf "%s\n" "gh1152.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh1152.at:1" @@ -290250,8 +302514,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "service_includes_for_builtin.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" + printf "%s\n" "gh1152.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -290261,7 +302525,7 @@ at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -290269,8 +302533,8 @@ at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "service_includes_for_builtin.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" + printf "%s\n" "gh1152.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" fi echo "$!" > firewalld.pid @@ -290286,228 +302550,800 @@ at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" fi sleep 1 done - $as_echo "service_includes_for_builtin.at:1" >"$at_check_line_file" + printf "%s\n" "gh1152.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:1" + && at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" - $as_echo "service_includes_for_builtin.at:6" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:6" - { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getServiceByName \"ssh\"; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config --method org.fedoraproject.FirewallD1.config.getServiceByName "ssh"; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/gh1152.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone block --add-interface dummy0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone block --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; tee stdout <"$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:6" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:4" $at_failed && at_fn_log_failure $at_traceon; } -SERVICE_OBJ=$(sed -e "s/.*config\/service\/\([^']\+\)['].*/\1/" ./stdout) -export SERVICE_OBJ - $as_echo "service_includes_for_builtin.at:13" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:13" - { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + { set +x +printf "%s\n" "$at_srcdir/gh1152.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(@as [],) +echo >>"$at_stdout"; printf "%s\n" "block +target: %%REJECT%% +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: dummy0 +sources: +services: +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +dmz +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +drop +target: DROP +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +external +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: ssh +ports: +protocols: +forward: yes +masquerade: yes +forward-ports: +source-ports: +icmp-blocks: +rich rules: +home +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client mdns samba-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +internal +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client mdns samba-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +public (default) +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +trusted +target: ACCEPT +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +work +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:6" $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "service_includes_for_builtin.at:16" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:16" + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.setIncludes '[\"https\", \"http\"]'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.setIncludes '["https", "http"]'; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/gh1152.at:152: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:152" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-all-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "block +target: %%REJECT%% +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: dummy0 +sources: +services: +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +dmz +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +drop +target: DROP +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +external +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: ssh +ports: +protocols: +forward: yes +masquerade: yes +forward-ports: +source-ports: +icmp-blocks: +rich rules: +home +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client mdns samba-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +internal +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client mdns samba-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +public (default) +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +trusted +target: ACCEPT +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +work +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:152" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1152.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:299" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:299" $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "service_includes_for_builtin.at:17" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:17" + + { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.getIncludes ; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/gh1152.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-service http " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:300" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-service http +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:300" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1152.at:301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:301" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(['https', 'http'],) +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 +priority: -15000 +target: CONTINUE +ingress-zones: ANY +egress-zones: HOST +services: +ports: +protocols: +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept +rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept +rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept +foobar +priority: -1 +target: CONTINUE +ingress-zones: +egress-zones: +services: http +ports: +protocols: +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:301" $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "service_includes_for_builtin.at:20" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:20" + + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.addInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.addInclude '"http"'; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/gh1152.at:333: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:333" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 +priority: -15000 +target: CONTINUE +ingress-zones: ANY +egress-zones: HOST +services: +ports: +protocols: +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept +rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept +rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept +foobar +priority: -1 +target: CONTINUE +ingress-zones: +egress-zones: +services: http +ports: +protocols: +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:333" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1152.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:366" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:20" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:366" $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "service_includes_for_builtin.at:21" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:21" + + { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '"http"'; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/gh1152.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:366" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:366" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1152.at:367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:367" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(true,) +echo >>"$at_stdout"; printf "%s\n" "block (active) +target: %%REJECT%% +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: dummy0 +sources: +services: +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +dmz +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +drop +target: DROP +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +external +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: ssh +ports: +protocols: +forward: yes +masquerade: yes +forward-ports: +source-ports: +icmp-blocks: +rich rules: +home +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client mdns samba-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +internal +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client mdns samba-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +public (default, active) +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +trusted +target: ACCEPT +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +work +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: dhcpv6-client ssh +ports: +protocols: +forward: yes +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:367" $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "service_includes_for_builtin.at:24" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:24" + + { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.removeInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:24" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.removeInclude '"http"'; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/gh1152.at:513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:513" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 (active) +priority: -15000 +target: CONTINUE +ingress-zones: ANY +egress-zones: HOST +services: +ports: +protocols: +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept +rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept +rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept +foobar +priority: -1 +target: CONTINUE +ingress-zones: +egress-zones: +services: http +ports: +protocols: +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:513" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1152.at:546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:546" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:24" +echo >>"$at_stdout"; printf "%s\n" "block + interfaces: dummy0 +public (default) +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:546" $at_failed && at_fn_log_failure $at_traceon; } - $as_echo "service_includes_for_builtin.at:25" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} which gdbus >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/service_includes_for_builtin.at:25" - { set +x -$as_echo "$at_srcdir/service_includes_for_builtin.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/\${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '\"http\"'; echo \$? >&3; } | sed -e 's/^({//' -e 's/},)\$//' -e 's/>,/>\\n/g' | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | sort >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_includes_for_builtin.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { gdbus call --system --dest=org.fedoraproject.FirewallD1 --object-path /org/fedoraproject/FirewallD1/config/service/${SERVICE_OBJ} --method org.fedoraproject.FirewallD1.config.service.queryInclude '"http"'; echo $? >&3; } | sed -e 's/^({//' -e 's/},)$//' -e 's/>,/>\n/g' | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | sort >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + + { set +x +printf "%s\n" "$at_srcdir/gh1152.at:552: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:552" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "(false,) +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 + ingress-zones: ANY + egress-zones: HOST " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_includes_for_builtin.at:25" +at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:552" $at_failed && at_fn_log_failure $at_traceon; } @@ -290516,10 +303352,11 @@ $at_traceon; } + if test x"" != x"ignore"; then - $as_echo "service_includes_for_builtin.at:29" >"$at_check_line_file" + printf "%s\n" "gh1152.at:558" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/service_includes_for_builtin.at:29" + && at_fn_check_skip 99 "$at_srcdir/gh1152.at:558" fi @@ -290528,13 +303365,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_292 -#AT_START_293 -at_fn_group_banner 293 'gh940.at:1' \ - "log prefix" " " 9 +#AT_STOP_316 +#AT_START_317 +at_fn_group_banner 317 'rhbz2222044.at:1' \ + "duplicate rules after restart" " " 9 at_xfail=no ( - $as_echo "293. $at_setup_line: testing $at_desc ..." + printf "%s\n" "317. $at_setup_line: testing $at_desc ..." $at_traceon @@ -290552,6 +303389,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -290568,29 +303406,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh940.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:1" +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh940.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh940.at:1" +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rhbz2222044.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -290598,15 +303436,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh940.at:1" +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz2222044.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -290648,15 +303486,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh940.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:1" +printf "%s\n" "$at_srcdir/rhbz2222044.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -290664,9 +303502,9 @@ $at_traceon; } - $as_echo "gh940.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2222044.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh940.at:1" + && at_fn_check_skip 77 "$at_srcdir/rhbz2222044.at:1" @@ -290747,8 +303585,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh940.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh940.at:1" + printf "%s\n" "rhbz2222044.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -290758,7 +303596,7 @@ at_fn_check_skip 99 "$at_srcdir/gh940.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -290766,8 +303604,8 @@ at_fn_check_skip 99 "$at_srcdir/gh940.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh940.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh940.at:1" + printf "%s\n" "rhbz2222044.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" fi echo "$!" > firewalld.pid @@ -290783,37 +303621,44 @@ at_fn_check_skip 99 "$at_srcdir/gh940.at:1" fi sleep 1 done - $as_echo "gh940.at:1" >"$at_check_line_file" + printf "%s\n" "rhbz2222044.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh940.at:1" + && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" +printf "%s\n" "rhbz2222044.at:3" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v wc >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rhbz2222044.at:3" { set +x -$as_echo "$at_srcdir/gh940.at:4: sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "gh940.at:4" -( $at_check_trace; sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf +printf "%s\n" "$at_srcdir/rhbz2222044.at:7: sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz2222044.at:7" +( $at_check_trace; sed -i 's/^NftablesTableOwner=.*/NftablesTableOwner=no/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:7" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/gh940.at:5: sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf" -at_fn_check_prepare_trace "gh940.at:5" -( $at_check_trace; sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -290821,16 +303666,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/gh940.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar0 +printf "%s\n" "$at_srcdir/rhbz2222044.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:7" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -290838,48 +303685,37 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/gh940.at:9: mkdir -p ./policies" -at_fn_check_prepare_trace "gh940.at:9" -( $at_check_trace; mkdir -p ./policies +printf "%s\n" "$at_srcdir/rhbz2222044.at:25: sed -i 's/^CleanupOnExit.*/CleanupOnExit=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz2222044.at:25" +( $at_check_trace; sed -i 's/^CleanupOnExit.*/CleanupOnExit=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:25" $at_failed && at_fn_log_failure $at_traceon; } -cat >./policies/log-denied.xml <<'_ATEOF' - - -log-denied -log denied policy - - - - - - - - - -_ATEOF { set +x -$as_echo "$at_srcdir/gh940.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/rhbz2222044.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:25" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -290889,17 +303725,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh940.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rhbz2222044.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:26" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -290909,16 +303744,19 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/gh940.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh940.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rhbz2222044.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:26" +echo >>"$at_stdout"; printf "%s\n" "249 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -290926,14 +303764,61 @@ $at_traceon; } + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rhbz2222044.at:29" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:29" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rhbz2222044.at:29" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:29" + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "249 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:30" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -290941,29 +303826,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_log-denied; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:59" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_log-denied; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz2222044.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_log-denied_pre 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_log-denied_log 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_log-denied_deny 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_log-denied_allow 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_log-denied_post 0 -- 0.0.0.0/0 0.0.0.0/0 -LOG 0 -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix \"IN_log-denied_DROP: \" -DROP 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "249 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:59" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -290973,82 +303846,89 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:33" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/gh940.at:68: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_log-denied; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:68" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_log-denied; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_log-denied_pre 0 -- ::/0 ::/0 -IN_log-denied_log 0 -- ::/0 ::/0 -IN_log-denied_deny 0 -- ::/0 ::/0 -IN_log-denied_allow 0 -- ::/0 ::/0 -IN_log-denied_post 0 -- ::/0 ::/0 -LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"IN_log-denied_DROP: \" -DROP 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:68" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:33" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:34" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "249 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:34" +$at_failed && at_fn_log_failure +$at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:37: sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rhbz2222044.at:37" +( $at_check_trace; sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:37" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_log-denied_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:90" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_log-denied_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz2222044.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 LOG flags 0 level 4 prefix \"log-denied_ICMP_BLOCK: \" -REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 reject-with icmp-host-prohibited -DROP 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6667 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:90" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -291058,52 +303938,100 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:38" +$at_failed && at_fn_log_failure +$at_traceon; } + + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/gh940.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_log-denied_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:95" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_log-denied_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz2222044.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:40" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 58 -- ::/0 ::/0 ipv6-icmptype 128 LOG flags 0 level 4 prefix \"log-denied_ICMP_BLOCK: \" -REJECT 58 -- ::/0 ::/0 ipv6-icmptype 128 reject-with icmp6-adm-prohibited -DROP 6 -- ::/0 ::/0 tcp dpt:6667 +echo >>"$at_stdout"; printf "%s\n" "249 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:95" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:40" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rhbz2222044.at:41" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:41" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rhbz2222044.at:41" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:41" + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "249 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:42" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -291111,23 +304039,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh940.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_log-denied_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:109" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_log-denied_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rhbz2222044.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:6667 LOG flags 0 level 4 prefix \"Dropped IRC Packet: \" +echo >>"$at_stdout"; printf "%s\n" "249 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:109" +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -291137,53 +304059,69 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:45" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/gh940.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_log-denied_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh940.at:112" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_log-denied_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 6 -- ::/0 ::/0 tcp dpt:6667 LOG flags 0 level 4 prefix \"Dropped IRC Packet: \" -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh940.at:112" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:45" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/rhbz2222044.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "249 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:46" +$at_failed && at_fn_log_failure +$at_traceon; } + + if test x"" != x"ignore"; then - $as_echo "gh940.at:116" >"$at_check_line_file" + printf "%s\n" "rhbz2222044.at:49" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh940.at:116" + && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:49" fi @@ -291192,13 +304130,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_293 -#AT_START_294 -at_fn_group_banner 294 'build_policy_split_wildcard.at:1' \ - "build policy split wildcards" " " 9 +#AT_STOP_317 +#AT_START_318 +at_fn_group_banner 318 'gh1229.at:1' \ + "policy dispatch with egress-zone=ANY" " " 9 at_xfail=no ( - $as_echo "294. $at_setup_line: testing $at_desc ..." + printf "%s\n" "318. $at_setup_line: testing $at_desc ..." $at_traceon @@ -291216,6 +304154,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -291232,29 +304171,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:1" +printf "%s\n" "$at_srcdir/gh1229.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "build_policy_split_wildcard.at:1" +printf "%s\n" "$at_srcdir/gh1229.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh1229.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -291262,15 +304201,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "build_policy_split_wildcard.at:1" +printf "%s\n" "$at_srcdir/gh1229.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh1229.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -291312,15 +304251,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:1" +printf "%s\n" "$at_srcdir/gh1229.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -291328,9 +304267,9 @@ $at_traceon; } - $as_echo "build_policy_split_wildcard.at:1" >"$at_check_line_file" + printf "%s\n" "gh1229.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/build_policy_split_wildcard.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh1229.at:1" @@ -291411,8 +304350,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "build_policy_split_wildcard.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" + printf "%s\n" "gh1229.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -291422,7 +304361,7 @@ at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -291430,8 +304369,8 @@ at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "build_policy_split_wildcard.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" + printf "%s\n" "gh1229.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" fi echo "$!" > firewalld.pid @@ -291447,29 +304386,10 @@ at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" fi sleep 1 done - $as_echo "build_policy_split_wildcard.at:1" >"$at_check_line_file" + printf "%s\n" "gh1229.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:1" - - - - - - - + && at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" - { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:7" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -291478,15 +304398,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal +printf "%s\n" "$at_srcdir/gh1229.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar-int " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar-int ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -291497,15 +304417,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public +printf "%s\n" "$at_srcdir/gh1229.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface foobar-ext " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone external --add-interface foobar-ext ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -291515,35 +304435,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:10" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar1 +printf "%s\n" "$at_srcdir/gh1229.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -291554,15 +304456,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar2 +printf "%s\n" "$at_srcdir/gh1229.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -291573,54 +304475,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface foobar3 +printf "%s\n" "$at_srcdir/gh1229.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:13" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:14" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -291631,17 +304494,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface tun+ " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-interface tun+ +printf "%s\n" "$at_srcdir/gh1229.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy raboof " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy raboof ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -291651,19 +304513,16 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-interface tun+ " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:106" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-interface tun+ +printf "%s\n" "$at_srcdir/gh1229.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:106" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -291673,18 +304532,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface tun+ " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:111" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface tun+ +printf "%s\n" "$at_srcdir/gh1229.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:111" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -291696,18 +304553,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/build_policy_split_wildcard.at:201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface net+ " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "build_policy_split_wildcard.at:201" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-interface net+ +printf "%s\n" "$at_srcdir/gh1229.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/build_policy_split_wildcard.at:201" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -291717,150 +304572,37 @@ $at_traceon; } - - - - if test x"" != x"ignore"; then - $as_echo "build_policy_split_wildcard.at:319" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/build_policy_split_wildcard.at:319" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_294 -#AT_START_295 -at_fn_group_banner 295 'gh1011.at:1' \ - "remove entries results in empty" " " 9 -at_xfail=no -( - $as_echo "295. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/gh1011.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - else - { set +x -$as_echo "$at_srcdir/gh1011.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh1011.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - - fi - - - { set +x -$as_echo "$at_srcdir/gh1011.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh1011.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/gh1229.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:15" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/gh1011.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/gh1229.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar-public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface foobar-public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -291868,169 +304610,37 @@ $at_traceon; } - $as_echo "gh1011.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh1011.at:1" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "gh1011.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1011.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "gh1011.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1011.at:1" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "gh1011.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh1011.at:1" - - - - - - { set +x -$as_echo "$at_srcdir/gh1011.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net +printf "%s\n" "$at_srcdir/gh1229.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface foobar-trusted " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface foobar-trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:18" $at_failed && at_fn_log_failure $at_traceon; } -cat >./empty <<'_ATEOF' -10.10.10.0/24 -_ATEOF - { set +x -$as_echo "$at_srcdir/gh1011.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.10.10.0/24 +printf "%s\n" "$at_srcdir/gh1229.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:19" $at_failed && at_fn_log_failure $at_traceon; } @@ -292040,20 +304650,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh1011.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entries-from-file ./empty " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --remove-entries-from-file ./empty -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } - - @@ -292062,15 +304658,106 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1011.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/gh1229.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1229.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:11" +echo >>"$at_stdout"; printf "%s\n" "FWD_trusted 0 -- 10.10.10.0/24 10.10.10.0/24 +ACCEPT 0 -- 10.10.10.0/24 10.10.10.0/24 +FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 +ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_raboof 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 +ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 +ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 +ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 +ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_external 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_raboof 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 +FWD_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_raboof 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_raboof 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_trusted 0 -- 0.0.0.0/0 10.10.10.0/24 +ACCEPT 0 -- 0.0.0.0/0 10.10.10.0/24 +FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_raboof 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_raboof 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:112" $at_failed && at_fn_log_failure $at_traceon; } @@ -292080,68 +304767,113 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh1011.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:11" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/gh1011.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --add-entry 10.10.10.0/24 +printf "%s\n" "$at_srcdir/gh1229.at:199: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1229.at:199" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:12" +echo >>"$at_stdout"; printf "%s\n" "FWD_external 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_raboof 0 -- ::/0 ::/0 +FWD_external 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_external 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_external 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_external 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_raboof 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_raboof 0 -- ::/0 ::/0 +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_trusted 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +FWD_raboof 0 -- ::/0 ::/0 +FWD_trusted 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +FWD_trusted 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +FWD_trusted 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +FWD_trusted 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_raboof 0 -- ::/0 ::/0 +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:199" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/gh1011.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --ipset foobar --remove-entries-from-file ./empty " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1011.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --ipset foobar --remove-entries-from-file ./empty -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1011.at:13" -$at_failed && at_fn_log_failure -$at_traceon; } - - if test x"" != x"ignore"; then - $as_echo "gh1011.at:15" >"$at_check_line_file" + printf "%s\n" "gh1229.at:262" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh1011.at:15" + && at_fn_check_skip 99 "$at_srcdir/gh1229.at:262" fi @@ -292150,13 +304882,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_295 -#AT_START_296 -at_fn_group_banner 296 'rhbz2181406.at:1' \ - "rich rule limit" " " 9 +#AT_STOP_318 +#AT_START_319 +at_fn_group_banner 319 'gh1278.at:1' \ + "policy dispatch update if active" " " 9 at_xfail=no ( - $as_echo "296. $at_setup_line: testing $at_desc ..." + printf "%s\n" "319. $at_setup_line: testing $at_desc ..." $at_traceon @@ -292174,6 +304906,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -292190,29 +304923,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:1" +printf "%s\n" "$at_srcdir/gh1278.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz2181406.at:1" +printf "%s\n" "$at_srcdir/gh1278.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh1278.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -292220,15 +304953,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz2181406.at:1" +printf "%s\n" "$at_srcdir/gh1278.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh1278.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -292270,15 +305003,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz2181406.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:1" +printf "%s\n" "$at_srcdir/gh1278.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -292286,9 +305019,9 @@ $at_traceon; } - $as_echo "rhbz2181406.at:1" >"$at_check_line_file" + printf "%s\n" "gh1278.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz2181406.at:1" + && at_fn_check_skip 77 "$at_srcdir/gh1278.at:1" @@ -292369,8 +305102,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz2181406.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" + printf "%s\n" "gh1278.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -292380,7 +305113,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -292388,8 +305121,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz2181406.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" + printf "%s\n" "gh1278.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" fi echo "$!" > firewalld.pid @@ -292405,9 +305138,10 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" fi sleep 1 done - $as_echo "rhbz2181406.at:1" >"$at_check_line_file" + printf "%s\n" "gh1278.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" + && at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" + @@ -292417,15 +305151,15 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:1" { set +x -$as_echo "$at_srcdir/rhbz2181406.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=ssh log limit value=\"2/d\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=ssh log limit value="2/d"' +printf "%s\n" "$at_srcdir/gh1278.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy host_fwd " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy host_fwd ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -292436,15 +305170,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2181406.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=ssh audit limit value=\"5/m\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=ssh audit limit value="5/m" accept' +printf "%s\n" "$at_srcdir/gh1278.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -292454,17 +305188,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rhbz2181406.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=http accept limit value=\"2/d\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 source address=10.10.10.10 service name=http accept limit value="2/d"' +printf "%s\n" "$at_srcdir/gh1278.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -292474,16 +305207,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz2181406.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=http accept limit value=\"5/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2181406.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 destination address=fc00::10:10:10:10 service name=http accept limit value="5/m"' +printf "%s\n" "$at_srcdir/gh1278.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fwd_out " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy fwd_out ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -292493,9 +305227,18 @@ $at_traceon; } - - - + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-ingress-zone internal +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -292504,23 +305247,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2181406.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz2181406.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh1278.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 6 -- 10.10.10.10 0.0.0.0/0 tcp dpt:22 limit: avg 2/day burst 5 LOG flags 0 level 4 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:31" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -292531,28 +305266,16 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rhbz2181406.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz2181406.at:34" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh1278.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy port_fwd " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy port_fwd ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 6 -- 10.10.10.10 0.0.0.0/0 tcp dpt:80 limit: avg 2/day burst 5 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:34" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -292562,235 +305285,193 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-ingress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/rhbz2181406.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz2181406.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh1278.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "AUDIT 6 -- ::/0 fc00::10:10:10:10 tcp dpt:22 limit: avg 5/min burst 5 AUDIT accept -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:39" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:16" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:18" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/rhbz2181406.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rhbz2181406.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/gh1278.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -ACCEPT 6 -- ::/0 fc00::10:10:10:10 tcp dpt:22 -ACCEPT 6 -- ::/0 fc00::10:10:10:10 tcp dpt:80 limit: avg 5/min burst 5 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2181406.at:42" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:18" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:20" +$at_failed && at_fn_log_failure +$at_traceon; } - if test x"" != x"ignore"; then - $as_echo "rhbz2181406.at:49" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz2181406.at:49" - fi - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_296 -#AT_START_297 -at_fn_group_banner 297 'ipset_scale.at:1' \ - "ipset scale" " " 9 -at_xfail=no -( - $as_echo "297. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:21" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="307200" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy many_zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy many_zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:25" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "ipset_scale.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "ipset_scale.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone trusted " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:26" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone dmz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone dmz +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:27" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/ipset_scale.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone external " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone external ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -292798,130 +305479,59 @@ $at_traceon; } - $as_echo "ipset_scale.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/ipset_scale.at:1" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone home " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone home +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:29" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "ipset_scale.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone trusted --add-interface dummy0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone trusted --add-interface dummy0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:31" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "ipset_scale.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "ipset_scale.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:32" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -292930,41 +305540,35 @@ at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:1" -{ set +x -$as_echo "$at_srcdir/ipset_scale.at:8: touch ./entries" -at_fn_check_prepare_trace "ipset_scale.at:8" -( $at_check_trace; touch ./entries + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:8" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:33" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/ipset_scale.at:9: sh -c ' -for I in \$(seq 250); do - for J in \$(seq 250); do - echo \"10.10.\${I}.\${J}/32\" >> ./entries - done -done -'" -at_fn_check_prepare_notrace 'a $(...) command substitution' "ipset_scale.at:9" -( $at_check_trace; sh -c ' -for I in $(seq 250); do - for J in $(seq 250); do - echo "10.10.${I}.${J}/32" >> ./entries - done -done -' + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1278.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:9" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:33" $at_failed && at_fn_log_failure $at_traceon; } @@ -292972,16 +305576,20 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/ipset_scale.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net +printf "%s\n" "$at_srcdir/gh1278.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --add-interface dummy2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --add-interface dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:35" $at_failed && at_fn_log_failure $at_traceon; } @@ -292992,15 +305600,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_scale.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entries-from-file ./entries " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entries-from-file ./entries +printf "%s\n" "$at_srcdir/gh1278.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone dmz --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:36" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone dmz --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:36" $at_failed && at_fn_log_failure $at_traceon; } @@ -293010,18 +305618,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/ipset_scale.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/gh1278.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone dmz --remove-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:37" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone dmz --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:20" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:37" $at_failed && at_fn_log_failure $at_traceon; } @@ -293032,15 +305638,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ipset_scale.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ipset_scale.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/gh1278.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --remove-interface dummy2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --remove-interface dummy2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ipset_scale.at:20" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -293050,11 +305656,10 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "ipset_scale.at:22" >"$at_check_line_file" + printf "%s\n" "gh1278.at:40" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/ipset_scale.at:22" + && at_fn_check_skip 99 "$at_srcdir/gh1278.at:40" fi @@ -293063,13 +305668,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_297 -#AT_START_298 -at_fn_group_banner 298 'gh1129.at:16' \ - "switch backend to nftables and reload" " " 9 +#AT_STOP_319 +#AT_START_320 +at_fn_group_banner 320 'gh1406.at:1' \ + "ipset iface" " " 9 at_xfail=no ( - $as_echo "298. $at_setup_line: testing $at_desc ..." + printf "%s\n" "320. $at_setup_line: testing $at_desc ..." $at_traceon @@ -293087,6 +305692,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -293103,29 +305709,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh1129.at:16: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:16" +printf "%s\n" "$at_srcdir/gh1406.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh1129.at:16: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh1129.at:16" +printf "%s\n" "$at_srcdir/gh1406.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "gh1406.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -293133,15 +305739,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1129.at:16: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh1129.at:16" +printf "%s\n" "$at_srcdir/gh1406.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "gh1406.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -293183,15 +305789,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh1129.at:16: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:16" +printf "%s\n" "$at_srcdir/gh1406.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -293199,9 +305805,9 @@ $at_traceon; } - $as_echo "gh1129.at:16" >"$at_check_line_file" + printf "%s\n" "gh1406.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh1129.at:16" + && at_fn_check_skip 77 "$at_srcdir/gh1406.at:1" @@ -293282,8 +305888,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh1129.at:16" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1129.at:16" + printf "%s\n" "gh1406.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1406.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -293293,7 +305899,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1129.at:16" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -293301,8 +305907,8 @@ at_fn_check_skip 99 "$at_srcdir/gh1129.at:16" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh1129.at:16" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1129.at:16" + printf "%s\n" "gh1406.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/gh1406.at:1" fi echo "$!" > firewalld.pid @@ -293318,27 +305924,27 @@ at_fn_check_skip 99 "$at_srcdir/gh1129.at:16" fi sleep 1 done - $as_echo "gh1129.at:16" >"$at_check_line_file" + printf "%s\n" "gh1406.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh1129.at:16" + && at_fn_check_skip 99 "$at_srcdir/gh1406.at:1" -$as_echo "gh1129.at:16" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v iptables-save >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh1129.at:16" -{ set +x -$as_echo "$at_srcdir/gh1129.at:16: sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh1129.at:16" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=nftables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net,iface " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset foobar --type hash:net,iface ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -293346,16 +305952,115 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/gh1129.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:16" +printf "%s\n" "$at_srcdir/gh1406.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.10.10.0/24,dummy0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --ipset foobar --add-entry 10.10.10.0/24,dummy0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source ipset:foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source ipset:foobar +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy blah " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy blah +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy blah --add-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy blah --add-ingress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy blah --add-egress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy blah --add-egress-zone internal +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:10" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -293366,15 +306071,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1129.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:16" +printf "%s\n" "$at_srcdir/gh1406.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1406.at:11" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1129.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -293384,27 +306089,175 @@ $at_traceon; } + + + + + + + + + + + { set +x -$as_echo "$at_srcdir/gh1129.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save |grep DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1129.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save |grep DROP +printf "%s\n" "$at_srcdir/gh1406.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1406.at:37" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/gh1129.at:16" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar src,src +IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar src,src +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar src,src reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:37" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1406.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:45" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1406.at:50" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "OUT_blah 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar dst,dst +OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar dst,dst +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar dst,dst +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:50" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/gh1406.at:57: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1406.at:57" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/gh1406.at:57" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + + + if test x"" != x"ignore"; then - $as_echo "gh1129.at:16" >"$at_check_line_file" + printf "%s\n" "gh1406.at:62" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh1129.at:16" + && at_fn_check_skip 99 "$at_srcdir/gh1406.at:62" fi @@ -293413,13 +306266,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_298 -#AT_START_299 -at_fn_group_banner 299 'gh1146.at:1' \ - "policy with mixed family zone source" " " 9 +#AT_STOP_320 +#AT_START_321 +at_fn_group_banner 321 'RHEL-67103.at:1' \ + "rich rule invalid ipset" " " 9 at_xfail=no ( - $as_echo "299. $at_setup_line: testing $at_desc ..." + printf "%s\n" "321. $at_setup_line: testing $at_desc ..." $at_traceon @@ -293437,6 +306290,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -293453,29 +306307,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh1146.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:1" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh1146.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh1146.at:1" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "RHEL-67103.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -293483,15 +306337,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh1146.at:1" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "RHEL-67103.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -293533,15 +306387,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh1146.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:1" +printf "%s\n" "$at_srcdir/RHEL-67103.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -293549,9 +306403,9 @@ $at_traceon; } - $as_echo "gh1146.at:1" >"$at_check_line_file" + printf "%s\n" "RHEL-67103.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh1146.at:1" + && at_fn_check_skip 77 "$at_srcdir/RHEL-67103.at:1" @@ -293632,8 +306486,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh1146.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" + printf "%s\n" "RHEL-67103.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/RHEL-67103.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -293643,7 +306497,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -293651,8 +306505,8 @@ at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh1146.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" + printf "%s\n" "RHEL-67103.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/RHEL-67103.at:1" fi echo "$!" > firewalld.pid @@ -293668,9 +306522,9 @@ at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" fi sleep 1 done - $as_echo "gh1146.at:1" >"$at_check_line_file" + printf "%s\n" "RHEL-67103.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" + && at_fn_check_skip 99 "$at_srcdir/RHEL-67103.at:1" @@ -293680,15 +306534,15 @@ at_fn_check_skip 99 "$at_srcdir/gh1146.at:1" { set +x -$as_echo "$at_srcdir/gh1146.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface dummy1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface dummy1 +printf "%s\n" "$at_srcdir/RHEL-67103.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset thisexists --type=hash:net " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset thisexists --type=hash:net ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -293699,15 +306553,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.11.11.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.11.11.0/24 +printf "%s\n" "$at_srcdir/RHEL-67103.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule=\"rule family=ipv4 source ipset=thisexists accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule="rule family=ipv4 source ipset=thisexists accept" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -293717,23 +306571,16 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - { set +x -$as_echo "$at_srcdir/gh1146.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source fc00:1111:1111:1111::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source fc00:1111:1111:1111::/64 +printf "%s\n" "$at_srcdir/RHEL-67103.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule=\"rule family=ipv4 destination ipset=thisexists accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule="rule family=ipv4 destination ipset=thisexists accept" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -293741,26 +306588,19 @@ $at_traceon; } - else - : - - fi - - - { set +x -$as_echo "$at_srcdir/gh1146.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy2 +printf "%s\n" "$at_srcdir/RHEL-67103.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:11" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -293771,15 +306611,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.22.22.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.22.22.0/24 +printf "%s\n" "$at_srcdir/RHEL-67103.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:12" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -293790,22 +306630,17 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/gh1146.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source fc00:2222:2222:2222::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-source fc00:2222:2222:2222::/64 +printf "%s\n" "$at_srcdir/RHEL-67103.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule=\"rule family=ipv4 source ipset=doesnotexist accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule="rule family=ipv4 source ipset=doesnotexist accept" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:13" +at_fn_check_status 135 $at_status "$at_srcdir/RHEL-67103.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -293813,27 +306648,18 @@ $at_traceon; } - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/gh1146.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar +printf "%s\n" "$at_srcdir/RHEL-67103.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule=\"rule family=ipv4 source ipset=doesnotexist accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule="rule family=ipv4 source ipset=doesnotexist accept" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:17" +at_fn_check_status 135 $at_status "$at_srcdir/RHEL-67103.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -293844,15 +306670,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal +printf "%s\n" "$at_srcdir/RHEL-67103.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule=\"rule family=ipv4 destination ipset=doesnotexist accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule="rule family=ipv4 destination ipset=doesnotexist accept" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:18" +at_fn_check_status 135 $at_status "$at_srcdir/RHEL-67103.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -293863,15 +306689,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public +printf "%s\n" "$at_srcdir/RHEL-67103.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule=\"rule family=ipv4 destination ipset=doesnotexist accept\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule="rule family=ipv4 destination ipset=doesnotexist accept" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:19" +at_fn_check_status 135 $at_status "$at_srcdir/RHEL-67103.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -293879,20 +306705,36 @@ $at_traceon; } +cat >./zones/broken.xml <<'_ATEOF' + + +broken + + + + + + + + + + +_ATEOF + { set +x -$as_echo "$at_srcdir/gh1146.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:21" +printf "%s\n" "$at_srcdir/RHEL-67103.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:21" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 135 $at_status "$at_srcdir/RHEL-67103.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -293903,204 +306745,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1146.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1146.at:21" +printf "%s\n" "$at_srcdir/RHEL-67103.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "RHEL-67103.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:21" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/gh1146.at:125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1146.at:125" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 10.11.11.0/24 10.11.11.0/24 -REJECT 0 -- 10.11.11.0/24 10.11.11.0/24 reject-with icmp-port-unreachable -FWD_foobar 0 -- 10.11.11.0/24 10.22.22.0/24 -FWD_internal 0 -- 10.11.11.0/24 10.22.22.0/24 -REJECT 0 -- 10.11.11.0/24 10.22.22.0/24 reject-with icmp-port-unreachable -FWD_internal 0 -- 10.11.11.0/24 0.0.0.0/0 -REJECT 0 -- 10.11.11.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 10.11.11.0/24 0.0.0.0/0 -FWD_internal 0 -- 10.11.11.0/24 0.0.0.0/0 -REJECT 0 -- 10.11.11.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 10.11.11.0/24 0.0.0.0/0 -FWD_internal 0 -- 10.11.11.0/24 0.0.0.0/0 -REJECT 0 -- 10.11.11.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 10.22.22.0/24 10.11.11.0/24 -REJECT 0 -- 10.22.22.0/24 10.11.11.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 10.22.22.0/24 10.22.22.0/24 -REJECT 0 -- 10.22.22.0/24 10.22.22.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 10.22.22.0/24 0.0.0.0/0 -REJECT 0 -- 10.22.22.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 10.22.22.0/24 0.0.0.0/0 -REJECT 0 -- 10.22.22.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 10.22.22.0/24 0.0.0.0/0 -REJECT 0 -- 10.22.22.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_internal 0 -- 0.0.0.0/0 10.11.11.0/24 -REJECT 0 -- 0.0.0.0/0 10.11.11.0/24 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 10.22.22.0/24 -FWD_internal 0 -- 0.0.0.0/0 10.22.22.0/24 -REJECT 0 -- 0.0.0.0/0 10.22.22.0/24 reject-with icmp-port-unreachable -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.11.11.0/24 -REJECT 0 -- 0.0.0.0/0 10.11.11.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.22.22.0/24 -REJECT 0 -- 0.0.0.0/0 10.22.22.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.11.11.0/24 -REJECT 0 -- 0.0.0.0/0 10.11.11.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.22.22.0/24 -REJECT 0 -- 0.0.0.0/0 10.22.22.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:125" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/gh1146.at:183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1146.at:183" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- fc00:1111:1111:1111::/64 fc00:1111:1111:1111::/64 -REJECT 0 -- fc00:1111:1111:1111::/64 fc00:1111:1111:1111::/64 reject-with icmp6-port-unreachable -FWD_foobar 0 -- fc00:1111:1111:1111::/64 fc00:2222:2222:2222::/64 -FWD_internal 0 -- fc00:1111:1111:1111::/64 fc00:2222:2222:2222::/64 -REJECT 0 -- fc00:1111:1111:1111::/64 fc00:2222:2222:2222::/64 reject-with icmp6-port-unreachable -FWD_internal 0 -- fc00:1111:1111:1111::/64 ::/0 -REJECT 0 -- fc00:1111:1111:1111::/64 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- fc00:1111:1111:1111::/64 ::/0 -FWD_internal 0 -- fc00:1111:1111:1111::/64 ::/0 -REJECT 0 -- fc00:1111:1111:1111::/64 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- fc00:1111:1111:1111::/64 ::/0 -FWD_internal 0 -- fc00:1111:1111:1111::/64 ::/0 -REJECT 0 -- fc00:1111:1111:1111::/64 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- fc00:2222:2222:2222::/64 fc00:1111:1111:1111::/64 -REJECT 0 -- fc00:2222:2222:2222::/64 fc00:1111:1111:1111::/64 reject-with icmp6-port-unreachable -FWD_public 0 -- fc00:2222:2222:2222::/64 fc00:2222:2222:2222::/64 -REJECT 0 -- fc00:2222:2222:2222::/64 fc00:2222:2222:2222::/64 reject-with icmp6-port-unreachable -FWD_public 0 -- fc00:2222:2222:2222::/64 ::/0 -REJECT 0 -- fc00:2222:2222:2222::/64 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- fc00:2222:2222:2222::/64 ::/0 -REJECT 0 -- fc00:2222:2222:2222::/64 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- fc00:2222:2222:2222::/64 ::/0 -REJECT 0 -- fc00:2222:2222:2222::/64 ::/0 reject-with icmp6-port-unreachable -FWD_internal 0 -- ::/0 fc00:1111:1111:1111::/64 -REJECT 0 -- ::/0 fc00:1111:1111:1111::/64 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 fc00:2222:2222:2222::/64 -FWD_internal 0 -- ::/0 fc00:2222:2222:2222::/64 -REJECT 0 -- ::/0 fc00:2222:2222:2222::/64 reject-with icmp6-port-unreachable -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 fc00:1111:1111:1111::/64 -REJECT 0 -- ::/0 fc00:1111:1111:1111::/64 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 fc00:2222:2222:2222::/64 -REJECT 0 -- ::/0 fc00:2222:2222:2222::/64 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 fc00:1111:1111:1111::/64 -REJECT 0 -- ::/0 fc00:1111:1111:1111::/64 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 fc00:2222:2222:2222::/64 -REJECT 0 -- ::/0 fc00:2222:2222:2222::/64 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1146.at:183" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/RHEL-67103.at:32" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -294109,10 +306764,10 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "gh1146.at:242" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh1146.at:242" + if test x"-e '/ERROR: INVALID_IPSET/d'" != x"ignore"; then + printf "%s\n" "RHEL-67103.at:34" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_IPSET/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/RHEL-67103.at:34" fi @@ -294121,13 +306776,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_299 -#AT_START_300 -at_fn_group_banner 300 'gh1152.at:1' \ - "list-all identical content" " " 9 +#AT_STOP_321 +#AT_START_322 +at_fn_group_banner 322 'python.at:3' \ + "firewalld_misc.py" " " 10 at_xfail=no ( - $as_echo "300. $at_setup_line: testing $at_desc ..." + printf "%s\n" "322. $at_setup_line: testing $at_desc ..." $at_traceon @@ -294145,6 +306800,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -294161,29 +306817,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh1152.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:1" +printf "%s\n" "$at_srcdir/python.at:3: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh1152.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh1152.at:1" +printf "%s\n" "$at_srcdir/python.at:3: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "python.at:3" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } @@ -294191,15 +306847,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1152.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh1152.at:1" +printf "%s\n" "$at_srcdir/python.at:3: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:3" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } @@ -294241,15 +306897,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh1152.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:1" +printf "%s\n" "$at_srcdir/python.at:3: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" $at_failed && at_fn_log_failure $at_traceon; } @@ -294257,9 +306913,9 @@ $at_traceon; } - $as_echo "gh1152.at:1" >"$at_check_line_file" + printf "%s\n" "python.at:3" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh1152.at:1" + && at_fn_check_skip 77 "$at_srcdir/python.at:3" @@ -294340,8 +306996,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh1152.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" + printf "%s\n" "python.at:3" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:3" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -294351,7 +307007,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -294359,8 +307015,8 @@ at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh1152.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" + printf "%s\n" "python.at:3" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:3" fi echo "$!" > firewalld.pid @@ -294376,446 +307032,172 @@ at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" fi sleep 1 done - $as_echo "gh1152.at:1" >"$at_check_line_file" + printf "%s\n" "python.at:3" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh1152.at:1" - - - + && at_fn_check_skip 99 "$at_srcdir/python.at:3" { set +x -$as_echo "$at_srcdir/gh1152.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone block --add-interface dummy0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone block --add-interface dummy0 +printf "%s\n" "$at_srcdir/python.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_misc.py " +at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_misc.py ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:5" $at_failed && at_fn_log_failure $at_traceon; } + if test x"ignore" != x"ignore"; then + printf "%s\n" "python.at:6" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/python.at:6" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_322 +#AT_START_323 +at_fn_group_banner 323 'python.at:8' \ + "firewalld_config.py" " " 10 +at_xfail=no +( + printf "%s\n" "323. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/gh1152.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block -target: %%REJECT%% -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: dummy0 -sources: -services: -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -dmz -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -drop -target: DROP -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -external -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: ssh -ports: -protocols: -forward: yes -masquerade: yes -forward-ports: -source-ports: -icmp-blocks: -rich rules: -home -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client mdns samba-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -internal -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client mdns samba-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -public (default) -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -trusted -target: ACCEPT -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -work -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL fi - { set +x -$as_echo "$at_srcdir/gh1152.at:152: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:152" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-all-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/python.at:8: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block -target: %%REJECT%% -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: dummy0 -sources: -services: -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -dmz -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -drop -target: DROP -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -external -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: ssh -ports: -protocols: -forward: yes -masquerade: yes -forward-ports: -source-ports: -icmp-blocks: -rich rules: -home -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client mdns samba-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -internal -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client mdns samba-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -public (default) -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -trusted -target: ACCEPT -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -work -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:152" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" $at_failed && at_fn_log_failure $at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/python.at:8: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "python.at:8" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } + fi - - - { set +x -$as_echo "$at_srcdir/gh1152.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:299" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar + { set +x +printf "%s\n" "$at_srcdir/python.at:8: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:8" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:299" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/gh1152.at:300: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-service http " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:300" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-service http -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:300" -$at_failed && at_fn_log_failure -$at_traceon; } + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/gh1152.at:301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:301" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/python.at:8: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 -priority: -15000 -target: CONTINUE -ingress-zones: ANY -egress-zones: HOST -services: -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"redirect\" accept -foobar -priority: -1 -target: CONTINUE -ingress-zones: -egress-zones: -services: http -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:301" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -294823,255 +307205,291 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + printf "%s\n" "python.at:8" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/python.at:8" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "python.at:8" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:8" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "python.at:8" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:8" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "python.at:8" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/python.at:8" + + + + + { set +x -$as_echo "$at_srcdir/gh1152.at:333: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:333" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/python.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_config.py " +at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_config.py ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 -priority: -15000 -target: CONTINUE -ingress-zones: ANY -egress-zones: HOST -services: -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"redirect\" accept -foobar -priority: -1 -target: CONTINUE -ingress-zones: -egress-zones: -services: http -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:333" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:10" $at_failed && at_fn_log_failure $at_traceon; } + if test x"ignore" != x"ignore"; then + printf "%s\n" "python.at:11" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/python.at:11" + fi - { set +x -$as_echo "$at_srcdir/gh1152.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:366" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_323 +#AT_START_324 +at_fn_group_banner 324 'python.at:13' \ + "firewalld_rich.py" " " 10 +at_xfail=no +( + printf "%s\n" "324. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/python.at:13: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:366" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" $at_failed && at_fn_log_failure $at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/python.at:13: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "python.at:13" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +$at_failed && at_fn_log_failure +$at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/gh1152.at:366: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:366" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state + { set +x +printf "%s\n" "$at_srcdir/python.at:13: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:13" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:366" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + - { set +x -$as_echo "$at_srcdir/gh1152.at:367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-zones | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:367" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-zones | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/python.at:13: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block (active) -target: %%REJECT%% -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: dummy0 -sources: -services: -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -dmz -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -drop -target: DROP -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -external -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: ssh -ports: -protocols: -forward: yes -masquerade: yes -forward-ports: -source-ports: -icmp-blocks: -rich rules: -home -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client mdns samba-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -internal -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client mdns samba-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -public (default, active) -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -trusted -target: ACCEPT -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -work -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: dhcpv6-client ssh -ports: -protocols: -forward: yes -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:367" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -295079,110 +307497,153 @@ $at_traceon; } + printf "%s\n" "python.at:13" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/python.at:13" - { set +x -$as_echo "$at_srcdir/gh1152.at:513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1152.at:513" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 (active) -priority: -15000 -target: CONTINUE -ingress-zones: ANY -egress-zones: HOST -services: -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"redirect\" accept -foobar -priority: -1 -target: CONTINUE -ingress-zones: -egress-zones: -services: http -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:513" -$at_failed && at_fn_log_failure -$at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "python.at:13" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:13" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/gh1152.at:546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:546" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-zones -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block - interfaces: dummy0 -public (default) -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:546" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "python.at:13" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:13" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "python.at:13" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/python.at:13" { set +x -$as_echo "$at_srcdir/gh1152.at:552: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1152.at:552" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies +printf "%s\n" "$at_srcdir/python.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_rich.py " +at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_rich.py ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 - ingress-zones: ANY - egress-zones: HOST -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1152.at:552" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:15" $at_failed && at_fn_log_failure $at_traceon; } - - - - if test x"" != x"ignore"; then - $as_echo "gh1152.at:558" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh1152.at:558" + if test x"ignore" != x"ignore"; then + printf "%s\n" "python.at:16" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/python.at:16" fi @@ -295191,13 +307652,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_300 -#AT_START_301 -at_fn_group_banner 301 'rhbz2222044.at:1' \ - "duplicate rules after restart" " " 9 +#AT_STOP_324 +#AT_START_325 +at_fn_group_banner 325 'python.at:18' \ + "firewalld_direct.py" " " 10 at_xfail=no ( - $as_echo "301. $at_setup_line: testing $at_desc ..." + printf "%s\n" "325. $at_setup_line: testing $at_desc ..." $at_traceon @@ -295215,6 +307676,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -295231,29 +307693,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:1" +printf "%s\n" "$at_srcdir/python.at:18: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rhbz2222044.at:1" +printf "%s\n" "$at_srcdir/python.at:18: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "python.at:18" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -295261,15 +307723,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz2222044.at:1" +printf "%s\n" "$at_srcdir/python.at:18: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "python.at:18" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -295311,15 +307773,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rhbz2222044.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:1" +printf "%s\n" "$at_srcdir/python.at:18: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -295327,9 +307789,9 @@ $at_traceon; } - $as_echo "rhbz2222044.at:1" >"$at_check_line_file" + printf "%s\n" "python.at:18" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz2222044.at:1" + && at_fn_check_skip 77 "$at_srcdir/python.at:18" @@ -295410,8 +307872,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rhbz2222044.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" + printf "%s\n" "python.at:18" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:18" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -295421,7 +307883,7 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -295429,8 +307891,8 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz2222044.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" + printf "%s\n" "python.at:18" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/python.at:18" fi echo "$!" > firewalld.pid @@ -295446,88 +307908,179 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" fi sleep 1 done - $as_echo "rhbz2222044.at:1" >"$at_check_line_file" + printf "%s\n" "python.at:18" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:1" + && at_fn_check_skip 99 "$at_srcdir/python.at:18" + -$as_echo "rhbz2222044.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} command -v wc >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rhbz2222044.at:3" + printf "%s\n" "python.at:20" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/python.at:20" -{ set +x -$as_echo "$at_srcdir/rhbz2222044.at:20: sed -i 's/^CleanupOnExit.*/CleanupOnExit=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz2222044.at:20" -( $at_check_trace; sed -i 's/^CleanupOnExit.*/CleanupOnExit=yes/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/python.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_direct.py " +at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_direct.py ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:20" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/python.at:21" $at_failed && at_fn_log_failure $at_traceon; } + if test x"ignore" != x"ignore"; then + printf "%s\n" "python.at:22" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/python.at:22" + fi - { set +x -$as_echo "$at_srcdir/rhbz2222044.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_325 +#AT_START_326 +at_fn_group_banner 326 'rfc3964_ipv4.at:1' \ + "RFC3964_IPv4" " " 11 +at_xfail=no +( + printf "%s\n" "326. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" $at_failed && at_fn_log_failure $at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rfc3964_ipv4.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/rhbz2222044.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rfc3964_ipv4.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/rhbz2222044.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "249 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:23" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -295535,16 +308088,101 @@ $at_traceon; } - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + printf "%s\n" "rfc3964_ipv4.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rfc3964_ipv4.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rfc3964_ipv4.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -295552,8 +308190,8 @@ $at_traceon; } env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rhbz2222044.at:24" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:24" + printf "%s\n" "rfc3964_ipv4.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" fi echo "$!" > firewalld.pid @@ -295569,45 +308207,37 @@ at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:24" fi sleep 1 done - $as_echo "rhbz2222044.at:24" >"$at_check_line_file" + printf "%s\n" "rfc3964_ipv4.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:24" + && at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" - { set +x -$as_echo "$at_srcdir/rhbz2222044.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l + +{ set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:4: sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf" +at_fn_check_prepare_trace "rfc3964_ipv4.at:4" +( $at_check_trace; sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "249 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:25" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:4" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rhbz2222044.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l +{ set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:5: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rfc3964_ipv4.at:5" +( $at_check_trace; sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "249 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:27" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -295615,18 +308245,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rhbz2222044.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:28" +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -295637,15 +308265,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rhbz2222044.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:28" +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:28" +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -295655,152 +308283,191 @@ $at_traceon; } + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rhbz2222044.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L RFC3964_IPv4; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:34" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L RFC3964_IPv4; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "249 +echo >>"$at_stdout"; printf "%s\n" "LOG 0 -- ::/0 2002:e000::/19 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" +REJECT 0 -- ::/0 2002:e000::/19 reject-with icmp6-addr-unreachable +LOG 0 -- ::/0 2002:a9fe::/32 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" +REJECT 0 -- ::/0 2002:a9fe::/32 reject-with icmp6-addr-unreachable +LOG 0 -- ::/0 2002:c0a8::/32 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" +REJECT 0 -- ::/0 2002:c0a8::/32 reject-with icmp6-addr-unreachable +LOG 0 -- ::/0 2002:ac10::/28 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" +REJECT 0 -- ::/0 2002:ac10::/28 reject-with icmp6-addr-unreachable +LOG 0 -- ::/0 2002:7f00::/24 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" +REJECT 0 -- ::/0 2002:7f00::/24 reject-with icmp6-addr-unreachable +LOG 0 -- ::/0 2002:a00::/24 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" +REJECT 0 -- ::/0 2002:a00::/24 reject-with icmp6-addr-unreachable +LOG 0 -- ::/0 2002::/24 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" +REJECT 0 -- ::/0 2002::/24 reject-with icmp6-addr-unreachable +LOG 0 -- ::/0 ::ffff:0.0.0.0/96 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" +REJECT 0 -- ::/0 ::ffff:0.0.0.0/96 reject-with icmp6-addr-unreachable +LOG 0 -- ::/0 ::/96 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" +REJECT 0 -- ::/0 ::/96 reject-with icmp6-addr-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:29" +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:34" $at_failed && at_fn_log_failure $at_traceon; } + else + : -{ set +x -$as_echo "$at_srcdir/rhbz2222044.at:32: sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf" -at_fn_check_prepare_trace "rhbz2222044.at:32" -( $at_check_trace; sed -i 's/^CleanupOnExit.*/CleanupOnExit=no/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:32" -$at_failed && at_fn_log_failure -$at_traceon; } + fi - { set +x -$as_echo "$at_srcdir/rhbz2222044.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:33" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rhbz2222044.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:33" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +LOG 0 -- ::/0 ::/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" +DROP 0 -- ::/0 ::/0 ctstate INVALID +FORWARD_direct 0 -- ::/0 ::/0 +RFC3964_IPv4 0 -- ::/0 ::/0 +FORWARD_POLICIES 0 -- ::/0 ::/0 +LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:54" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/rhbz2222044.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:65" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "249 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +OUTPUT_direct 0 -- ::/0 ::/0 +RFC3964_IPv4 0 -- ::/0 ::/0 +OUTPUT_POLICIES 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:35" +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:65" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "rhbz2222044.at:36" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:36" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "rhbz2222044.at:36" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:36" + +{ set +x +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:73: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rfc3964_ipv4.at:73" +( $at_check_trace; sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:73" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz2222044.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:37" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:74" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "249 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:37" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:74" $at_failed && at_fn_log_failure $at_traceon; } @@ -295809,18 +308476,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rhbz2222044.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:74" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "249 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:39" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:74" $at_failed && at_fn_log_failure $at_traceon; } @@ -295830,69 +308496,150 @@ $at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rhbz2222044.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:40" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L RFC3964_IPv4; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:101" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L RFC3964_IPv4; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:40" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/rfc3964_ipv4.at:101" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rhbz2222044.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:40" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:102" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:40" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +LOG 0 -- ::/0 ::/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" +DROP 0 -- ::/0 ::/0 ctstate INVALID +FORWARD_direct 0 -- ::/0 ::/0 +FORWARD_POLICIES 0 -- ::/0 ::/0 +LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:102" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rhbz2222044.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} iptables-save | wc -l " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rhbz2222044.at:41" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} iptables-save | wc -l +printf "%s\n" "$at_srcdir/rfc3964_ipv4.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "249 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +OUTPUT_direct 0 -- ::/0 ::/0 +OUTPUT_POLICIES 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rhbz2222044.at:41" +at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:112" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + if test x"" != x"ignore"; then - $as_echo "rhbz2222044.at:44" >"$at_check_line_file" + printf "%s\n" "rfc3964_ipv4.at:119" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rhbz2222044.at:44" + && at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:119" fi @@ -295901,13 +308648,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_301 -#AT_START_302 -at_fn_group_banner 302 'gh1229.at:1' \ - "policy dispatch with egress-zone=ANY" " " 9 +#AT_STOP_326 +#AT_START_327 +at_fn_group_banner 327 'service_include.at:1' \ + "service include" " " 11 at_xfail=no ( - $as_echo "302. $at_setup_line: testing $at_desc ..." + printf "%s\n" "327. $at_setup_line: testing $at_desc ..." $at_traceon @@ -295925,6 +308672,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -295941,29 +308689,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh1229.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:1" +printf "%s\n" "$at_srcdir/service_include.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh1229.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh1229.at:1" +printf "%s\n" "$at_srcdir/service_include.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "service_include.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -295971,15 +308719,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh1229.at:1" +printf "%s\n" "$at_srcdir/service_include.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "service_include.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -296021,15 +308769,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh1229.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:1" +printf "%s\n" "$at_srcdir/service_include.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -296037,9 +308785,9 @@ $at_traceon; } - $as_echo "gh1229.at:1" >"$at_check_line_file" + printf "%s\n" "service_include.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh1229.at:1" + && at_fn_check_skip 77 "$at_srcdir/service_include.at:1" @@ -296120,8 +308868,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh1229.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" + printf "%s\n" "service_include.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/service_include.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -296131,7 +308879,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -296139,8 +308887,8 @@ at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh1229.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" + printf "%s\n" "service_include.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/service_include.at:1" fi echo "$!" > firewalld.pid @@ -296156,9 +308904,425 @@ at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" fi sleep 1 done - $as_echo "gh1229.at:1" >"$at_check_line_file" + printf "%s\n" "service_include.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" + && at_fn_check_skip 99 "$at_srcdir/service_include.at:1" + + + + + +{ set +x +printf "%s\n" "$at_srcdir/service_include.at:4: mkdir -p ./services" +at_fn_check_prepare_trace "service_include.at:4" +( $at_check_trace; mkdir -p ./services +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/service_include.at:5: cat < ./services/my-service-with-include.xml + + + my-service-with-include + This service includes other services + + + + + +HERE +" +at_fn_check_prepare_notrace 'an embedded newline' "service_include.at:5" +( $at_check_trace; cat < ./services/my-service-with-include.xml + + + my-service-with-include + This service includes other services + + + + + +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:5" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/service_include.at:17: cat < ./services/recursive-service.xml + + + recursive-service + Include a service that included us + + +HERE +" +at_fn_check_prepare_notrace 'an embedded newline' "service_include.at:17" +( $at_check_trace; cat < ./services/recursive-service.xml + + + recursive-service + Include a service that included us + + +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:17" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:26" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:26" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --add-interface=foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:28" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-service=my-service-with-include " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --add-service=my-service-with-include +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:29" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --list-services " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=drop --list-services +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "my-service-with-include +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:30" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-service=recursive-service " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --add-service=recursive-service +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:35" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --remove-service=recursive-service " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:36" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --remove-service=recursive-service +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:36" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --add-rich-rule='rule service name=recursive-service log' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:37" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=drop --add-rich-rule='rule service name=recursive-service log' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:37" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --list-rich-rules " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=drop --list-rich-rules +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "rule service name=\"recursive-service\" log +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:38" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_drop_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:64" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_drop_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 17 -- 0.0.0.0/0 239.255.255.250 udp dpt:1900 +ACCEPT 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:12345 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:64" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_drop_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:69" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_drop_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 17 -- ::/0 ff02::c udp dpt:1900 +ACCEPT 17 -- ::/0 ff02::fb udp dpt:5353 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:12345 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:69" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_drop_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:74" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_drop_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "LOG 17 -- 0.0.0.0/0 239.255.255.250 udp dpt:1900 LOG flags 0 level 4 +LOG 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 LOG flags 0 level 4 +LOG 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:12345 LOG flags 0 level 4 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:74" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/service_include.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_drop_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:79" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_drop_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "LOG 17 -- ::/0 ff02::c udp dpt:1900 LOG flags 0 level 4 +LOG 17 -- ::/0 ff02::fb udp dpt:5353 LOG flags 0 level 4 +LOG 6 -- ::/0 ::/0 tcp dpt:12345 LOG flags 0 level 4 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:79" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + @@ -296168,15 +309332,15 @@ at_fn_check_skip 99 "$at_srcdir/gh1229.at:1" { set +x -$as_echo "$at_srcdir/gh1229.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar-int " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar-int +printf "%s\n" "$at_srcdir/service_include.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=recursive-service " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:86" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=recursive-service ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:86" $at_failed && at_fn_log_failure $at_traceon; } @@ -296187,15 +309351,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface foobar-ext " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone external --add-interface foobar-ext +printf "%s\n" "$at_srcdir/service_include.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --add-include=ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:87" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --add-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:5" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:87" $at_failed && at_fn_log_failure $at_traceon; } @@ -296205,36 +309369,48 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh1229.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar +printf "%s\n" "$at_srcdir/service_include.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:88" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:88" $at_failed && at_fn_log_failure $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/service_include.at:89: grep '' ./services/my-service-with-include.xml " +at_fn_check_prepare_trace "service_include.at:89" +( $at_check_trace; grep '' ./services/my-service-with-include.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:89" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x -$as_echo "$at_srcdir/gh1229.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal +printf "%s\n" "$at_srcdir/service_include.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --remove-include=ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --remove-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:8" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:90" $at_failed && at_fn_log_failure $at_traceon; } @@ -296245,35 +309421,49 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY +printf "%s\n" "$at_srcdir/service_include.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:91" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:9" +at_fn_check_status 1 $at_status "$at_srcdir/service_include.at:91" $at_failed && at_fn_log_failure $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/service_include.at:92: grep '' ./services/my-service-with-include.xml " +at_fn_check_prepare_trace "service_include.at:92" +( $at_check_trace; grep '' ./services/my-service-with-include.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/service_include.at:92" +$at_failed && at_fn_log_failure +$at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy raboof " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy raboof +printf "%s\n" "$at_srcdir/service_include.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --get-includes " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:93" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --get-includes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:11" +echo >>"$at_stdout"; printf "%s\n" "mdns recursive-service ssdp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:93" $at_failed && at_fn_log_failure $at_traceon; } @@ -296284,15 +309474,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/service_include.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:96" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-service=my-service-with-include | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:12" +echo >>"$at_stdout"; printf "%s\n" "my-service-with-include +ports: 12345/tcp +protocols: +source-ports: +modules: +destination: +includes: mdns recursive-service ssdp +helpers: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:96" $at_failed && at_fn_log_failure $at_traceon; } @@ -296303,15 +309502,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1229.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone internal +printf "%s\n" "$at_srcdir/service_include.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:106" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-service=my-service-with-include | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:13" +echo >>"$at_stdout"; printf "%s\n" "my-service-with-include +ports: 12345/tcp +protocols: +source-ports: +modules: +destination: +includes: mdns recursive-service ssdp +helpers: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:106" $at_failed && at_fn_log_failure $at_traceon; } @@ -296320,330 +309528,229 @@ $at_traceon; } - - + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi { set +x -$as_echo "$at_srcdir/gh1229.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/service_include.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service" "service_include.at:118" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:15" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:118" $at_failed && at_fn_log_failure $at_traceon; } - - - + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi { set +x -$as_echo "$at_srcdir/gh1229.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/service_include.at:119: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh" "service_include.at:119" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:119" $at_failed && at_fn_log_failure $at_traceon; } - - - - - + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi { set +x -$as_echo "$at_srcdir/gh1229.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar-public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface foobar-public +printf "%s\n" "$at_srcdir/service_include.at:120: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" "service_include.at:120" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:120" $at_failed && at_fn_log_failure $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/service_include.at:121: grep '' ./services/my-service-with-include.xml " +at_fn_check_prepare_trace "service_include.at:121" +( $at_check_trace; grep '' ./services/my-service-with-include.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:121" +$at_failed && at_fn_log_failure +$at_traceon; } - - + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi { set +x -$as_echo "$at_srcdir/gh1229.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-interface foobar-trusted " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-interface foobar-trusted +printf "%s\n" "$at_srcdir/service_include.at:122: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh" "service_include.at:122" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:18" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:122" $at_failed && at_fn_log_failure $at_traceon; } - - - + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi { set +x -$as_echo "$at_srcdir/gh1229.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone trusted --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1229.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone trusted --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/service_include.at:123: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" "service_include.at:123" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:19" +at_fn_check_status 1 $at_status "$at_srcdir/service_include.at:123" $at_failed && at_fn_log_failure $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/service_include.at:124: grep '' ./services/my-service-with-include.xml " +at_fn_check_prepare_trace "service_include.at:124" +( $at_check_trace; grep '' ./services/my-service-with-include.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/service_include.at:124" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - - - - + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi { set +x -$as_echo "$at_srcdir/gh1229.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1229.at:112" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/service_include.at:125: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes" "service_include.at:125" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_trusted 0 -- 10.10.10.0/24 10.10.10.0/24 -ACCEPT 0 -- 10.10.10.0/24 10.10.10.0/24 -FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 -ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_raboof 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 -ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 -ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 -ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 -ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_external 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_raboof 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 -FWD_internal 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_raboof 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_raboof 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_trusted 0 -- 0.0.0.0/0 10.10.10.0/24 -ACCEPT 0 -- 0.0.0.0/0 10.10.10.0/24 -FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_raboof 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_trusted 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_raboof 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "mdns recursive-service ssdp " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:112" +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:125" $at_failed && at_fn_log_failure $at_traceon; } + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + { set +x +printf "%s\n" "$at_srcdir/service_include.at:128: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" +at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:128" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "my-service-with-include +ports: 12345/tcp +protocols: +source-ports: +modules: +destination: +includes: mdns recursive-service ssdp +helpers: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:128" +$at_failed && at_fn_log_failure +$at_traceon; } - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/gh1229.at:199: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "gh1229.at:199" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/service_include.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --add-include=does-not-exist " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:140" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --add-include=does-not-exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_external 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_raboof 0 -- ::/0 ::/0 -FWD_external 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_external 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_external 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_external 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_raboof 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_raboof 0 -- ::/0 ::/0 -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_trusted 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -FWD_raboof 0 -- ::/0 ::/0 -FWD_trusted 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -FWD_trusted 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -FWD_trusted 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -FWD_trusted 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_raboof 0 -- ::/0 ::/0 -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1229.at:199" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 101 $at_status "$at_srcdir/service_include.at:140" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + { set +x +printf "%s\n" "$at_srcdir/service_include.at:141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist" "service_include.at:141" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 101 $at_status "$at_srcdir/service_include.at:141" +$at_failed && at_fn_log_failure +$at_traceon; } - if test x"" != x"ignore"; then - $as_echo "gh1229.at:262" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh1229.at:262" + if test x"-e '/ERROR: INVALID_SERVICE:/d'" != x"ignore"; then + printf "%s\n" "service_include.at:143" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/service_include.at:143" fi @@ -296652,13 +309759,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_302 -#AT_START_303 -at_fn_group_banner 303 'gh1278.at:1' \ - "policy dispatch update if active" " " 9 +#AT_STOP_327 +#AT_START_328 +at_fn_group_banner 328 'helpers_custom.at:1' \ + "customer helpers" " " 11 at_xfail=no ( - $as_echo "303. $at_setup_line: testing $at_desc ..." + printf "%s\n" "328. $at_setup_line: testing $at_desc ..." $at_traceon @@ -296676,6 +309783,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -296692,29 +309800,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/gh1278.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:1" +printf "%s\n" "$at_srcdir/helpers_custom.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/gh1278.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "gh1278.at:1" +printf "%s\n" "$at_srcdir/helpers_custom.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "helpers_custom.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -296722,15 +309830,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "gh1278.at:1" +printf "%s\n" "$at_srcdir/helpers_custom.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "helpers_custom.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -296772,15 +309880,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/gh1278.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:1" +printf "%s\n" "$at_srcdir/helpers_custom.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -296788,9 +309896,9 @@ $at_traceon; } - $as_echo "gh1278.at:1" >"$at_check_line_file" + printf "%s\n" "helpers_custom.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/gh1278.at:1" + && at_fn_check_skip 77 "$at_srcdir/helpers_custom.at:1" @@ -296871,8 +309979,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "gh1278.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" + printf "%s\n" "helpers_custom.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -296882,7 +309990,7 @@ at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -296890,8 +309998,8 @@ at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "gh1278.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" + printf "%s\n" "helpers_custom.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" fi echo "$!" > firewalld.pid @@ -296907,10 +310015,9 @@ at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" fi sleep 1 done - $as_echo "gh1278.at:1" >"$at_check_line_file" + printf "%s\n" "helpers_custom.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" - + && at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" @@ -296920,15 +310027,15 @@ at_fn_check_skip 99 "$at_srcdir/gh1278.at:1" { set +x -$as_echo "$at_srcdir/gh1278.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy host_fwd " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy host_fwd +printf "%s\n" "$at_srcdir/helpers_custom.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-helper=\"ftptest\" --module=\"nf_conntrack_ftp\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-helper="ftptest" --module="nf_conntrack_ftp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:6" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -296939,15 +310046,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-ingress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-ingress-zone HOST +printf "%s\n" "$at_srcdir/helpers_custom.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --helper=ftptest --add-port=\"2121/tcp\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --helper=ftptest --add-port="2121/tcp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:7" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -296957,16 +310064,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/gh1278.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy host_fwd --add-egress-zone ANY +printf "%s\n" "$at_srcdir/helpers_custom.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-service=\"ftptest\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-service="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:8" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -296976,17 +310084,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh1278.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fwd_out " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy fwd_out +printf "%s\n" "$at_srcdir/helpers_custom.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module=\"ftptest\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:10" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -296997,15 +310104,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-ingress-zone internal +printf "%s\n" "$at_srcdir/helpers_custom.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module=\"ftptest\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:11" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -297016,15 +310123,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fwd_out --add-egress-zone ANY +printf "%s\n" "$at_srcdir/helpers_custom.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port=\"2121/tcp\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port="2121/tcp" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:12" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -297034,17 +310141,25 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh1278.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy port_fwd " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy port_fwd +printf "%s\n" "$at_srcdir/helpers_custom.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:14" +echo >>"$at_stdout"; printf "%s\n" "ftptest +ports: 2121/tcp +protocols: +source-ports: +modules: ftptest +destination: +includes: +helpers: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -297054,16 +310169,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/gh1278.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/helpers_custom.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:15" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -297074,15 +310190,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy port_fwd --add-egress-zone ANY +printf "%s\n" "$at_srcdir/helpers_custom.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:16" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -297093,17 +310209,25 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh1278.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/helpers_custom.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:18" +echo >>"$at_stdout"; printf "%s\n" "ftptest +ports: 2121/tcp +protocols: +source-ports: +modules: ftptest +destination: +includes: +helpers: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:22" $at_failed && at_fn_log_failure $at_traceon; } @@ -297113,16 +310237,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/gh1278.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/helpers_custom.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=ftptest ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:33" $at_failed && at_fn_log_failure $at_traceon; } @@ -297134,16 +310259,28 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/gh1278.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 +printf "%s\n" "$at_srcdir/helpers_custom.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:20" +echo >>"$at_stdout"; printf "%s\n" "CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 CT helper ftp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:45" $at_failed && at_fn_log_failure $at_traceon; } @@ -297153,16 +310290,29 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/gh1278.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 +printf "%s\n" "$at_srcdir/helpers_custom.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:48" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:21" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -297174,73 +310324,101 @@ $at_traceon; } + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/gh1278.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy many_zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy many_zones +printf "%s\n" "$at_srcdir/helpers_custom.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:52" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:25" +echo >>"$at_stdout"; printf "%s\n" "CT 6 -- ::/0 ::/0 tcp dpt:2121 CT helper ftp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:52" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi - { set +x -$as_echo "$at_srcdir/gh1278.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone trusted " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone trusted -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:26" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x -$as_echo "$at_srcdir/gh1278.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone dmz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-ingress-zone dmz +printf "%s\n" "$at_srcdir/helpers_custom.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:27" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:2121 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:55" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + + { set +x -$as_echo "$at_srcdir/gh1278.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone external " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone external +printf "%s\n" "$at_srcdir/helpers_custom.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-module=\"ftptest\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:62" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:28" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:62" $at_failed && at_fn_log_failure $at_traceon; } @@ -297251,15 +310429,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone home " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy many_zones --add-egress-zone home +printf "%s\n" "$at_srcdir/helpers_custom.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module=\"ftptest\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:63" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:29" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 1 $at_status "$at_srcdir/helpers_custom.at:63" $at_failed && at_fn_log_failure $at_traceon; } @@ -297269,17 +310447,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh1278.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone trusted --add-interface dummy0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone trusted --add-interface dummy0 +printf "%s\n" "$at_srcdir/helpers_custom.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper=\"ftptest\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:64" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:31" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:64" $at_failed && at_fn_log_failure $at_traceon; } @@ -297290,15 +310467,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy1 +printf "%s\n" "$at_srcdir/helpers_custom.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:65" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:32" +echo >>"$at_stdout"; printf "%s\n" "ftptest +ports: 2121/tcp +protocols: +source-ports: +modules: +destination: +includes: +helpers: ftptest +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:65" $at_failed && at_fn_log_failure $at_traceon; } @@ -297310,15 +310496,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:33" +printf "%s\n" "$at_srcdir/helpers_custom.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:75" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:33" +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:75" $at_failed && at_fn_log_failure $at_traceon; } @@ -297329,15 +310515,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:33" +printf "%s\n" "$at_srcdir/helpers_custom.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:75" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:33" +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:75" $at_failed && at_fn_log_failure $at_traceon; } @@ -297348,17 +310534,25 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh1278.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --add-interface dummy2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --add-interface dummy2 +printf "%s\n" "$at_srcdir/helpers_custom.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:76" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:35" +echo >>"$at_stdout"; printf "%s\n" "ftptest +ports: 2121/tcp +protocols: +source-ports: +modules: +destination: +includes: +helpers: ftptest +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:76" $at_failed && at_fn_log_failure $at_traceon; } @@ -297368,16 +310562,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/gh1278.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone dmz --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:36" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone dmz --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/helpers_custom.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:87" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=ftptest ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:36" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:87" $at_failed && at_fn_log_failure $at_traceon; } @@ -297387,19 +310582,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/gh1278.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone dmz --remove-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:37" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone dmz --remove-source 10.10.10.0/24 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:37" -$at_failed && at_fn_log_failure -$at_traceon; } - @@ -297407,15 +310589,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/gh1278.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone home --remove-interface dummy2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "gh1278.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone home --remove-interface dummy2 +printf "%s\n" "$at_srcdir/helpers_custom.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:99" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/gh1278.at:38" +echo >>"$at_stdout"; printf "%s\n" "CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 CT helper ftp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:99" $at_failed && at_fn_log_failure $at_traceon; } @@ -297425,28 +310615,31 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "gh1278.at:40" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/gh1278.at:40" - fi - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_303 -#AT_START_304 -at_fn_group_banner 304 'python.at:3' \ - "firewalld_misc.py" " " 10 -at_xfail=no -( - $as_echo "304. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:102" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:102" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -297454,212 +310647,85 @@ at_xfail=no - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/python.at:3: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" -$at_failed && at_fn_log_failure -$at_traceon; } - else - { set +x -$as_echo "$at_srcdir/python.at:3: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "python.at:3" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : - fi + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:106" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/python.at:3: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:3" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" +echo >>"$at_stdout"; printf "%s\n" "CT 6 -- ::/0 ::/0 tcp dpt:2121 CT helper ftp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:106" $at_failed && at_fn_log_failure $at_traceon; } + else + : - kill_firewalld() { + fi - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/python.at:3: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:3" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:109" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:3" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:2121 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:109" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - $as_echo "python.at:3" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/python.at:3" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "python.at:3" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:3" - fi - echo "kill $DBUS_PID" >> ./cleanup_late @@ -297667,75 +310733,57 @@ at_fn_check_skip 99 "$at_srcdir/python.at:3" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "python.at:3" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:3" - fi - echo "$!" > firewalld.pid + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module=\"ftptest\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module="ftptest" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:116" +$at_failed && at_fn_log_failure +$at_traceon; } + - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "python.at:3" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/python.at:3" { set +x -$as_echo "$at_srcdir/python.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_misc.py " -at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_misc.py +printf "%s\n" "$at_srcdir/helpers_custom.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-helper=\"ftptest\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:117" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-helper="ftptest" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/python.at:5" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:117" $at_failed && at_fn_log_failure $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "python.at:6" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/python.at:6" - fi - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_304 -#AT_START_305 -at_fn_group_banner 305 'python.at:8' \ - "firewalld_config.py" " " 10 -at_xfail=no -( - $as_echo "305. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper=\"ftp\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:118" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper="ftp" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:118" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -297743,120 +310791,110 @@ at_xfail=no + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port=\"21/tcp\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:119" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port="21/tcp" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:119" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/python.at:8: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + + + + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:120" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:120" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/python.at:8: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "python.at:8" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:120" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:120" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/python.at:8: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:8" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + + + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:122" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=ftptest ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:122" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:136" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/python.at:8: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:8" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:8" +echo >>"$at_stdout"; printf "%s\n" "CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 CT helper ftp +CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 CT helper ftp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:136" $at_failed && at_fn_log_failure $at_traceon; } @@ -297864,153 +310902,133 @@ $at_traceon; } - $as_echo "python.at:8" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/python.at:8" - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:140" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 +ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:140" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "python.at:8" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:8" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + if $IP6TABLES -L >/dev/null 2>&1; then + : - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "python.at:8" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:8" + { set +x +printf "%s\n" "$at_srcdir/helpers_custom.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:145" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "CT 6 -- ::/0 ::/0 tcp dpt:21 CT helper ftp +CT 6 -- ::/0 ::/0 tcp dpt:2121 CT helper ftp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:145" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "python.at:8" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/python.at:8" + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/python.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_config.py " -at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_config.py +printf "%s\n" "$at_srcdir/helpers_custom.at:149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:149" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/python.at:10" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:2121 +ACCEPT 6 -- ::/0 ::/0 tcp dpt:21 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:149" $at_failed && at_fn_log_failure $at_traceon; } + else + : - if test x"ignore" != x"ignore"; then - $as_echo "python.at:11" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/python.at:11" + fi + + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "helpers_custom.at:156" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:156" fi @@ -298019,13 +311037,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_305 -#AT_START_306 -at_fn_group_banner 306 'python.at:13' \ - "firewalld_rich.py" " " 10 +#AT_STOP_328 +#AT_START_329 +at_fn_group_banner 329 'policy.at:5' \ + "policy - xml" " " 11 at_xfail=no ( - $as_echo "306. $at_setup_line: testing $at_desc ..." + printf "%s\n" "329. $at_setup_line: testing $at_desc ..." $at_traceon @@ -298043,6 +311061,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -298059,29 +311078,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/python.at:13: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" +printf "%s\n" "$at_srcdir/policy.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/python.at:13: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "python.at:13" +printf "%s\n" "$at_srcdir/policy.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:5" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -298089,15 +311108,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:13: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:13" +printf "%s\n" "$at_srcdir/policy.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:5" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -298139,15 +311158,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/python.at:13: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:13" +printf "%s\n" "$at_srcdir/policy.at:5: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -298155,9 +311174,9 @@ $at_traceon; } - $as_echo "python.at:13" >"$at_check_line_file" + printf "%s\n" "policy.at:5" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/python.at:13" + && at_fn_check_skip 77 "$at_srcdir/policy.at:5" @@ -298238,8 +311257,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "python.at:13" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:13" + printf "%s\n" "policy.at:5" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:5" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -298249,7 +311268,7 @@ at_fn_check_skip 99 "$at_srcdir/python.at:13" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -298257,8 +311276,8 @@ at_fn_check_skip 99 "$at_srcdir/python.at:13" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "python.at:13" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:13" + printf "%s\n" "policy.at:5" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:5" fi echo "$!" > firewalld.pid @@ -298274,34 +311293,154 @@ at_fn_check_skip 99 "$at_srcdir/python.at:13" fi sleep 1 done - $as_echo "python.at:13" >"$at_check_line_file" + printf "%s\n" "policy.at:5" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/python.at:13" + && at_fn_check_skip 99 "$at_srcdir/policy.at:5" + + + + + +{ set +x +printf "%s\n" "$at_srcdir/policy.at:8: mkdir -p ./policies" +at_fn_check_prepare_trace "policy.at:8" +( $at_check_trace; mkdir -p ./policies +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:8" +$at_failed && at_fn_log_failure +$at_traceon; } +cat >./policies/foobar.xml <<'_ATEOF' + + +foobar +foobar policy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + { set +x -$as_echo "$at_srcdir/python.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_rich.py " -at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_rich.py +printf "%s\n" "$at_srcdir/policy.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:70" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/python.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:70" $at_failed && at_fn_log_failure $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "python.at:16" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/python.at:16" + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:71" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "policy.at:73" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:73" fi @@ -298310,13 +311449,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_306 -#AT_START_307 -at_fn_group_banner 307 'python.at:18' \ - "firewalld_direct.py" " " 10 +#AT_STOP_329 +#AT_START_330 +at_fn_group_banner 330 'policy.at:79' \ + "policy - create" " " 11 at_xfail=no ( - $as_echo "307. $at_setup_line: testing $at_desc ..." + printf "%s\n" "330. $at_setup_line: testing $at_desc ..." $at_traceon @@ -298334,6 +311473,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -298350,29 +311490,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/python.at:18: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" +printf "%s\n" "$at_srcdir/policy.at:79: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:79" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:79" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/python.at:18: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "python.at:18" +printf "%s\n" "$at_srcdir/policy.at:79: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:79" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:79" $at_failed && at_fn_log_failure $at_traceon; } @@ -298380,15 +311520,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/python.at:18: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "python.at:18" +printf "%s\n" "$at_srcdir/policy.at:79: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:79" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:79" $at_failed && at_fn_log_failure $at_traceon; } @@ -298430,15 +311570,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/python.at:18: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "python.at:18" +printf "%s\n" "$at_srcdir/policy.at:79: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:79" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/python.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:79" $at_failed && at_fn_log_failure $at_traceon; } @@ -298446,9 +311586,9 @@ $at_traceon; } - $as_echo "python.at:18" >"$at_check_line_file" + printf "%s\n" "policy.at:79" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/python.at:18" + && at_fn_check_skip 77 "$at_srcdir/policy.at:79" @@ -298529,8 +311669,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "python.at:18" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:18" + printf "%s\n" "policy.at:79" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:79" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -298540,7 +311680,7 @@ at_fn_check_skip 99 "$at_srcdir/python.at:18" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -298548,8 +311688,8 @@ at_fn_check_skip 99 "$at_srcdir/python.at:18" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "python.at:18" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/python.at:18" + printf "%s\n" "policy.at:79" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:79" fi echo "$!" > firewalld.pid @@ -298565,41 +311705,160 @@ at_fn_check_skip 99 "$at_srcdir/python.at:18" fi sleep 1 done - $as_echo "python.at:18" >"$at_check_line_file" + printf "%s\n" "policy.at:79" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/python.at:18" + && at_fn_check_skip 99 "$at_srcdir/policy.at:79" - $as_echo "python.at:20" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/python.at:20" + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:83: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:83" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:83" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/python.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} \$PYTHON \$(dirname \${at_myself})/python/firewalld_direct.py " -at_fn_check_prepare_notrace 'a $(...) command substitution' "python.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} $PYTHON $(dirname ${at_myself})/python/firewalld_direct.py +printf "%s\n" "$at_srcdir/policy.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy hostToWorld " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:84" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy hostToWorld ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/python.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:84" $at_failed && at_fn_log_failure $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "python.at:22" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/python.at:22" + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy zoneToZone " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:85" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy zoneToZone +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:85" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:86" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-policies +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 hostToWorld worldToHost zoneToZone +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:86" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:89" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:89" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:89" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:89" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-policies +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 hostToWorld worldToHost zoneToZone +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:90" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "policy.at:94" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:94" fi @@ -298608,13 +311867,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_307 -#AT_START_308 -at_fn_group_banner 308 'rfc3964_ipv4.at:1' \ - "RFC3964_IPv4" " " 11 +#AT_STOP_330 +#AT_START_331 +at_fn_group_banner 331 'policy.at:96' \ + "policy - name" " " 11 at_xfail=no ( - $as_echo "308. $at_setup_line: testing $at_desc ..." + printf "%s\n" "331. $at_setup_line: testing $at_desc ..." $at_traceon @@ -298632,6 +311891,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -298648,29 +311908,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/policy.at:96: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:96" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:96" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/policy.at:96: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:96" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:96" $at_failed && at_fn_log_failure $at_traceon; } @@ -298678,15 +311938,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/policy.at:96: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:96" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:96" $at_failed && at_fn_log_failure $at_traceon; } @@ -298728,15 +311988,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:1" +printf "%s\n" "$at_srcdir/policy.at:96: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:96" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:96" $at_failed && at_fn_log_failure $at_traceon; } @@ -298744,9 +312004,9 @@ $at_traceon; } - $as_echo "rfc3964_ipv4.at:1" >"$at_check_line_file" + printf "%s\n" "policy.at:96" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rfc3964_ipv4.at:1" + && at_fn_check_skip 77 "$at_srcdir/policy.at:96" @@ -298827,8 +312087,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rfc3964_ipv4.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" + printf "%s\n" "policy.at:96" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:96" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -298838,7 +312098,7 @@ at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -298846,8 +312106,8 @@ at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rfc3964_ipv4.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" + printf "%s\n" "policy.at:96" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:96" fi echo "$!" > firewalld.pid @@ -298863,269 +312123,10 @@ at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" fi sleep 1 done - $as_echo "rfc3964_ipv4.at:1" >"$at_check_line_file" + printf "%s\n" "policy.at:96" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:1" - - - - - -{ set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:4: sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf" -at_fn_check_prepare_trace "rfc3964_ipv4.at:4" -( $at_check_trace; sed -i 's/^LogDenied.*/LogDenied=all/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - -{ set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:5: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=yes/' ./firewalld.conf" -at_fn_check_prepare_trace "rfc3964_ipv4.at:5" -( $at_check_trace; sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=yes/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:5" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L RFC3964_IPv4; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L RFC3964_IPv4; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 0 -- ::/0 2002:e000::/19 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" -REJECT 0 -- ::/0 2002:e000::/19 reject-with icmp6-addr-unreachable -LOG 0 -- ::/0 2002:a9fe::/32 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" -REJECT 0 -- ::/0 2002:a9fe::/32 reject-with icmp6-addr-unreachable -LOG 0 -- ::/0 2002:c0a8::/32 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" -REJECT 0 -- ::/0 2002:c0a8::/32 reject-with icmp6-addr-unreachable -LOG 0 -- ::/0 2002:ac10::/28 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" -REJECT 0 -- ::/0 2002:ac10::/28 reject-with icmp6-addr-unreachable -LOG 0 -- ::/0 2002:7f00::/24 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" -REJECT 0 -- ::/0 2002:7f00::/24 reject-with icmp6-addr-unreachable -LOG 0 -- ::/0 2002:a00::/24 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" -REJECT 0 -- ::/0 2002:a00::/24 reject-with icmp6-addr-unreachable -LOG 0 -- ::/0 2002::/24 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" -REJECT 0 -- ::/0 2002::/24 reject-with icmp6-addr-unreachable -LOG 0 -- ::/0 ::ffff:0.0.0.0/96 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" -REJECT 0 -- ::/0 ::ffff:0.0.0.0/96 reject-with icmp6-addr-unreachable -LOG 0 -- ::/0 ::/96 LOG flags 0 level 4 prefix \"RFC3964_IPv4_REJECT: \" -REJECT 0 -- ::/0 ::/96 reject-with icmp6-addr-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:33" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- ::/0 ::/0 -LOG 0 -- ::/0 ::/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" -DROP 0 -- ::/0 ::/0 ctstate INVALID -FORWARD_direct 0 -- ::/0 ::/0 -RFC3964_IPv4 0 -- ::/0 ::/0 -FORWARD_POLICIES 0 -- ::/0 ::/0 -LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" -REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:53" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:64" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED -ACCEPT 0 -- ::/0 ::/0 -OUTPUT_direct 0 -- ::/0 ::/0 -RFC3964_IPv4 0 -- ::/0 ::/0 -OUTPUT_POLICIES 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:64" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - - - - - - -{ set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:72: sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=no/' ./firewalld.conf" -at_fn_check_prepare_trace "rfc3964_ipv4.at:72" -( $at_check_trace; sed -i 's/^RFC3964_IPv4.*/RFC3964_IPv4=no/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:72" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - + && at_fn_check_skip 99 "$at_srcdir/policy.at:96" - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -299134,15 +312135,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rfc3964_ipv4.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy 123456789012345678 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:100" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy 123456789012345678 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:73" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:100" $at_failed && at_fn_log_failure $at_traceon; } @@ -299152,139 +312153,57 @@ $at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L RFC3964_IPv4; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:99" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L RFC3964_IPv4; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy 1234567890123456789 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:101" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy 1234567890123456789 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/rfc3964_ipv4.at:99" +at_fn_check_status 116 $at_status "$at_srcdir/policy.at:101" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:100" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:104" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- ::/0 ::/0 -LOG 0 -- ::/0 ::/0 ctstate INVALID LOG flags 0 level 4 prefix \"STATE_INVALID_DROP: \" -DROP 0 -- ::/0 ::/0 ctstate INVALID -FORWARD_direct 0 -- ::/0 ::/0 -FORWARD_POLICIES 0 -- ::/0 ::/0 -LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"FINAL_REJECT: \" -REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:100" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 26 $at_status "$at_srcdir/policy.at:104" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/rfc3964_ipv4.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rfc3964_ipv4.at:110" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone allow-host-ipv6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:105" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone allow-host-ipv6 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED -ACCEPT 0 -- ::/0 ::/0 -OUTPUT_direct 0 -- ::/0 ::/0 -OUTPUT_POLICIES 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rfc3964_ipv4.at:110" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 26 $at_status "$at_srcdir/policy.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -299292,10 +312211,10 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "rfc3964_ipv4.at:117" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rfc3964_ipv4.at:117" + if test x"-e '/ERROR: INVALID_NAME:/d' -e '/ERROR: NAME_CONFLICT:/d'" != x"ignore"; then + printf "%s\n" "policy.at:107" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_NAME:/d' -e '/ERROR: NAME_CONFLICT:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:107" fi @@ -299304,13 +312223,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_308 -#AT_START_309 -at_fn_group_banner 309 'service_include.at:1' \ - "service include" " " 11 +#AT_STOP_331 +#AT_START_332 +at_fn_group_banner 332 'policy.at:109' \ + "policy - list" " " 11 at_xfail=no ( - $as_echo "309. $at_setup_line: testing $at_desc ..." + printf "%s\n" "332. $at_setup_line: testing $at_desc ..." $at_traceon @@ -299328,6 +312247,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -299344,29 +312264,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/service_include.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:1" +printf "%s\n" "$at_srcdir/policy.at:109: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:109" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:109" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/service_include.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "service_include.at:1" +printf "%s\n" "$at_srcdir/policy.at:109: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:109" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:109" $at_failed && at_fn_log_failure $at_traceon; } @@ -299374,15 +312294,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "service_include.at:1" +printf "%s\n" "$at_srcdir/policy.at:109: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:109" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:109" $at_failed && at_fn_log_failure $at_traceon; } @@ -299424,15 +312344,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/service_include.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:1" +printf "%s\n" "$at_srcdir/policy.at:109: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:109" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:109" $at_failed && at_fn_log_failure $at_traceon; } @@ -299440,9 +312360,9 @@ $at_traceon; } - $as_echo "service_include.at:1" >"$at_check_line_file" + printf "%s\n" "policy.at:109" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/service_include.at:1" + && at_fn_check_skip 77 "$at_srcdir/policy.at:109" @@ -299523,8 +312443,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "service_include.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/service_include.at:1" + printf "%s\n" "policy.at:109" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:109" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -299534,7 +312454,7 @@ at_fn_check_skip 99 "$at_srcdir/service_include.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -299542,8 +312462,8 @@ at_fn_check_skip 99 "$at_srcdir/service_include.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "service_include.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/service_include.at:1" + printf "%s\n" "policy.at:109" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:109" fi echo "$!" > firewalld.pid @@ -299559,350 +312479,9 @@ at_fn_check_skip 99 "$at_srcdir/service_include.at:1" fi sleep 1 done - $as_echo "service_include.at:1" >"$at_check_line_file" + printf "%s\n" "policy.at:109" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/service_include.at:1" - - - - - -{ set +x -$as_echo "$at_srcdir/service_include.at:4: mkdir -p ./services" -at_fn_check_prepare_trace "service_include.at:4" -( $at_check_trace; mkdir -p ./services -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - -{ set +x -$as_echo "$at_srcdir/service_include.at:5: cat < ./services/my-service-with-include.xml - - - my-service-with-include - This service includes other services - - - - - -HERE -" -at_fn_check_prepare_notrace 'an embedded newline' "service_include.at:5" -( $at_check_trace; cat < ./services/my-service-with-include.xml - - - my-service-with-include - This service includes other services - - - - - -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:5" -$at_failed && at_fn_log_failure -$at_traceon; } - -{ set +x -$as_echo "$at_srcdir/service_include.at:17: cat < ./services/recursive-service.xml - - - recursive-service - Include a service that included us - - -HERE -" -at_fn_check_prepare_notrace 'an embedded newline' "service_include.at:17" -( $at_check_trace; cat < ./services/recursive-service.xml - - - recursive-service - Include a service that included us - - -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:17" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:26" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:26" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --add-interface=foobar0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:28" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-service=my-service-with-include " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --add-service=my-service-with-include -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:29" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --list-services " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:30" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=drop --list-services -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "my-service-with-include -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:30" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --add-service=recursive-service " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --add-service=recursive-service -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:35" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --zone=drop --remove-service=recursive-service " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:36" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --zone=drop --remove-service=recursive-service -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:36" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --add-rich-rule='rule service name=recursive-service log' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:37" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=drop --add-rich-rule='rule service name=recursive-service log' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:37" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=drop --list-rich-rules " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=drop --list-rich-rules -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "rule service name=\"recursive-service\" log -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:38" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_drop_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:64" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_drop_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 17 -- 0.0.0.0/0 239.255.255.250 udp dpt:1900 -ACCEPT 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:12345 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:64" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/service_include.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_drop_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:69" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_drop_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 17 -- ::/0 ff02::c udp dpt:1900 -ACCEPT 17 -- ::/0 ff02::fb udp dpt:5353 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:12345 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:69" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - - + && at_fn_check_skip 99 "$at_srcdir/policy.at:109" @@ -299912,25 +312491,33 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_drop_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:74" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_drop_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-policy allow-host-ipv6 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-policy allow-host-ipv6 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 17 -- 0.0.0.0/0 239.255.255.250 udp dpt:1900 LOG flags 0 level 4 -LOG 17 -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 LOG flags 0 level 4 -LOG 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:12345 LOG flags 0 level 4 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 (active) +priority: -15000 +target: CONTINUE +ingress-zones: ANY +egress-zones: HOST +services: +ports: +protocols: +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept +rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept +rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:74" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:112" $at_failed && at_fn_log_failure $at_traceon; } @@ -299940,185 +312527,72 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/service_include.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_drop_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:79" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_drop_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-policy allow-host-ipv6 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-policy allow-host-ipv6 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 17 -- ::/0 ff02::c udp dpt:1900 LOG flags 0 level 4 -LOG 17 -- ::/0 ff02::fb udp dpt:5353 LOG flags 0 level 4 -LOG 6 -- ::/0 ::/0 tcp dpt:12345 LOG flags 0 level 4 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 +priority: -15000 +target: CONTINUE +ingress-zones: ANY +egress-zones: HOST +services: +ports: +protocols: +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept +rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept +rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:79" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - - - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=recursive-service " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:86" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=recursive-service -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:86" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --add-include=ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:87" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --add-include=ssh -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:87" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:88" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:88" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - -{ set +x -$as_echo "$at_srcdir/service_include.at:89: grep '' ./services/my-service-with-include.xml " -at_fn_check_prepare_trace "service_include.at:89" -( $at_check_trace; grep '' ./services/my-service-with-include.xml -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:89" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --remove-include=ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:90" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=my-service-with-include --remove-include=ssh -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:90" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:91" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --query-include=ssh -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/service_include.at:91" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:131" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/service_include.at:92: grep '' ./services/my-service-with-include.xml " -at_fn_check_prepare_trace "service_include.at:92" -( $at_check_trace; grep '' ./services/my-service-with-include.xml -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/service_include.at:92" -$at_failed && at_fn_log_failure -$at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --get-includes " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:93" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --get-includes +printf "%s\n" "$at_srcdir/policy.at:151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:151" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "mdns recursive-service ssdp +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 (active) +priority: -15000 +target: CONTINUE +ingress-zones: ANY +egress-zones: HOST +services: +ports: +protocols: +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept +rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept +rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:93" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:151" $at_failed && at_fn_log_failure $at_traceon; } @@ -300129,24 +312603,33 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/service_include.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:96" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-service=my-service-with-include | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:170" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "my-service-with-include -ports: 12345/tcp +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 +priority: -15000 +target: CONTINUE +ingress-zones: ANY +egress-zones: HOST +services: +ports: protocols: +masquerade: no +forward-ports: source-ports: -modules: -destination: -includes: mdns recursive-service ssdp -helpers: +icmp-blocks: +rich rules: +rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept +rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept +rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:96" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:170" $at_failed && at_fn_log_failure $at_traceon; } @@ -300156,223 +312639,72 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/service_include.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:106" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-service=my-service-with-include | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:190" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "my-service-with-include -ports: 12345/tcp +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 (active) +priority: -15000 +target: CONTINUE +ingress-zones: ANY +egress-zones: HOST +services: +ports: protocols: +masquerade: no +forward-ports: source-ports: -modules: -destination: -includes: mdns recursive-service ssdp -helpers: +icmp-blocks: +rich rules: +rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept +rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept +rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:106" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/service_include.at:118: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service" "service_include.at:118" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=recursive-service -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:118" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/service_include.at:119: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh" "service_include.at:119" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --add-include=ssh -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:119" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/service_include.at:120: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" "service_include.at:120" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:120" -$at_failed && at_fn_log_failure -$at_traceon; } - - -{ set +x -$as_echo "$at_srcdir/service_include.at:121: grep '' ./services/my-service-with-include.xml " -at_fn_check_prepare_trace "service_include.at:121" -( $at_check_trace; grep '' ./services/my-service-with-include.xml -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:121" -$at_failed && at_fn_log_failure -$at_traceon; } - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/service_include.at:122: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh" "service_include.at:122" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS -q --service=my-service-with-include --remove-include=ssh -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:122" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/service_include.at:123: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh" "service_include.at:123" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --query-include=ssh -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/service_include.at:123" -$at_failed && at_fn_log_failure -$at_traceon; } - - -{ set +x -$as_echo "$at_srcdir/service_include.at:124: grep '' ./services/my-service-with-include.xml " -at_fn_check_prepare_trace "service_include.at:124" -( $at_check_trace; grep '' ./services/my-service-with-include.xml -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/service_include.at:124" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:190" $at_failed && at_fn_log_failure $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - { set +x -$as_echo "$at_srcdir/service_include.at:125: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes" "service_include.at:125" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --get-includes -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "mdns recursive-service ssdp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:125" -$at_failed && at_fn_log_failure -$at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi { set +x -$as_echo "$at_srcdir/service_include.at:128: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; }" -at_fn_check_prepare_notrace 'a $(...) command substitution' "service_include.at:128" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --info-service=my-service-with-include | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:209: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:209" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "my-service-with-include -ports: 12345/tcp +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 +priority: -15000 +target: CONTINUE +ingress-zones: ANY +egress-zones: HOST +services: +ports: protocols: +masquerade: no +forward-ports: source-ports: -modules: -destination: -includes: mdns recursive-service ssdp -helpers: +icmp-blocks: +rich rules: +rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept +rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept +rule family=\"ipv6\" icmp-type name=\"redirect\" accept +rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/service_include.at:128" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/service_include.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --add-include=does-not-exist " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "service_include.at:140" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service=my-service-with-include --add-include=does-not-exist -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/service_include.at:140" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:209" $at_failed && at_fn_log_failure $at_traceon; } @@ -300380,32 +312712,12 @@ $at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - { set +x -$as_echo "$at_srcdir/service_include.at:141: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist" "service_include.at:141" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --service=my-service-with-include --add-include=does-not-exist -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/service_include.at:141" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - if test x"-e '/ERROR: INVALID_SERVICE:/d'" != x"ignore"; then - $as_echo "service_include.at:143" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/service_include.at:143" + if test x"" != x"ignore"; then + printf "%s\n" "policy.at:229" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:229" fi @@ -300414,13 +312726,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_309 -#AT_START_310 -at_fn_group_banner 310 'helpers_custom.at:1' \ - "customer helpers" " " 11 +#AT_STOP_332 +#AT_START_333 +at_fn_group_banner 333 'policy.at:231' \ + "policy - options" " " 11 at_xfail=no ( - $as_echo "310. $at_setup_line: testing $at_desc ..." + printf "%s\n" "333. $at_setup_line: testing $at_desc ..." $at_traceon @@ -300438,6 +312750,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -300454,29 +312767,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:1" +printf "%s\n" "$at_srcdir/policy.at:231: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:231" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:231" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "helpers_custom.at:1" +printf "%s\n" "$at_srcdir/policy.at:231: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:231" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:231" $at_failed && at_fn_log_failure $at_traceon; } @@ -300484,15 +312797,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "helpers_custom.at:1" +printf "%s\n" "$at_srcdir/policy.at:231: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:231" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:231" $at_failed && at_fn_log_failure $at_traceon; } @@ -300534,15 +312847,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/helpers_custom.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:1" +printf "%s\n" "$at_srcdir/policy.at:231: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:231" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:231" $at_failed && at_fn_log_failure $at_traceon; } @@ -300550,9 +312863,9 @@ $at_traceon; } - $as_echo "helpers_custom.at:1" >"$at_check_line_file" + printf "%s\n" "policy.at:231" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/helpers_custom.at:1" + && at_fn_check_skip 77 "$at_srcdir/policy.at:231" @@ -300633,8 +312946,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "helpers_custom.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" + printf "%s\n" "policy.at:231" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:231" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -300644,7 +312957,7 @@ at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -300652,8 +312965,8 @@ at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "helpers_custom.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" + printf "%s\n" "policy.at:231" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:231" fi echo "$!" > firewalld.pid @@ -300669,106 +312982,10 @@ at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" fi sleep 1 done - $as_echo "helpers_custom.at:1" >"$at_check_line_file" + printf "%s\n" "policy.at:231" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:1" - - - - - - - - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-helper=\"ftptest\" --module=\"nf_conntrack_ftp\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-helper="ftptest" --module="nf_conntrack_ftp" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --helper=ftptest --add-port=\"2121/tcp\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --helper=ftptest --add-port="2121/tcp" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:5" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --new-service=\"ftptest\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --new-service="ftptest" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:7" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module=\"ftptest\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module="ftptest" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - + && at_fn_check_skip 99 "$at_srcdir/policy.at:231" - { set +x -$as_echo "$at_srcdir/helpers_custom.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module=\"ftptest\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module="ftptest" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -300777,15 +312994,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port=\"2121/tcp\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port="2121/tcp" +printf "%s\n" "$at_srcdir/policy.at:235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:235" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:10" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:235" $at_failed && at_fn_log_failure $at_traceon; } @@ -300796,24 +313013,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:236" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftptest -ports: 2121/tcp -protocols: -source-ports: -modules: ftptest -destination: -includes: -helpers: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:11" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:236" $at_failed && at_fn_log_failure $at_traceon; } @@ -300825,34 +313033,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:21" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:239" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:21" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:239" $at_failed && at_fn_log_failure $at_traceon; } @@ -300862,26 +313051,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/helpers_custom.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:240" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftptest -ports: 2121/tcp -protocols: -source-ports: -modules: ftptest -destination: -includes: -helpers: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:22" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:240" $at_failed && at_fn_log_failure $at_traceon; } @@ -300891,17 +313070,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/helpers_custom.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=ftptest +printf "%s\n" "$at_srcdir/policy.at:241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:241" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:33" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:241" $at_failed && at_fn_log_failure $at_traceon; } @@ -300911,30 +313089,16 @@ $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:45" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:242" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 CT helper ftp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:45" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:242" $at_failed && at_fn_log_failure $at_traceon; } @@ -300944,29 +313108,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:48" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:243" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:48" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:243" $at_failed && at_fn_log_failure $at_traceon; } @@ -300976,103 +313127,93 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:244" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-interface foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:244" +$at_failed && at_fn_log_failure +$at_traceon; } + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/helpers_custom.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-interfaces " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:245" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-interfaces ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "CT 6 -- ::/0 ::/0 tcp dpt:2121 CT helper ftp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:52" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:245" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-interfaces " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:246" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-interfaces +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:246" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/helpers_custom.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:249" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:2121 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:55" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:249" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-module=\"ftptest\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:62" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-module="ftptest" +printf "%s\n" "$at_srcdir/policy.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:250" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:62" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:250" $at_failed && at_fn_log_failure $at_traceon; } @@ -301083,15 +313224,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module=\"ftptest\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:63" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --query-module="ftptest" +printf "%s\n" "$at_srcdir/policy.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:251" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 1 $at_status "$at_srcdir/helpers_custom.at:63" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:251" $at_failed && at_fn_log_failure $at_traceon; } @@ -301102,15 +313243,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper=\"ftptest\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:64" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper="ftptest" +printf "%s\n" "$at_srcdir/policy.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:252" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:64" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:252" $at_failed && at_fn_log_failure $at_traceon; } @@ -301121,24 +313262,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:65" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:253" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftptest -ports: 2121/tcp -protocols: -source-ports: -modules: -destination: -includes: -helpers: ftptest -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:65" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:253" $at_failed && at_fn_log_failure $at_traceon; } @@ -301148,17 +313280,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/helpers_custom.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:75" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/policy.at:254: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:254" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:75" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:254" $at_failed && at_fn_log_failure $at_traceon; } @@ -301169,15 +313300,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:75" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:255" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:75" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:255" $at_failed && at_fn_log_failure $at_traceon; } @@ -301187,26 +313318,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/helpers_custom.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:76" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-service=ftptest | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-sources " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:256" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-sources ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ftptest -ports: 2121/tcp -protocols: -source-ports: -modules: -destination: -includes: -helpers: ftptest -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:76" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:256" $at_failed && at_fn_log_failure $at_traceon; } @@ -301218,15 +313339,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:87" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=ftptest +printf "%s\n" "$at_srcdir/policy.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:259" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:87" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:259" $at_failed && at_fn_log_failure $at_traceon; } @@ -301236,30 +313357,16 @@ $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:99" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:260" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 CT helper ftp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:99" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:260" $at_failed && at_fn_log_failure $at_traceon; } @@ -301269,29 +313376,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:102" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:261" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:102" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:261" $at_failed && at_fn_log_failure $at_traceon; } @@ -301301,87 +313395,96 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:262" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-forward +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:262" +$at_failed && at_fn_log_failure +$at_traceon; } + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/helpers_custom.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:106" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:263" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-forward ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "CT 6 -- ::/0 ::/0 tcp dpt:2121 CT helper ftp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:106" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:263" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-forward " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:264" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-forward +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:264" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/helpers_custom.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:109" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:267" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:2121 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:109" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:267" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:268: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:268" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-egress-zone public +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:268" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -301389,15 +313492,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module=\"ftptest\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:116" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-module="ftptest" +printf "%s\n" "$at_srcdir/policy.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:269" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:116" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:269" $at_failed && at_fn_log_failure $at_traceon; } @@ -301408,15 +313511,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-helper=\"ftptest\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:117" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --remove-helper="ftptest" +printf "%s\n" "$at_srcdir/policy.at:270: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-egress-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:270" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-egress-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:117" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:270" $at_failed && at_fn_log_failure $at_traceon; } @@ -301427,15 +313530,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper=\"ftp\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:118" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-helper="ftp" +printf "%s\n" "$at_srcdir/policy.at:271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:271" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:118" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:271" $at_failed && at_fn_log_failure $at_traceon; } @@ -301446,15 +313549,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port=\"21/tcp\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:119" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --permanent --service=ftptest --add-port="21/tcp" +printf "%s\n" "$at_srcdir/policy.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:272" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:119" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:272" $at_failed && at_fn_log_failure $at_traceon; } @@ -301464,17 +313567,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/helpers_custom.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:120" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/policy.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:273" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:120" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:273" $at_failed && at_fn_log_failure $at_traceon; } @@ -301485,15 +313587,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:120" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-egress-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:274" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-egress-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:120" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:274" $at_failed && at_fn_log_failure $at_traceon; } @@ -301503,18 +313605,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --add-service=ftptest " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "helpers_custom.at:122" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --add-service=ftptest +printf "%s\n" "$at_srcdir/policy.at:275: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-ingress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:275" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:122" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:275" $at_failed && at_fn_log_failure $at_traceon; } @@ -301524,6 +313624,19 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-ingress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:276" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-ingress-zone public +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:276" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -301531,24 +313644,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/helpers_custom.at:136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:136" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-ingress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:277" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 CT helper ftp -CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 CT helper ftp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:136" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:277" $at_failed && at_fn_log_failure $at_traceon; } @@ -301558,30 +313662,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/helpers_custom.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:140" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ingress-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:278" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ingress-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2121 -ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:140" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:278" $at_failed && at_fn_log_failure $at_traceon; } @@ -301591,98 +313681,86 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-ingress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:279" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-ingress-zone public +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:279" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/helpers_custom.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:145" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/policy.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-ingress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:280" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "CT 6 -- ::/0 ::/0 tcp dpt:21 CT helper ftp -CT 6 -- ::/0 ::/0 tcp dpt:2121 CT helper ftp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:145" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:280" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/policy.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-ingress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:281" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-ingress-zone public +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:281" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/helpers_custom.at:149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "helpers_custom.at:149" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ingress-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:282" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ingress-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 -ACCEPT 17 -- ::/0 fe80::/64 udp dpt:546 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:2121 -ACCEPT 6 -- ::/0 ::/0 tcp dpt:21 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/helpers_custom.at:149" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/policy.at:282" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - if test x"" != x"ignore"; then - $as_echo "helpers_custom.at:156" >"$at_check_line_file" + printf "%s\n" "policy.at:284" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/helpers_custom.at:156" + && at_fn_check_skip 99 "$at_srcdir/policy.at:284" fi @@ -301691,13 +313769,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_310 -#AT_START_311 -at_fn_group_banner 311 'policy.at:5' \ - "policy - xml" " " 11 +#AT_STOP_333 +#AT_START_334 +at_fn_group_banner 334 'policy.at:286' \ + "policy - priority" " " 11 at_xfail=no ( - $as_echo "311. $at_setup_line: testing $at_desc ..." + printf "%s\n" "334. $at_setup_line: testing $at_desc ..." $at_traceon @@ -301715,6 +313793,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -301731,29 +313810,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5" +printf "%s\n" "$at_srcdir/policy.at:286: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:286" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:286" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:5" +printf "%s\n" "$at_srcdir/policy.at:286: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:286" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:286" $at_failed && at_fn_log_failure $at_traceon; } @@ -301761,15 +313840,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:5" +printf "%s\n" "$at_srcdir/policy.at:286: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:286" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:286" $at_failed && at_fn_log_failure $at_traceon; } @@ -301811,15 +313890,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:5: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5" +printf "%s\n" "$at_srcdir/policy.at:286: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:286" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:286" $at_failed && at_fn_log_failure $at_traceon; } @@ -301827,9 +313906,9 @@ $at_traceon; } - $as_echo "policy.at:5" >"$at_check_line_file" + printf "%s\n" "policy.at:286" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:5" + && at_fn_check_skip 77 "$at_srcdir/policy.at:286" @@ -301910,8 +313989,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:5" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:5" + printf "%s\n" "policy.at:286" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:286" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -301921,7 +314000,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:5" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -301929,8 +314008,8 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:5" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:5" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:5" + printf "%s\n" "policy.at:286" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:286" fi echo "$!" > firewalld.pid @@ -301946,101 +314025,47 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:5" fi sleep 1 done - $as_echo "policy.at:5" >"$at_check_line_file" + printf "%s\n" "policy.at:286" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:5" + && at_fn_check_skip 99 "$at_srcdir/policy.at:286" -{ set +x -$as_echo "$at_srcdir/policy.at:8: mkdir -p ./policies" -at_fn_check_prepare_trace "policy.at:8" -( $at_check_trace; mkdir -p ./policies + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:289" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:8" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:289" $at_failed && at_fn_log_failure $at_traceon; } -cat >./policies/foobar.xml <<'_ATEOF' - - -foobar -foobar policy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF + + { set +x -$as_echo "$at_srcdir/policy.at:70: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:70" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/policy.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:292" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:70" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:292" $at_failed && at_fn_log_failure $at_traceon; } @@ -302050,17 +314075,95 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:293: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:293" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-ingress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:293" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:71" +printf "%s\n" "$at_srcdir/policy.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:294" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-egress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:294" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:295" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:295" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --get-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:296" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --get-priority +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "-1 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:296" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:299" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:299" $at_failed && at_fn_log_failure $at_traceon; } @@ -302071,15 +314174,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:71" +printf "%s\n" "$at_srcdir/policy.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:299" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:299" $at_failed && at_fn_log_failure $at_traceon; } @@ -302090,26 +314193,38 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "policy.at:73" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:73" - fi - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_311 -#AT_START_312 -at_fn_group_banner 312 'policy.at:79' \ - "policy - create" " " 11 -at_xfail=no -( - $as_echo "312. $at_setup_line: testing $at_desc ..." - $at_traceon + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:314: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:314" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:314" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -302119,118 +314234,328 @@ at_xfail=no - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:324" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_worldToHost 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_worldToHost 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:324" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/policy.at:79: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:79" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:336: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:336" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:336" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:337" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:79" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:337" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:337" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:337" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:352" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:352" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:362" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +IN_worldToHost 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +IN_worldToHost 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:362" $at_failed && at_fn_log_failure $at_traceon; } + + else - { set +x -$as_echo "$at_srcdir/policy.at:79: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:79" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + : + + fi + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy first " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:374" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy first +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:374" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:375" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy first --add-ingress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:375" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:376" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy first --add-egress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:376" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy second " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:377" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy second ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:79" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:377" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/policy.at:79: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:79" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:378" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy second --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:79" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:378" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:379" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy second --add-egress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:379" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/policy.at:79: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:79" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/policy.at:380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy third " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:380" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy third ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:79" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:380" $at_failed && at_fn_log_failure $at_traceon; } @@ -302238,129 +314563,77 @@ $at_traceon; } - $as_echo "policy.at:79" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:79" + { set +x +printf "%s\n" "$at_srcdir/policy.at:381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:381" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy third --add-ingress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:381" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/policy.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:382" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy third --add-egress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:382" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "policy.at:79" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:79" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/policy.at:383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fourth " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:383" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy fourth +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:383" +$at_failed && at_fn_log_failure +$at_traceon; } + - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "policy.at:79" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:79" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "policy.at:79" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:79" + { set +x +printf "%s\n" "$at_srcdir/policy.at:384: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:384" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fourth --add-ingress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:384" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -302369,15 +314642,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:79" { set +x -$as_echo "$at_srcdir/policy.at:83: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:83" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost +printf "%s\n" "$at_srcdir/policy.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:385" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fourth --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:83" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:385" $at_failed && at_fn_log_failure $at_traceon; } @@ -302388,15 +314661,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy hostToWorld " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:84" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy hostToWorld +printf "%s\n" "$at_srcdir/policy.at:386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fifth " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:386" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy fifth ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:84" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:386" $at_failed && at_fn_log_failure $at_traceon; } @@ -302407,15 +314680,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy zoneToZone " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:85" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy zoneToZone +printf "%s\n" "$at_srcdir/policy.at:387: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:387" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fifth --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:85" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:387" $at_failed && at_fn_log_failure $at_traceon; } @@ -302426,17 +314699,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:86" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-policies +printf "%s\n" "$at_srcdir/policy.at:388: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:388" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fifth --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 hostToWorld worldToHost zoneToZone -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:86" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:388" $at_failed && at_fn_log_failure $at_traceon; } @@ -302446,17 +314717,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:89" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/policy.at:390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --set-priority -100 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:390" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fourth --set-priority -100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:89" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:390" $at_failed && at_fn_log_failure $at_traceon; } @@ -302467,15 +314737,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:89" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --set-priority -5000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:391" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy second --set-priority -5000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:89" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:391" $at_failed && at_fn_log_failure $at_traceon; } @@ -302485,19 +314755,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:90" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-policies +printf "%s\n" "$at_srcdir/policy.at:392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --set-priority -10000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:392" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy first --set-priority -10000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 hostToWorld worldToHost zoneToZone -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:90" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:392" $at_failed && at_fn_log_failure $at_traceon; } @@ -302507,147 +314774,124 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "policy.at:94" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:94" - fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --set-priority -1000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:393" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy third --set-priority -1000 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:393" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_312 -#AT_START_313 -at_fn_group_banner 313 'policy.at:96' \ - "policy - name" " " 11 -at_xfail=no -( - $as_echo "313. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/policy.at:394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --set-priority -10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:394" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fifth --set-priority -10 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:394" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/policy.at:96: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:96" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:395" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:96" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:395" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/policy.at:96: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:96" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:96" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/policy.at:96: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:96" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:395" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:96" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:395" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + { set +x +printf "%s\n" "$at_srcdir/policy.at:420: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:420" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/policy.at:96: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:96" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:96" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_first 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_second 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_third 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_fourth 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_fifth 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_first 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_second 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_third 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_fourth 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_fifth 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:420" $at_failed && at_fn_log_failure $at_traceon; } @@ -302655,130 +314899,81 @@ $at_traceon; } - $as_echo "policy.at:96" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:96" - - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + if $IP6TABLES -L >/dev/null 2>&1; then + : - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/policy.at:440: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:440" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - - - - - -_ATEOF +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_first 0 -- ::/0 ::/0 +IN_second 0 -- ::/0 ::/0 +IN_third 0 -- ::/0 ::/0 +IN_fourth 0 -- ::/0 ::/0 +IN_fifth 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +IN_worldToHost 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_first 0 -- ::/0 ::/0 +IN_second 0 -- ::/0 ::/0 +IN_third 0 -- ::/0 ::/0 +IN_fourth 0 -- ::/0 ::/0 +IN_fifth 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +IN_worldToHost 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:440" +$at_failed && at_fn_log_failure +$at_traceon; } - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "policy.at:96" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:96" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + else + : + fi - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "policy.at:96" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:96" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "policy.at:96" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:96" + { set +x +printf "%s\n" "$at_srcdir/policy.at:462: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:462" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/policy.at:462" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -302786,15 +314981,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:96" { set +x -$as_echo "$at_srcdir/policy.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy 123456789012345678 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:100" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy 123456789012345678 +printf "%s\n" "$at_srcdir/policy.at:463: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32769 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:463" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32769 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:100" +at_fn_check_status 139 $at_status "$at_srcdir/policy.at:463" $at_failed && at_fn_log_failure $at_traceon; } @@ -302805,15 +315000,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy 1234567890123456789 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:101" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy 1234567890123456789 +printf "%s\n" "$at_srcdir/policy.at:464: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:464" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 116 $at_status "$at_srcdir/policy.at:101" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:464" $at_failed && at_fn_log_failure $at_traceon; } @@ -302823,17 +315018,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:104" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy public +printf "%s\n" "$at_srcdir/policy.at:465: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:465" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32768 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 26 $at_status "$at_srcdir/policy.at:104" +at_fn_check_status 139 $at_status "$at_srcdir/policy.at:465" $at_failed && at_fn_log_failure $at_traceon; } @@ -302844,15 +315038,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone allow-host-ipv6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:105" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone allow-host-ipv6 +printf "%s\n" "$at_srcdir/policy.at:466: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32767 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:466" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32767 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 26 $at_status "$at_srcdir/policy.at:105" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:466" $at_failed && at_fn_log_failure $at_traceon; } @@ -302862,10 +315056,10 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_NAME:/d' -e '/ERROR: NAME_CONFLICT:/d'" != x"ignore"; then - $as_echo "policy.at:107" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_NAME:/d' -e '/ERROR: NAME_CONFLICT:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:107" + if test x"-e '/ERROR: INVALID_PRIORITY/d'" != x"ignore"; then + printf "%s\n" "policy.at:468" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_PRIORITY/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:468" fi @@ -302874,13 +315068,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_313 -#AT_START_314 -at_fn_group_banner 314 'policy.at:109' \ - "policy - list" " " 11 +#AT_STOP_334 +#AT_START_335 +at_fn_group_banner 335 'policy.at:470' \ + "policy - zones" " " 11 at_xfail=no ( - $as_echo "314. $at_setup_line: testing $at_desc ..." + printf "%s\n" "335. $at_setup_line: testing $at_desc ..." $at_traceon @@ -302898,6 +315092,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -302914,29 +315109,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:109: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:109" +printf "%s\n" "$at_srcdir/policy.at:470: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:470" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:109" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:470" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:109: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:109" +printf "%s\n" "$at_srcdir/policy.at:470: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:470" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:109" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:470" $at_failed && at_fn_log_failure $at_traceon; } @@ -302944,15 +315139,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:109: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:109" +printf "%s\n" "$at_srcdir/policy.at:470: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:470" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:109" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:470" $at_failed && at_fn_log_failure $at_traceon; } @@ -302994,15 +315189,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:109: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:109" +printf "%s\n" "$at_srcdir/policy.at:470: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:470" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:109" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:470" $at_failed && at_fn_log_failure $at_traceon; } @@ -303010,9 +315205,9 @@ $at_traceon; } - $as_echo "policy.at:109" >"$at_check_line_file" + printf "%s\n" "policy.at:470" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:109" + && at_fn_check_skip 77 "$at_srcdir/policy.at:470" @@ -303093,8 +315288,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:109" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:109" + printf "%s\n" "policy.at:470" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:470" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -303104,7 +315299,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:109" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -303112,8 +315307,8 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:109" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:109" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:109" + printf "%s\n" "policy.at:470" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:470" fi echo "$!" > firewalld.pid @@ -303129,9 +315324,9 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:109" fi sleep 1 done - $as_echo "policy.at:109" >"$at_check_line_file" + printf "%s\n" "policy.at:470" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:109" + && at_fn_check_skip 99 "$at_srcdir/policy.at:470" @@ -303141,33 +315336,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:109" { set +x -$as_echo "$at_srcdir/policy.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-policy allow-host-ipv6 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:112" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-policy allow-host-ipv6 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:473: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:473" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 (active) -priority: -15000 -target: CONTINUE -ingress-zones: ANY -egress-zones: HOST -services: -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"redirect\" accept -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:112" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:473" $at_failed && at_fn_log_failure $at_traceon; } @@ -303178,33 +315355,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-policy allow-host-ipv6 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:131" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-policy allow-host-ipv6 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:474" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 -priority: -15000 -target: CONTINUE -ingress-zones: ANY -egress-zones: HOST -services: -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"redirect\" accept -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:131" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:474" $at_failed && at_fn_log_failure $at_traceon; } @@ -303216,33 +315375,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:151" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:476: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:476" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 (active) -priority: -15000 -target: CONTINUE -ingress-zones: ANY -egress-zones: HOST -services: -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"redirect\" accept -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:151" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:476" $at_failed && at_fn_log_failure $at_traceon; } @@ -303253,33 +315394,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:170" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-all-policies | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:477: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:477" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 -priority: -15000 -target: CONTINUE -ingress-zones: ANY -egress-zones: HOST -services: -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"redirect\" accept -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:170" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:477" $at_failed && at_fn_log_failure $at_traceon; } @@ -303291,33 +315414,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:190" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:478: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:478" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 (active) -priority: -15000 -target: CONTINUE -ingress-zones: ANY -egress-zones: HOST -services: -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"redirect\" accept -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:190" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:478" $at_failed && at_fn_log_failure $at_traceon; } @@ -303328,33 +315433,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:209: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:209" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/policy.at:478: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:478" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 -priority: -15000 -target: CONTINUE -ingress-zones: ANY -egress-zones: HOST -services: -ports: -protocols: -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -rule family=\"ipv6\" icmp-type name=\"neighbour-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"neighbour-solicitation\" accept -rule family=\"ipv6\" icmp-type name=\"router-advertisement\" accept -rule family=\"ipv6\" icmp-type name=\"redirect\" accept -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:209" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:478" $at_failed && at_fn_log_failure $at_traceon; } @@ -303364,147 +315451,189 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "policy.at:229" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:229" - fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:481: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:481" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:481" +$at_failed && at_fn_log_failure +$at_traceon; } + - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_314 -#AT_START_315 -at_fn_group_banner 315 'policy.at:231' \ - "policy - options" " " 11 -at_xfail=no -( - $as_echo "315. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/policy.at:482: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:482" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="HOST" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:482" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/policy.at:231: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:231" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:483: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:483" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:483" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:484: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:484" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:484" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:485: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:485" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:231" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:485" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/policy.at:231: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:231" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:486: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:486" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:231" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:486" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/policy.at:231: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:231" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:487: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:487" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:231" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:487" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:488: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:488" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:488" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/policy.at:231: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:231" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/policy.at:489: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:489" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:489" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:490: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:490" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:231" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:490" $at_failed && at_fn_log_failure $at_traceon; } @@ -303512,129 +315641,96 @@ $at_traceon; } - $as_echo "policy.at:231" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:231" + { set +x +printf "%s\n" "$at_srcdir/policy.at:491: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:491" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:491" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:492: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:492" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:492" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/policy.at:493: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:493" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="internal" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:493" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "policy.at:231" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:231" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/policy.at:494: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:494" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="internal" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:494" +$at_failed && at_fn_log_failure +$at_traceon; } + - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "policy.at:231" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:231" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "policy.at:231" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:231" + { set +x +printf "%s\n" "$at_srcdir/policy.at:495: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:495" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:495" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -303643,15 +315739,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:231" { set +x -$as_echo "$at_srcdir/policy.at:235: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:235" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --zone public +printf "%s\n" "$at_srcdir/policy.at:496: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:496" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:235" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:496" $at_failed && at_fn_log_failure $at_traceon; } @@ -303662,15 +315758,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:236" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --zone public +printf "%s\n" "$at_srcdir/policy.at:497: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:497" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:236" +at_fn_check_status 1 $at_status "$at_srcdir/policy.at:497" $at_failed && at_fn_log_failure $at_traceon; } @@ -303680,17 +315776,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:239: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:239" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-interface foobar0 +printf "%s\n" "$at_srcdir/policy.at:498: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:498" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:239" +at_fn_check_status 1 $at_status "$at_srcdir/policy.at:498" $at_failed && at_fn_log_failure $at_traceon; } @@ -303701,15 +315796,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:240" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-interface foobar0 +printf "%s\n" "$at_srcdir/policy.at:499: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:499" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:240" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:499" $at_failed && at_fn_log_failure $at_traceon; } @@ -303720,15 +315815,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:241" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-interface foobar0 +printf "%s\n" "$at_srcdir/policy.at:500: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:500" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:241" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:500" $at_failed && at_fn_log_failure $at_traceon; } @@ -303739,15 +315834,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:242" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-interface foobar0 +printf "%s\n" "$at_srcdir/policy.at:501: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:501" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:242" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:501" $at_failed && at_fn_log_failure $at_traceon; } @@ -303758,15 +315853,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:243" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-interface foobar0 +printf "%s\n" "$at_srcdir/policy.at:502: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:502" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:243" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:502" $at_failed && at_fn_log_failure $at_traceon; } @@ -303777,15 +315872,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:244" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-interface foobar0 +printf "%s\n" "$at_srcdir/policy.at:503: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:503" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:244" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:503" $at_failed && at_fn_log_failure $at_traceon; } @@ -303796,15 +315891,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-interfaces " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:245" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-interfaces +printf "%s\n" "$at_srcdir/policy.at:504: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:504" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:245" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:504" $at_failed && at_fn_log_failure $at_traceon; } @@ -303815,15 +315910,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-interfaces " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:246" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-interfaces +printf "%s\n" "$at_srcdir/policy.at:505: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:505" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:246" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:505" $at_failed && at_fn_log_failure $at_traceon; } @@ -303833,17 +315928,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:249" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/policy.at:506: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:506" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:249" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:506" $at_failed && at_fn_log_failure $at_traceon; } @@ -303854,15 +315948,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:250" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/policy.at:507: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:507" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:250" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:507" $at_failed && at_fn_log_failure $at_traceon; } @@ -303873,15 +315967,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:251" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/policy.at:508: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:508" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:251" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:508" $at_failed && at_fn_log_failure $at_traceon; } @@ -303892,15 +315986,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:252" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/policy.at:509: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:509" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:252" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:509" $at_failed && at_fn_log_failure $at_traceon; } @@ -303911,15 +316005,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:253" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/policy.at:510: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:510" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:253" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:510" $at_failed && at_fn_log_failure $at_traceon; } @@ -303930,15 +316024,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:254: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:254" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/policy.at:511: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:511" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:254" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:511" $at_failed && at_fn_log_failure $at_traceon; } @@ -303949,15 +316043,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:255" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --list-sources +printf "%s\n" "$at_srcdir/policy.at:512: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:512" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:255" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:512" $at_failed && at_fn_log_failure $at_traceon; } @@ -303968,15 +316062,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-sources " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:256" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --list-sources +printf "%s\n" "$at_srcdir/policy.at:513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:513" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:256" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:513" $at_failed && at_fn_log_failure $at_traceon; } @@ -303986,17 +316080,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:514: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:514" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="internal" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:514" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:259" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --add-forward +printf "%s\n" "$at_srcdir/policy.at:515: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:515" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:259" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:515" $at_failed && at_fn_log_failure $at_traceon; } @@ -304007,15 +316119,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:260" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-forward +printf "%s\n" "$at_srcdir/policy.at:516: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:516" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:260" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:516" $at_failed && at_fn_log_failure $at_traceon; } @@ -304026,15 +316138,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:261" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --remove-forward +printf "%s\n" "$at_srcdir/policy.at:517: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:517" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:261" +at_fn_check_status 1 $at_status "$at_srcdir/policy.at:517" $at_failed && at_fn_log_failure $at_traceon; } @@ -304045,15 +316157,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:262" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --remove-forward +printf "%s\n" "$at_srcdir/policy.at:518: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:518" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:262" +at_fn_check_status 1 $at_status "$at_srcdir/policy.at:518" $at_failed && at_fn_log_failure $at_traceon; } @@ -304064,15 +316176,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:263" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy allow-host-ipv6 --query-forward +printf "%s\n" "$at_srcdir/policy.at:519: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:519" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:263" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:519" $at_failed && at_fn_log_failure $at_traceon; } @@ -304083,15 +316195,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-forward " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:264" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --query-forward +printf "%s\n" "$at_srcdir/policy.at:520: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:520" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:264" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:520" $at_failed && at_fn_log_failure $at_traceon; } @@ -304103,15 +316215,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:267" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-egress-zone public +printf "%s\n" "$at_srcdir/policy.at:523: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:523" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:267" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:523" $at_failed && at_fn_log_failure $at_traceon; } @@ -304122,15 +316234,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:268: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:268" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-egress-zone public +printf "%s\n" "$at_srcdir/policy.at:524: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:524" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:268" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:524" $at_failed && at_fn_log_failure $at_traceon; } @@ -304141,15 +316253,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:269" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-egress-zone public +printf "%s\n" "$at_srcdir/policy.at:525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:525" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:269" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:525" $at_failed && at_fn_log_failure $at_traceon; } @@ -304160,15 +316272,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:270: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-egress-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:270" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-egress-zones +printf "%s\n" "$at_srcdir/policy.at:526: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:526" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:270" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:526" $at_failed && at_fn_log_failure $at_traceon; } @@ -304179,15 +316291,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:271" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-egress-zone public +printf "%s\n" "$at_srcdir/policy.at:527: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:527" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:271" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:527" $at_failed && at_fn_log_failure $at_traceon; } @@ -304198,15 +316310,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:272" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-egress-zone public +printf "%s\n" "$at_srcdir/policy.at:528: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:528" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:272" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:528" $at_failed && at_fn_log_failure $at_traceon; } @@ -304217,15 +316329,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:273" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-egress-zone public +printf "%s\n" "$at_srcdir/policy.at:529: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:529" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:273" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:529" $at_failed && at_fn_log_failure $at_traceon; } @@ -304236,15 +316348,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:274: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-egress-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:274" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-egress-zones +printf "%s\n" "$at_srcdir/policy.at:530: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:530" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:274" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:530" $at_failed && at_fn_log_failure $at_traceon; } @@ -304255,15 +316367,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:275: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-ingress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:275" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-ingress-zone public +printf "%s\n" "$at_srcdir/policy.at:531: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:531" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:275" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:531" $at_failed && at_fn_log_failure $at_traceon; } @@ -304274,15 +316386,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-ingress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:276" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-ingress-zone public +printf "%s\n" "$at_srcdir/policy.at:532: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:532" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:276" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:532" $at_failed && at_fn_log_failure $at_traceon; } @@ -304293,15 +316405,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-ingress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:277" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-ingress-zone public +printf "%s\n" "$at_srcdir/policy.at:533: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:533" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:277" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:533" $at_failed && at_fn_log_failure $at_traceon; } @@ -304312,15 +316424,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --list-ingress-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:278" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --list-ingress-zones +printf "%s\n" "$at_srcdir/policy.at:534: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:534" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:278" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:534" $at_failed && at_fn_log_failure $at_traceon; } @@ -304331,15 +316443,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-ingress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:279" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-ingress-zone public +printf "%s\n" "$at_srcdir/policy.at:535: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:535" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:279" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:535" $at_failed && at_fn_log_failure $at_traceon; } @@ -304350,15 +316462,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-ingress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:280" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-ingress-zone public +printf "%s\n" "$at_srcdir/policy.at:536: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:536" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:280" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:536" $at_failed && at_fn_log_failure $at_traceon; } @@ -304369,15 +316481,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-ingress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:281" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-ingress-zone public +printf "%s\n" "$at_srcdir/policy.at:537: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:537" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:281" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:537" $at_failed && at_fn_log_failure $at_traceon; } @@ -304388,15 +316500,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --list-ingress-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:282" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --list-ingress-zones +printf "%s\n" "$at_srcdir/policy.at:538: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:538" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/policy.at:282" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:538" $at_failed && at_fn_log_failure $at_traceon; } @@ -304406,147 +316518,130 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "policy.at:284" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:284" - fi - + { set +x +printf "%s\n" "$at_srcdir/policy.at:539: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:539" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:539" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_315 -#AT_START_316 -at_fn_group_banner 316 'policy.at:286' \ - "policy - priority" " " 11 -at_xfail=no -( - $as_echo "316. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/policy.at:540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:540" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="HOST" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:540" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/policy.at:286: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:286" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:541: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:541" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:286" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:541" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/policy.at:286: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:286" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:542: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:542" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:286" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:542" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/policy.at:286: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:286" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:543: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:543" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:286" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:543" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:544: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:544" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:544" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/policy.at:286: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:286" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/policy.at:545: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:545" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:286" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:545" $at_failed && at_fn_log_failure $at_traceon; } @@ -304554,130 +316649,78 @@ $at_traceon; } - $as_echo "policy.at:286" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:286" + { set +x +printf "%s\n" "$at_srcdir/policy.at:546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:546" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="internal" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:546" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/policy.at:547: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:547" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:547" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "policy.at:286" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:286" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/policy.at:548: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:548" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:548" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "policy.at:286" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:286" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "policy.at:286" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:286" + { set +x +printf "%s\n" "$at_srcdir/policy.at:549: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:549" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:549" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -304685,15 +316728,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:286" { set +x -$as_echo "$at_srcdir/policy.at:289: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:289" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-interface dummy0 +printf "%s\n" "$at_srcdir/policy.at:550: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:550" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:289" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:550" $at_failed && at_fn_log_failure $at_traceon; } @@ -304705,15 +316748,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:292" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy worldToHost +printf "%s\n" "$at_srcdir/policy.at:553: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:553" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:292" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:553" $at_failed && at_fn_log_failure $at_traceon; } @@ -304724,15 +316767,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:293: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:293" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/policy.at:554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:554" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:293" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:554" $at_failed && at_fn_log_failure $at_traceon; } @@ -304743,15 +316786,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:294" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --add-egress-zone HOST +printf "%s\n" "$at_srcdir/policy.at:555: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:555" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:294" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:555" $at_failed && at_fn_log_failure $at_traceon; } @@ -304762,15 +316805,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:295" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -1 +printf "%s\n" "$at_srcdir/policy.at:556: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:556" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:295" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:556" $at_failed && at_fn_log_failure $at_traceon; } @@ -304781,17 +316824,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --get-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:296" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --get-priority +printf "%s\n" "$at_srcdir/policy.at:557: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:557" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-1 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:296" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:557" $at_failed && at_fn_log_failure $at_traceon; } @@ -304801,17 +316842,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:299" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/policy.at:558: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:558" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:299" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:558" $at_failed && at_fn_log_failure $at_traceon; } @@ -304822,15 +316862,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:299: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:299" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:559: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:559" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:299" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:559" $at_failed && at_fn_log_failure $at_traceon; } @@ -304840,37 +316880,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:560: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:560" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:560" +$at_failed && at_fn_log_failure +$at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:314: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:314" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/policy.at:561: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:561" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:314" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:561" $at_failed && at_fn_log_failure $at_traceon; } @@ -304880,51 +316918,58 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:562: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:562" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="ANY" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:562" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/policy.at:324: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:324" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/policy.at:563: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:563" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_worldToHost 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_worldToHost 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:324" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:563" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:564: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:564" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:564" +$at_failed && at_fn_log_failure +$at_traceon; } + + @@ -304932,15 +316977,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:336: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:336" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 1 +printf "%s\n" "$at_srcdir/policy.at:567: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:567" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:336" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:567" $at_failed && at_fn_log_failure $at_traceon; } @@ -304950,17 +316995,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:337" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/policy.at:568: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:568" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:337" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:568" $at_failed && at_fn_log_failure $at_traceon; } @@ -304971,15 +317015,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:337: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:337" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:569: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:569" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:337" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:569" $at_failed && at_fn_log_failure $at_traceon; } @@ -304989,6 +317033,19 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:570: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:570" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:570" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -304996,30 +317053,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:352: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:352" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/policy.at:571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:571" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:571" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:572: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:572" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:352" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:572" $at_failed && at_fn_log_failure $at_traceon; } @@ -305029,51 +317090,76 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:573: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:573" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:573" +$at_failed && at_fn_log_failure +$at_traceon; } + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/policy.at:362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:362" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/policy.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:574" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:574" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:575: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:575" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -IN_worldToHost 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -IN_worldToHost 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:362" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:575" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:576: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:576" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:576" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -305081,15 +317167,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy first " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:374" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy first +printf "%s\n" "$at_srcdir/policy.at:577: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:577" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:374" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:577" $at_failed && at_fn_log_failure $at_traceon; } @@ -305100,15 +317186,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:375" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy first --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/policy.at:578: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:578" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:375" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:578" $at_failed && at_fn_log_failure $at_traceon; } @@ -305118,16 +317204,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:376: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:376" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy first --add-egress-zone HOST +printf "%s\n" "$at_srcdir/policy.at:581: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:581" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:376" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:581" $at_failed && at_fn_log_failure $at_traceon; } @@ -305138,15 +317225,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:377: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy second " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:377" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy second +printf "%s\n" "$at_srcdir/policy.at:582: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:582" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:377" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:582" $at_failed && at_fn_log_failure $at_traceon; } @@ -305157,15 +317244,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:378: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:378" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy second --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/policy.at:583: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:583" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:378" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:583" $at_failed && at_fn_log_failure $at_traceon; } @@ -305176,15 +317263,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:379: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:379" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy second --add-egress-zone HOST +printf "%s\n" "$at_srcdir/policy.at:584: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:584" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:379" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:584" $at_failed && at_fn_log_failure $at_traceon; } @@ -305195,15 +317282,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:380: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy third " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:380" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy third +printf "%s\n" "$at_srcdir/policy.at:585: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:585" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:380" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:585" $at_failed && at_fn_log_failure $at_traceon; } @@ -305214,15 +317301,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:381" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy third --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/policy.at:586: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:586" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:381" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:586" $at_failed && at_fn_log_failure $at_traceon; } @@ -305232,16 +317319,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:382" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy third --add-egress-zone HOST +printf "%s\n" "$at_srcdir/policy.at:589: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"does_not_exist\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:589" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="does_not_exist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:382" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:589" $at_failed && at_fn_log_failure $at_traceon; } @@ -305252,15 +317340,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:383: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fourth " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:383" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy fourth +printf "%s\n" "$at_srcdir/policy.at:590: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"does_not_exist\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:590" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="does_not_exist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:383" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:590" $at_failed && at_fn_log_failure $at_traceon; } @@ -305271,15 +317359,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:384: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:384" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fourth --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/policy.at:591: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"does_not_exist\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:591" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="does_not_exist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:384" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:591" $at_failed && at_fn_log_failure $at_traceon; } @@ -305290,15 +317378,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:385" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fourth --add-egress-zone HOST +printf "%s\n" "$at_srcdir/policy.at:592: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"does_not_exist\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:592" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="does_not_exist" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:385" +at_fn_check_status 112 $at_status "$at_srcdir/policy.at:592" $at_failed && at_fn_log_failure $at_traceon; } @@ -305308,16 +317396,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy fifth " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:386" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy fifth +printf "%s\n" "$at_srcdir/policy.at:597: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:597" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:386" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:597" $at_failed && at_fn_log_failure $at_traceon; } @@ -305327,16 +317416,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:387: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:387" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fifth --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/policy.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:598" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:387" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:598" $at_failed && at_fn_log_failure $at_traceon; } @@ -305347,15 +317437,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:388: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:388" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fifth --add-egress-zone HOST +printf "%s\n" "$at_srcdir/policy.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:598" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:388" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:598" $at_failed && at_fn_log_failure $at_traceon; } @@ -305365,16 +317455,21 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:390: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fourth --set-priority -100 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:390" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fourth --set-priority -100 +printf "%s\n" "$at_srcdir/policy.at:599: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:599" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:390" +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 + ingress-zones: ANY + egress-zones: HOST +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:599" $at_failed && at_fn_log_failure $at_traceon; } @@ -305384,16 +317479,46 @@ $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/policy.at:391: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy second --set-priority -5000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:391" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy second --set-priority -5000 +printf "%s\n" "$at_srcdir/policy.at:628: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:628" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:391" +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:628" $at_failed && at_fn_log_failure $at_traceon; } @@ -305403,35 +317528,76 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/policy.at:392: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy first --set-priority -10000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:392" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy first --set-priority -10000 +printf "%s\n" "$at_srcdir/policy.at:648: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:648" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:392" +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:648" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/policy.at:393: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy third --set-priority -1000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:393" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy third --set-priority -1000 +printf "%s\n" "$at_srcdir/policy.at:668: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:668" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:393" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:668" $at_failed && at_fn_log_failure $at_traceon; } @@ -305441,16 +317607,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy fifth --set-priority -10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:394" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy fifth --set-priority -10 +printf "%s\n" "$at_srcdir/policy.at:669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:669" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:394" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:669" $at_failed && at_fn_log_failure $at_traceon; } @@ -305460,17 +317627,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:395" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/policy.at:669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:669" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:395" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:669" $at_failed && at_fn_log_failure $at_traceon; } @@ -305480,16 +317646,24 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:395" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:670: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:670" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:395" +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 + ingress-zones: ANY + egress-zones: HOST +foobar + ingress-zones: public + egress-zones: internal +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:670" $at_failed && at_fn_log_failure $at_traceon; } @@ -305504,42 +317678,43 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:420: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:704: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:420" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:704" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_first 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_second 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_third 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_fourth 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_fifth 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_first 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_second 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_third 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_fourth 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_fifth 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_worldToHost 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:420" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:704" $at_failed && at_fn_log_failure $at_traceon; } @@ -305558,40 +317733,42 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:440: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:726: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:440" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:726" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_first 0 -- ::/0 ::/0 -IN_second 0 -- ::/0 ::/0 -IN_third 0 -- ::/0 ::/0 -IN_fourth 0 -- ::/0 ::/0 -IN_fifth 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -IN_worldToHost 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_first 0 -- ::/0 ::/0 -IN_second 0 -- ::/0 ::/0 -IN_third 0 -- ::/0 ::/0 -IN_fourth 0 -- ::/0 ::/0 -IN_fifth 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -IN_worldToHost 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:440" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:726" $at_failed && at_fn_log_failure $at_traceon; } @@ -305609,17 +317786,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:462: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:462" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 0 +printf "%s\n" "$at_srcdir/policy.at:748: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:748" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/policy.at:462" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:748" $at_failed && at_fn_log_failure $at_traceon; } @@ -305628,16 +317804,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/policy.at:463: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32769 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:463" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32769 +printf "%s\n" "$at_srcdir/policy.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:749" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/policy.at:463" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:749" $at_failed && at_fn_log_failure $at_traceon; } @@ -305648,15 +317826,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:464: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:464" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority -32768 +printf "%s\n" "$at_srcdir/policy.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:749" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:464" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:749" $at_failed && at_fn_log_failure $at_traceon; } @@ -305666,16 +317844,21 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:465: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:465" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32768 +printf "%s\n" "$at_srcdir/policy.at:750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:750" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/policy.at:465" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 + ingress-zones: ANY + egress-zones: HOST +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:750" $at_failed && at_fn_log_failure $at_traceon; } @@ -305685,16 +317868,46 @@ $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/policy.at:466: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32767 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:466" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy worldToHost --set-priority 32767 +printf "%s\n" "$at_srcdir/policy.at:779: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:779" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:466" +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:779" $at_failed && at_fn_log_failure $at_traceon; } @@ -305704,10 +317917,70 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_PRIORITY/d'" != x"ignore"; then - $as_echo "policy.at:468" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_PRIORITY/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:468" + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:799: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:799" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:799" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + if test x"-e '/ERROR: INVALID_ZONE:/d'" != x"ignore"; then + printf "%s\n" "policy.at:820" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ZONE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:820" fi @@ -305716,13 +317989,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_316 -#AT_START_317 -at_fn_group_banner 317 'policy.at:470' \ - "policy - zones" " " 11 +#AT_STOP_335 +#AT_START_336 +at_fn_group_banner 336 'policy.at:822' \ + "policy - dispatch" " " 11 at_xfail=no ( - $as_echo "317. $at_setup_line: testing $at_desc ..." + printf "%s\n" "336. $at_setup_line: testing $at_desc ..." $at_traceon @@ -305740,6 +318013,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -305756,29 +318030,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:470: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:470" +printf "%s\n" "$at_srcdir/policy.at:822: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:822" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:470" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:822" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:470: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:470" +printf "%s\n" "$at_srcdir/policy.at:822: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:822" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:470" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:822" $at_failed && at_fn_log_failure $at_traceon; } @@ -305786,15 +318060,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:470: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:470" +printf "%s\n" "$at_srcdir/policy.at:822: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:822" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:470" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:822" $at_failed && at_fn_log_failure $at_traceon; } @@ -305836,15 +318110,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:470: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:470" +printf "%s\n" "$at_srcdir/policy.at:822: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:822" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:470" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:822" $at_failed && at_fn_log_failure $at_traceon; } @@ -305852,9 +318126,9 @@ $at_traceon; } - $as_echo "policy.at:470" >"$at_check_line_file" + printf "%s\n" "policy.at:822" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:470" + && at_fn_check_skip 77 "$at_srcdir/policy.at:822" @@ -305935,8 +318209,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:470" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:470" + printf "%s\n" "policy.at:822" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:822" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -305946,7 +318220,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:470" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -305954,8 +318228,8 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:470" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:470" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:470" + printf "%s\n" "policy.at:822" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:822" fi echo "$!" > firewalld.pid @@ -305971,9 +318245,9 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:470" fi sleep 1 done - $as_echo "policy.at:470" >"$at_check_line_file" + printf "%s\n" "policy.at:822" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:470" + && at_fn_check_skip 99 "$at_srcdir/policy.at:822" @@ -305983,15 +318257,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:470" { set +x -$as_echo "$at_srcdir/policy.at:473: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:473" +printf "%s\n" "$at_srcdir/policy.at:825: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:825" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:473" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:825" $at_failed && at_fn_log_failure $at_traceon; } @@ -306002,15 +318276,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:474: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:474" +printf "%s\n" "$at_srcdir/policy.at:826: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:826" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:474" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:826" $at_failed && at_fn_log_failure $at_traceon; } @@ -306022,15 +318296,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:476: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:476" +printf "%s\n" "$at_srcdir/policy.at:828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:828" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:476" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:828" $at_failed && at_fn_log_failure $at_traceon; } @@ -306041,15 +318315,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:477: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:477" +printf "%s\n" "$at_srcdir/policy.at:829: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:829" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:477" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:829" $at_failed && at_fn_log_failure $at_traceon; } @@ -306061,15 +318335,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:478: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:478" +printf "%s\n" "$at_srcdir/policy.at:830: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:830" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:478" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:830" $at_failed && at_fn_log_failure $at_traceon; } @@ -306080,15 +318354,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:478: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:478" +printf "%s\n" "$at_srcdir/policy.at:830: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:830" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:478" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:830" $at_failed && at_fn_log_failure $at_traceon; } @@ -306101,15 +318375,19 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:481: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:481" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:832: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:832" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:481" +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 + ingress-zones: ANY + egress-zones: HOST +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:832" $at_failed && at_fn_log_failure $at_traceon; } @@ -306119,35 +318397,28 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:482: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:482" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:482" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/policy.at:483: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:483" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:842: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:842" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t raw -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:483" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:842" $at_failed && at_fn_log_failure $at_traceon; } @@ -306157,75 +318428,48 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:484: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:484" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:484" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:485: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:485" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:846: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:846" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t raw -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:485" +echo >>"$at_stdout"; printf "%s\n" "PREROUTING_direct 0 -- ::/0 ::/0 +PREROUTING_POLICIES 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:846" $at_failed && at_fn_log_failure $at_traceon; } + else + : - - - - { set +x -$as_echo "$at_srcdir/policy.at:486: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:486" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:486" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi - { set +x -$as_echo "$at_srcdir/policy.at:487: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:487" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:487" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -306234,15 +318478,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:488: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:488" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:858: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:858" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:488" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:858" $at_failed && at_fn_log_failure $at_traceon; } @@ -306252,56 +318505,48 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:489: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:489" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:489" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:490: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:490" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:862: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:862" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:490" +echo >>"$at_stdout"; printf "%s\n" "PREROUTING_direct 0 -- ::/0 ::/0 +PREROUTING_POLICIES 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:862" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:491: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:491" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:491" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -306310,15 +318555,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:492: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:492" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:875: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:875" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:492" +echo >>"$at_stdout"; printf "%s\n" "OUTPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +OUTPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:875" $at_failed && at_fn_log_failure $at_traceon; } @@ -306328,75 +318582,48 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:493: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:493" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="internal" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:493" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:494: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:494" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="internal" +printf "%s\n" "$at_srcdir/policy.at:879: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:879" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:494" +echo >>"$at_stdout"; printf "%s\n" "OUTPUT_direct 0 -- ::/0 ::/0 +OUTPUT_POLICIES 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:879" $at_failed && at_fn_log_failure $at_traceon; } + else + : - - - - { set +x -$as_echo "$at_srcdir/policy.at:495: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:495" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:495" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi - { set +x -$as_echo "$at_srcdir/policy.at:496: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:496" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:496" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -306405,15 +318632,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:497: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:497" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:891: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:891" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POSTROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/policy.at:497" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "POSTROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +POSTROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:891" $at_failed && at_fn_log_failure $at_traceon; } @@ -306423,56 +318659,48 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:498: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:498" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-ingress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/policy.at:498" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:499: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:499" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:895: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:895" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:499" +echo >>"$at_stdout"; printf "%s\n" "POSTROUTING_direct 0 -- ::/0 ::/0 +POSTROUTING_POLICIES 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:895" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:500: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:500" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="internal" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:500" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -306481,15 +318709,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:501: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:501" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:907: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:907" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t mangle -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:501" +echo >>"$at_stdout"; printf "%s\n" "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:907" $at_failed && at_fn_log_failure $at_traceon; } @@ -306499,56 +318736,51 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:502: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:502" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:502" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:503: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:503" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:913: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:913" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:503" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 134 +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 135 +DROP 0 -- ::/0 ::/0 rpfilter validmark invert +PREROUTING_direct 0 -- ::/0 ::/0 +PREROUTING_POLICIES 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:913" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:504: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:504" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:504" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -306557,15 +318789,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:505: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:505" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:933: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:933" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:505" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID +INPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +INPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:933" $at_failed && at_fn_log_failure $at_traceon; } @@ -306575,75 +318820,52 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:506: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:506" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:506" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:507: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:507" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:941: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:941" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:507" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +DROP 0 -- ::/0 ::/0 ctstate INVALID +INPUT_direct 0 -- ::/0 ::/0 +INPUT_POLICIES 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:941" $at_failed && at_fn_log_failure $at_traceon; } + else + : - - - - { set +x -$as_echo "$at_srcdir/policy.at:508: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:508" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:508" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi - { set +x -$as_echo "$at_srcdir/policy.at:509: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:509" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:509" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -306652,15 +318874,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:510: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:510" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:963: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:963" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:510" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID +FORWARD_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +FORWARD_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:963" $at_failed && at_fn_log_failure $at_traceon; } @@ -306670,56 +318905,53 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:511: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:511" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:511" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:512: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:512" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:971: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:971" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:512" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +DROP 0 -- ::/0 ::/0 ctstate INVALID +FORWARD_direct 0 -- ::/0 ::/0 +RFC3964_IPv4 0 -- ::/0 ::/0 +FORWARD_POLICIES 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:971" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:513" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:513" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -306728,15 +318960,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:514: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:514" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="internal" +printf "%s\n" "$at_srcdir/policy.at:992: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:992" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:514" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +OUTPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +OUTPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:992" $at_failed && at_fn_log_failure $at_traceon; } @@ -306746,54 +318989,64 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:515: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:515" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:515" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:516: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:516" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:998: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:998" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:516" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +OUTPUT_direct 0 -- ::/0 ::/0 +RFC3964_IPv4 0 -- ::/0 ::/0 +OUTPUT_POLICIES 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:998" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + + { set +x -$as_echo "$at_srcdir/policy.at:517: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:517" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1008: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1008" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/policy.at:517" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1008" $at_failed && at_fn_log_failure $at_traceon; } @@ -306804,15 +319057,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:518: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:518" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:1009: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1009" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/policy.at:518" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1009" $at_failed && at_fn_log_failure $at_traceon; } @@ -306823,15 +319076,22 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:519: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:519" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1010: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1010" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:519" +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 + ingress-zones: ANY + egress-zones: HOST +foobar + ingress-zones: public + egress-zones: HOST +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1010" $at_failed && at_fn_log_failure $at_traceon; } @@ -306841,16 +319101,39 @@ $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/policy.at:520: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:520" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" +printf "%s\n" "$at_srcdir/policy.at:1036: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1036" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:520" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1036" $at_failed && at_fn_log_failure $at_traceon; } @@ -306861,37 +319144,56 @@ $at_traceon; } + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/policy.at:523: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:523" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:1049: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1049" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:523" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_foobar 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_foobar 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1049" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:524: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:524" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:524" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -306900,15 +319202,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:525" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1075: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1075" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:525" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1075" $at_failed && at_fn_log_failure $at_traceon; } @@ -306918,56 +319233,52 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:526: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:526" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:526" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:527: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:527" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1083: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1083" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:527" +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1083" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:528: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:528" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:528" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -306976,15 +319287,40 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:529: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:529" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:529" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1116" $at_failed && at_fn_log_failure $at_traceon; } @@ -306994,56 +319330,61 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:530: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:530" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:530" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:531: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:531" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1136" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:531" +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1136" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/policy.at:532: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:532" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="internal" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:532" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307052,15 +319393,33 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:533: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:533" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1157" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:533" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1157" $at_failed && at_fn_log_failure $at_traceon; } @@ -307070,56 +319429,57 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:534: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:534" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:534" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:535: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:535" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1170" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:535" +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1170" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:536: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:536" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="internal" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:536" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307128,15 +319488,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:537: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:537" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:1199: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1199" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:537" +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1199" $at_failed && at_fn_log_failure $at_traceon; } @@ -307146,56 +319522,55 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:538: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:538" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:538" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:539: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:539" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1210: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1210" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:539" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1210" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:540" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:540" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307204,15 +319579,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:541: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:541" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1237: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1237" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:541" +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1237" $at_failed && at_fn_log_failure $at_traceon; } @@ -307222,56 +319613,55 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:542: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:542" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:542" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:543: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:543" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1248" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:543" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1248" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:544: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:544" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:544" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307280,15 +319670,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:545: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:545" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1284: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1284" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:545" +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1284" $at_failed && at_fn_log_failure $at_traceon; } @@ -307298,56 +319701,52 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:546" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="internal" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:546" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:547: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:547" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1292" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:547" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +POST_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +POST_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1292" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:548: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:548" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:548" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307356,15 +319755,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:549: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:549" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1313" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:549" +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1313" $at_failed && at_fn_log_failure $at_traceon; } @@ -307374,36 +319786,64 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/policy.at:550: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:550" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="internal" +printf "%s\n" "$at_srcdir/policy.at:1321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1321" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:550" +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1321" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + { set +x -$as_echo "$at_srcdir/policy.at:553: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:553" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1329: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1329" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:553" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1329" $at_failed && at_fn_log_failure $at_traceon; } @@ -307414,15 +319854,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:554" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1330: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1330" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:554" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1330" $at_failed && at_fn_log_failure $at_traceon; } @@ -307432,16 +319872,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:555: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:555" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1334: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1334" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:555" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1334" $at_failed && at_fn_log_failure $at_traceon; } @@ -307452,15 +319893,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:556: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:556" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1335: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1335" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:556" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1335" $at_failed && at_fn_log_failure $at_traceon; } @@ -307470,16 +319911,40 @@ $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/policy.at:557: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:557" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1355" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:557" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1355" $at_failed && at_fn_log_failure $at_traceon; } @@ -307489,56 +319954,58 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:558: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:558" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:558" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:559: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:559" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1369" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:559" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_foobar 0 -- ::/0 ::/0 +IN_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_foobar 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_foobar 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1369" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:560: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:560" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:560" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307547,15 +320014,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:561: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:561" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1396: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1396" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:561" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1396" $at_failed && at_fn_log_failure $at_traceon; } @@ -307565,56 +320045,51 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:562: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:562" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:562" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:563: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:563" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:1404: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1404" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:563" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1404" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + - { set +x -$as_echo "$at_srcdir/policy.at:564: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:564" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:564" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307624,15 +320099,40 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:567: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:567" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1437: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1437" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:567" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1437" $at_failed && at_fn_log_failure $at_traceon; } @@ -307642,56 +320142,61 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:568: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:568" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:568" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:569: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:569" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1457: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1457" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:569" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1457" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/policy.at:570: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:570" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-egress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:570" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307700,15 +320205,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:571" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1478: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1478" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:571" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1478" $at_failed && at_fn_log_failure $at_traceon; } @@ -307718,56 +320242,58 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:572: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:572" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:572" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:573: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:573" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1492: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1492" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:573" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1492" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:574" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:574" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307776,15 +320302,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:575: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:575" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1525" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:575" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1525" $at_failed && at_fn_log_failure $at_traceon; } @@ -307794,37 +320339,58 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/policy.at:576: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:576" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1539: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1539" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:576" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1539" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:577: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:577" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:577" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307833,15 +320399,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:578: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:578" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1572: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1572" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:578" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1572" $at_failed && at_fn_log_failure $at_traceon; } @@ -307852,56 +320437,57 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:581: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:581" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:581" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:582: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:582" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:1586: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1586" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:582" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1586" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + - { set +x -$as_echo "$at_srcdir/policy.at:583: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:583" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:583" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307910,15 +320496,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:584: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:584" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:1625: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1625" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:584" +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1625" $at_failed && at_fn_log_failure $at_traceon; } @@ -307928,57 +320527,52 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:585: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:585" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:585" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:586: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:586" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:1633: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1633" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:586" +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +POST_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +POST_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1633" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + - { set +x -$as_echo "$at_srcdir/policy.at:589: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"does_not_exist\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:589" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="does_not_exist" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:589" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -307987,15 +320581,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:590: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"does_not_exist\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:590" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="does_not_exist" +printf "%s\n" "$at_srcdir/policy.at:1654: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1654" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:590" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1654" $at_failed && at_fn_log_failure $at_traceon; } @@ -308005,55 +320612,64 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:591: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"does_not_exist\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:591" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="does_not_exist" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:591" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:592: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"does_not_exist\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:592" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="does_not_exist" +printf "%s\n" "$at_srcdir/policy.at:1662: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1662" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/policy.at:592" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1662" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + { set +x -$as_echo "$at_srcdir/policy.at:597: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:597" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1670: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1670" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:597" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1670" $at_failed && at_fn_log_failure $at_traceon; } @@ -308063,17 +320679,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:598" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/policy.at:1671: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1671" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:598" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1671" $at_failed && at_fn_log_failure $at_traceon; } @@ -308083,16 +320698,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:598" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:1675: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1675" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:598" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1675" $at_failed && at_fn_log_failure $at_traceon; } @@ -308102,21 +320718,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:599: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:599" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies +printf "%s\n" "$at_srcdir/policy.at:1676: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1676" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 - ingress-zones: ANY - egress-zones: HOST -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:599" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1676" $at_failed && at_fn_log_failure $at_traceon; } @@ -308132,40 +320743,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:628: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:1693: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:628" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1693" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:628" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1693" $at_failed && at_fn_log_failure $at_traceon; } @@ -308184,40 +320786,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:648: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:1704: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:648" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1704" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:648" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1704" $at_failed && at_fn_log_failure $at_traceon; } @@ -308235,36 +320828,36 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:668: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:668" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone="internal" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:668" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/policy.at:669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:669" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/policy.at:1730: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1730" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:669" +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1730" $at_failed && at_fn_log_failure $at_traceon; } @@ -308274,48 +320867,52 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:669" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:669" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:670: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:670" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies +printf "%s\n" "$at_srcdir/policy.at:1740: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1740" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 - ingress-zones: ANY - egress-zones: HOST -foobar - ingress-zones: public - egress-zones: internal +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_foobar 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_foobar 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:670" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1740" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + @@ -308326,33 +320923,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:704: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:1775: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:704" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1775" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -308361,7 +320956,7 @@ FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:704" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1775" $at_failed && at_fn_log_failure $at_traceon; } @@ -308380,33 +320975,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:726: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:1795: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:726" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1795" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 @@ -308415,7 +321008,7 @@ FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:726" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1795" $at_failed && at_fn_log_failure $at_traceon; } @@ -308433,16 +321026,34 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/policy.at:748: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:748" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-ingress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:1816: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1816" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:748" +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1816" $at_failed && at_fn_log_failure $at_traceon; } @@ -308453,64 +321064,52 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:749" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:749" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:749" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:1827: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1827" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:749" +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1827" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/policy.at:750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:750" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 - ingress-zones: ANY - egress-zones: HOST -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:750" -$at_failed && at_fn_log_failure -$at_traceon; } - - - @@ -308521,40 +321120,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:779: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:1854: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:779" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1854" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:779" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1854" $at_failed && at_fn_log_failure $at_traceon; } @@ -308573,40 +321163,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:799: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:1865: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:799" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1865" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:799" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1865" $at_failed && at_fn_log_failure $at_traceon; } @@ -308624,147 +321205,125 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_ZONE:/d'" != x"ignore"; then - $as_echo "policy.at:820" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ZONE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:820" - fi - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_317 -#AT_START_318 -at_fn_group_banner 318 'policy.at:822' \ - "policy - dispatch" " " 11 -at_xfail=no -( - $as_echo "318. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/policy.at:1892: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1892" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1892" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/policy.at:822: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:822" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:822" -$at_failed && at_fn_log_failure -$at_traceon; } - else - { set +x -$as_echo "$at_srcdir/policy.at:822: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:822" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:822" -$at_failed && at_fn_log_failure -$at_traceon; } - fi + if $IP6TABLES -L >/dev/null 2>&1; then + : - { set +x -$as_echo "$at_srcdir/policy.at:822: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:822" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/policy.at:1903: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1903" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:822" +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1903" $at_failed && at_fn_log_failure $at_traceon; } + else + : - kill_firewalld() { + fi - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/policy.at:822: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:822" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:1939: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1939" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:822" +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1939" $at_failed && at_fn_log_failure $at_traceon; } @@ -308772,128 +321331,53 @@ $at_traceon; } - $as_echo "policy.at:822" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:822" - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + if $IP6TABLES -L >/dev/null 2>&1; then + : - - - - - -_ATEOF + { set +x +printf "%s\n" "$at_srcdir/policy.at:1947: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1947" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "policy.at:822" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:822" - fi - echo "kill $DBUS_PID" >> ./cleanup_late +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +POST_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +POST_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1947" +$at_failed && at_fn_log_failure +$at_traceon; } + else + : + fi - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "policy.at:822" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:822" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "policy.at:822" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:822" @@ -308903,15 +321387,30 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:822" { set +x -$as_echo "$at_srcdir/policy.at:825: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:825" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface=foobar0 +printf "%s\n" "$at_srcdir/policy.at:1970: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1970" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:825" +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1970" $at_failed && at_fn_log_failure $at_traceon; } @@ -308921,55 +321420,66 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:826: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:826" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface=foobar1 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:826" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/policy.at:828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:828" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar +printf "%s\n" "$at_srcdir/policy.at:1980: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1980" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:828" +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_foobar 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_foobar 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1980" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/policy.at:829: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:829" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-priority -1 +printf "%s\n" "$at_srcdir/policy.at:1990: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1990" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:829" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1990" $at_failed && at_fn_log_failure $at_traceon; } @@ -308979,17 +321489,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:830: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:830" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/policy.at:1991: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1991" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:830" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1991" $at_failed && at_fn_log_failure $at_traceon; } @@ -308999,16 +321508,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:830: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:830" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:1995: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1995" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:830" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1995" $at_failed && at_fn_log_failure $at_traceon; } @@ -309018,22 +321528,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/policy.at:832: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:832" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies +printf "%s\n" "$at_srcdir/policy.at:1996: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1996" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 - ingress-zones: ANY - egress-zones: HOST -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:832" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1996" $at_failed && at_fn_log_failure $at_traceon; } @@ -309046,25 +321550,34 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/policy.at:842: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:842" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2013" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:842" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2013" $at_failed && at_fn_log_failure $at_traceon; } @@ -309083,24 +321596,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:846: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2024: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:846" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2024" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PREROUTING_direct 0 -- ::/0 ::/0 -PREROUTING_POLICIES 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:846" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2024" $at_failed && at_fn_log_failure $at_traceon; } @@ -309124,24 +321644,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:858: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:858" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2051" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:858" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2051" $at_failed && at_fn_log_failure $at_traceon; } @@ -309160,24 +321687,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:862: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2062: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:862" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2062" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PREROUTING_direct 0 -- ::/0 ::/0 -PREROUTING_POLICIES 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_foobar 0 -- ::/0 ::/0 +OUT_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_foobar 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_foobar 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:862" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2062" $at_failed && at_fn_log_failure $at_traceon; } @@ -309201,24 +321735,40 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:875: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2098: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:875" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2098" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUTPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -OUTPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:875" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2098" $at_failed && at_fn_log_failure $at_traceon; } @@ -309237,24 +321787,40 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:879: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:879" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUTPUT_direct 0 -- ::/0 ::/0 -OUTPUT_POLICIES 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:879" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2118" $at_failed && at_fn_log_failure $at_traceon; } @@ -309274,28 +321840,32 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/policy.at:891: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:891" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2139" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POSTROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -POSTROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:891" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2139" $at_failed && at_fn_log_failure $at_traceon; } @@ -309314,24 +321884,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:895: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:895" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2150" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POSTROUTING_direct 0 -- ::/0 ::/0 -POSTROUTING_POLICIES 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:895" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2150" $at_failed && at_fn_log_failure $at_traceon; } @@ -309355,24 +321932,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:907: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:907" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2177" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PREROUTING_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -PREROUTING_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:907" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2177" $at_failed && at_fn_log_failure $at_traceon; } @@ -309391,27 +321975,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:913: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2188: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:913" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2188" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 134 -ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 135 -DROP 0 -- ::/0 ::/0 rpfilter validmark invert -PREROUTING_direct 0 -- ::/0 ::/0 -PREROUTING_POLICIES 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:913" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2188" $at_failed && at_fn_log_failure $at_traceon; } @@ -309435,28 +322023,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:933: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2215: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:933" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2215" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID -INPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -INPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:933" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2215" $at_failed && at_fn_log_failure $at_traceon; } @@ -309475,28 +322066,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:941: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:941" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2226" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- ::/0 ::/0 -DROP 0 -- ::/0 ::/0 ctstate INVALID -INPUT_direct 0 -- ::/0 ::/0 -INPUT_POLICIES 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:941" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2226" $at_failed && at_fn_log_failure $at_traceon; } @@ -309520,28 +322114,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:963: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:963" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2262" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID -FORWARD_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -FORWARD_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:963" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2262" $at_failed && at_fn_log_failure $at_traceon; } @@ -309560,29 +322154,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:971: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2270: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:971" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2270" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT -ACCEPT 0 -- ::/0 ::/0 -DROP 0 -- ::/0 ::/0 ctstate INVALID -FORWARD_direct 0 -- ::/0 ::/0 -RFC3964_IPv4 0 -- ::/0 ::/0 -FORWARD_POLICIES 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +POST_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +POST_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:971" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2270" $at_failed && at_fn_log_failure $at_traceon; } @@ -309606,26 +322199,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:991: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:991" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2294" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -OUTPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 -OUTPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:991" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2294" $at_failed && at_fn_log_failure $at_traceon; } @@ -309644,27 +322242,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:997: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2305: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:997" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2305" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED -ACCEPT 0 -- ::/0 ::/0 -OUTPUT_direct 0 -- ::/0 ::/0 -RFC3964_IPv4 0 -- ::/0 ::/0 -OUTPUT_POLICIES 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_foobar 0 -- ::/0 ::/0 +OUT_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_foobar 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +OUT_foobar 0 -- ::/0 ::/0 +OUT_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:997" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2305" $at_failed && at_fn_log_failure $at_traceon; } @@ -309682,17 +322284,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:2316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2316" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2316" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:1007: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1007" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:2317: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2317" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1007" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2317" $at_failed && at_fn_log_failure $at_traceon; } @@ -309702,16 +322322,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:1008: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1008" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:2321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2321" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1008" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2321" $at_failed && at_fn_log_failure $at_traceon; } @@ -309722,22 +322343,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1009: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-active-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1009" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-active-policies +printf "%s\n" "$at_srcdir/policy.at:2322: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2322" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 - ingress-zones: ANY - egress-zones: HOST -foobar - ingress-zones: public - egress-zones: HOST -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1009" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2322" $at_failed && at_fn_log_failure $at_traceon; } @@ -309753,33 +322367,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1035: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2339: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1035" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2339" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1035" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2339" $at_failed && at_fn_log_failure $at_traceon; } @@ -309798,33 +322410,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1048: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1048" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2350" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 IN_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_foobar 0 -- ::/0 ::/0 IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_foobar 0 -- ::/0 ::/0 IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1048" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2350" $at_failed && at_fn_log_failure $at_traceon; } @@ -309848,20 +322458,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1074: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1074" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2374" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -309869,7 +322479,7 @@ OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1074" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2374" $at_failed && at_fn_log_failure $at_traceon; } @@ -309888,20 +322498,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1082: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2382: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1082" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2382" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 @@ -309909,7 +322519,7 @@ OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1082" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2382" $at_failed && at_fn_log_failure $at_traceon; } @@ -309933,40 +322543,48 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2423: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1115" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2423" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1115" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2423" $at_failed && at_fn_log_failure $at_traceon; } @@ -309985,40 +322603,48 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2451: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1135" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2451" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1135" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2451" $at_failed && at_fn_log_failure $at_traceon; } @@ -310039,20 +322665,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1156: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2480: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1156" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2480" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -310065,7 +322692,7 @@ PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1156" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2480" $at_failed && at_fn_log_failure $at_traceon; } @@ -310084,20 +322711,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1169: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2494: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1169" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2494" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -310110,7 +322738,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1169" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2494" $at_failed && at_fn_log_failure $at_traceon; } @@ -310134,31 +322762,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1198: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2527: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1198" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2527" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1198" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2527" $at_failed && at_fn_log_failure $at_traceon; } @@ -310177,31 +322808,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1209: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2541: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1209" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2541" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1209" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2541" $at_failed && at_fn_log_failure $at_traceon; } @@ -310225,31 +322859,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2574: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1236" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2574" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1236" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2574" $at_failed && at_fn_log_failure $at_traceon; } @@ -310268,31 +322905,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1247: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2588: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1247" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2588" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1247" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2588" $at_failed && at_fn_log_failure $at_traceon; } @@ -310316,28 +322956,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1283: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2635: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1283" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2635" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "POST_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1283" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2635" $at_failed && at_fn_log_failure $at_traceon; } @@ -310356,28 +322999,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2646: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1291" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2646" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "POST_foobar 0 -- ::/0 ::/0 +POST_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 +POST_foobar 0 -- ::/0 ::/0 POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 +POST_foobar 0 -- ::/0 ::/0 POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1291" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2646" $at_failed && at_fn_log_failure $at_traceon; } @@ -310401,20 +323047,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2670: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1312" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2670" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -310422,7 +323068,7 @@ OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1312" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2670" $at_failed && at_fn_log_failure $at_traceon; } @@ -310441,20 +323087,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2678: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1320" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2678" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 @@ -310462,7 +323108,7 @@ OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1320" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2678" $at_failed && at_fn_log_failure $at_traceon; } @@ -310481,15 +323127,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1328: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1328" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:2686: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2686" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1328" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2686" $at_failed && at_fn_log_failure $at_traceon; } @@ -310500,15 +323146,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1329: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1329" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:2687: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2687" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1329" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2687" $at_failed && at_fn_log_failure $at_traceon; } @@ -310520,15 +323166,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1333" +printf "%s\n" "$at_srcdir/policy.at:2691: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2691" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1333" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2691" $at_failed && at_fn_log_failure $at_traceon; } @@ -310539,15 +323185,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1334: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1334" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:2692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2692" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1334" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2692" $at_failed && at_fn_log_failure $at_traceon; } @@ -310563,34 +323209,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2709: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1354" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2709" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1354" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2709" $at_failed && at_fn_log_failure $at_traceon; } @@ -310609,34 +323252,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2720: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1368" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2720" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_foobar 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 IN_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_foobar 0 -- ::/0 ::/0 IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_foobar 0 -- ::/0 ::/0 IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1368" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2720" $at_failed && at_fn_log_failure $at_traceon; } @@ -310660,20 +323300,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1395: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2744: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1395" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2744" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -310681,7 +323321,7 @@ OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1395" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2744" $at_failed && at_fn_log_failure $at_traceon; } @@ -310700,20 +323340,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1403: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2752: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1403" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2752" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 @@ -310721,7 +323361,7 @@ OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1403" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2752" $at_failed && at_fn_log_failure $at_traceon; } @@ -310745,40 +323385,45 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1436: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2790: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1436" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2790" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1436" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2790" $at_failed && at_fn_log_failure $at_traceon; } @@ -310797,134 +323442,45 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1456: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2815: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1456" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2815" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1456" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:1477: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1477" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1477" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/policy.at:1491: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1491" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1491" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2815" $at_failed && at_fn_log_failure $at_traceon; } @@ -310944,121 +323500,21 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/policy.at:1524: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1524" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1524" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/policy.at:1538: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1538" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1538" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:1571: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2841: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1571" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2841" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -311072,7 +323528,7 @@ PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1571" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2841" $at_failed && at_fn_log_failure $at_traceon; } @@ -311091,20 +323547,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1585: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2855: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1585" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2855" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 @@ -311118,7 +323574,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1585" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2855" $at_failed && at_fn_log_failure $at_traceon; } @@ -311142,28 +323598,212 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1624: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2885: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1624" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2885" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2885" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:2896: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2896" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2896" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:2923: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2923" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2923" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:2934: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2934" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2934" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:2975: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2975" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1624" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2975" $at_failed && at_fn_log_failure $at_traceon; } @@ -311182,28 +323822,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1632: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:2985: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1632" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2985" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 +POST_foobar 0 -- ::/0 ::/0 POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 +POST_foobar 0 -- ::/0 ::/0 POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1632" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2985" $at_failed && at_fn_log_failure $at_traceon; } @@ -311227,20 +323869,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1653: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3008: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1653" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3008" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -311248,7 +323890,7 @@ OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1653" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3008" $at_failed && at_fn_log_failure $at_traceon; } @@ -311267,20 +323909,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1661: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3016: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1661" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3016" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 @@ -311288,7 +323930,7 @@ OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1661" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3016" $at_failed && at_fn_log_failure $at_traceon; } @@ -311307,15 +323949,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1669" +printf "%s\n" "$at_srcdir/policy.at:3024: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3024" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1669" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3024" $at_failed && at_fn_log_failure $at_traceon; } @@ -311326,15 +323968,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1670: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1670" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:3025: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3025" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1670" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3025" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:3026: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3026" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3026" $at_failed && at_fn_log_failure $at_traceon; } @@ -311346,15 +324007,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1674: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1674" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:3030: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3030" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1674" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3030" $at_failed && at_fn_log_failure $at_traceon; } @@ -311365,15 +324026,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1675: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1675" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:3031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3031" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1675" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3031" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:3032: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3032" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="internal" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3032" $at_failed && at_fn_log_failure $at_traceon; } @@ -311389,22 +324069,22 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3049: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1692" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3049" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +IN_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable @@ -311413,7 +324093,7 @@ IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1692" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3049" $at_failed && at_fn_log_failure $at_traceon; } @@ -311432,23 +324112,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1703: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3060: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1703" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3060" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable IN_allow-host-ipv6 0 -- ::/0 ::/0 @@ -311456,7 +324133,7 @@ IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1703" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3060" $at_failed && at_fn_log_failure $at_traceon; } @@ -311480,30 +324157,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1729: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3081: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1729" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3081" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1729" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3081" $at_failed && at_fn_log_failure $at_traceon; } @@ -311522,30 +324197,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1739: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3089: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1739" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3089" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_foobar 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -OUT_foobar 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1739" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3089" $at_failed && at_fn_log_failure $at_traceon; } @@ -311569,40 +324240,43 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1774: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1774" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3123" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +FWD_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +REJECT 0 -- 10.10.10.0/24 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 +FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 +FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1774" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3123" $at_failed && at_fn_log_failure $at_traceon; } @@ -311621,30 +324295,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1794: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1794" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3146" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable @@ -311654,7 +324318,7 @@ FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1794" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3146" $at_failed && at_fn_log_failure $at_traceon; } @@ -311675,31 +324339,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1815: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1815" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3157" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1815" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3157" $at_failed && at_fn_log_failure $at_traceon; } @@ -311718,23 +324385,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1826: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3171: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1826" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3171" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -311742,7 +324406,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1826" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3171" $at_failed && at_fn_log_failure $at_traceon; } @@ -311766,31 +324430,40 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1853: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3204: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1853" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3204" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1853" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3204" $at_failed && at_fn_log_failure $at_traceon; } @@ -311809,23 +324482,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1864: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1864" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3224" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -311833,7 +324503,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1864" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3224" $at_failed && at_fn_log_failure $at_traceon; } @@ -311857,31 +324527,40 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1891: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1891" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3257" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1891" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3257" $at_failed && at_fn_log_failure $at_traceon; } @@ -311900,23 +324579,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1902: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1902" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3277" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -311924,7 +324600,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1902" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3277" $at_failed && at_fn_log_failure $at_traceon; } @@ -311948,28 +324624,36 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1938: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1938" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3313" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "POST_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +POST_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +POST_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 +POST_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 +POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1938" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3313" $at_failed && at_fn_log_failure $at_traceon; } @@ -311988,28 +324672,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1946: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3329: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1946" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3329" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -POST_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1946" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3329" $at_failed && at_fn_log_failure $at_traceon; } @@ -312033,30 +324715,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1969: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1969" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3348" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1969" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3348" $at_failed && at_fn_log_failure $at_traceon; } @@ -312075,30 +324755,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1979: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:1979" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3356" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_foobar 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -OUT_foobar 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1979" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3356" $at_failed && at_fn_log_failure $at_traceon; } @@ -312117,15 +324793,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1989: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1989" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:3362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3362" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1989" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3362" $at_failed && at_fn_log_failure $at_traceon; } @@ -312136,15 +324812,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1990: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1990" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:3363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3363" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1990" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3363" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:3364: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3364" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3364" $at_failed && at_fn_log_failure $at_traceon; } @@ -312156,15 +324851,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1994: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1994" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:3368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3368" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1994" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3368" $at_failed && at_fn_log_failure $at_traceon; } @@ -312175,15 +324870,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:1995: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:1995" +printf "%s\n" "$at_srcdir/policy.at:3369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3369" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3369" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:3370: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3370" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:1995" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3370" $at_failed && at_fn_log_failure $at_traceon; } @@ -312199,20 +324913,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2012: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3387: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2012" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3387" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -312223,7 +324937,7 @@ IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2012" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3387" $at_failed && at_fn_log_failure $at_traceon; } @@ -312242,20 +324956,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2023: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3398: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2023" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3398" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 IN_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable IN_allow-host-ipv6 0 -- ::/0 ::/0 @@ -312266,7 +324980,7 @@ IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2023" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3398" $at_failed && at_fn_log_failure $at_traceon; } @@ -312290,31 +325004,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2050: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3422: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2050" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3422" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2050" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3422" $at_failed && at_fn_log_failure $at_traceon; } @@ -312333,31 +325044,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2061: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3430: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2061" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3430" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_foobar 0 -- ::/0 ::/0 -OUT_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -OUT_foobar 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -OUT_foobar 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2061" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3430" $at_failed && at_fn_log_failure $at_traceon; } @@ -312381,23 +325089,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2097: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3466: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2097" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3466" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -312414,7 +325125,7 @@ FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2097" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3466" $at_failed && at_fn_log_failure $at_traceon; } @@ -312433,23 +325144,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3489: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2117" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3489" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 @@ -312466,7 +325180,7 @@ FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2117" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3489" $at_failed && at_fn_log_failure $at_traceon; } @@ -312487,20 +325201,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3513: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2138" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3513" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -312511,7 +325226,7 @@ PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2138" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3513" $at_failed && at_fn_log_failure $at_traceon; } @@ -312530,20 +325245,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3525: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2149" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3525" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -312554,7 +325270,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2149" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3525" $at_failed && at_fn_log_failure $at_traceon; } @@ -312578,20 +325294,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3554: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2176" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3554" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -312602,7 +325319,7 @@ PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2176" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3554" $at_failed && at_fn_log_failure $at_traceon; } @@ -312621,20 +325338,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2187: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3566: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2187" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3566" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -312645,7 +325363,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2187" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3566" $at_failed && at_fn_log_failure $at_traceon; } @@ -312669,20 +325387,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3595: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2214" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3595" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -312693,7 +325412,7 @@ PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2214" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3595" $at_failed && at_fn_log_failure $at_traceon; } @@ -312712,20 +325431,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3607: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2225" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3607" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -312736,7 +325456,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2225" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3607" $at_failed && at_fn_log_failure $at_traceon; } @@ -312760,20 +325480,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3647: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2261" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3647" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -312781,7 +325501,7 @@ POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2261" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3647" $at_failed && at_fn_log_failure $at_traceon; } @@ -312800,20 +325520,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2269: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3655: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2269" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3655" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 @@ -312821,7 +325541,7 @@ POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2269" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3655" $at_failed && at_fn_log_failure $at_traceon; } @@ -312845,31 +325565,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2293: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3676: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2293" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3676" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2293" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3676" $at_failed && at_fn_log_failure $at_traceon; } @@ -312888,31 +325605,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3684: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2304" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3684" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_foobar 0 -- ::/0 ::/0 -OUT_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -OUT_foobar 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -OUT_foobar 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2304" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3684" $at_failed && at_fn_log_failure $at_traceon; } @@ -312931,15 +325645,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2315: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"HOST\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2315" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="HOST" +printf "%s\n" "$at_srcdir/policy.at:3692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3692" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2315" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3692" $at_failed && at_fn_log_failure $at_traceon; } @@ -312950,15 +325664,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2316" +printf "%s\n" "$at_srcdir/policy.at:3693: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3693" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2316" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3693" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:3694: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3694" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3694" $at_failed && at_fn_log_failure $at_traceon; } @@ -312970,15 +325703,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2320" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:3698: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3698" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2320" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3698" $at_failed && at_fn_log_failure $at_traceon; } @@ -312989,15 +325722,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2321: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2321" +printf "%s\n" "$at_srcdir/policy.at:3699: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3699" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3699" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:3700: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3700" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2321" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3700" $at_failed && at_fn_log_failure $at_traceon; } @@ -313013,22 +325765,22 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2338: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3717: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2338" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3717" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +IN_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable @@ -313037,7 +325789,7 @@ IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2338" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3717" $at_failed && at_fn_log_failure $at_traceon; } @@ -313056,23 +325808,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3728: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2349" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3728" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable IN_allow-host-ipv6 0 -- ::/0 ::/0 @@ -313080,7 +325829,7 @@ IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2349" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3728" $at_failed && at_fn_log_failure $at_traceon; } @@ -313104,28 +325853,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2373: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2373" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3749" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2373" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3749" $at_failed && at_fn_log_failure $at_traceon; } @@ -313144,28 +325893,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2381: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3757: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2381" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3757" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2381" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3757" $at_failed && at_fn_log_failure $at_traceon; } @@ -313189,48 +325936,43 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2422: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3791: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2422" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3791" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +FWD_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +REJECT 0 -- 10.10.10.0/24 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2422" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3791" $at_failed && at_fn_log_failure $at_traceon; } @@ -313249,48 +325991,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2450: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3814: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2450" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3814" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2450" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3814" $at_failed && at_fn_log_failure $at_traceon; } @@ -313311,34 +326035,33 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2479: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3825: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2479" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3825" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2479" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3825" $at_failed && at_fn_log_failure $at_traceon; } @@ -313357,34 +326080,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2493: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3838: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2493" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3838" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2493" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3838" $at_failed && at_fn_log_failure $at_traceon; } @@ -313408,34 +326125,39 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2526: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3870: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2526" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3870" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2526" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3870" $at_failed && at_fn_log_failure $at_traceon; } @@ -313454,34 +326176,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2540: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3889: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2540" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3889" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2540" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3889" $at_failed && at_fn_log_failure $at_traceon; } @@ -313505,34 +326221,39 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2573: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3921: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2573" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3921" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2573" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3921" $at_failed && at_fn_log_failure $at_traceon; } @@ -313551,34 +326272,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2587: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3940: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2587" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3940" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2587" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3940" $at_failed && at_fn_log_failure $at_traceon; } @@ -313602,31 +326317,37 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2634: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3976: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2634" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3976" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "POST_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +POST_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +POST_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 +POST_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2634" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3976" $at_failed && at_fn_log_failure $at_traceon; } @@ -313645,31 +326366,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2645: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:3993: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2645" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3993" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_foobar 0 -- ::/0 ::/0 -POST_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -POST_foobar 0 -- ::/0 ::/0 -POST_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -POST_foobar 0 -- ::/0 ::/0 POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2645" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3993" $at_failed && at_fn_log_failure $at_traceon; } @@ -313693,28 +326409,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2669: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4012: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2669" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4012" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2669" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4012" $at_failed && at_fn_log_failure $at_traceon; } @@ -313733,28 +326449,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2677: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4020: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2677" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4020" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2677" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4020" $at_failed && at_fn_log_failure $at_traceon; } @@ -313773,15 +326487,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2685: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2685" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:4026: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4026" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2685" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4026" $at_failed && at_fn_log_failure $at_traceon; } @@ -313792,15 +326506,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2686: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2686" +printf "%s\n" "$at_srcdir/policy.at:4027: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4027" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2686" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4027" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:4028: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4028" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4028" $at_failed && at_fn_log_failure $at_traceon; } @@ -313812,15 +326545,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2690: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2690" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:4033: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4033" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2690" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4033" $at_failed && at_fn_log_failure $at_traceon; } @@ -313831,15 +326564,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2691: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:2691" +printf "%s\n" "$at_srcdir/policy.at:4034: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4034" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4034" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:4035: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4035" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2691" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4035" $at_failed && at_fn_log_failure $at_traceon; } @@ -313855,20 +326607,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2708: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4052: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2708" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4052" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -313879,7 +326631,7 @@ IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2708" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4052" $at_failed && at_fn_log_failure $at_traceon; } @@ -313898,20 +326650,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2719: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4063: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2719" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4063" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 IN_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable IN_allow-host-ipv6 0 -- ::/0 ::/0 @@ -313922,7 +326674,7 @@ IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2719" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4063" $at_failed && at_fn_log_failure $at_traceon; } @@ -313946,20 +326698,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2743: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4087: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2743" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4087" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -313967,7 +326719,7 @@ OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2743" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4087" $at_failed && at_fn_log_failure $at_traceon; } @@ -313986,20 +326738,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2751: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4095: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2751" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4095" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 @@ -314007,7 +326759,7 @@ OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2751" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4095" $at_failed && at_fn_log_failure $at_traceon; } @@ -314031,20 +326783,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2789: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2789" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4130" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -314054,22 +326806,19 @@ FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2789" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4130" $at_failed && at_fn_log_failure $at_traceon; } @@ -314088,20 +326837,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2814: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2814" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4152" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_foobar 0 -- ::/0 ::/0 FWD_internal 0 -- ::/0 ::/0 @@ -314111,22 +326860,19 @@ FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2814" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4152" $at_failed && at_fn_log_failure $at_traceon; } @@ -314147,34 +326893,32 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2840: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4175: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2840" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4175" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2840" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4175" $at_failed && at_fn_log_failure $at_traceon; } @@ -314193,34 +326937,32 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2854: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4187: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2854" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4187" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2854" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4187" $at_failed && at_fn_log_failure $at_traceon; } @@ -314244,20 +326986,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2884: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4215: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2884" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4215" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -314268,7 +327010,7 @@ PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2884" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4215" $at_failed && at_fn_log_failure $at_traceon; } @@ -314287,20 +327029,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2895: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2895" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4226" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -314311,7 +327053,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2895" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4226" $at_failed && at_fn_log_failure $at_traceon; } @@ -314335,20 +327077,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2922: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2922" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4253" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -314359,7 +327101,7 @@ PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2922" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4253" $at_failed && at_fn_log_failure $at_traceon; } @@ -314378,20 +327120,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2933: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2933" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4264" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -314402,7 +327144,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2933" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4264" $at_failed && at_fn_log_failure $at_traceon; } @@ -314426,30 +327168,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2974: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2974" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4302" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2974" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4302" $at_failed && at_fn_log_failure $at_traceon; } @@ -314468,30 +327208,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:2984: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:2984" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4310" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -POST_foobar 0 -- ::/0 ::/0 POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -POST_foobar 0 -- ::/0 ::/0 POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:2984" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4310" $at_failed && at_fn_log_failure $at_traceon; } @@ -314515,20 +327253,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3007: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4331: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3007" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4331" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -314536,7 +327274,7 @@ OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3007" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4331" $at_failed && at_fn_log_failure $at_traceon; } @@ -314555,20 +327293,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3015: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4339: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3015" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4339" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 @@ -314576,7 +327314,7 @@ OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3015" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4339" $at_failed && at_fn_log_failure $at_traceon; } @@ -314595,15 +327333,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3023: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3023" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:4347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4347" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3023" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4347" $at_failed && at_fn_log_failure $at_traceon; } @@ -314614,15 +327352,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3024: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3024" +printf "%s\n" "$at_srcdir/policy.at:4348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4348" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3024" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4348" $at_failed && at_fn_log_failure $at_traceon; } @@ -314633,15 +327371,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3025: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3025" +printf "%s\n" "$at_srcdir/policy.at:4349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4349" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4349" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:4350: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4350" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3025" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4350" $at_failed && at_fn_log_failure $at_traceon; } @@ -314653,15 +327410,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3029: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3029" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 +printf "%s\n" "$at_srcdir/policy.at:4355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4355" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3029" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4355" $at_failed && at_fn_log_failure $at_traceon; } @@ -314672,15 +327429,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3030: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3030" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:4356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4356" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3030" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4356" $at_failed && at_fn_log_failure $at_traceon; } @@ -314691,15 +327448,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3031" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="internal" +printf "%s\n" "$at_srcdir/policy.at:4357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4357" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3031" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4357" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:4358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4358" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4358" $at_failed && at_fn_log_failure $at_traceon; } @@ -314715,31 +327491,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3048: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3048" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -IN_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +IN_public 0 -- 10.10.10.0/24 0.0.0.0/0 REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3048" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4375" $at_failed && at_fn_log_failure $at_traceon; } @@ -314758,28 +327534,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3059: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3059" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4386" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable IN_allow-host-ipv6 0 -- ::/0 ::/0 IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3059" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4386" $at_failed && at_fn_log_failure $at_traceon; } @@ -314803,28 +327579,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3080: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4407: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3080" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4407" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "OUT_public 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3080" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4407" $at_failed && at_fn_log_failure $at_traceon; } @@ -314843,26 +327619,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3088: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4415: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3088" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4415" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3088" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4415" $at_failed && at_fn_log_failure $at_traceon; } @@ -314886,34 +327662,33 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3122: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4448: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3122" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4448" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 -FWD_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "FWD_public 0 -- 10.10.10.0/24 10.10.10.0/24 REJECT 0 -- 10.10.10.0/24 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_public 0 -- 10.10.10.0/24 0.0.0.0/0 REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_public 0 -- 10.10.10.0/24 0.0.0.0/0 REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable FWD_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 -FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 +FWD_internal 0 -- 0.0.0.0/0 10.10.10.0/24 REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -314922,7 +327697,7 @@ FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3122" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4448" $at_failed && at_fn_log_failure $at_traceon; } @@ -314941,22 +327716,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4470: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3145" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4470" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable @@ -314964,7 +327740,7 @@ FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3145" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4470" $at_failed && at_fn_log_failure $at_traceon; } @@ -314985,34 +327761,33 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3156: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4482: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3156" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4482" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_public 0 -- 10.10.10.0/24 0.0.0.0/0 RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3156" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4482" $at_failed && at_fn_log_failure $at_traceon; } @@ -315031,28 +327806,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4495: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3170" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4495" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3170" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4495" $at_failed && at_fn_log_failure $at_traceon; } @@ -315076,40 +327852,39 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4528: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3203" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4528" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_public 0 -- 10.10.10.0/24 10.10.10.0/24 RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_public 0 -- 10.10.10.0/24 0.0.0.0/0 RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +PRE_internal 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3203" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4528" $at_failed && at_fn_log_failure $at_traceon; } @@ -315128,28 +327903,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4547: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3223" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4547" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3223" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4547" $at_failed && at_fn_log_failure $at_traceon; } @@ -315173,40 +327949,39 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4580: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3256" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4580" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_public 0 -- 10.10.10.0/24 10.10.10.0/24 RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_public 0 -- 10.10.10.0/24 0.0.0.0/0 RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +PRE_internal 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3256" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4580" $at_failed && at_fn_log_failure $at_traceon; } @@ -315225,28 +328000,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3276: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4599: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3276" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4599" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3276" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4599" $at_failed && at_fn_log_failure $at_traceon; } @@ -315270,28 +328046,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4635: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3312" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4635" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 -POST_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "POST_public 0 -- 10.10.10.0/24 10.10.10.0/24 RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -POST_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 -POST_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +POST_public 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 +POST_internal 0 -- 10.10.10.0/24 0.0.0.0/0 RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 @@ -315299,7 +328073,7 @@ POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3312" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4635" $at_failed && at_fn_log_failure $at_traceon; } @@ -315318,26 +328092,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3328: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4649: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3328" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4649" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3328" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4649" $at_failed && at_fn_log_failure $at_traceon; } @@ -315361,28 +328135,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4668: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3347" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4668" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "OUT_public 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3347" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4668" $at_failed && at_fn_log_failure $at_traceon; } @@ -315401,26 +328175,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4676: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3355" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4676" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3355" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4676" $at_failed && at_fn_log_failure $at_traceon; } @@ -315439,15 +328213,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3361: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3361" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:4682: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4682" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3361" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4682" $at_failed && at_fn_log_failure $at_traceon; } @@ -315458,15 +328232,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3362" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="internal" +printf "%s\n" "$at_srcdir/policy.at:4683: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4683" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3362" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4683" $at_failed && at_fn_log_failure $at_traceon; } @@ -315477,15 +328251,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3363: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3363" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 +printf "%s\n" "$at_srcdir/policy.at:4684: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4684" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3363" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4684" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:4685: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4685" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source=10.10.10.0/24 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4685" $at_failed && at_fn_log_failure $at_traceon; } @@ -315497,15 +328290,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3367: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3367" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 +printf "%s\n" "$at_srcdir/policy.at:4690: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4690" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3367" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4690" $at_failed && at_fn_log_failure $at_traceon; } @@ -315516,15 +328309,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3368: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3368" +printf "%s\n" "$at_srcdir/policy.at:4691: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4691" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-interface=foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4691" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:4692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4692" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3368" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4692" $at_failed && at_fn_log_failure $at_traceon; } @@ -315535,15 +328347,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3369: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3369" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:4693: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4693" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3369" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4693" $at_failed && at_fn_log_failure $at_traceon; } @@ -315559,22 +328371,22 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4710: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3386" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4710" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +IN_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable @@ -315583,7 +328395,7 @@ IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3386" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4710" $at_failed && at_fn_log_failure $at_traceon; } @@ -315602,23 +328414,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3397: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4721: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3397" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4721" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable IN_allow-host-ipv6 0 -- ::/0 ::/0 @@ -315626,7 +328435,7 @@ IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3397" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4721" $at_failed && at_fn_log_failure $at_traceon; } @@ -315650,28 +328459,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3421: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4742: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3421" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4742" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3421" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4742" $at_failed && at_fn_log_failure $at_traceon; } @@ -315690,28 +328499,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3429: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3429" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4750" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3429" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4750" $at_failed && at_fn_log_failure $at_traceon; } @@ -315735,43 +328542,42 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3465: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4783: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3465" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4783" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +REJECT 0 -- 10.10.10.0/24 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3465" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4783" $at_failed && at_fn_log_failure $at_traceon; } @@ -315790,33 +328596,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3488: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3488" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4805" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable @@ -315826,7 +328619,7 @@ FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3488" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4805" $at_failed && at_fn_log_failure $at_traceon; } @@ -315847,23 +328640,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3512: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4816: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3512" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4816" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -315872,7 +328665,7 @@ PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3512" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4816" $at_failed && at_fn_log_failure $at_traceon; } @@ -315891,24 +328684,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3524: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4828: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3524" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4828" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -315916,7 +328705,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3524" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4828" $at_failed && at_fn_log_failure $at_traceon; } @@ -315940,32 +328729,37 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3553: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4858: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3553" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4858" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3553" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4858" $at_failed && at_fn_log_failure $at_traceon; } @@ -315984,24 +328778,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3565: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4875: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3565" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4875" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -316009,7 +328799,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3565" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4875" $at_failed && at_fn_log_failure $at_traceon; } @@ -316033,32 +328823,37 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3594: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4905: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3594" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4905" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3594" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4905" $at_failed && at_fn_log_failure $at_traceon; } @@ -316077,24 +328872,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3606: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4922: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3606" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4922" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -316102,7 +328893,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3606" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4922" $at_failed && at_fn_log_failure $at_traceon; } @@ -316126,28 +328917,36 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3646: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4957: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3646" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4957" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +POST_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 +POST_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +POST_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 +POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 +RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3646" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4957" $at_failed && at_fn_log_failure $at_traceon; } @@ -316166,28 +328965,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3654: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4973: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3654" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4973" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -POST_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3654" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4973" $at_failed && at_fn_log_failure $at_traceon; } @@ -316211,28 +329008,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3675: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:4992: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3675" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4992" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3675" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4992" $at_failed && at_fn_log_failure $at_traceon; } @@ -316251,28 +329048,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3683: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5000: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3683" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5000" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3683" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5000" $at_failed && at_fn_log_failure $at_traceon; } @@ -316291,15 +329086,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3691: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3691" +printf "%s\n" "$at_srcdir/policy.at:5006: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5006" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3691" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5006" $at_failed && at_fn_log_failure $at_traceon; } @@ -316310,15 +329105,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3692" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:5007: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5007" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3692" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5007" $at_failed && at_fn_log_failure $at_traceon; } @@ -316329,15 +329124,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3693: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3693" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 +printf "%s\n" "$at_srcdir/policy.at:5008: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5008" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3693" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5008" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:5009: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5009" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5009" $at_failed && at_fn_log_failure $at_traceon; } @@ -316349,15 +329163,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3697: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3697" +printf "%s\n" "$at_srcdir/policy.at:5014: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5014" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3697" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5014" $at_failed && at_fn_log_failure $at_traceon; } @@ -316368,15 +329182,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3698: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3698" +printf "%s\n" "$at_srcdir/policy.at:5015: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=10.20.20.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5015" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=10.20.20.0/24 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5015" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:5016: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5016" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3698" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5016" $at_failed && at_fn_log_failure $at_traceon; } @@ -316387,15 +329220,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3699: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:3699" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:5017: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5017" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3699" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5017" $at_failed && at_fn_log_failure $at_traceon; } @@ -316411,31 +329244,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3716: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5034: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3716" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5034" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 IN_internal 0 -- 10.10.10.0/24 0.0.0.0/0 REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 10.20.20.0/24 0.0.0.0/0 +IN_public 0 -- 10.20.20.0/24 0.0.0.0/0 +REJECT 0 -- 10.20.20.0/24 0.0.0.0/0 reject-with icmp-port-unreachable IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3716" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5034" $at_failed && at_fn_log_failure $at_traceon; } @@ -316454,28 +329287,25 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3727: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5045: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3727" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5045" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 IN_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3727" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5045" $at_failed && at_fn_log_failure $at_traceon; } @@ -316499,28 +329329,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3748: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5063: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3748" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5063" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 10.20.20.0/24 +RETURN 0 -- 0.0.0.0/0 10.20.20.0/24 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3748" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5063" $at_failed && at_fn_log_failure $at_traceon; } @@ -316539,26 +329369,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3756: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5071: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3756" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5071" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3756" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5071" $at_failed && at_fn_log_failure $at_traceon; } @@ -316582,43 +329410,42 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3790: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3790" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5102" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 -FWD_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 10.10.10.0/24 10.10.10.0/24 REJECT 0 -- 10.10.10.0/24 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_foobar 0 -- 10.10.10.0/24 10.20.20.0/24 +FWD_internal 0 -- 10.10.10.0/24 10.20.20.0/24 +REJECT 0 -- 10.10.10.0/24 10.20.20.0/24 reject-with icmp-port-unreachable FWD_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 10.20.20.0/24 10.10.10.0/24 +REJECT 0 -- 10.20.20.0/24 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 10.20.20.0/24 10.20.20.0/24 +REJECT 0 -- 10.20.20.0/24 10.20.20.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 10.20.20.0/24 0.0.0.0/0 +REJECT 0 -- 10.20.20.0/24 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.20.20.0/24 +REJECT 0 -- 0.0.0.0/0 10.20.20.0/24 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3790" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5102" $at_failed && at_fn_log_failure $at_traceon; } @@ -316637,30 +329464,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3813: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3813" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5124" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3813" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5124" $at_failed && at_fn_log_failure $at_traceon; } @@ -316681,33 +329502,33 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3824: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3824" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5129" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_foobar 0 -- 10.10.10.0/24 10.20.20.0/24 PRE_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 10.20.20.0/24 0.0.0.0/0 +PRE_public 0 -- 10.20.20.0/24 0.0.0.0/0 +RETURN 0 -- 10.20.20.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3824" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5129" $at_failed && at_fn_log_failure $at_traceon; } @@ -316726,28 +329547,25 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3837: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3837" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5142" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3837" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5142" $at_failed && at_fn_log_failure $at_traceon; } @@ -316771,39 +329589,45 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3869: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3869" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5177" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_foobar 0 -- 10.10.10.0/24 10.20.20.0/24 +PRE_internal 0 -- 10.10.10.0/24 10.20.20.0/24 +RETURN 0 -- 10.10.10.0/24 10.20.20.0/24 PRE_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 10.20.20.0/24 0.0.0.0/0 +PRE_public 0 -- 10.20.20.0/24 10.10.10.0/24 +RETURN 0 -- 10.20.20.0/24 10.10.10.0/24 +PRE_public 0 -- 10.20.20.0/24 10.20.20.0/24 +RETURN 0 -- 10.20.20.0/24 10.20.20.0/24 +PRE_public 0 -- 10.20.20.0/24 0.0.0.0/0 +RETURN 0 -- 10.20.20.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 +PRE_public 0 -- 0.0.0.0/0 10.20.20.0/24 +RETURN 0 -- 0.0.0.0/0 10.20.20.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3869" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5177" $at_failed && at_fn_log_failure $at_traceon; } @@ -316822,28 +329646,25 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3888: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3888" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5202" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3888" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5202" $at_failed && at_fn_log_failure $at_traceon; } @@ -316867,39 +329688,45 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3920: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5237: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3920" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5237" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +PRE_foobar 0 -- 10.10.10.0/24 10.20.20.0/24 +PRE_internal 0 -- 10.10.10.0/24 10.20.20.0/24 +RETURN 0 -- 10.10.10.0/24 10.20.20.0/24 PRE_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 10.20.20.0/24 0.0.0.0/0 +PRE_public 0 -- 10.20.20.0/24 10.10.10.0/24 +RETURN 0 -- 10.20.20.0/24 10.10.10.0/24 +PRE_public 0 -- 10.20.20.0/24 10.20.20.0/24 +RETURN 0 -- 10.20.20.0/24 10.20.20.0/24 +PRE_public 0 -- 10.20.20.0/24 0.0.0.0/0 +RETURN 0 -- 10.20.20.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 +PRE_public 0 -- 0.0.0.0/0 10.20.20.0/24 +RETURN 0 -- 0.0.0.0/0 10.20.20.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3920" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5237" $at_failed && at_fn_log_failure $at_traceon; } @@ -316918,28 +329745,25 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3939: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3939" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5262" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3939" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5262" $at_failed && at_fn_log_failure $at_traceon; } @@ -316963,37 +329787,42 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3975: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5294: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3975" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5294" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_foobar 0 -- 10.10.10.0/24 10.10.10.0/24 -POST_internal 0 -- 10.10.10.0/24 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "POST_internal 0 -- 10.10.10.0/24 10.10.10.0/24 RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 +POST_internal 0 -- 10.20.20.0/24 10.10.10.0/24 +RETURN 0 -- 10.20.20.0/24 10.10.10.0/24 POST_internal 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 +POST_foobar 0 -- 10.10.10.0/24 10.20.20.0/24 +POST_public 0 -- 10.10.10.0/24 10.20.20.0/24 +RETURN 0 -- 10.10.10.0/24 10.20.20.0/24 +POST_public 0 -- 10.20.20.0/24 10.20.20.0/24 +RETURN 0 -- 10.20.20.0/24 10.20.20.0/24 +POST_public 0 -- 0.0.0.0/0 10.20.20.0/24 +RETURN 0 -- 0.0.0.0/0 10.20.20.0/24 POST_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 +POST_public 0 -- 10.20.20.0/24 0.0.0.0/0 +RETURN 0 -- 10.20.20.0/24 0.0.0.0/0 POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3975" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5294" $at_failed && at_fn_log_failure $at_traceon; } @@ -317012,26 +329841,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:3992: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:3992" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5316" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -POST_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "POST_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:3992" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5316" $at_failed && at_fn_log_failure $at_traceon; } @@ -317055,28 +329882,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4011: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5333: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4011" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5333" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +echo >>"$at_stdout"; printf "%s\n" "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +OUT_public 0 -- 0.0.0.0/0 10.20.20.0/24 +RETURN 0 -- 0.0.0.0/0 10.20.20.0/24 OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4011" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5333" $at_failed && at_fn_log_failure $at_traceon; } @@ -317095,26 +329922,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4019: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5341: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4019" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5341" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "OUT_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4019" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5341" $at_failed && at_fn_log_failure $at_traceon; } @@ -317133,15 +329958,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4025: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4025" +printf "%s\n" "$at_srcdir/policy.at:5345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5345" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4025" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5345" $at_failed && at_fn_log_failure $at_traceon; } @@ -317152,15 +329977,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4026: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"ANY\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4026" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="ANY" +printf "%s\n" "$at_srcdir/policy.at:5346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5346" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4026" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5346" $at_failed && at_fn_log_failure $at_traceon; } @@ -317171,15 +329996,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4027: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4027" +printf "%s\n" "$at_srcdir/policy.at:5347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5347" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4027" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5347" $at_failed && at_fn_log_failure $at_traceon; } @@ -317189,17 +330014,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:4032: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4032" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 +printf "%s\n" "$at_srcdir/policy.at:5348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=10.20.20.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5348" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source=10.20.20.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4032" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5348" $at_failed && at_fn_log_failure $at_traceon; } @@ -317209,75 +330033,148 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:4033: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4033" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" + if test x"" != x"ignore"; then + printf "%s\n" "policy.at:5350" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:5350" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_336 +#AT_START_337 +at_fn_group_banner 337 'policy.at:5352' \ + "policy - interfaces/sources" " " 11 +at_xfail=no +( + printf "%s\n" "337. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/policy.at:5352: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5352" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4033" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/policy.at:5352: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:5352" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" +$at_failed && at_fn_log_failure +$at_traceon; } + fi - - - - { set +x -$as_echo "$at_srcdir/policy.at:4034: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4034" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" + { set +x +printf "%s\n" "$at_srcdir/policy.at:5352: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:5352" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4034" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/policy.at:4051: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4051" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/policy.at:5352: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5352" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4051" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5352" $at_failed && at_fn_log_failure $at_traceon; } @@ -317285,57 +330182,167 @@ $at_traceon; } + printf "%s\n" "policy.at:5352" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/policy.at:5352" + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "policy.at:5352" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:5352" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "policy.at:5352" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:5352" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "policy.at:5352" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:5352" + + - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/policy.at:4062: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4062" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + { set +x +printf "%s\n" "$at_srcdir/policy.at:5355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5355" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4062" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5355" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - + { set +x +printf "%s\n" "$at_srcdir/policy.at:5356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5356" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5356" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -317344,28 +330351,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4086: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4086" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:5357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5357" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4086" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5357" $at_failed && at_fn_log_failure $at_traceon; } @@ -317375,46 +330369,57 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:5358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5358" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5358" +$at_failed && at_fn_log_failure +$at_traceon; } + - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/policy.at:4094: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4094" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/policy.at:5359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5359" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4094" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5359" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:5359: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5359" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5359" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -317429,23 +330434,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5375: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4129" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5375" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -317454,17 +330456,9 @@ FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4129" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5375" $at_failed && at_fn_log_failure $at_traceon; } @@ -317483,23 +330477,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5386: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4151" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5386" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_foobar 0 -- ::/0 ::/0 FWD_internal 0 -- ::/0 ::/0 @@ -317508,17 +330499,9 @@ FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4151" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5386" $at_failed && at_fn_log_failure $at_traceon; } @@ -317537,22 +330520,45 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:5401: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5401" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface foobar1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5401" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:4174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5418: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4174" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5418" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -317564,7 +330570,7 @@ PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4174" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5418" $at_failed && at_fn_log_failure $at_traceon; } @@ -317583,20 +330589,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4186: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5430: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4186" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5430" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 @@ -317608,7 +330614,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4186" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5430" $at_failed && at_fn_log_failure $at_traceon; } @@ -317632,31 +330638,42 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4214: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5468: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4214" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5468" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4214" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5468" $at_failed && at_fn_log_failure $at_traceon; } @@ -317675,31 +330692,42 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5490: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4225" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5490" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4225" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5490" $at_failed && at_fn_log_failure $at_traceon; } @@ -317718,25 +330746,46 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:5515: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5515" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface foobar2 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5515" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:4252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5535: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4252" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5535" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 @@ -317745,9 +330794,12 @@ RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 +RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4252" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5535" $at_failed && at_fn_log_failure $at_traceon; } @@ -317766,20 +330818,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5550: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4263" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5550" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 @@ -317788,9 +330841,12 @@ RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 +RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4263" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5550" $at_failed && at_fn_log_failure $at_traceon; } @@ -317814,28 +330870,57 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5606: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4301" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5606" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4301" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5606" $at_failed && at_fn_log_failure $at_traceon; } @@ -317854,28 +330939,57 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5643: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4309" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5643" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -POST_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -POST_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4309" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5643" $at_failed && at_fn_log_failure $at_traceon; } @@ -317894,33 +331008,57 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:5683: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-interface foobar2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5683" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-interface foobar2 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5683" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:4330: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5700: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4330" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5700" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4330" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5700" $at_failed && at_fn_log_failure $at_traceon; } @@ -317939,28 +331077,32 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4338: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5712: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4338" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5712" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4338" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5712" $at_failed && at_fn_log_failure $at_traceon; } @@ -317978,190 +331120,48 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:4346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4346" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4346" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:4347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4347" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4347" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:4348: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4348" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4348" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:4349: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4349" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4349" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:4354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-interface=foobar1 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4354" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:4355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4355" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=10.10.10.0/24 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4355" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:4356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4356" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4356" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:4357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4357" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4357" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:4374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5750: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4374" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5750" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -IN_public 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4374" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5750" $at_failed && at_fn_log_failure $at_traceon; } @@ -318180,28 +331180,42 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5772: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4385" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5772" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4385" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5772" $at_failed && at_fn_log_failure $at_traceon; } @@ -318220,33 +331234,54 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:5798: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-interface foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5798" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-interface foobar1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5798" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:4406: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5812: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4406" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5812" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4406" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5812" $at_failed && at_fn_log_failure $at_traceon; } @@ -318265,26 +331300,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4414: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5821: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4414" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5821" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 ::/0 +PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4414" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5821" $at_failed && at_fn_log_failure $at_traceon; } @@ -318308,42 +331346,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4447: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5845: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4447" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5845" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_public 0 -- 10.10.10.0/24 10.10.10.0/24 -REJECT 0 -- 10.10.10.0/24 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 -FWD_internal 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4447" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5845" $at_failed && at_fn_log_failure $at_traceon; } @@ -318362,20 +331389,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4469: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5856: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4469" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5856" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable FWD_foobar 0 -- ::/0 ::/0 FWD_internal 0 -- ::/0 ::/0 @@ -318386,7 +331413,7 @@ FWD_public 0 -- ::/0 ::/0 REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4469" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5856" $at_failed && at_fn_log_failure $at_traceon; } @@ -318405,35 +331432,64 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:5871: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5871" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-source 10.10.10.0/24 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5871" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:4481: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5895: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4481" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5895" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +PRE_public 0 -- 10.10.10.0/24 10.10.10.0/24 +RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 PRE_public 0 -- 10.10.10.0/24 0.0.0.0/0 RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 +PRE_internal 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 +RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4481" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5895" $at_failed && at_fn_log_failure $at_traceon; } @@ -318452,20 +331508,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4494: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5914: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4494" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5914" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 @@ -318474,7 +331530,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4494" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5914" $at_failed && at_fn_log_failure $at_traceon; } @@ -318494,24 +331550,60 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:5926: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-source 1234::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5926" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-source 1234::/64 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5926" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + else + : + + fi + + + + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:4527: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5933: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4527" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5933" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_public 0 -- 10.10.10.0/24 10.10.10.0/24 RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 PRE_public 0 -- 10.10.10.0/24 0.0.0.0/0 @@ -318530,7 +331622,7 @@ PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4527" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5933" $at_failed && at_fn_log_failure $at_traceon; } @@ -318549,29 +331641,39 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4546: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:5952: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4546" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5952" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 1234::/64 ::/0 +PRE_public 0 -- 1234::/64 1234::/64 +RETURN 0 -- 1234::/64 1234::/64 +PRE_public 0 -- 1234::/64 ::/0 +RETURN 0 -- 1234::/64 ::/0 +PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_foobar 0 -- ::/0 1234::/64 +PRE_internal 0 -- ::/0 1234::/64 +RETURN 0 -- ::/0 1234::/64 PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 PRE_allow-host-ipv6 0 -- ::/0 ::/0 +PRE_public 0 -- ::/0 1234::/64 +RETURN 0 -- ::/0 1234::/64 PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4546" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5952" $at_failed && at_fn_log_failure $at_traceon; } @@ -318591,24 +331693,59 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:5974: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-source 1234::/64 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5974" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-source 1234::/64 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5974" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + else + : + + fi + + + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:4579: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:6000: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4579" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6000" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 PRE_public 0 -- 10.10.10.0/24 10.10.10.0/24 RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 PRE_public 0 -- 10.10.10.0/24 0.0.0.0/0 @@ -318627,7 +331764,7 @@ PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4579" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6000" $at_failed && at_fn_log_failure $at_traceon; } @@ -318646,20 +331783,20 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4598: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:6019: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4598" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6019" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "PRE_allow-host-ipv6 0 -- ::/0 ::/0 PRE_foobar 0 -- ::/0 ::/0 PRE_internal 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 @@ -318668,7 +331805,7 @@ PRE_public 0 -- ::/0 ::/0 RETURN 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4598" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6019" $at_failed && at_fn_log_failure $at_traceon; } @@ -318687,39 +331824,56 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/policy.at:6032: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6032" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-source 10.10.10.0/24 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6032" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:4634: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:6048: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4634" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6048" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_public 0 -- 10.10.10.0/24 10.10.10.0/24 -RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -POST_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -POST_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -POST_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4634" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6048" $at_failed && at_fn_log_failure $at_traceon; } @@ -318738,26 +331892,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4648: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:6059: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4648" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6059" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -POST_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +FWD_internal 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4648" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6059" $at_failed && at_fn_log_failure $at_traceon; } @@ -318775,81 +331934,277 @@ $at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "policy.at:6071" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:6071" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_337 +#AT_START_338 +at_fn_group_banner 338 'policy.at:6073' \ + "policy - target" " " 11 +at_xfail=no +( + printf "%s\n" "338. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi - { set +x -$as_echo "$at_srcdir/policy.at:4667: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4667" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/policy.at:6073: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6073" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -OUT_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4667" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/policy.at:6073: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6073" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } + fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:6073: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6073" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" +$at_failed && at_fn_log_failure +$at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - if $IP6TABLES -L >/dev/null 2>&1; then - : + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/policy.at:4675: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4675" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/policy.at:6073: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6073" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4675" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6073" $at_failed && at_fn_log_failure $at_traceon; } - else - : + + printf "%s\n" "policy.at:6073" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/policy.at:6073" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "policy.at:6073" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6073" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "policy.at:6073" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6073" fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "policy.at:6073" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:6073" @@ -318859,15 +332214,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4681: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4681" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" +printf "%s\n" "$at_srcdir/policy.at:6076: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6076" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4681" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6076" $at_failed && at_fn_log_failure $at_traceon; } @@ -318877,16 +332232,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:4682: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4682" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:6078: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=CONTINUE " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6078" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=CONTINUE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4682" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6078" $at_failed && at_fn_log_failure $at_traceon; } @@ -318897,15 +332253,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4683: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4683" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-interface=foobar1 +printf "%s\n" "$at_srcdir/policy.at:6079: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6079" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4683" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6079" $at_failed && at_fn_log_failure $at_traceon; } @@ -318916,15 +332272,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4684: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4684" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source=10.10.10.0/24 +printf "%s\n" "$at_srcdir/policy.at:6080: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6080" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4684" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6080" $at_failed && at_fn_log_failure $at_traceon; } @@ -318934,17 +332290,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:4689: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4689" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 +printf "%s\n" "$at_srcdir/policy.at:6081: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=REJECT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6081" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=REJECT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4689" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6081" $at_failed && at_fn_log_failure $at_traceon; } @@ -318955,15 +332310,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4690: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4690" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-interface=foobar0 +printf "%s\n" "$at_srcdir/policy.at:6082: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DENY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6082" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DENY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4690" +at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6082" $at_failed && at_fn_log_failure $at_traceon; } @@ -318974,15 +332329,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4691: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4691" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" +printf "%s\n" "$at_srcdir/policy.at:6083: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=default " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6083" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4691" +at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6083" $at_failed && at_fn_log_failure $at_traceon; } @@ -318992,16 +332347,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:4692: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:4692" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:6086: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6086" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4692" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6086" $at_failed && at_fn_log_failure $at_traceon; } @@ -319011,37 +332367,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/policy.at:4709: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4709" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6087: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6087" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -IN_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4709" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6087" $at_failed && at_fn_log_failure $at_traceon; } @@ -319051,51 +332386,37 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:4720: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4720" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6088: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6088" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4720" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6088" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/policy.at:6089: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6089" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6089" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -319105,28 +332426,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4741: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4741" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6090: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6090" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4741" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6090" $at_failed && at_fn_log_failure $at_traceon; } @@ -319136,47 +332444,21 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:4749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4749" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6090: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6090" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4749" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6090" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - @@ -319188,42 +332470,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4782: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:6103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4782" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6103" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 10.10.10.0/24 10.10.10.0/24 -REJECT 0 -- 10.10.10.0/24 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "IN_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4782" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6103" $at_failed && at_fn_log_failure $at_traceon; } @@ -319242,30 +332510,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4804: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:6111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4804" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6111" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "IN_foobar_pre 0 -- ::/0 ::/0 +IN_foobar_log 0 -- ::/0 ::/0 +IN_foobar_deny 0 -- ::/0 ::/0 +IN_foobar_allow 0 -- ::/0 ::/0 +IN_foobar_post 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4804" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6111" $at_failed && at_fn_log_failure $at_traceon; } @@ -319283,39 +332549,26 @@ $at_traceon; } + if test x"ignore" != x"ignore"; then + printf "%s\n" "policy.at:6120" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:6120" + fi - { set +x -$as_echo "$at_srcdir/policy.at:4815: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4815" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4815" -$at_failed && at_fn_log_failure -$at_traceon; } - + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_338 +#AT_START_339 +at_fn_group_banner 339 'policy.at:6122' \ + "policy - from file" " " 11 +at_xfail=no +( + printf "%s\n" "339. $at_setup_line: testing $at_desc ..." + $at_traceon @@ -319325,87 +332578,119 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi - { set +x -$as_echo "$at_srcdir/policy.at:4827: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4827" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/policy.at:6122: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6122" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4827" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } - - else - : + { set +x +printf "%s\n" "$at_srcdir/policy.at:6122: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6122" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" +$at_failed && at_fn_log_failure +$at_traceon; } fi + { set +x +printf "%s\n" "$at_srcdir/policy.at:6122: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6122" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" +$at_failed && at_fn_log_failure +$at_traceon; } + + + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/policy.at:4857: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4857" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/policy.at:6122: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6122" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 -RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4857" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6122" $at_failed && at_fn_log_failure $at_traceon; } @@ -319413,148 +332698,234 @@ $at_traceon; } + printf "%s\n" "policy.at:6122" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/policy.at:6122" + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + - if $IP6TABLES -L >/dev/null 2>&1; then - : + + + + + - { set +x -$as_echo "$at_srcdir/policy.at:4874: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4874" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + + + + + + + + + + + + + -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4874" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + +_ATEOF - else - : + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "policy.at:6122" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6122" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - fi + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "policy.at:6122" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6122" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "policy.at:6122" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:6122" - { set +x -$as_echo "$at_srcdir/policy.at:4904: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4904" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + + { set +x +printf "%s\n" "$at_srcdir/policy.at:6125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6125" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 -RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4904" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6125" $at_failed && at_fn_log_failure $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/policy.at:6126: ls \"./policies/allow-host-ipv6.xml\"" +at_fn_check_prepare_trace "policy.at:6126" +( $at_check_trace; ls "./policies/allow-host-ipv6.xml" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6126" +$at_failed && at_fn_log_failure +$at_traceon; } + + { set +x +printf "%s\n" "$at_srcdir/policy.at:6127: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy-from-file \"./policies/allow-host-ipv6.xml\" --name my-allow-host-ipv6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6127" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy-from-file "./policies/allow-host-ipv6.xml" --name my-allow-host-ipv6 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6127" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : +{ set +x +printf "%s\n" "$at_srcdir/policy.at:6128: ls \"./policies/my-allow-host-ipv6.xml\"" +at_fn_check_prepare_trace "policy.at:6128" +( $at_check_trace; ls "./policies/my-allow-host-ipv6.xml" +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6128" +$at_failed && at_fn_log_failure +$at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:4921: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4921" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + { set +x +printf "%s\n" "$at_srcdir/policy.at:6129: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6129" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 my-allow-host-ipv6 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4921" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6129" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - + { set +x +printf "%s\n" "$at_srcdir/policy.at:6132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6132" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6132" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -319563,36 +332934,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:4956: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4956" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6132" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- 10.10.10.0/24 10.10.10.0/24 -RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -POST_internal 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -POST_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -POST_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4956" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6132" $at_failed && at_fn_log_failure $at_traceon; } @@ -319603,46 +332953,47 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:4972: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4972" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-policies " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6133" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-policies ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -POST_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "allow-host-ipv6 my-allow-host-ipv6 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4972" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6133" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + if test x"" != x"ignore"; then + printf "%s\n" "policy.at:6137" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:6137" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_339 +#AT_START_340 +at_fn_group_banner 340 'policy.at:6139' \ + "policy - zone drifting not allowed" " " 11 +at_xfail=no +( + printf "%s\n" "340. $at_setup_line: testing $at_desc ..." + $at_traceon @@ -319652,95 +333003,119 @@ $at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" - { set +x -$as_echo "$at_srcdir/policy.at:4991: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4991" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/policy.at:6139: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6139" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4991" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } + else + { set +x +printf "%s\n" "$at_srcdir/policy.at:6139: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6139" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" +$at_failed && at_fn_log_failure +$at_traceon; } + fi - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/policy.at:4999: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:4999" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + { set +x +printf "%s\n" "$at_srcdir/policy.at:6139: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6139" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -OUT_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:4999" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/policy.at:5005: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5005" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/policy.at:6139: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6139" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5005" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6139" $at_failed && at_fn_log_failure $at_traceon; } @@ -319748,78 +333123,129 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/policy.at:5006: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5006" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5006" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "policy.at:6139" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/policy.at:6139" + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/policy.at:5007: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5007" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5007" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "policy.at:6139" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6139" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/policy.at:5008: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5008" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-interface=foobar0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5008" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "policy.at:6139" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6139" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "policy.at:6139" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:6139" - { set +x -$as_echo "$at_srcdir/policy.at:5013: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5013" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --add-source=10.10.10.0/24 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5013" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -319828,15 +333254,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5014: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-source=10.20.20.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5014" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-source=10.20.20.0/24 +printf "%s\n" "$at_srcdir/policy.at:6142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6142" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5014" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6142" $at_failed && at_fn_log_failure $at_traceon; } @@ -319847,15 +333273,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5015: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5015" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-ingress-zone="internal" +printf "%s\n" "$at_srcdir/policy.at:6143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.0.0.0/8 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6143" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5015" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6143" $at_failed && at_fn_log_failure $at_traceon; } @@ -319866,15 +333292,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5016: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5016" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone="public" +printf "%s\n" "$at_srcdir/policy.at:6144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.10.0.0/16 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6144" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.10.0.0/16 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5016" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6144" $at_failed && at_fn_log_failure $at_traceon; } @@ -319884,37 +333310,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5033: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5033" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone trusted --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6145" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone trusted --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -IN_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 10.20.20.0/24 0.0.0.0/0 -IN_public 0 -- 10.20.20.0/24 0.0.0.0/0 -REJECT 0 -- 10.20.20.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5033" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6145" $at_failed && at_fn_log_failure $at_traceon; } @@ -319925,78 +333330,35 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5044: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5044" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6148" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy policy-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5044" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6148" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5062: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5062" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6149" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -OUT_public 0 -- 0.0.0.0/0 10.20.20.0/24 -RETURN 0 -- 0.0.0.0/0 10.20.20.0/24 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5062" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6149" $at_failed && at_fn_log_failure $at_traceon; } @@ -320006,92 +333368,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5070: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5070" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone trusted " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6150" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5070" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6150" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5101" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-egress-zone external " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6151" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-egress-zone external ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 10.10.10.0/24 10.10.10.0/24 -REJECT 0 -- 10.10.10.0/24 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_foobar 0 -- 10.10.10.0/24 10.20.20.0/24 -FWD_internal 0 -- 10.10.10.0/24 10.20.20.0/24 -REJECT 0 -- 10.10.10.0/24 10.20.20.0/24 reject-with icmp-port-unreachable -FWD_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 10.20.20.0/24 10.10.10.0/24 -REJECT 0 -- 10.20.20.0/24 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 10.20.20.0/24 10.20.20.0/24 -REJECT 0 -- 10.20.20.0/24 10.20.20.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 10.20.20.0/24 0.0.0.0/0 -REJECT 0 -- 10.20.20.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.20.20.0/24 -REJECT 0 -- 0.0.0.0/0 10.20.20.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5101" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6151" $at_failed && at_fn_log_failure $at_traceon; } @@ -320102,79 +333407,35 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5123: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5123" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6153" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy policy-2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5123" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6153" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5128: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5128" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-ingress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-ingress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_foobar 0 -- 10.10.10.0/24 10.20.20.0/24 -PRE_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 10.20.20.0/24 0.0.0.0/0 -PRE_public 0 -- 10.20.20.0/24 0.0.0.0/0 -RETURN 0 -- 10.20.20.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5128" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6154" $at_failed && at_fn_log_failure $at_traceon; } @@ -320184,96 +333445,36 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5141" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-egress-zone external " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6155" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-egress-zone external ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5141" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6155" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5176" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6157" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy policy-3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 -RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_foobar 0 -- 10.10.10.0/24 10.20.20.0/24 -PRE_internal 0 -- 10.10.10.0/24 10.20.20.0/24 -RETURN 0 -- 10.10.10.0/24 10.20.20.0/24 -PRE_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 10.20.20.0/24 0.0.0.0/0 -PRE_public 0 -- 10.20.20.0/24 10.10.10.0/24 -RETURN 0 -- 10.20.20.0/24 10.10.10.0/24 -PRE_public 0 -- 10.20.20.0/24 10.20.20.0/24 -RETURN 0 -- 10.20.20.0/24 10.20.20.0/24 -PRE_public 0 -- 10.20.20.0/24 0.0.0.0/0 -RETURN 0 -- 10.20.20.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 10.20.20.0/24 -RETURN 0 -- 0.0.0.0/0 10.20.20.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5176" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6157" $at_failed && at_fn_log_failure $at_traceon; } @@ -320283,96 +333484,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5201: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5201" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --set-priority 10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6158" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-3 --set-priority 10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5201" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6158" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5236" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-ingress-zone trusted " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6159" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-ingress-zone trusted ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_internal 0 -- 10.10.10.0/24 10.10.10.0/24 -RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_foobar 0 -- 10.10.10.0/24 10.20.20.0/24 -PRE_internal 0 -- 10.10.10.0/24 10.20.20.0/24 -RETURN 0 -- 10.10.10.0/24 10.20.20.0/24 -PRE_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_internal 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 10.20.20.0/24 0.0.0.0/0 -PRE_public 0 -- 10.20.20.0/24 10.10.10.0/24 -RETURN 0 -- 10.20.20.0/24 10.10.10.0/24 -PRE_public 0 -- 10.20.20.0/24 10.20.20.0/24 -RETURN 0 -- 10.20.20.0/24 10.20.20.0/24 -PRE_public 0 -- 10.20.20.0/24 0.0.0.0/0 -RETURN 0 -- 10.20.20.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 10.20.20.0/24 -RETURN 0 -- 0.0.0.0/0 10.20.20.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5236" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6159" $at_failed && at_fn_log_failure $at_traceon; } @@ -320382,50 +333522,21 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5261" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-egress-zone external " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6160" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-egress-zone external ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5261" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6160" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - @@ -320433,42 +333544,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5293: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5293" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6162: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6162" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_internal 0 -- 10.10.10.0/24 10.10.10.0/24 -RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -POST_internal 0 -- 10.20.20.0/24 10.10.10.0/24 -RETURN 0 -- 10.20.20.0/24 10.10.10.0/24 -POST_internal 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -POST_foobar 0 -- 10.10.10.0/24 10.20.20.0/24 -POST_public 0 -- 10.10.10.0/24 10.20.20.0/24 -RETURN 0 -- 10.10.10.0/24 10.20.20.0/24 -POST_public 0 -- 10.20.20.0/24 10.20.20.0/24 -RETURN 0 -- 10.20.20.0/24 10.20.20.0/24 -POST_public 0 -- 0.0.0.0/0 10.20.20.0/24 -RETURN 0 -- 0.0.0.0/0 10.20.20.0/24 -POST_foobar 0 -- 10.10.10.0/24 0.0.0.0/0 -POST_public 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -POST_public 0 -- 10.20.20.0/24 0.0.0.0/0 -RETURN 0 -- 10.20.20.0/24 0.0.0.0/0 -POST_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5293" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6162" $at_failed && at_fn_log_failure $at_traceon; } @@ -320478,44 +333562,21 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5315: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5315" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POSTROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6162: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6162" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "POST_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5315" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6162" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - @@ -320528,28 +333589,77 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5332: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:6230: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5332" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6230" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_internal 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -OUT_public 0 -- 0.0.0.0/0 10.20.20.0/24 -RETURN 0 -- 0.0.0.0/0 10.20.20.0/24 -OUT_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_internal 0 -- 10.0.0.0/8 10.0.0.0/8 +REJECT 0 -- 10.0.0.0/8 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_internal 0 -- 10.0.0.0/8 10.10.0.0/16 +REJECT 0 -- 10.0.0.0/8 10.10.0.0/16 reject-with icmp-port-unreachable +FWD_internal 0 -- 10.0.0.0/8 10.10.10.0/24 +REJECT 0 -- 10.0.0.0/8 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_policy-1 0 -- 10.0.0.0/8 0.0.0.0/0 +FWD_internal 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_internal 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 10.10.0.0/16 10.0.0.0/8 +REJECT 0 -- 10.10.0.0/16 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_public 0 -- 10.10.0.0/16 10.10.0.0/16 +REJECT 0 -- 10.10.0.0/16 10.10.0.0/16 reject-with icmp-port-unreachable +FWD_public 0 -- 10.10.0.0/16 10.10.10.0/24 +REJECT 0 -- 10.10.0.0/16 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_policy-2 0 -- 10.10.0.0/16 0.0.0.0/0 +FWD_public 0 -- 10.10.0.0/16 0.0.0.0/0 +REJECT 0 -- 10.10.0.0/16 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 10.10.0.0/16 0.0.0.0/0 +REJECT 0 -- 10.10.0.0/16 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_trusted 0 -- 10.10.10.0/24 10.0.0.0/8 +ACCEPT 0 -- 10.10.10.0/24 10.0.0.0/8 +FWD_trusted 0 -- 10.10.10.0/24 10.10.0.0/16 +ACCEPT 0 -- 10.10.10.0/24 10.10.0.0/16 +FWD_trusted 0 -- 10.10.10.0/24 10.10.10.0/24 +ACCEPT 0 -- 10.10.10.0/24 10.10.10.0/24 +FWD_policy-1 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_policy-3 0 -- 10.10.10.0/24 0.0.0.0/0 +ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 +ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 +FWD_external 0 -- 0.0.0.0/0 10.0.0.0/8 +REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_external 0 -- 0.0.0.0/0 10.10.0.0/16 +REJECT 0 -- 0.0.0.0/0 10.10.0.0/16 reject-with icmp-port-unreachable +FWD_external 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.0.0.0/8 +REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.10.0.0/16 +REJECT 0 -- 0.0.0.0/0 10.10.0.0/16 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_policy-2 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5332" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6230" $at_failed && at_fn_log_failure $at_traceon; } @@ -320568,24 +333678,31 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5340: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/policy.at:6287: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5340" +at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6287" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L OUTPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "OUT_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "FWD_external 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_external 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_policy-2 0 -- ::/0 ::/0 +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5340" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6287" $at_failed && at_fn_log_failure $at_traceon; } @@ -320603,86 +333720,10 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:5344: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone=\"internal\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5344" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-ingress-zone="internal" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5344" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5345: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone=\"public\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5345" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone="public" -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5345" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5346: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5346" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=internal --remove-source=10.10.10.0/24 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5346" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5347: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source=10.20.20.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5347" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source=10.20.20.0/24 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5347" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - if test x"" != x"ignore"; then - $as_echo "policy.at:5349" >"$at_check_line_file" + printf "%s\n" "policy.at:6299" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:5349" + && at_fn_check_skip 99 "$at_srcdir/policy.at:6299" fi @@ -320691,13 +333732,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_318 -#AT_START_319 -at_fn_group_banner 319 'policy.at:5351' \ - "policy - interfaces/sources" " " 11 +#AT_STOP_340 +#AT_START_341 +at_fn_group_banner 341 'policy.at:6301' \ + "policy - multiple using same zone source" " " 11 at_xfail=no ( - $as_echo "319. $at_setup_line: testing $at_desc ..." + printf "%s\n" "341. $at_setup_line: testing $at_desc ..." $at_traceon @@ -320715,6 +333756,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -320731,29 +333773,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:5351: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:6301: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6301" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:5351: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:6301: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "policy.at:6301" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } @@ -320761,15 +333803,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5351: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:6301: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "policy.at:6301" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } @@ -320811,15 +333853,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:5351: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5351" +printf "%s\n" "$at_srcdir/policy.at:6301: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6301" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5351" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6301" $at_failed && at_fn_log_failure $at_traceon; } @@ -320827,9 +333869,9 @@ $at_traceon; } - $as_echo "policy.at:5351" >"$at_check_line_file" + printf "%s\n" "policy.at:6301" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:5351" + && at_fn_check_skip 77 "$at_srcdir/policy.at:6301" @@ -320910,8 +333952,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:5351" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:5351" + printf "%s\n" "policy.at:6301" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6301" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -320921,7 +333963,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:5351" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -320929,8 +333971,8 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:5351" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:5351" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:5351" + printf "%s\n" "policy.at:6301" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/policy.at:6301" fi echo "$!" > firewalld.pid @@ -320946,9 +333988,9 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:5351" fi sleep 1 done - $as_echo "policy.at:5351" >"$at_check_line_file" + printf "%s\n" "policy.at:6301" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:5351" + && at_fn_check_skip 99 "$at_srcdir/policy.at:6301" @@ -320958,15 +334000,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:5351" { set +x -$as_echo "$at_srcdir/policy.at:5354: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5354" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar +printf "%s\n" "$at_srcdir/policy.at:6304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6304" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5354" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6304" $at_failed && at_fn_log_failure $at_traceon; } @@ -320977,15 +334019,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5355: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5355" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal +printf "%s\n" "$at_srcdir/policy.at:6305: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6305" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5355" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6305" $at_failed && at_fn_log_failure $at_traceon; } @@ -320996,15 +334038,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5356: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5356" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 +printf "%s\n" "$at_srcdir/policy.at:6306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6306" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5356" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6306" $at_failed && at_fn_log_failure $at_traceon; } @@ -321015,15 +334057,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5357: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5357" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone public +printf "%s\n" "$at_srcdir/policy.at:6307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy raboof " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6307" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy raboof ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5357" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6307" $at_failed && at_fn_log_failure $at_traceon; } @@ -321033,17 +334075,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:5358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5358" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/policy.at:6308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6308" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5358" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6308" $at_failed && at_fn_log_failure $at_traceon; } @@ -321054,15 +334095,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5358: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5358" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/policy.at:6309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6309" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5358" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6309" $at_failed && at_fn_log_failure $at_traceon; } @@ -321073,37 +334114,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5374: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5374" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6310" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5374" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6310" $at_failed && at_fn_log_failure $at_traceon; } @@ -321113,52 +334133,21 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5385: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5385" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6310: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6310" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5385" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6310" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - @@ -321166,15 +334155,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5400: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5400" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface foobar1 +printf "%s\n" "$at_srcdir/policy.at:6312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6312" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5400" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6312" $at_failed && at_fn_log_failure $at_traceon; } @@ -321184,38 +334173,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5417: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5417" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/policy.at:6313: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6313" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5417" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6313" $at_failed && at_fn_log_failure $at_traceon; } @@ -321225,100 +334192,148 @@ $at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "policy.at:6315" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/policy.at:6315" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_341 +#AT_START_342 +at_fn_group_banner 342 'services.at:1' \ + "services" " " 11 +at_xfail=no +( + printf "%s\n" "342. $at_setup_line: testing $at_desc ..." + $at_traceon - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/policy.at:5429: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5429" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/services.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5429" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/services.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - else - : + { set +x +printf "%s\n" "$at_srcdir/services.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "services.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/services.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } fi + { set +x +printf "%s\n" "$at_srcdir/services.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "services.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/services.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/policy.at:5467: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5467" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/services.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5467" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/services.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -321326,63 +334341,128 @@ $at_traceon; } + printf "%s\n" "services.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/services.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "services.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/services.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/policy.at:5489: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5489" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5489" -$at_failed && at_fn_log_failure -$at_traceon; } - else - : + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "services.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/services.at:1" fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "services.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/services.at:1" @@ -321392,15 +334472,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5514: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-interface foobar2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5514" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-interface foobar2 +printf "%s\n" "$at_srcdir/services.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5514" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -321410,41 +334490,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5534: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5534" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5534" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -321454,118 +334509,36 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5549: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5549" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5549" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:6" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5605: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5605" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5605" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -321575,94 +334548,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5642: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5642" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5642" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:11" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5682: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-interface foobar2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5682" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-interface foobar2 +printf "%s\n" "$at_srcdir/services.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5682" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -321672,38 +334586,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5699: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5699" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5699" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -321714,99 +334606,35 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5711: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5711" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5711" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/services.at:14" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5749: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5749" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5749" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/services.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -321817,78 +334645,35 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5771: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5771" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5771" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:15" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5797: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-interface foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5797" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-interface foobar1 +printf "%s\n" "$at_srcdir/services.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5797" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -321904,29 +334689,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5811: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/services.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5811" +at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 6 -- 10.10.10.0/24 0.0.0.0/0 tcp dpt:22 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5811" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -321945,29 +334725,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5820: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/services.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5820" +at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:29" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5820" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:29" $at_failed && at_fn_log_failure $at_traceon; } @@ -321986,36 +334760,16 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/policy.at:5844: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5844" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5844" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -322026,67 +334780,35 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5855: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5855" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:37" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5855" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:37" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5870: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5870" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/services.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5870" +at_fn_check_status 1 $at_status "$at_srcdir/services.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -322096,45 +334818,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/policy.at:5894: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5894" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_public 0 -- 10.10.10.0/24 10.10.10.0/24 -RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_public 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_internal 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5894" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/services.at:39" $at_failed && at_fn_log_failure $at_traceon; } @@ -322144,73 +334837,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5913: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5913" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-service ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:40" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5913" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:40" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/policy.at:5925: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --add-source 1234::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5925" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --add-source 1234::/64 +printf "%s\n" "$at_srcdir/services.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:41" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5925" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:41" $at_failed && at_fn_log_failure $at_traceon; } @@ -322218,15 +334873,20 @@ $at_traceon; } - else - : - - fi - - - + { set +x +printf "%s\n" "$at_srcdir/services.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ssh +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/services.at:42" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -322235,39 +334895,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5932: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5932" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_public 0 -- 10.10.10.0/24 10.10.10.0/24 -RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_public 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_internal 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5932" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/services.at:43" $at_failed && at_fn_log_failure $at_traceon; } @@ -322279,81 +334915,54 @@ $at_traceon; } - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:5951: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5951" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 1234::/64 ::/0 -PRE_public 0 -- 1234::/64 1234::/64 -RETURN 0 -- 1234::/64 1234::/64 -PRE_public 0 -- 1234::/64 ::/0 -RETURN 0 -- 1234::/64 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 1234::/64 -PRE_internal 0 -- ::/0 1234::/64 -RETURN 0 -- ::/0 1234::/64 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 1234::/64 -RETURN 0 -- ::/0 1234::/64 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5951" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - + { set +x +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/policy.at:5973: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-source 1234::/64 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:5973" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-source 1234::/64 +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5973" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -322361,14 +334970,20 @@ $at_traceon; } - else - : - - fi - - + { set +x +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -322377,39 +334992,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:5999: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:5999" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_public 0 -- 10.10.10.0/24 10.10.10.0/24 -RETURN 0 -- 10.10.10.0/24 10.10.10.0/24 -PRE_public 0 -- 10.10.10.0/24 0.0.0.0/0 -RETURN 0 -- 10.10.10.0/24 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_foobar 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_internal 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -PRE_public 0 -- 0.0.0.0/0 10.10.10.0/24 -RETURN 0 -- 0.0.0.0/0 10.10.10.0/24 -PRE_public 0 -- 0.0.0.0/0 0.0.0.0/0 -RETURN 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:5999" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -322419,66 +335010,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:6018: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6018" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PREROUTING_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_foobar 0 -- ::/0 ::/0 -PRE_internal 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -PRE_allow-host-ipv6 0 -- ::/0 ::/0 -PRE_public 0 -- ::/0 ::/0 -RETURN 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6018" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/policy.at:6031: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone public --remove-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6031" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone public --remove-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6031" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -322494,31 +335054,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6047: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6047" +at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_internal 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 +ACCEPT 6 -- 10.10.10.0/24 0.0.0.0/0 tcp dpt:21 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6047" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -322537,31 +335090,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6058: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6058" +at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -FWD_internal 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:21 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6058" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -322579,296 +335124,71 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "policy.at:6070" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6070" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_319 -#AT_START_320 -at_fn_group_banner 320 'policy.at:6072' \ - "policy - target" " " 11 -at_xfail=no -( - $as_echo "320. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/policy.at:6072: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6072" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" -$at_failed && at_fn_log_failure -$at_traceon; } - - else - { set +x -$as_echo "$at_srcdir/policy.at:6072: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6072" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" -$at_failed && at_fn_log_failure -$at_traceon; } - fi + { set +x +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t raw -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t raw -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/policy.at:6072: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6072" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +echo >>"$at_stdout"; printf "%s\n" "CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 CT helper ftp +CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 CT helper ftp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + if $IP6TABLES -L >/dev/null 2>&1; then + : + { set +x +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t raw -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t raw -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/policy.at:6072: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6072" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6072" +echo >>"$at_stdout"; printf "%s\n" "CT 6 -- ::/0 ::/0 tcp dpt:21 CT helper ftp +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } + else + : - - $as_echo "policy.at:6072" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:6072" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "policy.at:6072" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6072" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "policy.at:6072" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6072" fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "policy.at:6072" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6072" - - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:6075: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6075" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6075" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -322878,15 +335198,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6077: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=CONTINUE " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6077" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=CONTINUE +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6077" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -322897,15 +335217,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6078: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6078" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6078" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -322916,15 +335236,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6079: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6079" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DROP +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6079" +at_fn_check_status 1 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -322935,53 +335255,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6080: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=REJECT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6080" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=REJECT +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6080" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:6081: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DENY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6081" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=DENY -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6081" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/policy.at:6082: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=default " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6082" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=default -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 110 $at_status "$at_srcdir/policy.at:6082" +at_fn_check_status 1 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -322991,17 +335273,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:6085: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6085" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --set-target=ACCEPT +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6085" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -323012,15 +335293,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6086: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6086" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone internal +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6086" +at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -323031,15 +335312,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6087: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6087" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6087" +at_fn_check_status 1 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -323049,16 +335330,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:6088: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6088" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone HOST + { set +x +printf "%s\n" "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6088" +at_fn_check_status 1 $at_status "$at_srcdir/services.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -323069,16 +335350,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:6089: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6089" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/services.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service does-not-exist " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service does-not-exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6089" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 101 $at_status "$at_srcdir/services.at:90" $at_failed && at_fn_log_failure $at_traceon; } @@ -323089,15 +335371,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6089: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6089" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/services.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-service does-not-exist " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:91" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-service does-not-exist ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6089" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 101 $at_status "$at_srcdir/services.at:91" $at_failed && at_fn_log_failure $at_traceon; } @@ -323108,34 +335390,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/policy.at:6102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6102" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-interface raboof0 --add-service ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:94" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-interface raboof0 --add-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6102" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/services.at:94" $at_failed && at_fn_log_failure $at_traceon; } @@ -323145,58 +335409,29 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/policy.at:6110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6110" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/services.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-interface raboof0 --add-service ssh " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-interface raboof0 --add-service ssh ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_foobar_pre 0 -- ::/0 ::/0 -IN_foobar_log 0 -- ::/0 ::/0 -IN_foobar_deny 0 -- ::/0 ::/0 -IN_foobar_allow 0 -- ::/0 ::/0 -IN_foobar_post 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6110" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/services.at:95" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - if test x"ignore" != x"ignore"; then - $as_echo "policy.at:6119" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6119" + if test x"-e '/ERROR: INVALID_SERVICE/d'" != x"ignore"; then + printf "%s\n" "services.at:97" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/services.at:97" fi @@ -323205,13 +335440,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_320 -#AT_START_321 -at_fn_group_banner 321 'policy.at:6121' \ - "policy - from file" " " 11 +#AT_STOP_342 +#AT_START_343 +at_fn_group_banner 343 'ports.at:1' \ + "ports" " " 11 at_xfail=no ( - $as_echo "321. $at_setup_line: testing $at_desc ..." + printf "%s\n" "343. $at_setup_line: testing $at_desc ..." $at_traceon @@ -323229,6 +335464,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -323245,29 +335481,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/policy.at:6121: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6121" +printf "%s\n" "$at_srcdir/ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/policy.at:6121: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6121" +printf "%s\n" "$at_srcdir/ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "ports.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -323275,15 +335511,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6121: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6121" +printf "%s\n" "$at_srcdir/ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "ports.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -323325,15 +335561,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/policy.at:6121: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6121" +printf "%s\n" "$at_srcdir/ports.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6121" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -323341,9 +335577,9 @@ $at_traceon; } - $as_echo "policy.at:6121" >"$at_check_line_file" + printf "%s\n" "ports.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:6121" + && at_fn_check_skip 77 "$at_srcdir/ports.at:1" @@ -323424,8 +335660,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "policy.at:6121" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6121" + printf "%s\n" "ports.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/ports.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -323435,7 +335671,7 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6121" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -323443,8 +335679,8 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6121" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "policy.at:6121" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6121" + printf "%s\n" "ports.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/ports.at:1" fi echo "$!" > firewalld.pid @@ -323460,9 +335696,9 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6121" fi sleep 1 done - $as_echo "policy.at:6121" >"$at_check_line_file" + printf "%s\n" "ports.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6121" + && at_fn_check_skip 99 "$at_srcdir/ports.at:1" @@ -323472,81 +335708,92 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6121" { set +x -$as_echo "$at_srcdir/policy.at:6124: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6124" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --add-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6124" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:4" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/policy.at:6125: ls \"./policies/allow-host-ipv6.xml\"" -at_fn_check_prepare_trace "policy.at:6125" -( $at_check_trace; ls "./policies/allow-host-ipv6.xml" + + + + { set +x +printf "%s\n" "$at_srcdir/ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6125" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:5" $at_failed && at_fn_log_failure $at_traceon; } + + + { set +x -$as_echo "$at_srcdir/policy.at:6126: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy-from-file \"./policies/allow-host-ipv6.xml\" --name my-allow-host-ipv6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6126" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy-from-file "./policies/allow-host-ipv6.xml" --name my-allow-host-ipv6 +printf "%s\n" "$at_srcdir/ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6126" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:6" $at_failed && at_fn_log_failure $at_traceon; } -{ set +x -$as_echo "$at_srcdir/policy.at:6127: ls \"./policies/my-allow-host-ipv6.xml\"" -at_fn_check_prepare_trace "policy.at:6127" -( $at_check_trace; ls "./policies/my-allow-host-ipv6.xml" + + + + + { set +x +printf "%s\n" "$at_srcdir/ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6127" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:9" $at_failed && at_fn_log_failure $at_traceon; } + + + { set +x -$as_echo "$at_srcdir/policy.at:6128: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6128" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-policies +printf "%s\n" "$at_srcdir/ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 my-allow-host-ipv6 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6128" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -323556,17 +335803,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:6131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6131" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/ports.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 4321/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6131" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -323577,15 +335823,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6131" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/ports.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=udp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6131" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -323595,19 +335841,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:13" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/policy.at:6132: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-policies " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6132" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-policies +printf "%s\n" "$at_srcdir/ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "allow-host-ipv6 my-allow-host-ipv6 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6132" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -323617,147 +335879,132 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "policy.at:6136" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6136" - fi + { set +x +printf "%s\n" "$at_srcdir/ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 4321/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 4321/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_321 -#AT_START_322 -at_fn_group_banner 322 'policy.at:6138' \ - "policy - zone drifting not allowed" " " 11 -at_xfail=no -( - $as_echo "322. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/ports.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:16" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/policy.at:6138: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6138" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:17" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/policy.at:6138: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6138" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:17" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/policy.at:6138: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6138" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + + { set +x +printf "%s\n" "$at_srcdir/ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:18" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/policy.at:6138: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6138" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 4321/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6138" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -323765,93 +336012,55 @@ $at_traceon; } - $as_echo "policy.at:6138" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:6138" + { set +x +printf "%s\n" "$at_srcdir/ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:21" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "policy.at:6138" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6138" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + + + { set +x +printf "%s\n" "$at_srcdir/ports.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ports.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1234 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:1234 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:4321 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:4444 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:32" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -323859,34 +336068,44 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6138" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "policy.at:6138" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6138" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "policy.at:6138" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6138" + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/ports.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "ports.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp dpt:1234 +ACCEPT 17 -- ::/0 ::/0 udp dpt:1234 +ACCEPT 17 -- ::/0 ::/0 udp dpt:4321 +ACCEPT 17 -- ::/0 ::/0 udp dpt:4444 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:38" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi @@ -323896,15 +336115,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6138" { set +x -$as_echo "$at_srcdir/policy.at:6141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6141" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone external --add-interface dummy0 +printf "%s\n" "$at_srcdir/ports.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6141" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -323915,15 +336134,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.0.0.0/8 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6142" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.0.0.0/8 +printf "%s\n" "$at_srcdir/ports.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6142" +at_fn_check_status 1 $at_status "$at_srcdir/ports.at:45" $at_failed && at_fn_log_failure $at_traceon; } @@ -323934,15 +336153,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.10.0.0/16 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6143" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone public --add-source 10.10.0.0/16 +printf "%s\n" "$at_srcdir/ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6143" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -323953,15 +336172,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone trusted --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6144" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone trusted --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6144" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -323971,17 +336190,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:6147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6147" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy policy-1 +printf "%s\n" "$at_srcdir/ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 4321/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:48" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6147" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -323992,15 +336210,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6148: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6148" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone internal +printf "%s\n" "$at_srcdir/ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:49" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6148" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:49" $at_failed && at_fn_log_failure $at_traceon; } @@ -324011,15 +336229,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6149: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone trusted " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6149" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-ingress-zone trusted +printf "%s\n" "$at_srcdir/ports.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:50" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6149" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:50" $at_failed && at_fn_log_failure $at_traceon; } @@ -324030,15 +336248,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-egress-zone external " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6150" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-1 --add-egress-zone external +printf "%s\n" "$at_srcdir/ports.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:51" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6150" +at_fn_check_status 1 $at_status "$at_srcdir/ports.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -324048,17 +336266,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:6152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6152" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy policy-2 +printf "%s\n" "$at_srcdir/ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:52" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6152" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -324069,15 +336286,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-ingress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6153" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-ingress-zone public +printf "%s\n" "$at_srcdir/ports.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:53" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6153" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -324088,15 +336305,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-egress-zone external " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6154" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-2 --add-egress-zone external +printf "%s\n" "$at_srcdir/ports.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 4321/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6154" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:54" $at_failed && at_fn_log_failure $at_traceon; } @@ -324106,17 +336323,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:6156: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy policy-3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6156" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy policy-3 +printf "%s\n" "$at_srcdir/ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6156" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -324126,16 +336342,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/policy.at:6157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --set-priority 10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6157" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-3 --set-priority 10 +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6157" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -324146,15 +336364,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-ingress-zone trusted " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6158" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-ingress-zone trusted +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6158" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -324165,15 +336383,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-egress-zone external " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6159" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy policy-3 --add-egress-zone external +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6159" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -324183,18 +336401,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/policy.at:6161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6161" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6161" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -324205,15 +336440,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6161: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6161" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6161" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -324223,6 +336458,23 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + @@ -324231,77 +336483,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6229: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6229" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_internal 0 -- 10.0.0.0/8 10.0.0.0/8 -REJECT 0 -- 10.0.0.0/8 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_internal 0 -- 10.0.0.0/8 10.10.0.0/16 -REJECT 0 -- 10.0.0.0/8 10.10.0.0/16 reject-with icmp-port-unreachable -FWD_internal 0 -- 10.0.0.0/8 10.10.10.0/24 -REJECT 0 -- 10.0.0.0/8 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_policy-1 0 -- 10.0.0.0/8 0.0.0.0/0 -FWD_internal 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_internal 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 10.10.0.0/16 10.0.0.0/8 -REJECT 0 -- 10.10.0.0/16 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_public 0 -- 10.10.0.0/16 10.10.0.0/16 -REJECT 0 -- 10.10.0.0/16 10.10.0.0/16 reject-with icmp-port-unreachable -FWD_public 0 -- 10.10.0.0/16 10.10.10.0/24 -REJECT 0 -- 10.10.0.0/16 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_policy-2 0 -- 10.10.0.0/16 0.0.0.0/0 -FWD_public 0 -- 10.10.0.0/16 0.0.0.0/0 -REJECT 0 -- 10.10.0.0/16 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 10.10.0.0/16 0.0.0.0/0 -REJECT 0 -- 10.10.0.0/16 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_trusted 0 -- 10.10.10.0/24 10.0.0.0/8 -ACCEPT 0 -- 10.10.10.0/24 10.0.0.0/8 -FWD_trusted 0 -- 10.10.10.0/24 10.10.0.0/16 -ACCEPT 0 -- 10.10.10.0/24 10.10.0.0/16 -FWD_trusted 0 -- 10.10.10.0/24 10.10.10.0/24 -ACCEPT 0 -- 10.10.10.0/24 10.10.10.0/24 -FWD_policy-1 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_policy-3 0 -- 10.10.10.0/24 0.0.0.0/0 -ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_trusted 0 -- 10.10.10.0/24 0.0.0.0/0 -ACCEPT 0 -- 10.10.10.0/24 0.0.0.0/0 -FWD_external 0 -- 0.0.0.0/0 10.0.0.0/8 -REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_external 0 -- 0.0.0.0/0 10.10.0.0/16 -REJECT 0 -- 0.0.0.0/0 10.10.0.0/16 reject-with icmp-port-unreachable -FWD_external 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_external 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.0.0.0/8 -REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.10.0.0/16 -REJECT 0 -- 0.0.0.0/0 10.10.0.0/16 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_policy-2 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:1234 +ACCEPT 132 -- 0.0.0.0/0 0.0.0.0/0 sctp dpt:4444 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6229" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -324320,31 +336519,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6286: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "policy.at:6286" +at_fn_check_prepare_notrace 'a $(...) command substitution' "ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_external 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_external 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_policy-2 0 -- ::/0 ::/0 -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 17 -- ::/0 ::/0 udp dpt:1234 +ACCEPT 132 -- ::/0 ::/0 sctp dpt:4444 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6286" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -324362,147 +336554,130 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "policy.at:6298" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6298" - fi - + { set +x +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_322 -#AT_START_323 -at_fn_group_banner 323 'policy.at:6300' \ - "policy - multiple using same zone source" " " 11 -at_xfail=no -( - $as_echo "323. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/policy.at:6300: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6300" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/policy.at:6300: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "policy.at:6300" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/policy.at:6300: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "policy.at:6300" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/policy.at:6300: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6300" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6300" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -324510,129 +336685,60 @@ $at_traceon; } - $as_echo "policy.at:6300" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/policy.at:6300" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/ports.at:58" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - - - - - - - - - - - - - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "policy.at:6300" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6300" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:93" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 102 $at_status "$at_srcdir/ports.at:93" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "policy.at:6300" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/policy.at:6300" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "policy.at:6300" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6300" + { set +x +printf "%s\n" "$at_srcdir/ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:94" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 102 $at_status "$at_srcdir/ports.at:94" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -324641,15 +336747,15 @@ at_fn_check_skip 99 "$at_srcdir/policy.at:6300" { set +x -$as_echo "$at_srcdir/policy.at:6303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6303" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy foobar +printf "%s\n" "$at_srcdir/ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 123443/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 123443/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6303" +at_fn_check_status 102 $at_status "$at_srcdir/ports.at:95" $at_failed && at_fn_log_failure $at_traceon; } @@ -324660,15 +336766,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6304: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6304" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/ports.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 123443/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:96" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 123443/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6304" +at_fn_check_status 102 $at_status "$at_srcdir/ports.at:96" $at_failed && at_fn_log_failure $at_traceon; } @@ -324679,15 +336785,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6305: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6305" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone internal +printf "%s\n" "$at_srcdir/ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/bogus " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:97" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/bogus ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6305" +at_fn_check_status 103 $at_status "$at_srcdir/ports.at:97" $at_failed && at_fn_log_failure $at_traceon; } @@ -324698,15 +336804,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6306: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy raboof " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6306" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy raboof +printf "%s\n" "$at_srcdir/ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/bogus " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:98" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/bogus ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6306" +at_fn_check_status 103 $at_status "$at_srcdir/ports.at:98" $at_failed && at_fn_log_failure $at_traceon; } @@ -324716,16 +336822,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/policy.at:6307: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6307" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-ingress-zone internal +printf "%s\n" "$at_srcdir/ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:100" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6307" +at_fn_check_status 103 $at_status "$at_srcdir/ports.at:100" $at_failed && at_fn_log_failure $at_traceon; } @@ -324736,15 +336843,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6308: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6308" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy raboof --add-egress-zone ANY +printf "%s\n" "$at_srcdir/ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:101" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6308" +at_fn_check_status 103 $at_status "$at_srcdir/ports.at:101" $at_failed && at_fn_log_failure $at_traceon; } @@ -324754,17 +336861,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/policy.at:6309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6309" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:102" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6309" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 102 $at_status "$at_srcdir/ports.at:102" $at_failed && at_fn_log_failure $at_traceon; } @@ -324775,15 +336881,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6309: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6309" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:103" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6309" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 102 $at_status "$at_srcdir/ports.at:103" $at_failed && at_fn_log_failure $at_traceon; } @@ -324793,18 +336899,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/policy.at:6311: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6311" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source 10.88.0.0/16 +printf "%s\n" "$at_srcdir/ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:104" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6311" +at_fn_check_status 103 $at_status "$at_srcdir/ports.at:104" $at_failed && at_fn_log_failure $at_traceon; } @@ -324815,15 +336919,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/policy.at:6312: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "policy.at:6312" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-source 10.88.0.0/16 +printf "%s\n" "$at_srcdir/ports.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:105" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/policy.at:6312" +at_fn_check_status 103 $at_status "$at_srcdir/ports.at:105" $at_failed && at_fn_log_failure $at_traceon; } @@ -324834,9 +336938,9 @@ $at_traceon; } if test x"" != x"ignore"; then - $as_echo "policy.at:6314" >"$at_check_line_file" + printf "%s\n" "ports.at:107" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/policy.at:6314" + && at_fn_check_skip 99 "$at_srcdir/ports.at:107" fi @@ -324845,13 +336949,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_323 -#AT_START_324 -at_fn_group_banner 324 'services.at:1' \ - "services" " " 11 +#AT_STOP_343 +#AT_START_344 +at_fn_group_banner 344 'source_ports.at:1' \ + "source ports" " " 11 at_xfail=no ( - $as_echo "324. $at_setup_line: testing $at_desc ..." + printf "%s\n" "344. $at_setup_line: testing $at_desc ..." $at_traceon @@ -324869,6 +336973,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -324885,29 +336990,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/services.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:1" +printf "%s\n" "$at_srcdir/source_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/services.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "services.at:1" +printf "%s\n" "$at_srcdir/source_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "source_ports.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -324915,15 +337020,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "services.at:1" +printf "%s\n" "$at_srcdir/source_ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "source_ports.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -324965,15 +337070,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/services.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:1" +printf "%s\n" "$at_srcdir/source_ports.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -324981,9 +337086,9 @@ $at_traceon; } - $as_echo "services.at:1" >"$at_check_line_file" + printf "%s\n" "source_ports.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/services.at:1" + && at_fn_check_skip 77 "$at_srcdir/source_ports.at:1" @@ -325064,8 +337169,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "services.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/services.at:1" + printf "%s\n" "source_ports.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/source_ports.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -325075,7 +337180,7 @@ at_fn_check_skip 99 "$at_srcdir/services.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -325083,8 +337188,8 @@ at_fn_check_skip 99 "$at_srcdir/services.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "services.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/services.at:1" + printf "%s\n" "source_ports.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/source_ports.at:1" fi echo "$!" > firewalld.pid @@ -325100,9 +337205,9 @@ at_fn_check_skip 99 "$at_srcdir/services.at:1" fi sleep 1 done - $as_echo "services.at:1" >"$at_check_line_file" + printf "%s\n" "source_ports.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/services.at:1" + && at_fn_check_skip 99 "$at_srcdir/source_ports.at:1" @@ -325112,15 +337217,15 @@ at_fn_check_skip 99 "$at_srcdir/services.at:1" { set +x -$as_echo "$at_srcdir/services.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:4" +printf "%s\n" "$at_srcdir/source_ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -325131,15 +337236,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:5" +printf "%s\n" "$at_srcdir/source_ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -325150,15 +337255,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:6" +printf "%s\n" "$at_srcdir/source_ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -325170,15 +337275,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service ssh +printf "%s\n" "$at_srcdir/source_ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -325189,15 +337294,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' +printf "%s\n" "$at_srcdir/source_ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -325208,15 +337313,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh +printf "%s\n" "$at_srcdir/source_ports.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 4321/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -325227,15 +337332,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' +printf "%s\n" "$at_srcdir/source_ports.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=udp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -325245,17 +337350,93 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:13" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/services.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:14" +printf "%s\n" "$at_srcdir/source_ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:14" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 4321/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 4321/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:16" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -325266,15 +337447,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:14" +printf "%s\n" "$at_srcdir/source_ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -325286,15 +337467,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ssh +printf "%s\n" "$at_srcdir/source_ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -325305,15 +337486,53 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' +printf "%s\n" "$at_srcdir/source_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 4321/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 4321/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:20" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -325329,24 +337548,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/source_ports.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:25" +at_fn_check_prepare_notrace 'a $(...) command substitution' "source_ports.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 6 -- 10.10.10.0/24 0.0.0.0/0 tcp dpt:22 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp spt:1234 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp spt:1234 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp spt:4321 +ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp spt:4444 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:25" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -325365,23 +337586,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/source_ports.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:29" +at_fn_check_prepare_notrace 'a $(...) command substitution' "source_ports.at:38" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:22 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- ::/0 ::/0 tcp spt:1234 +ACCEPT 17 -- ::/0 ::/0 udp spt:1234 +ACCEPT 17 -- ::/0 ::/0 udp spt:4321 +ACCEPT 17 -- ::/0 ::/0 udp spt:4444 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:29" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -325399,17 +337623,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/tcp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:44" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/services.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ssh +printf "%s\n" "$at_srcdir/source_ports.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:32" +at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:45" $at_failed && at_fn_log_failure $at_traceon; } @@ -325419,17 +337661,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:46" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/services.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:37" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' +printf "%s\n" "$at_srcdir/source_ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:37" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -325440,15 +337700,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ssh +printf "%s\n" "$at_srcdir/source_ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 4321/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:48" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 4321/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/services.at:38" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -325459,15 +337719,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' +printf "%s\n" "$at_srcdir/source_ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:49" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/services.at:39" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:49" $at_failed && at_fn_log_failure $at_traceon; } @@ -325478,15 +337738,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:40: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-service ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:40" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-service ssh +printf "%s\n" "$at_srcdir/source_ports.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:50" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:40" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:50" $at_failed && at_fn_log_failure $at_traceon; } @@ -325497,15 +337757,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:41" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' +printf "%s\n" "$at_srcdir/source_ports.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:51" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:41" +at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -325516,15 +337776,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ssh +printf "%s\n" "$at_srcdir/source_ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:52" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/services.at:42" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -325535,15 +337795,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ssh accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ssh accept' +printf "%s\n" "$at_srcdir/source_ports.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:53" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/services.at:43" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -325553,18 +337813,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 4321/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 4321/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:54" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-service ftp +printf "%s\n" "$at_srcdir/source_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -325574,16 +337851,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325594,15 +337873,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ftp +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325613,15 +337892,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325632,15 +337911,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325651,15 +337949,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325670,15 +337968,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325694,24 +337992,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:47" +at_fn_check_prepare_notrace 'a $(...) command substitution' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 -ACCEPT 6 -- 10.10.10.0/24 0.0.0.0/0 tcp dpt:21 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp spt:1234 +ACCEPT 132 -- 0.0.0.0/0 0.0.0.0/0 sctp spt:4444 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325730,23 +338028,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:47" +at_fn_check_prepare_notrace 'a $(...) command substitution' "source_ports.at:58" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:21 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 17 -- ::/0 ::/0 udp spt:1234 +ACCEPT 132 -- ::/0 ::/0 sctp spt:4444 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325764,27 +338063,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + - { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t raw -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t raw -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 CT helper ftp -CT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 CT helper ftp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325794,59 +338101,73 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:58" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t raw -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t raw -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "CT 6 -- ::/0 ::/0 tcp dpt:21 CT helper ftp -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +$at_failed && at_fn_log_failure +$at_traceon; } + + { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-service ftp +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325857,15 +338178,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325876,15 +338197,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-service ftp +printf "%s\n" "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -325894,16 +338215,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' +printf "%s\n" "$at_srcdir/source_ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:93" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:93" $at_failed && at_fn_log_failure $at_traceon; } @@ -325914,15 +338237,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-service ftp +printf "%s\n" "$at_srcdir/source_ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:94" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:94" $at_failed && at_fn_log_failure $at_traceon; } @@ -325933,15 +338256,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' +printf "%s\n" "$at_srcdir/source_ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 123443/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 123443/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:95" $at_failed && at_fn_log_failure $at_traceon; } @@ -325952,15 +338275,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-service ftp +printf "%s\n" "$at_srcdir/source_ports.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 123443/tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:96" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 123443/tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:96" $at_failed && at_fn_log_failure $at_traceon; } @@ -325971,15 +338294,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=\"10.10.10.0/24\" service name=ftp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address="10.10.10.0/24" service name=ftp accept' +printf "%s\n" "$at_srcdir/source_ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/bogus " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:97" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/bogus ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/services.at:47" +at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:97" $at_failed && at_fn_log_failure $at_traceon; } @@ -325989,18 +338312,36 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/bogus " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:98" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/bogus +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:98" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/services.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service does-not-exist " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:90" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-service does-not-exist +printf "%s\n" "$at_srcdir/source_ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:100" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/services.at:90" +at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:100" $at_failed && at_fn_log_failure $at_traceon; } @@ -326011,15 +338352,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-service does-not-exist " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:91" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-service does-not-exist +printf "%s\n" "$at_srcdir/source_ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:101" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/services.at:91" +at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:101" $at_failed && at_fn_log_failure $at_traceon; } @@ -326029,17 +338370,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:102" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:102" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/services.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-interface raboof0 --add-service ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:94" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-interface raboof0 --add-service ssh +printf "%s\n" "$at_srcdir/source_ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:103" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/services.at:94" +at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:103" $at_failed && at_fn_log_failure $at_traceon; } @@ -326050,15 +338409,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/services.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-interface raboof0 --add-service ssh " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "services.at:95" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-interface raboof0 --add-service ssh +printf "%s\n" "$at_srcdir/source_ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:104" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/services.at:95" +at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:104" $at_failed && at_fn_log_failure $at_traceon; } @@ -326068,10 +338427,29 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_SERVICE/d'" != x"ignore"; then - $as_echo "services.at:97" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_SERVICE/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/services.at:97" + { set +x +printf "%s\n" "$at_srcdir/source_ports.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:105" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:105" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + if test x"" != x"ignore"; then + printf "%s\n" "source_ports.at:107" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/source_ports.at:107" fi @@ -326080,13 +338458,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_324 -#AT_START_325 -at_fn_group_banner 325 'ports.at:1' \ - "ports" " " 11 +#AT_STOP_344 +#AT_START_345 +at_fn_group_banner 345 'forward_ports.at:1' \ + "forward ports" " " 11 at_xfail=no ( - $as_echo "325. $at_setup_line: testing $at_desc ..." + printf "%s\n" "345. $at_setup_line: testing $at_desc ..." $at_traceon @@ -326104,6 +338482,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -326120,29 +338499,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:1" +printf "%s\n" "$at_srcdir/forward_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "ports.at:1" +printf "%s\n" "$at_srcdir/forward_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "forward_ports.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -326150,15 +338529,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "ports.at:1" +printf "%s\n" "$at_srcdir/forward_ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "forward_ports.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -326200,15 +338579,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/ports.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:1" +printf "%s\n" "$at_srcdir/forward_ports.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -326216,9 +338595,9 @@ $at_traceon; } - $as_echo "ports.at:1" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/ports.at:1" + && at_fn_check_skip 77 "$at_srcdir/forward_ports.at:1" @@ -326299,8 +338678,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "ports.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/ports.at:1" + printf "%s\n" "forward_ports.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -326310,7 +338689,7 @@ at_fn_check_skip 99 "$at_srcdir/ports.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -326318,8 +338697,8 @@ at_fn_check_skip 99 "$at_srcdir/ports.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "ports.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/ports.at:1" + printf "%s\n" "forward_ports.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" fi echo "$!" > firewalld.pid @@ -326335,9 +338714,9 @@ at_fn_check_skip 99 "$at_srcdir/ports.at:1" fi sleep 1 done - $as_echo "ports.at:1" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/ports.at:1" + && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" @@ -326347,15 +338726,15 @@ at_fn_check_skip 99 "$at_srcdir/ports.at:1" { set +x -$as_echo "$at_srcdir/ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:4" +printf "%s\n" "$at_srcdir/forward_ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -326366,15 +338745,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:5" +printf "%s\n" "$at_srcdir/forward_ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -326385,15 +338764,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST +printf "%s\n" "$at_srcdir/forward_ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -326405,15 +338784,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -326423,35 +338802,23 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/udp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:10" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/ports.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 4321/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 4321/udp +printf "%s\n" "$at_srcdir/forward_ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -326459,21 +338826,10 @@ $at_traceon; } + else + : - - { set +x -$as_echo "$at_srcdir/ports.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=udp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=udp accept' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:12" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi @@ -326481,15 +338837,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -326500,15 +338856,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -326518,16 +338874,23 @@ $at_traceon; } + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + { set +x -$as_echo "$at_srcdir/ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 4321/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 4321/udp +printf "%s\n" "$at_srcdir/forward_ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -326535,18 +338898,26 @@ $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/ports.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -326558,15 +338929,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:17" +printf "%s\n" "$at_srcdir/forward_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:19" $at_failed && at_fn_log_failure $at_traceon; } @@ -326577,15 +338948,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:17" +printf "%s\n" "$at_srcdir/forward_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:19" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:19" $at_failed && at_fn_log_failure $at_traceon; } @@ -326597,15 +338968,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -326615,35 +338986,23 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:19" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 4321/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 4321/udp +printf "%s\n" "$at_srcdir/forward_ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:20" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -326651,18 +339010,26 @@ $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=udp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:24" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:24" $at_failed && at_fn_log_failure $at_traceon; } @@ -326678,26 +339045,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/forward_ports.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ports.at:32" +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:34" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:1234 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:1234 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:4321 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:4444 +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:33 to:10.10.10.10:33 +DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:32" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -326716,26 +339081,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/forward_ports.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ports.at:38" +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:38" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp dpt:1234 -ACCEPT 17 -- ::/0 ::/0 udp dpt:1234 -ACCEPT 17 -- ::/0 ::/0 udp dpt:4321 -ACCEPT 17 -- ::/0 ::/0 udp dpt:4444 +echo >>"$at_stdout"; printf "%s\n" "DNAT 17 -- ::/0 ::/0 udp dpt:44 to:[1234::4321]:4444 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:38" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -326754,15 +339116,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:41" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:41" $at_failed && at_fn_log_failure $at_traceon; } @@ -326773,15 +339135,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:45" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ports.at:45" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -326791,35 +339153,23 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:46" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:43" $at_failed && at_fn_log_failure $at_traceon; } @@ -326827,21 +339177,10 @@ $at_traceon; } + else + : - - { set +x -$as_echo "$at_srcdir/ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 4321/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:48" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 4321/udp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:48" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi @@ -326849,15 +339188,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:49" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:49" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -326868,15 +339207,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:50" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -326887,15 +339226,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:51" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:48" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ports.at:51" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -326905,35 +339244,23 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:52" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/ports.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:49" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:53" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:49" $at_failed && at_fn_log_failure $at_traceon; } @@ -326941,21 +339268,10 @@ $at_traceon; } + else + : - - { set +x -$as_echo "$at_srcdir/ports.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 4321/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 4321/udp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:54" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi @@ -326963,15 +339279,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=udp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:52" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:55" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -326984,15 +339300,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327003,15 +339319,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327022,15 +339338,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327041,15 +339357,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327060,15 +339376,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327079,15 +339395,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327098,15 +339414,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327122,24 +339438,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ports.at:58" +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:1234 -ACCEPT 132 -- 0.0.0.0/0 0.0.0.0/0 sctp dpt:4444 +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:33 to:10.10.10.10:33 +DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327158,24 +339474,21 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "ports.at:58" +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:55" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 17 -- ::/0 ::/0 udp dpt:1234 -ACCEPT 132 -- ::/0 ::/0 sctp dpt:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327194,15 +339507,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327213,15 +339526,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327232,15 +339545,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 1 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327251,15 +339564,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 1 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327270,15 +339583,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327289,15 +339602,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327308,15 +339621,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 1 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327327,15 +339640,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/ports.at:58" +at_fn_check_status 1 $at_status "$at_srcdir/forward_ports.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -327348,15 +339661,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:93" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234 +printf "%s\n" "$at_srcdir/forward_ports.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port 1234 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:88" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/ports.at:93" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:88" $at_failed && at_fn_log_failure $at_traceon; } @@ -327367,15 +339680,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:94" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234 +printf "%s\n" "$at_srcdir/forward_ports.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port 1234 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:89" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port 1234 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/ports.at:94" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:89" $at_failed && at_fn_log_failure $at_traceon; } @@ -327386,15 +339699,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 123443/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:95" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 123443/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/ports.at:95" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:90" $at_failed && at_fn_log_failure $at_traceon; } @@ -327405,15 +339718,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 123443/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:96" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 123443/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:91" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/ports.at:96" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:91" $at_failed && at_fn_log_failure $at_traceon; } @@ -327424,15 +339737,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/bogus " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:97" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-port 1234/bogus +printf "%s\n" "$at_srcdir/forward_ports.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:92" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/ports.at:97" +at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:92" $at_failed && at_fn_log_failure $at_traceon; } @@ -327443,15 +339756,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/bogus " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:98" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-port 1234/bogus +printf "%s\n" "$at_srcdir/forward_ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:93" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/ports.at:98" +at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:93" $at_failed && at_fn_log_failure $at_traceon; } @@ -327461,17 +339774,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:100" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 accept' +printf "%s\n" "$at_srcdir/forward_ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:94" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/ports.at:100" +at_fn_check_status 105 $at_status "$at_srcdir/forward_ports.at:94" $at_failed && at_fn_log_failure $at_traceon; } @@ -327482,15 +339794,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:101" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 accept' +printf "%s\n" "$at_srcdir/forward_ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/ports.at:101" +at_fn_check_status 105 $at_status "$at_srcdir/forward_ports.at:95" $at_failed && at_fn_log_failure $at_traceon; } @@ -327500,16 +339812,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:102" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:97" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/ports.at:102" +at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:97" $at_failed && at_fn_log_failure $at_traceon; } @@ -327520,15 +339833,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:103" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=99999 protocol=tcp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:98" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/ports.at:103" +at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:98" $at_failed && at_fn_log_failure $at_traceon; } @@ -327539,15 +339852,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:104" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' +printf "%s\n" "$at_srcdir/forward_ports.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:99" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/ports.at:104" +at_fn_check_status 102 $at_status "$at_srcdir/forward_ports.at:99" $at_failed && at_fn_log_failure $at_traceon; } @@ -327558,15 +339871,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/ports.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "ports.at:105" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule port port=4444 protocol=bogus accept' +printf "%s\n" "$at_srcdir/forward_ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:100" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/ports.at:105" +at_fn_check_status 102 $at_status "$at_srcdir/forward_ports.at:100" $at_failed && at_fn_log_failure $at_traceon; } @@ -327576,147 +339889,54 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "ports.at:107" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/ports.at:107" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_325 -#AT_START_326 -at_fn_group_banner 326 'source_ports.at:1' \ - "source ports" " " 11 -at_xfail=no -( - $as_echo "326. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/source_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:101" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:101" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/source_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "source_ports.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/source_ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "source_ports.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:102" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:102" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/source_ports.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:103" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 105 $at_status "$at_srcdir/forward_ports.at:103" $at_failed && at_fn_log_failure $at_traceon; } @@ -327724,146 +339944,18 @@ $at_traceon; } - $as_echo "source_ports.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/source_ports.at:1" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "source_ports.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/source_ports.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "source_ports.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/source_ports.at:1" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "source_ports.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/source_ports.at:1" - - - - - - { set +x -$as_echo "$at_srcdir/source_ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar +printf "%s\n" "$at_srcdir/forward_ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:104" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:4" +at_fn_check_status 105 $at_status "$at_srcdir/forward_ports.at:104" $at_failed && at_fn_log_failure $at_traceon; } @@ -327873,16 +339965,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/source_ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/forward_ports.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:106" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:106" $at_failed && at_fn_log_failure $at_traceon; } @@ -327893,15 +339986,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST +printf "%s\n" "$at_srcdir/forward_ports.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:107" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:107" $at_failed && at_fn_log_failure $at_traceon; } @@ -327913,15 +340006,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:110" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:110" $at_failed && at_fn_log_failure $at_traceon; } @@ -327932,15 +340025,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:111" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:111" $at_failed && at_fn_log_failure $at_traceon; } @@ -327951,15 +340044,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 4321/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 4321/udp +printf "%s\n" "$at_srcdir/forward_ports.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:112" $at_failed && at_fn_log_failure $at_traceon; } @@ -327970,15 +340063,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=udp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=udp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:113" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:113" $at_failed && at_fn_log_failure $at_traceon; } @@ -327989,15 +340082,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:114" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:114" $at_failed && at_fn_log_failure $at_traceon; } @@ -328008,15 +340101,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:115" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:115" $at_failed && at_fn_log_failure $at_traceon; } @@ -328027,15 +340120,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 4321/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 4321/udp +printf "%s\n" "$at_srcdir/forward_ports.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:116" $at_failed && at_fn_log_failure $at_traceon; } @@ -328046,15 +340139,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:117" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:117" $at_failed && at_fn_log_failure $at_traceon; } @@ -328064,17 +340157,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/source_ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/forward_ports.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:118" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:17" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:118" $at_failed && at_fn_log_failure $at_traceon; } @@ -328085,15 +340177,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/forward_ports.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:119" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:17" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:119" $at_failed && at_fn_log_failure $at_traceon; } @@ -328104,16 +340196,30 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/source_ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:130" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:18" +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 to:10.0.0.1:2222 +DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 +DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 to::2222 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:130" $at_failed && at_fn_log_failure $at_traceon; } @@ -328123,35 +340229,59 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/source_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:135" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:19" +echo >>"$at_stdout"; printf "%s\n" "DNAT 17 -- ::/0 ::/0 udp dpt:444 to::4444 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:135" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/source_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 4321/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 4321/udp +printf "%s\n" "$at_srcdir/forward_ports.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:138" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:20" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:138" $at_failed && at_fn_log_failure $at_traceon; } @@ -328162,15 +340292,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=udp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:139" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:139" $at_failed && at_fn_log_failure $at_traceon; } @@ -328180,32 +340310,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/source_ports.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "source_ports.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/forward_ports.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:140" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp spt:1234 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp spt:1234 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp spt:4321 -ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp spt:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:32" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:140" $at_failed && at_fn_log_failure $at_traceon; } @@ -328215,62 +340329,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/source_ports.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "source_ports.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/forward_ports.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:141" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- ::/0 ::/0 tcp spt:1234 -ACCEPT 17 -- ::/0 ::/0 udp spt:1234 -ACCEPT 17 -- ::/0 ::/0 udp spt:4321 -ACCEPT 17 -- ::/0 ::/0 udp spt:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:38" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:141" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/source_ports.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:142" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:142" $at_failed && at_fn_log_failure $at_traceon; } @@ -328281,15 +340368,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:45" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:143" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:45" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:143" $at_failed && at_fn_log_failure $at_traceon; } @@ -328300,15 +340387,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:144" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:46" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:144" $at_failed && at_fn_log_failure $at_traceon; } @@ -328319,15 +340406,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:145" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:145" $at_failed && at_fn_log_failure $at_traceon; } @@ -328338,15 +340425,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 4321/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:48" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 4321/udp +printf "%s\n" "$at_srcdir/forward_ports.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:146" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:48" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:146" $at_failed && at_fn_log_failure $at_traceon; } @@ -328357,15 +340444,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:49" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:147" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:49" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:147" $at_failed && at_fn_log_failure $at_traceon; } @@ -328375,16 +340462,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/source_ports.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:50" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:150" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:50" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:150" $at_failed && at_fn_log_failure $at_traceon; } @@ -328395,15 +340483,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:51" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:151" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:51" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:151" $at_failed && at_fn_log_failure $at_traceon; } @@ -328414,15 +340502,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:152" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:52" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:152" $at_failed && at_fn_log_failure $at_traceon; } @@ -328433,15 +340521,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:153" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:53" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:153" $at_failed && at_fn_log_failure $at_traceon; } @@ -328452,15 +340540,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 4321/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 4321/udp +printf "%s\n" "$at_srcdir/forward_ports.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:54" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:154" $at_failed && at_fn_log_failure $at_traceon; } @@ -328471,15 +340559,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=udp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:155" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:55" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:155" $at_failed && at_fn_log_failure $at_traceon; } @@ -328490,17 +340578,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:157" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:157" $at_failed && at_fn_log_failure $at_traceon; } @@ -328511,15 +340598,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:158" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:158" $at_failed && at_fn_log_failure $at_traceon; } @@ -328530,15 +340617,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:159" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:159" $at_failed && at_fn_log_failure $at_traceon; } @@ -328549,15 +340636,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:160" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:160" $at_failed && at_fn_log_failure $at_traceon; } @@ -328567,16 +340654,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent +printf "%s\n" "$at_srcdir/forward_ports.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:163" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:163" $at_failed && at_fn_log_failure $at_traceon; } @@ -328587,15 +340675,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:164: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:164" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:164" $at_failed && at_fn_log_failure $at_traceon; } @@ -328606,15 +340694,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:165" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:165" $at_failed && at_fn_log_failure $at_traceon; } @@ -328624,30 +340712,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/forward_ports.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:166" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 17 -- 0.0.0.0/0 0.0.0.0/0 udp spt:1234 -ACCEPT 132 -- 0.0.0.0/0 0.0.0.0/0 sctp spt:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 112 $at_status "$at_srcdir/forward_ports.at:166" $at_failed && at_fn_log_failure $at_traceon; } @@ -328657,60 +340731,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/forward_ports.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:167" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 17 -- ::/0 ::/0 udp spt:1234 -ACCEPT 132 -- ::/0 ::/0 sctp spt:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:167" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:168: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:168" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 112 $at_status "$at_srcdir/forward_ports.at:168" $at_failed && at_fn_log_failure $at_traceon; } @@ -328721,15 +340770,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:169: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:169" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:169" $at_failed && at_fn_log_failure $at_traceon; } @@ -328740,15 +340789,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:170" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:170" $at_failed && at_fn_log_failure $at_traceon; } @@ -328759,15 +340808,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:171: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:171" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:171" $at_failed && at_fn_log_failure $at_traceon; } @@ -328778,15 +340827,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:172: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:172" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 112 $at_status "$at_srcdir/forward_ports.at:172" $at_failed && at_fn_log_failure $at_traceon; } @@ -328797,15 +340846,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule source-port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:173" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:173" $at_failed && at_fn_log_failure $at_traceon; } @@ -328816,15 +340865,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-source-port 1234/udp +printf "%s\n" "$at_srcdir/forward_ports.at:174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:174" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 112 $at_status "$at_srcdir/forward_ports.at:174" $at_failed && at_fn_log_failure $at_traceon; } @@ -328834,16 +340883,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/source_ports.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule source-port port=4444 protocol=sctp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --remove-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:176" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/source_ports.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:176" $at_failed && at_fn_log_failure $at_traceon; } @@ -328853,18 +340903,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/source_ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:93" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234 +printf "%s\n" "$at_srcdir/forward_ports.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:177" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:93" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:177" $at_failed && at_fn_log_failure $at_traceon; } @@ -328874,16 +340922,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/source_ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:94" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234 +printf "%s\n" "$at_srcdir/forward_ports.at:181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:181" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:94" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:181" $at_failed && at_fn_log_failure $at_traceon; } @@ -328894,15 +340943,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 123443/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:95" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 123443/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:182" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:95" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:182" $at_failed && at_fn_log_failure $at_traceon; } @@ -328913,15 +340962,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 123443/tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:96" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 123443/tcp +printf "%s\n" "$at_srcdir/forward_ports.at:183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:183" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:96" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:183" $at_failed && at_fn_log_failure $at_traceon; } @@ -328932,15 +340981,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/bogus " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:97" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-source-port 1234/bogus +printf "%s\n" "$at_srcdir/forward_ports.at:184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:184" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:97" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:184" $at_failed && at_fn_log_failure $at_traceon; } @@ -328951,15 +341000,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/bogus " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:98" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-source-port 1234/bogus +printf "%s\n" "$at_srcdir/forward_ports.at:185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:185" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:98" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:185" $at_failed && at_fn_log_failure $at_traceon; } @@ -328969,17 +341018,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/source_ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:100" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 accept' +printf "%s\n" "$at_srcdir/forward_ports.at:186: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:186" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:100" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:186" $at_failed && at_fn_log_failure $at_traceon; } @@ -328990,15 +341038,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:101" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 accept' +printf "%s\n" "$at_srcdir/forward_ports.at:187: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:187" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:101" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:187" $at_failed && at_fn_log_failure $at_traceon; } @@ -329009,15 +341057,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:102" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:188: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:188" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:102" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:188" $at_failed && at_fn_log_failure $at_traceon; } @@ -329028,15 +341076,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:103" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=99999 protocol=tcp accept' +printf "%s\n" "$at_srcdir/forward_ports.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:189" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/source_ports.at:103" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:189" $at_failed && at_fn_log_failure $at_traceon; } @@ -329047,15 +341095,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/source_ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:104" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' +printf "%s\n" "$at_srcdir/forward_ports.at:190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:190" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:104" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:190" $at_failed && at_fn_log_failure $at_traceon; } @@ -329065,16 +341113,30 @@ $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/source_ports.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "source_ports.at:105" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule source-port port=4444 protocol=bogus accept' +printf "%s\n" "$at_srcdir/forward_ports.at:199: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:199" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/source_ports.at:105" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 to:10.0.0.1:2222 +DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:199" $at_failed && at_fn_log_failure $at_traceon; } @@ -329084,10 +341146,12 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "source_ports.at:107" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/source_ports.at:107" + + + if test x"-e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d'" != x"ignore"; then + printf "%s\n" "forward_ports.at:204" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:204" fi @@ -329096,13 +341160,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_326 -#AT_START_327 -at_fn_group_banner 327 'forward_ports.at:1' \ - "forward ports" " " 11 +#AT_STOP_345 +#AT_START_346 +at_fn_group_banner 346 'forward_ports.at:207' \ + "forward ports (OUTPUT)" " " 11 at_xfail=no ( - $as_echo "327. $at_setup_line: testing $at_desc ..." + printf "%s\n" "346. $at_setup_line: testing $at_desc ..." $at_traceon @@ -329120,6 +341184,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -329136,29 +341201,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/forward_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:1" +printf "%s\n" "$at_srcdir/forward_ports.at:207: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:207" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:207" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/forward_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "forward_ports.at:1" +printf "%s\n" "$at_srcdir/forward_ports.at:207: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "forward_ports.at:207" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:207" $at_failed && at_fn_log_failure $at_traceon; } @@ -329166,15 +341231,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "forward_ports.at:1" +printf "%s\n" "$at_srcdir/forward_ports.at:207: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "forward_ports.at:207" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:207" $at_failed && at_fn_log_failure $at_traceon; } @@ -329216,15 +341281,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/forward_ports.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:1" +printf "%s\n" "$at_srcdir/forward_ports.at:207: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:207" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:207" $at_failed && at_fn_log_failure $at_traceon; } @@ -329232,9 +341297,9 @@ $at_traceon; } - $as_echo "forward_ports.at:1" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:207" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/forward_ports.at:1" + && at_fn_check_skip 77 "$at_srcdir/forward_ports.at:207" @@ -329315,8 +341380,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "forward_ports.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" + printf "%s\n" "forward_ports.at:207" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -329326,7 +341391,7 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -329334,8 +341399,8 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "forward_ports.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" + printf "%s\n" "forward_ports.at:207" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" fi echo "$!" > firewalld.pid @@ -329351,9 +341416,9 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" fi sleep 1 done - $as_echo "forward_ports.at:1" >"$at_check_line_file" + printf "%s\n" "forward_ports.at:207" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" + && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" @@ -329363,15 +341428,15 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:1" { set +x -$as_echo "$at_srcdir/forward_ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:4" +printf "%s\n" "$at_srcdir/forward_ports.at:210: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:210" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:210" $at_failed && at_fn_log_failure $at_traceon; } @@ -329382,15 +341447,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/forward_ports.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone localhost " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:211" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:211" $at_failed && at_fn_log_failure $at_traceon; } @@ -329400,16 +341465,36 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/forward_ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY +printf "%s\n" "$at_srcdir/forward_ports.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:6" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:212" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -329420,16 +341505,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/forward_ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 +printf "%s\n" "$at_srcdir/forward_ports.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:217" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:217" $at_failed && at_fn_log_failure $at_traceon; } @@ -329439,23 +341525,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:218" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:218" +$at_failed && at_fn_log_failure +$at_traceon; } + + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/forward_ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 +printf "%s\n" "$at_srcdir/forward_ports.at:219: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:219" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:10" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:219" $at_failed && at_fn_log_failure $at_traceon; } @@ -329463,10 +341561,21 @@ $at_traceon; } - else - : - fi + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:220" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:220" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -329474,15 +341583,53 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:13" +printf "%s\n" "$at_srcdir/forward_ports.at:221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:221" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:221" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:222" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:222" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:223" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:223" $at_failed && at_fn_log_failure $at_traceon; } @@ -329493,15 +341640,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 +printf "%s\n" "$at_srcdir/forward_ports.at:224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:224" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:224" $at_failed && at_fn_log_failure $at_traceon; } @@ -329511,23 +341658,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:225" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:225" +$at_failed && at_fn_log_failure +$at_traceon; } + + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/forward_ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 +printf "%s\n" "$at_srcdir/forward_ports.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:226" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:226" $at_failed && at_fn_log_failure $at_traceon; } @@ -329535,10 +341694,21 @@ $at_traceon; } - else - : - fi + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:227" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:227" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -329546,15 +341716,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/forward_ports.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:228" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:228" $at_failed && at_fn_log_failure $at_traceon; } @@ -329565,16 +341735,29 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/forward_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/forward_ports.at:237: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUT_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:237" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L OUT_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:19" +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 to:10.0.0.1:2222 +DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:237" $at_failed && at_fn_log_failure $at_traceon; } @@ -329584,16 +341767,19 @@ $at_traceon; } + + + { set +x -$as_echo "$at_srcdir/forward_ports.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/forward_ports.at:242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:242" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:19" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:242" $at_failed && at_fn_log_failure $at_traceon; } @@ -329603,17 +341789,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 +printf "%s\n" "$at_srcdir/forward_ports.at:243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:243" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:20" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:243" $at_failed && at_fn_log_failure $at_traceon; } @@ -329623,23 +341808,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:244" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:244" +$at_failed && at_fn_log_failure +$at_traceon; } + + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/forward_ports.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 +printf "%s\n" "$at_srcdir/forward_ports.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:245" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:245" $at_failed && at_fn_log_failure $at_traceon; } @@ -329647,10 +341844,22 @@ $at_traceon; } - else - : - fi + + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone localhost --add-source 127.0.0.0/8 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:250" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone localhost --add-source 127.0.0.0/8 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:250" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -329658,15 +341867,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:24" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/forward_ports.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:251" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:24" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:251" $at_failed && at_fn_log_failure $at_traceon; } @@ -329676,30 +341885,54 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone localhost " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:252" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone localhost +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:252" +$at_failed && at_fn_log_failure +$at_traceon; } + + { set +x -$as_echo "$at_srcdir/forward_ports.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:34" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/forward_ports.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:253" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:253" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:254: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:254" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:33 to:10.10.10.10:33 -DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:34" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:254" $at_failed && at_fn_log_failure $at_traceon; } @@ -329709,59 +341942,92 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:255" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:255" +$at_failed && at_fn_log_failure +$at_traceon; } + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/forward_ports.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/forward_ports.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:256" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:256" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone localhost --add-source 127.0.0.0/8 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:257" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone localhost --add-source 127.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 17 -- ::/0 ::/0 udp dpt:44 to:[1234::4321]:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:38" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:257" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:258" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:258" +$at_failed && at_fn_log_failure +$at_traceon; } + + { set +x -$as_echo "$at_srcdir/forward_ports.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:41" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 +printf "%s\n" "$at_srcdir/forward_ports.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone localhost " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:259" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:41" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:259" $at_failed && at_fn_log_failure $at_traceon; } @@ -329772,15 +342038,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 +printf "%s\n" "$at_srcdir/forward_ports.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:260" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:42" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:260" $at_failed && at_fn_log_failure $at_traceon; } @@ -329790,23 +342056,54 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:261" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:261" +$at_failed && at_fn_log_failure +$at_traceon; } + + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/forward_ports.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 +printf "%s\n" "$at_srcdir/forward_ports.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:262" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:43" +at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:262" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:263" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:263" $at_failed && at_fn_log_failure $at_traceon; } @@ -329814,10 +342111,7 @@ $at_traceon; } - else - : - fi @@ -329825,15 +342119,46 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/forward_ports.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L OUT_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:272" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L OUT_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 to:10.0.0.1:2222 +DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:272" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone localhost --remove-source 127.0.0.0/8 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:277" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone localhost --remove-source 127.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:46" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:277" $at_failed && at_fn_log_failure $at_traceon; } @@ -329844,15 +342169,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 +printf "%s\n" "$at_srcdir/forward_ports.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:278" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:278" $at_failed && at_fn_log_failure $at_traceon; } @@ -329863,15 +342188,34 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:48" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 +printf "%s\n" "$at_srcdir/forward_ports.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone localhost " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:279" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:48" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:279" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone localhost --remove-source 127.0.0.0/8 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:280" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone localhost --remove-source 127.0.0.0/8 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:280" $at_failed && at_fn_log_failure $at_traceon; } @@ -329881,23 +342225,186 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:281" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:281" +$at_failed && at_fn_log_failure +$at_traceon; } + + - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/forward_ports.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:49" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=44:proto=udp:toport=4444:toaddr=1234::4321 +printf "%s\n" "$at_srcdir/forward_ports.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone localhost " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:282" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone localhost ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:49" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:282" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + if test x"-e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d'" != x"ignore"; then + printf "%s\n" "forward_ports.at:284" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:284" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_346 +#AT_START_347 +at_fn_group_banner 347 'forward_ports.at:287' \ + "forward ports - logging and limiting" " " 11 +at_xfail=no +( + printf "%s\n" "347. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:287: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:287" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:287" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:287: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "forward_ports.at:287" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:287" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:287: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "forward_ports.at:287" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:287" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/forward_ports.at:287: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:287" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:287" $at_failed && at_fn_log_failure $at_traceon; } @@ -329905,29 +342412,128 @@ $at_traceon; } - else - : + printf "%s\n" "forward_ports.at:287" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/forward_ports.at:287" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "forward_ports.at:287" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/forward_ports.at:287" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + - fi + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi - { set +x -$as_echo "$at_srcdir/forward_ports.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:52" -$at_failed && at_fn_log_failure -$at_traceon; } + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "forward_ports.at:287" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/forward_ports.at:287" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "forward_ports.at:287" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:287" @@ -329937,15 +342543,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 +printf "%s\n" "$at_srcdir/forward_ports.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix=\"forward-port: \" level=\"info\" limit value=\"1/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:290" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix="forward-port: " level="info" limit value="1/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:290" $at_failed && at_fn_log_failure $at_traceon; } @@ -329956,15 +342562,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/forward_ports.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix=\"forward-port: \" level=\"info\" limit value=\"1/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:291" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix="forward-port: " level="info" limit value="1/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:291" $at_failed && at_fn_log_failure $at_traceon; } @@ -329974,35 +342580,23 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/forward_ports.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix=\"forward-port: \" queue-size=10 limit value=\"1/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:292" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix="forward-port: " queue-size=10 limit value="1/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:292" $at_failed && at_fn_log_failure $at_traceon; } @@ -330013,15 +342607,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent +printf "%s\n" "$at_srcdir/forward_ports.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix=\"forward-port: \" queue-size=10 limit value=\"1/m\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:292" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix="forward-port: " queue-size=10 limit value="1/m"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:292" $at_failed && at_fn_log_failure $at_traceon; } @@ -330029,39 +342623,16 @@ $at_traceon; } + else + : - - { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi - { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -330075,24 +342646,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/forward_ports.at:316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PRE_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:55" +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:316" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t nat -L PRE_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:33 to:10.10.10.10:33 -DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 +echo >>"$at_stdout"; printf "%s\n" "LOG 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:33 limit: avg 1/min burst 5 LOG flags 0 level 6 prefix \"forward-port: \" " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:316" $at_failed && at_fn_log_failure $at_traceon; } @@ -330111,21 +342681,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/forward_ports.at:319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PRE_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:55" +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:319" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t nat -L PRE_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" +echo >>"$at_stdout"; printf "%s\n" "NFLOG 17 -- ::/0 ::/0 udp dpt:44 limit: avg 1/min burst 5 nflog-prefix \"forward-port: \" nflog-threshold 10 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:319" $at_failed && at_fn_log_failure $at_traceon; } @@ -330143,35 +342715,27 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/forward_ports.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:323" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" +echo >>"$at_stdout"; printf "%s\n" "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:33 to:10.10.10.10:33 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:323" $at_failed && at_fn_log_failure $at_traceon; } @@ -330181,189 +342745,191 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/forward_ports.at:55" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/forward_ports.at:326: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:326" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/forward_ports.at:55" +echo >>"$at_stdout"; printf "%s\n" "DNAT 17 -- ::/0 ::/0 udp dpt:44 to:[1234::4321]:4444 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:326" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" -$at_failed && at_fn_log_failure -$at_traceon; } - + if test x"" != x"ignore"; then + printf "%s\n" "forward_ports.at:330" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:330" + fi - { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:55" -$at_failed && at_fn_log_failure -$at_traceon; } + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_347 +#AT_START_348 +at_fn_group_banner 348 'masquerade.at:1' \ + "masquerade" " " 11 +at_xfail=no +( + printf "%s\n" "348. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-forward-port port=33:proto=tcp:toport=33:toaddr=10.10.10.10 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/forward_ports.at:55" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/forward_ports.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/masquerade.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/forward_ports.at:55" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port 1234 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:88" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port 1234 + else + { set +x +printf "%s\n" "$at_srcdir/masquerade.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "masquerade.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:88" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port 1234 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:89" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port 1234 + { set +x +printf "%s\n" "$at_srcdir/masquerade.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "masquerade.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:89" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/forward_ports.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:90" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:90" -$at_failed && at_fn_log_failure -$at_traceon; } + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/forward_ports.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:91" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/masquerade.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:91" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -330371,77 +342937,128 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:92" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:92" -$at_failed && at_fn_log_failure -$at_traceon; } + printf "%s\n" "masquerade.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/masquerade.at:1" + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/forward_ports.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:93" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcpp:toport=1111 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:93" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "masquerade.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/forward_ports.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:94" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 105 $at_status "$at_srcdir/forward_ports.at:94" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "masquerade.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" + fi + echo "$!" > firewalld.pid - { set +x -$as_echo "$at_srcdir/forward_ports.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:95" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=11:proto=tcp:toport=1111:toaddr=10.10.10.10.10 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 105 $at_status "$at_srcdir/forward_ports.at:95" -$at_failed && at_fn_log_failure -$at_traceon; } + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "masquerade.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" @@ -330451,15 +343068,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:97" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' +printf "%s\n" "$at_srcdir/masquerade.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:97" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -330469,16 +343086,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/forward_ports.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:98" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444' +printf "%s\n" "$at_srcdir/masquerade.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:98" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -330489,15 +343107,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:99" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' +printf "%s\n" "$at_srcdir/masquerade.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/forward_ports.at:99" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -330508,15 +343126,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:100" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp' +printf "%s\n" "$at_srcdir/masquerade.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 102 $at_status "$at_srcdir/forward_ports.at:100" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -330526,16 +343144,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/forward_ports.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:101" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' +printf "%s\n" "$at_srcdir/masquerade.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:101" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -330546,15 +343165,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:102" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcpp to-port=1111' +printf "%s\n" "$at_srcdir/masquerade.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/forward_ports.at:102" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -330565,15 +343184,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:103" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' +printf "%s\n" "$at_srcdir/masquerade.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 105 $at_status "$at_srcdir/forward_ports.at:103" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -330584,15 +343203,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:104" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=tcp to-port=1111 to-addr=10.10.10.10.10' +printf "%s\n" "$at_srcdir/masquerade.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 105 $at_status "$at_srcdir/forward_ports.at:104" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -330604,15 +343223,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:106" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY +printf "%s\n" "$at_srcdir/masquerade.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:106" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -330623,15 +343242,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:107" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY +printf "%s\n" "$at_srcdir/masquerade.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:107" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -330643,15 +343262,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:110" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST +printf "%s\n" "$at_srcdir/masquerade.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:110" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -330662,15 +343281,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:111" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/masquerade.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:111" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -330680,35 +343299,30 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:112" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:112" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/forward_ports.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:113" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/masquerade.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POST_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "masquerade.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POST_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:113" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "MASQUERADE 0 -- 0.0.0.0/0 0.0.0.0/0 +MASQUERADE 0 -- 10.10.10.0/24 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -330718,73 +343332,57 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:114" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:114" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/forward_ports.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:115" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone HOST +printf "%s\n" "$at_srcdir/masquerade.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POST_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "masquerade.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L POST_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:115" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:30" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/forward_ports.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:116" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:116" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/forward_ports.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:117" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/masquerade.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:117" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -330795,15 +343393,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:118" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/masquerade.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:118" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:33" $at_failed && at_fn_log_failure $at_traceon; } @@ -330814,15 +343412,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:119" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' +printf "%s\n" "$at_srcdir/masquerade.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:34" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:119" +at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -330832,31 +343430,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:130" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/masquerade.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 to:10.0.0.1:2222 -DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 -DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 to::2222 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:130" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:35" $at_failed && at_fn_log_failure $at_traceon; } @@ -330866,59 +343449,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/forward_ports.at:135: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:135" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/masquerade.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:36" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 17 -- ::/0 ::/0 udp dpt:444 to::4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:135" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:36" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:138: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:138" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/masquerade.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:37" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:138" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:37" $at_failed && at_fn_log_failure $at_traceon; } @@ -330929,15 +343488,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:139: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:139" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/masquerade.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:139" +at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -330948,15 +343507,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:140: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:140" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/masquerade.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:140" +at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:39" $at_failed && at_fn_log_failure $at_traceon; } @@ -330966,16 +343525,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/forward_ports.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:141" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:141" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -330986,15 +343547,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:142" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:142" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -331005,15 +343566,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:143" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:143" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -331024,15 +343585,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:144" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:144" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -331043,15 +343604,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:145: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:145" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:145" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -331062,15 +343623,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:146: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:146" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 forward-port port=444 protocol=udp to-port=4444' +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:146" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -331081,15 +343642,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:147: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:147" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone HOST +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:147" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -331100,16 +343661,28 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/forward_ports.at:150: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:150" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t nat -L POST_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t nat -L POST_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:150" +echo >>"$at_stdout"; printf "%s\n" "MASQUERADE 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -331119,54 +343692,59 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:151: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:151" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:151" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/forward_ports.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:152" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t nat -L POST_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t nat -L POST_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:152" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "MASQUERADE 0 -- 1234::/64 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/forward_ports.at:153: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:153" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone ANY +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:153" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -331177,15 +343755,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:154" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:154" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -331196,15 +343774,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:155: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:155" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:155" +at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -331214,17 +343792,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:157: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:157" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:157" +at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -331234,16 +343811,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/forward_ports.at:158: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:158" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY +printf "%s\n" "$at_srcdir/masquerade.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_host " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_host ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:158" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -331254,15 +343833,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:159" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/masquerade.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:159" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:72" $at_failed && at_fn_log_failure $at_traceon; } @@ -331273,15 +343852,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:160: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:160" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone ANY +printf "%s\n" "$at_srcdir/masquerade.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:160" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -331293,15 +343872,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:163: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:163" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-interface foobar0 +printf "%s\n" "$at_srcdir/masquerade.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:74" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:163" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:74" $at_failed && at_fn_log_failure $at_traceon; } @@ -331312,15 +343891,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:164: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:164" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone internal +printf "%s\n" "$at_srcdir/masquerade.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:74" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:164" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:74" $at_failed && at_fn_log_failure $at_traceon; } @@ -331330,16 +343909,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/forward_ports.at:165: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:165" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/masquerade.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:75" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:165" +at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:75" $at_failed && at_fn_log_failure $at_traceon; } @@ -331350,15 +343930,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:166" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/masquerade.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:76" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/forward_ports.at:166" +at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:76" $at_failed && at_fn_log_failure $at_traceon; } @@ -331369,15 +343949,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:167" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' +printf "%s\n" "$at_srcdir/masquerade.at:77: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_host --add-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:77" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_host --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:167" +at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:77" $at_failed && at_fn_log_failure $at_traceon; } @@ -331388,15 +343968,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:168: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:168" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/masquerade.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:78" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/forward_ports.at:168" +at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:78" $at_failed && at_fn_log_failure $at_traceon; } @@ -331407,15 +343987,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:169: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:169" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-interface foobar0 +printf "%s\n" "$at_srcdir/masquerade.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:79" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:169" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:79" $at_failed && at_fn_log_failure $at_traceon; } @@ -331426,15 +344006,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:170" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone internal +printf "%s\n" "$at_srcdir/masquerade.at:80: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:80" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:170" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:80" $at_failed && at_fn_log_failure $at_traceon; } @@ -331444,16 +344024,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/forward_ports.at:171: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:171" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_int_to_pub " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_int_to_pub ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:171" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -331464,15 +344046,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:172: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:172" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/forward_ports.at:172" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -331483,15 +344065,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:173: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:173" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-ingress-zone internal " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-ingress-zone internal ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:173" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -331502,15 +344084,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:174: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:174" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/forward_ports.at:174" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -331522,15 +344104,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:176: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --remove-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:176" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --remove-interface foobar0 +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:176" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -331541,15 +344123,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --remove-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:177" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --remove-interface foobar0 +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:177" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -331561,15 +344143,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:181: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:181" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:181" +at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -331580,15 +344162,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:182: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:182" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:182" +at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -331599,15 +344181,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:183" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:183" +at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -331618,15 +344200,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:184" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:184" +at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -331637,15 +344219,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:185: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:185" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-interface foobar1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-interface foobar1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:185" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -331655,16 +344237,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/forward_ports.at:186: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:186" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/masquerade.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:186" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:112" $at_failed && at_fn_log_failure $at_traceon; } @@ -331674,16 +344258,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/forward_ports.at:187: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:187" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/masquerade.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:113" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:187" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:113" $at_failed && at_fn_log_failure $at_traceon; } @@ -331694,15 +344279,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:188: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:188" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/masquerade.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:113" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:188" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:113" $at_failed && at_fn_log_failure $at_traceon; } @@ -331712,16 +344297,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/forward_ports.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:189" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' +printf "%s\n" "$at_srcdir/masquerade.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:114" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:189" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:114" $at_failed && at_fn_log_failure $at_traceon; } @@ -331732,15 +344318,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:190: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:190" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/masquerade.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:115" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:190" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:115" $at_failed && at_fn_log_failure $at_traceon; } @@ -331750,30 +344336,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:199: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PRE_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:199" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PRE_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/masquerade.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 to:10.0.0.1:2222 -DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:199" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:116" $at_failed && at_fn_log_failure $at_traceon; } @@ -331785,10 +344357,10 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d'" != x"ignore"; then - $as_echo "forward_ports.at:204" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:204" + if test x"-e '/ERROR: INVALID_ZONE:/d'" != x"ignore"; then + printf "%s\n" "masquerade.at:132" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ZONE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/masquerade.at:132" fi @@ -331797,13 +344369,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_327 -#AT_START_328 -at_fn_group_banner 328 'forward_ports.at:207' \ - "forward ports (OUTPUT)" " " 11 +#AT_STOP_348 +#AT_START_349 +at_fn_group_banner 349 'protocols.at:1' \ + "protocols" " " 11 at_xfail=no ( - $as_echo "328. $at_setup_line: testing $at_desc ..." + printf "%s\n" "349. $at_setup_line: testing $at_desc ..." $at_traceon @@ -331821,6 +344393,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -331837,29 +344410,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/forward_ports.at:207: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:207" +printf "%s\n" "$at_srcdir/protocols.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:207" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/forward_ports.at:207: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "forward_ports.at:207" +printf "%s\n" "$at_srcdir/protocols.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "protocols.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:207" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -331867,15 +344440,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:207: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "forward_ports.at:207" +printf "%s\n" "$at_srcdir/protocols.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "protocols.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:207" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -331917,15 +344490,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/forward_ports.at:207: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:207" +printf "%s\n" "$at_srcdir/protocols.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:207" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -331933,9 +344506,9 @@ $at_traceon; } - $as_echo "forward_ports.at:207" >"$at_check_line_file" + printf "%s\n" "protocols.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/forward_ports.at:207" + && at_fn_check_skip 77 "$at_srcdir/protocols.at:1" @@ -332016,8 +344589,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "forward_ports.at:207" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" + printf "%s\n" "protocols.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/protocols.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -332027,7 +344600,7 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -332035,8 +344608,8 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "forward_ports.at:207" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" + printf "%s\n" "protocols.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/protocols.at:1" fi echo "$!" > firewalld.pid @@ -332052,9 +344625,9 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" fi sleep 1 done - $as_echo "forward_ports.at:207" >"$at_check_line_file" + printf "%s\n" "protocols.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" + && at_fn_check_skip 99 "$at_srcdir/protocols.at:1" @@ -332064,15 +344637,15 @@ at_fn_check_skip 99 "$at_srcdir/forward_ports.at:207" { set +x -$as_echo "$at_srcdir/forward_ports.at:210: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:210" +printf "%s\n" "$at_srcdir/protocols.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:210" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -332083,15 +344656,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:211: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone localhost " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:211" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone localhost +printf "%s\n" "$at_srcdir/protocols.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:211" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -332101,17 +344674,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/protocols.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:212" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -332121,16 +344693,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/forward_ports.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/protocols.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:212" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -332140,18 +344713,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/protocols.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dccp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:10" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/forward_ports.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:217" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST +printf "%s\n" "$at_srcdir/protocols.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:217" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -332162,15 +344752,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:218" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone ANY +printf "%s\n" "$at_srcdir/protocols.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:218" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -332181,15 +344771,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:219: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:219" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/protocols.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:219" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -332200,15 +344790,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:220" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/protocols.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:220" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -332219,15 +344809,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:221" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' +printf "%s\n" "$at_srcdir/protocols.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:221" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -332238,15 +344828,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:222: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:222" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/protocols.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:222" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -332256,16 +344846,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/forward_ports.at:223: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:223" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST +printf "%s\n" "$at_srcdir/protocols.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:223" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -332276,15 +344867,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:224" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone ANY +printf "%s\n" "$at_srcdir/protocols.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:224" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -332294,16 +344885,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/forward_ports.at:225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:225" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/protocols.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:225" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -332314,15 +344906,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:226" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/protocols.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:226" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:19" $at_failed && at_fn_log_failure $at_traceon; } @@ -332333,15 +344925,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:227" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' +printf "%s\n" "$at_srcdir/protocols.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:227" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -332352,15 +344944,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:228: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:228" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/protocols.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:228" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -332376,24 +344968,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:237: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUT_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/protocols.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:237" +at_fn_check_prepare_notrace 'a $(...) command substitution' "protocols.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUT_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 to:10.0.0.1:2222 -DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 132 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 58 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 33 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 47 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:237" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -332406,54 +345000,59 @@ $at_traceon; } + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/forward_ports.at:242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:242" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST +printf "%s\n" "$at_srcdir/protocols.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "protocols.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:242" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 132 -- ::/0 ::/0 +ACCEPT 58 -- ::/0 ::/0 +ACCEPT 33 -- ::/0 ::/0 +ACCEPT 47 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:38" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/forward_ports.at:243: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:243" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone ANY -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:243" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/forward_ports.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:244" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST +printf "%s\n" "$at_srcdir/protocols.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:244" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -332464,15 +345063,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:245" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone ANY +printf "%s\n" "$at_srcdir/protocols.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:245" +at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:45" $at_failed && at_fn_log_failure $at_traceon; } @@ -332482,17 +345081,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone localhost --add-source 127.0.0.0/8 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:250" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone localhost --add-source 127.0.0.0/8 +printf "%s\n" "$at_srcdir/protocols.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:250" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -332503,15 +345101,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:251" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-ingress-zone HOST +printf "%s\n" "$at_srcdir/protocols.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:251" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -332522,15 +345120,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:252: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone localhost " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:252" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-egress-zone localhost +printf "%s\n" "$at_srcdir/protocols.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:48" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:252" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -332541,15 +345139,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:253: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:253" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/protocols.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:49" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:253" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:49" $at_failed && at_fn_log_failure $at_traceon; } @@ -332560,15 +345158,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:254: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:254" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/protocols.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:50" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:254" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:50" $at_failed && at_fn_log_failure $at_traceon; } @@ -332579,15 +345177,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:255: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:255" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' +printf "%s\n" "$at_srcdir/protocols.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:51" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:255" +at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -332598,15 +345196,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:256" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/protocols.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:52" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:256" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -332617,15 +345215,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone localhost --add-source 127.0.0.0/8 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:257" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone localhost --add-source 127.0.0.0/8 +printf "%s\n" "$at_srcdir/protocols.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol dccp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:53" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol dccp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:257" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -332636,15 +345234,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:258" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-ingress-zone HOST +printf "%s\n" "$at_srcdir/protocols.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol gre " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol gre ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:258" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:54" $at_failed && at_fn_log_failure $at_traceon; } @@ -332655,15 +345253,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone localhost " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:259" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-egress-zone localhost +printf "%s\n" "$at_srcdir/protocols.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:259" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -332673,16 +345271,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/forward_ports.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:260" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222 +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:260" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -332693,15 +345293,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:261" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-forward-port port=22:proto=tcp:toport=2222:toaddr=10.0.0.1 +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:261" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -332712,15 +345312,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:262" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444' +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 106 $at_status "$at_srcdir/forward_ports.at:262" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -332731,15 +345331,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:263" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv4 forward-port port=444 protocol=udp to-port=4444 to-addr=10.44.44.44' +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:263" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -332749,30 +345349,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L OUT_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:272" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L OUT_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 to:10.0.0.1:2222 -DNAT 17 -- 0.0.0.0/0 0.0.0.0/0 udp dpt:444 to:10.44.44.44:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:272" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -332782,19 +345368,16 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:277: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone localhost --remove-source 127.0.0.0/8 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:277" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone localhost --remove-source 127.0.0.0/8 +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:277" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -332805,15 +345388,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:278: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:278" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-ingress-zone HOST +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:278" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -332823,35 +345406,30 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:279: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone localhost " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:279" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-egress-zone localhost -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:279" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/forward_ports.at:280: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone localhost --remove-source 127.0.0.0/8 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:280" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone localhost --remove-source 127.0.0.0/8 +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:280" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 58 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 132 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -332861,185 +345439,98 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/forward_ports.at:281: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:281" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-ingress-zone HOST -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:281" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/forward_ports.at:282: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone localhost " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:282" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-egress-zone localhost +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:282" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 58 -- ::/0 ::/0 +ACCEPT 132 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } + else + : - - - - if test x"-e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d'" != x"ignore"; then - $as_echo "forward_ports.at:284" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_FORWARD/d' -e '/ERROR: INVALID_ZONE/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:284" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_328 -#AT_START_329 -at_fn_group_banner 329 'forward_ports.at:287' \ - "forward ports - logging and limiting" " " 11 -at_xfail=no -( - $as_echo "329. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - + fi - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/forward_ports.at:287: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:287" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:287" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/forward_ports.at:287: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "forward_ports.at:287" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:287" -$at_failed && at_fn_log_failure -$at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/forward_ports.at:287: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "forward_ports.at:287" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + { set +x +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:287" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - fi - } - - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - - - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/forward_ports.at:287: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:287" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:287" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -333047,146 +345538,18 @@ $at_traceon; } - $as_echo "forward_ports.at:287" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/forward_ports.at:287" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "forward_ports.at:287" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/forward_ports.at:287" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "forward_ports.at:287" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/forward_ports.at:287" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "forward_ports.at:287" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:287" - - - - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix=\"forward-port: \" level=\"info\" limit value=\"1/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:290" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix="forward-port: " level="info" limit value="1/m"' +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:290" +at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -333197,15 +345560,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:291: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix=\"forward-port: \" level=\"info\" limit value=\"1/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:291" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv4 forward-port port=33 protocol=tcp to-port=33 to-addr=10.10.10.10 log prefix="forward-port: " level="info" limit value="1/m"' +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:291" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -333215,23 +345578,16 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix=\"forward-port: \" queue-size=10 limit value=\"1/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:292" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix="forward-port: " queue-size=10 limit value="1/m"' +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:292" +at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -333242,15 +345598,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:292: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix=\"forward-port: \" queue-size=10 limit value=\"1/m\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "forward_ports.at:292" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule family=ipv6 forward-port port=44 protocol=udp to-port=4444 to-addr=1234::4321 nflog prefix="forward-port: " queue-size=10 limit value="1/m"' +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:292" +at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -333258,46 +345614,18 @@ $at_traceon; } - else - : - - fi - - - - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/forward_ports.at:316: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PRE_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:316" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PRE_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:33 limit: avg 1/min burst 5 LOG flags 0 level 6 prefix \"forward-port: \" -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:316" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -333309,43 +345637,37 @@ $at_traceon; } - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/forward_ports.at:319: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PRE_public_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:319" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PRE_public_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/protocols.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:93" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "NFLOG 17 -- ::/0 ::/0 udp dpt:44 limit: avg 1/min burst 5 nflog-prefix \"forward-port: \" nflog-threshold 10 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:319" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/protocols.at:93" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi + { set +x +printf "%s\n" "$at_srcdir/protocols.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-protocol dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:94" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-protocol dummy +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/protocols.at:94" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -333354,23 +345676,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/forward_ports.at:323: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:323" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/protocols.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value=\"dummy\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value="dummy" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:33 to:10.10.10.10:33 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:323" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/protocols.at:95" $at_failed && at_fn_log_failure $at_traceon; } @@ -333380,53 +345694,29 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/forward_ports.at:326: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L PRE_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "forward_ports.at:326" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L PRE_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/protocols.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value=\"dummy\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:96" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value="dummy" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DNAT 17 -- ::/0 ::/0 udp dpt:44 to:[1234::4321]:4444 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/forward_ports.at:326" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 103 $at_status "$at_srcdir/protocols.at:96" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - if test x"" != x"ignore"; then - $as_echo "forward_ports.at:330" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/forward_ports.at:330" + if test x"-e '/ERROR: INVALID_PROTOCOL: dummy/d'" != x"ignore"; then + printf "%s\n" "protocols.at:98" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_PROTOCOL: dummy/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/protocols.at:98" fi @@ -333435,13 +345725,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_329 -#AT_START_330 -at_fn_group_banner 330 'masquerade.at:1' \ - "masquerade" " " 11 +#AT_STOP_349 +#AT_START_350 +at_fn_group_banner 350 'rich_rules.at:1' \ + "rich rules" " " 11 at_xfail=no ( - $as_echo "330. $at_setup_line: testing $at_desc ..." + printf "%s\n" "350. $at_setup_line: testing $at_desc ..." $at_traceon @@ -333459,6 +345749,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -333475,29 +345766,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/masquerade.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:1" +printf "%s\n" "$at_srcdir/rich_rules.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/masquerade.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "masquerade.at:1" +printf "%s\n" "$at_srcdir/rich_rules.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rich_rules.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -333505,15 +345796,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "masquerade.at:1" +printf "%s\n" "$at_srcdir/rich_rules.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rich_rules.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -333555,15 +345846,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/masquerade.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:1" +printf "%s\n" "$at_srcdir/rich_rules.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -333571,9 +345862,9 @@ $at_traceon; } - $as_echo "masquerade.at:1" >"$at_check_line_file" + printf "%s\n" "rich_rules.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/masquerade.at:1" + && at_fn_check_skip 77 "$at_srcdir/rich_rules.at:1" @@ -333654,8 +345945,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "masquerade.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" + printf "%s\n" "rich_rules.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -333665,132 +345956,35 @@ at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "masquerade.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "masquerade.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/masquerade.at:1" - - - - - - - - - { set +x -$as_echo "$at_srcdir/masquerade.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/masquerade.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/masquerade.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:7" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - { set +x -$as_echo "$at_srcdir/masquerade.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rich_rules.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rich_rules.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" - { set +x -$as_echo "$at_srcdir/masquerade.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-masquerade -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:11" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -333799,15 +345993,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -333818,15 +346012,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade +printf "%s\n" "$at_srcdir/rich_rules.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -333837,15 +346031,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -333857,15 +346051,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:15" +printf "%s\n" "$at_srcdir/rich_rules.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -333876,35 +346070,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:15" +printf "%s\n" "$at_srcdir/rich_rules.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:10" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:15" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/masquerade.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-masquerade -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -333914,23 +346088,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/masquerade.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:17" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - @@ -333939,24 +346096,27 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POST_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rich_rules.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "masquerade.at:26" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:25" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POST_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MASQUERADE 0 -- 0.0.0.0/0 0.0.0.0/0 -MASQUERADE 0 -- 10.10.10.0/24 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "IN_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:26" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -333975,21 +346135,27 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POST_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rich_rules.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "masquerade.at:30" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:32" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POST_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:30" +echo >>"$at_stdout"; printf "%s\n" "IN_foobar_pre 0 -- ::/0 ::/0 +IN_foobar_log 0 -- ::/0 ::/0 +IN_foobar_deny 0 -- ::/0 ::/0 +IN_foobar_allow 0 -- ::/0 ::/0 +IN_foobar_post 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -334007,16 +346173,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/masquerade.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade +printf "%s\n" "$at_srcdir/rich_rules.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.10 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.10 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:32" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -334027,15 +346194,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 log accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 log accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:33" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:43" $at_failed && at_fn_log_failure $at_traceon; } @@ -334046,15 +346213,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:34" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade +printf "%s\n" "$at_srcdir/rich_rules.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 audit accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:34" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -334065,15 +346232,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.12 reject' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.12 reject' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:35" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:45" $at_failed && at_fn_log_failure $at_traceon; } @@ -334084,15 +346251,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:36: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:36" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-masquerade +printf "%s\n" "$at_srcdir/rich_rules.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.13 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.13 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:36" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -334103,15 +346270,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:37" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.10.10.14 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.10.10.14 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:37" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -334122,15 +346289,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-masquerade +printf "%s\n" "$at_srcdir/rich_rules.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=1 source address=10.10.10.15 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:48" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=1 source address=10.10.10.15 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:38" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -334140,16 +346307,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/masquerade.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=\"-100\" family=\"ipv4\" source address=\"10.0.0.10\" service name=\"bogusservice\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:51" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority="-100" family="ipv4" source address="10.0.0.10" service name="bogusservice" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:39" +at_fn_check_status 101 $at_status "$at_srcdir/rich_rules.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -334162,15 +346330,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-masquerade +printf "%s\n" "$at_srcdir/rich_rules.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:53" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -334181,15 +346349,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:53" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -334199,19 +346367,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-masquerade -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" -$at_failed && at_fn_log_failure -$at_traceon; } - @@ -334219,15 +346374,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:61" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 10.10.10.14 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:61" $at_failed && at_fn_log_failure $at_traceon; } @@ -334237,18 +346400,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -334257,15 +346408,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade +printf "%s\n" "$at_srcdir/rich_rules.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" +echo >>"$at_stdout"; printf "%s\n" "AUDIT 0 -- 10.10.10.11 0.0.0.0/0 AUDIT accept +LOG 0 -- 10.10.10.11 0.0.0.0/0 LOG flags 0 level 4 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:72" $at_failed && at_fn_log_failure $at_traceon; } @@ -334275,23 +346435,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - @@ -334300,23 +346443,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t nat -L POST_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rich_rules.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "masquerade.at:42" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:84" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t nat -L POST_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MASQUERADE 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "REJECT 0 -- 10.10.10.12 0.0.0.0/0 reject-with icmp-port-unreachable +DROP 0 -- 10.10.10.13 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:84" $at_failed && at_fn_log_failure $at_traceon; } @@ -334330,38 +346474,34 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : + { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t nat -L POST_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rich_rules.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "masquerade.at:42" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:96" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t nat -L POST_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MASQUERADE 0 -- 1234::/64 ::/0 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 10.10.10.10 0.0.0.0/0 +ACCEPT 0 -- 10.10.10.11 0.0.0.0/0 +ACCEPT 0 -- 10.10.10.11 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:96" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - @@ -334369,35 +346509,28 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-masquerade -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:108" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:42" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 10.10.10.15 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:108" $at_failed && at_fn_log_failure $at_traceon; } @@ -334407,35 +346540,19 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-masquerade -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:42" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/masquerade.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234::/64 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.20.20.20 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:114" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.20.20.20 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/masquerade.at:42" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:114" $at_failed && at_fn_log_failure $at_traceon; } @@ -334445,18 +346562,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/masquerade.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_host " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_host +printf "%s\n" "$at_srcdir/rich_rules.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-2 destination address=10.20.20.21 accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:115" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-2 destination address=10.20.20.21 accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:71" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:115" $at_failed && at_fn_log_failure $at_traceon; } @@ -334467,15 +346582,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-ingress-zone internal +printf "%s\n" "$at_srcdir/rich_rules.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-3 source address=10.20.20.22 destination address=10.20.20.23 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-3 source address=10.20.20.22 destination address=10.20.20.23 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:116" $at_failed && at_fn_log_failure $at_traceon; } @@ -334486,15 +346601,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-egress-zone HOST +printf "%s\n" "$at_srcdir/rich_rules.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv6 priority=-4 source address=1234::4321 destination address=1234::4444 drop' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:117" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv6 priority=-4 source address=1234::4321 destination address=1234::4444 drop' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:73" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:117" $at_failed && at_fn_log_failure $at_traceon; } @@ -334506,15 +346621,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:74" +printf "%s\n" "$at_srcdir/rich_rules.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:74" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:118" $at_failed && at_fn_log_failure $at_traceon; } @@ -334525,15 +346640,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:74" +printf "%s\n" "$at_srcdir/rich_rules.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:118" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:74" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:118" $at_failed && at_fn_log_failure $at_traceon; } @@ -334544,35 +346659,32 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/masquerade.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:75" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-masquerade -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:75" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/masquerade.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:76" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:130" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:76" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DROP 0 -- 10.20.20.22 10.20.20.23 +ACCEPT 0 -- 0.0.0.0/0 10.20.20.21 +ACCEPT 0 -- 10.10.10.14 0.0.0.0/0 +ACCEPT 0 -- 10.20.20.20 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:130" $at_failed && at_fn_log_failure $at_traceon; } @@ -334582,57 +346694,44 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/masquerade.at:77: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_host --add-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:77" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_host --add-masquerade -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:77" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/masquerade.at:78: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:78" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_host --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:136" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:78" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DROP 0 -- 1234::4321 1234::4444 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:136" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/masquerade.at:79: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:79" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-ingress-zone internal -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:79" -$at_failed && at_fn_log_failure -$at_traceon; } - @@ -334640,15 +346739,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:80: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:80" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_host --remove-egress-zone HOST +printf "%s\n" "$at_srcdir/rich_rules.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 icmp-type name=\"neighbour-advertisement\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:142" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 icmp-type name="neighbour-advertisement" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:80" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:142" $at_failed && at_fn_log_failure $at_traceon; } @@ -334658,18 +346757,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_int_to_pub " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar_int_to_pub +printf "%s\n" "$at_srcdir/rich_rules.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 icmp-type name=\"echo-request\" accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:143" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 icmp-type name="echo-request" accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:143" $at_failed && at_fn_log_failure $at_traceon; } @@ -334679,16 +346776,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-interface foobar1 +printf "%s\n" "$at_srcdir/rich_rules.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:144" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:144" $at_failed && at_fn_log_failure $at_traceon; } @@ -334699,15 +346797,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-ingress-zone internal " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-ingress-zone internal +printf "%s\n" "$at_srcdir/rich_rules.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:144" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:144" $at_failed && at_fn_log_failure $at_traceon; } @@ -334717,20 +346815,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-egress-zone public -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" -$at_failed && at_fn_log_failure -$at_traceon; } - - @@ -334738,15 +346822,27 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rich_rules.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:159" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" +echo >>"$at_stdout"; printf "%s\n" "DROP 0 -- 10.20.20.22 10.20.20.23 +ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 +ACCEPT 0 -- 0.0.0.0/0 10.20.20.21 +ACCEPT 0 -- 10.10.10.14 0.0.0.0/0 +ACCEPT 0 -- 10.20.20.20 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:159" $at_failed && at_fn_log_failure $at_traceon; } @@ -334756,58 +346852,46 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade +printf "%s\n" "$at_srcdir/rich_rules.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:166" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:82" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "DROP 0 -- 1234::4321 1234::4444 +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 136 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:166" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:82" -$at_failed && at_fn_log_failure -$at_traceon; } - @@ -334815,15 +346899,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-masquerade +printf "%s\n" "$at_srcdir/rich_rules.at:172: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:172" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:82" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:172" $at_failed && at_fn_log_failure $at_traceon; } @@ -334833,16 +346917,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' +printf "%s\n" "$at_srcdir/rich_rules.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:177" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/masquerade.at:82" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:177" $at_failed && at_fn_log_failure $at_traceon; } @@ -334853,15 +346938,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-interface foobar1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-interface foobar1 +printf "%s\n" "$at_srcdir/rich_rules.at:178: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:178" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:82" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:178" $at_failed && at_fn_log_failure $at_traceon; } @@ -334871,18 +346956,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/masquerade.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:112" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/rich_rules.at:179: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:179" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:112" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:179" $at_failed && at_fn_log_failure $at_traceon; } @@ -334894,15 +346977,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:113" +printf "%s\n" "$at_srcdir/rich_rules.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:180" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:113" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:180" $at_failed && at_fn_log_failure $at_traceon; } @@ -334913,15 +346996,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/masquerade.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:113" +printf "%s\n" "$at_srcdir/rich_rules.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:180" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:113" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:180" $at_failed && at_fn_log_failure $at_traceon; } @@ -334932,54 +347015,30 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/masquerade.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:114" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-masquerade -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:114" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/masquerade.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:115" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar_int_to_pub --add-rich-rule='rule family=ipv4 source address=10.10.10.0/24 masquerade' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:115" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - +printf "%s\n" "$at_srcdir/rich_rules.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:189" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/masquerade.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "masquerade.at:116" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=internal --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/masquerade.at:116" +echo >>"$at_stdout"; printf "%s\n" "MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK xset 0x6600/0xff00 +MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK set 0x4d2 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:189" $at_failed && at_fn_log_failure $at_traceon; } @@ -334991,147 +347050,58 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_ZONE:/d'" != x"ignore"; then - $as_echo "masquerade.at:132" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ZONE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/masquerade.at:132" - fi - - - - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_330 -#AT_START_331 -at_fn_group_banner 331 'protocols.at:1' \ - "protocols" " " 11 -at_xfail=no -( - $as_echo "331. $at_setup_line: testing $at_desc ..." - $at_traceon - - - - - - - - - - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/protocols.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } - else - { set +x -$as_echo "$at_srcdir/protocols.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "protocols.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:1" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : - fi + { set +x +printf "%s\n" "$at_srcdir/rich_rules.at:193: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:193" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - { set +x -$as_echo "$at_srcdir/protocols.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "protocols.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:1" +echo >>"$at_stdout"; printf "%s\n" "MARK 0 -- ::/0 ::/0 MARK xset 0x6600/0xff00 +MARK 0 -- ::/0 ::/0 MARK set 0x4d2 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:193" $at_failed && at_fn_log_failure $at_traceon; } + else + : - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then + fi - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/protocols.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/rich_rules.at:197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:197" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:197" $at_failed && at_fn_log_failure $at_traceon; } @@ -335139,146 +347109,19 @@ $at_traceon; } - $as_echo "protocols.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/protocols.at:1" - - - - - cat >./dbus.conf <<'_ATEOF' - - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -_ATEOF - - - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "protocols.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/protocols.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late - - - - - - - - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "protocols.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/protocols.at:1" - fi - echo "$!" > firewalld.pid - - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "protocols.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/protocols.at:1" - - - - - { set +x -$as_echo "$at_srcdir/protocols.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar +printf "%s\n" "$at_srcdir/rich_rules.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:202" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:202" $at_failed && at_fn_log_failure $at_traceon; } @@ -335288,16 +347131,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/protocols.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/rich_rules.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:203" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:5" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:203" $at_failed && at_fn_log_failure $at_traceon; } @@ -335308,15 +347152,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST +printf "%s\n" "$at_srcdir/rich_rules.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:203" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:6" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:203" $at_failed && at_fn_log_failure $at_traceon; } @@ -335327,35 +347171,30 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/protocols.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol ipv6-icmp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/protocols.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dccp +printf "%s\n" "$at_srcdir/rich_rules.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:212" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:10" +echo >>"$at_stdout"; printf "%s\n" "MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK xset 0x6600/0xff00 +MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK set 0x4d2 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:212" $at_failed && at_fn_log_failure $at_traceon; } @@ -335365,73 +347204,60 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/protocols.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol gre -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:11" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/protocols.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:216: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:216" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:12" +echo >>"$at_stdout"; printf "%s\n" "MARK 0 -- ::/0 ::/0 MARK xset 0x6600/0xff00 +MARK 0 -- ::/0 ::/0 MARK set 0x4d2 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:216" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/protocols.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:13" -$at_failed && at_fn_log_failure -$at_traceon; } - - { set +x -$as_echo "$at_srcdir/protocols.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp +printf "%s\n" "$at_srcdir/rich_rules.at:220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:220" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:220" $at_failed && at_fn_log_failure $at_traceon; } @@ -335441,16 +347267,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/protocols.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol gre +printf "%s\n" "$at_srcdir/rich_rules.at:225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:225" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:225" $at_failed && at_fn_log_failure $at_traceon; } @@ -335461,15 +347288,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:226" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:226" $at_failed && at_fn_log_failure $at_traceon; } @@ -335481,15 +347308,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:17" +printf "%s\n" "$at_srcdir/rich_rules.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:227" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:227" $at_failed && at_fn_log_failure $at_traceon; } @@ -335500,15 +347327,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:17" +printf "%s\n" "$at_srcdir/rich_rules.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:227" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:227" $at_failed && at_fn_log_failure $at_traceon; } @@ -335519,16 +347346,30 @@ $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/protocols.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:236" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:18" +echo >>"$at_stdout"; printf "%s\n" "MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK xset 0x6600/0xff00 +MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK set 0x4d2 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:236" $at_failed && at_fn_log_failure $at_traceon; } @@ -335538,35 +347379,60 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/protocols.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp +printf "%s\n" "$at_srcdir/rich_rules.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:240" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:19" +echo >>"$at_stdout"; printf "%s\n" "MARK 0 -- ::/0 ::/0 MARK xset 0x6600/0xff00 +MARK 0 -- ::/0 ::/0 MARK set 0x4d2 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:240" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/protocols.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol gre +printf "%s\n" "$at_srcdir/rich_rules.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:244" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:20" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:244" $at_failed && at_fn_log_failure $at_traceon; } @@ -335577,15 +347443,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:245" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:21" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:245" $at_failed && at_fn_log_failure $at_traceon; } @@ -335595,32 +347461,16 @@ $at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/protocols.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "protocols.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rich_rules.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:246" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 132 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 58 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 33 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 47 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:32" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:246" $at_failed && at_fn_log_failure $at_traceon; } @@ -335630,62 +347480,35 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/protocols.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "protocols.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rich_rules.at:247: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:247" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 132 -- ::/0 ::/0 -ACCEPT 58 -- ::/0 ::/0 -ACCEPT 33 -- ::/0 ::/0 -ACCEPT 47 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:38" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:247" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/protocols.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:248" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:248" $at_failed && at_fn_log_failure $at_traceon; } @@ -335696,15 +347519,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:45" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:249" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:45" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:249" $at_failed && at_fn_log_failure $at_traceon; } @@ -335715,15 +347538,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol dccp +printf "%s\n" "$at_srcdir/rich_rules.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:250" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:46" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:250" $at_failed && at_fn_log_failure $at_traceon; } @@ -335734,15 +347557,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol dccp +printf "%s\n" "$at_srcdir/rich_rules.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:251" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:251" $at_failed && at_fn_log_failure $at_traceon; } @@ -335752,16 +347575,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/protocols.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:48" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol gre +printf "%s\n" "$at_srcdir/rich_rules.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:256" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:48" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:256" $at_failed && at_fn_log_failure $at_traceon; } @@ -335772,15 +347596,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:49" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:257" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:49" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:257" $at_failed && at_fn_log_failure $at_traceon; } @@ -335791,15 +347615,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:50" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:258" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:50" +at_fn_check_status 112 $at_status "$at_srcdir/rich_rules.at:258" $at_failed && at_fn_log_failure $at_traceon; } @@ -335810,15 +347634,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:51" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:259" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:51" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:259" $at_failed && at_fn_log_failure $at_traceon; } @@ -335829,15 +347653,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol dccp +printf "%s\n" "$at_srcdir/rich_rules.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:260" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:52" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:260" $at_failed && at_fn_log_failure $at_traceon; } @@ -335848,15 +347672,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol dccp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol dccp +printf "%s\n" "$at_srcdir/rich_rules.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:261" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:53" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:261" $at_failed && at_fn_log_failure $at_traceon; } @@ -335867,15 +347691,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol gre " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol gre +printf "%s\n" "$at_srcdir/rich_rules.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:262" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:54" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:262" $at_failed && at_fn_log_failure $at_traceon; } @@ -335886,15 +347710,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:263" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:55" +at_fn_check_status 112 $at_status "$at_srcdir/rich_rules.at:263" $at_failed && at_fn_log_failure $at_traceon; } @@ -335904,18 +347728,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:264" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:264" $at_failed && at_fn_log_failure $at_traceon; } @@ -335926,15 +347748,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:265: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:265" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:265" $at_failed && at_fn_log_failure $at_traceon; } @@ -335944,16 +347766,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:267" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:267" $at_failed && at_fn_log_failure $at_traceon; } @@ -335963,16 +347786,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:271" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 log prefix="LOG: " level="warning"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:271" $at_failed && at_fn_log_failure $at_traceon; } @@ -335983,15 +347807,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent +printf "%s\n" "$at_srcdir/rich_rules.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:272" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:272" $at_failed && at_fn_log_failure $at_traceon; } @@ -336001,16 +347825,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:273" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:273" $at_failed && at_fn_log_failure $at_traceon; } @@ -336021,15 +347846,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:273" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:273" $at_failed && at_fn_log_failure $at_traceon; } @@ -336044,25 +347869,28 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rich_rules.at:284: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "protocols.at:58" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:284" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 58 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 132 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 10.10.10.15 0.0.0.0/0 +LOG 0 -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix \"LOG: \" +AUDIT 0 -- 0.0.0.0/0 0.0.0.0/0 AUDIT accept +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:284" $at_failed && at_fn_log_failure $at_traceon; } @@ -336081,24 +347909,25 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rich_rules.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "protocols.at:58" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:290" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 58 -- ::/0 ::/0 -ACCEPT 132 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"LOG: \" +AUDIT 0 -- ::/0 ::/0 AUDIT accept +ACCEPT 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:290" $at_failed && at_fn_log_failure $at_traceon; } @@ -336117,15 +347946,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:295" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32000 log prefix="LOG: " level="warning"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:295" $at_failed && at_fn_log_failure $at_traceon; } @@ -336136,15 +347965,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32001 audit accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:296" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32001 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:296" $at_failed && at_fn_log_failure $at_traceon; } @@ -336154,16 +347983,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:297" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:58" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:297" $at_failed && at_fn_log_failure $at_traceon; } @@ -336174,15 +348004,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:297" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:58" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:297" $at_failed && at_fn_log_failure $at_traceon; } @@ -336192,16 +348022,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 nflog prefix=\"NFLOG: \" queue-size=10' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:301" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 nflog prefix="NFLOG: " queue-size=10' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:301" $at_failed && at_fn_log_failure $at_traceon; } @@ -336212,15 +348044,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:302" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/protocols.at:58" +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:302" $at_failed && at_fn_log_failure $at_traceon; } @@ -336230,16 +348062,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-protocol ipv6-icmp +printf "%s\n" "$at_srcdir/rich_rules.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:303" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:58" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:303" $at_failed && at_fn_log_failure $at_traceon; } @@ -336250,15 +348083,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/protocols.at:58: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value=\"sctp\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:58" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule protocol value="sctp" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:303" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/protocols.at:58" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:303" $at_failed && at_fn_log_failure $at_traceon; } @@ -336270,16 +348103,31 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/protocols.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:93" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-protocol dummy +printf "%s\n" "$at_srcdir/rich_rules.at:314: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:314" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/protocols.at:93" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 10.10.10.15 0.0.0.0/0 +NFLOG 0 -- 0.0.0.0/0 0.0.0.0/0 nflog-prefix \"NFLOG: \" nflog-threshold 10 +AUDIT 0 -- 0.0.0.0/0 0.0.0.0/0 AUDIT accept +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:314" $at_failed && at_fn_log_failure $at_traceon; } @@ -336289,67 +348137,55 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/protocols.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-protocol dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:94" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-protocol dummy -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/protocols.at:94" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/protocols.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value=\"dummy\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:95" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule protocol value="dummy" accept' +printf "%s\n" "$at_srcdir/rich_rules.at:320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:320" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/protocols.at:95" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "NFLOG 0 -- ::/0 ::/0 nflog-prefix \"NFLOG: \" nflog-threshold 10 +AUDIT 0 -- ::/0 ::/0 AUDIT accept +ACCEPT 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:320" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/protocols.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value=\"dummy\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "protocols.at:96" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule protocol value="dummy" accept' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 103 $at_status "$at_srcdir/protocols.at:96" -$at_failed && at_fn_log_failure -$at_traceon; } - - - if test x"-e '/ERROR: INVALID_PROTOCOL: dummy/d'" != x"ignore"; then - $as_echo "protocols.at:98" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_PROTOCOL: dummy/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/protocols.at:98" + if test x"-e '/ERROR: INVALID_ZONE:/d' -e "/ERROR: INVALID_SERVICE: Policy 'foobar': 'bogusservice' not among existing services/d"" != x"ignore"; then + printf "%s\n" "rich_rules.at:326" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ZONE:/d' -e "/ERROR: INVALID_SERVICE: Policy 'foobar': 'bogusservice' not among existing services/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rich_rules.at:326" fi @@ -336358,13 +348194,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_331 -#AT_START_332 -at_fn_group_banner 332 'rich_rules.at:1' \ - "rich rules" " " 11 +#AT_STOP_350 +#AT_START_351 +at_fn_group_banner 351 'icmp_blocks.at:1' \ + "ICMP blocks" " " 11 at_xfail=no ( - $as_echo "332. $at_setup_line: testing $at_desc ..." + printf "%s\n" "351. $at_setup_line: testing $at_desc ..." $at_traceon @@ -336382,6 +348218,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -336398,29 +348235,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rich_rules.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:1" +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rich_rules.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rich_rules.at:1" +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "icmp_blocks.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -336428,15 +348265,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rich_rules.at:1" +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "icmp_blocks.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -336478,15 +348315,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rich_rules.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:1" +printf "%s\n" "$at_srcdir/icmp_blocks.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -336494,9 +348331,9 @@ $at_traceon; } - $as_echo "rich_rules.at:1" >"$at_check_line_file" + printf "%s\n" "icmp_blocks.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rich_rules.at:1" + && at_fn_check_skip 77 "$at_srcdir/icmp_blocks.at:1" @@ -336577,8 +348414,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rich_rules.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" + printf "%s\n" "icmp_blocks.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -336588,7 +348425,7 @@ at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -336596,8 +348433,8 @@ at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rich_rules.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" + printf "%s\n" "icmp_blocks.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" fi echo "$!" > firewalld.pid @@ -336613,9 +348450,9 @@ at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" fi sleep 1 done - $as_echo "rich_rules.at:1" >"$at_check_line_file" + printf "%s\n" "icmp_blocks.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" + && at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" @@ -336625,15 +348462,15 @@ at_fn_check_skip 99 "$at_srcdir/rich_rules.at:1" { set +x -$as_echo "$at_srcdir/rich_rules.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:7" +printf "%s\n" "$at_srcdir/icmp_blocks.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:4" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:7" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -336644,15 +348481,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:8" +printf "%s\n" "$at_srcdir/icmp_blocks.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:5" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -336663,15 +348500,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:9" +printf "%s\n" "$at_srcdir/icmp_blocks.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:6" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -336683,15 +348520,198 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:10" +printf "%s\n" "$at_srcdir/icmp_blocks.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-request +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-reply " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-reply +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:10" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block redirect +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:12" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + else + : + + fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:16" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block redirect +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:17" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:18" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + else + : + + fi + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -336702,15 +348722,99 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:10" +printf "%s\n" "$at_srcdir/icmp_blocks.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:21" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:21" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:22" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:23" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:23" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:24" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block redirect +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:24" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:25" $at_failed && at_fn_log_failure $at_traceon; } @@ -336718,6 +348822,15 @@ $at_traceon; } + else + : + + fi + + + + + @@ -336728,27 +348841,93 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/icmp_blocks.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:25" +at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:47" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:47" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:49" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:49" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + else + : + + fi + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:51" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 reject-with icmp-host-prohibited +REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 0 reject-with icmp-host-prohibited +REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 5 reject-with icmp-host-prohibited " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:25" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -336767,27 +348946,26 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/icmp_blocks.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:32" +at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:56" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_foobar_pre 0 -- ::/0 ::/0 -IN_foobar_log 0 -- ::/0 ::/0 -IN_foobar_deny 0 -- ::/0 ::/0 -IN_foobar_allow 0 -- ::/0 ::/0 -IN_foobar_post 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "REJECT 58 -- ::/0 ::/0 ipv6-icmptype 128 reject-with icmp6-adm-prohibited +REJECT 58 -- ::/0 ::/0 ipv6-icmptype 129 reject-with icmp6-adm-prohibited +REJECT 58 -- ::/0 ::/0 ipv6-icmptype 137 reject-with icmp6-adm-prohibited +REJECT 58 -- 1234:5678::/64 ::/0 ipv6-icmptype 137 reject-with icmp6-adm-prohibited " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:32" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:56" $at_failed && at_fn_log_failure $at_traceon; } @@ -336805,17 +348983,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rich_rules.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.10 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 source address=10.10.10.10 accept' +printf "%s\n" "$at_srcdir/icmp_blocks.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:62" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:42" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:62" $at_failed && at_fn_log_failure $at_traceon; } @@ -336826,15 +349003,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 log accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 log accept' +printf "%s\n" "$at_srcdir/icmp_blocks.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:63" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:43" +at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:63" $at_failed && at_fn_log_failure $at_traceon; } @@ -336845,15 +349022,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 audit accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.11 audit accept' +printf "%s\n" "$at_srcdir/icmp_blocks.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:64" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:64" $at_failed && at_fn_log_failure $at_traceon; } @@ -336864,15 +349041,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.12 reject' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:45" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.12 reject' +printf "%s\n" "$at_srcdir/icmp_blocks.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-reply " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:65" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:45" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:65" $at_failed && at_fn_log_failure $at_traceon; } @@ -336883,15 +349060,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.13 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=0 source address=10.10.10.13 drop' +printf "%s\n" "$at_srcdir/icmp_blocks.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:66" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:46" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:66" $at_failed && at_fn_log_failure $at_traceon; } @@ -336901,16 +349078,23 @@ $at_traceon; } + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.10.10.14 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.10.10.14 accept' +printf "%s\n" "$at_srcdir/icmp_blocks.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:67" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:67" $at_failed && at_fn_log_failure $at_traceon; } @@ -336921,15 +349105,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=1 source address=10.10.10.15 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:48" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=1 source address=10.10.10.15 accept' +printf "%s\n" "$at_srcdir/icmp_blocks.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:67" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:48" +at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:67" $at_failed && at_fn_log_failure $at_traceon; } @@ -336937,19 +349121,26 @@ $at_traceon; } + else + : + + fi + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=\"-100\" family=\"ipv4\" source address=\"10.0.0.10\" service name=\"bogusservice\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:51" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority="-100" family="ipv4" source address="10.0.0.10" service name="bogusservice" accept' +printf "%s\n" "$at_srcdir/icmp_blocks.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:71" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/rich_rules.at:51" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:71" $at_failed && at_fn_log_failure $at_traceon; } @@ -336959,18 +349150,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rich_rules.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/icmp_blocks.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:53" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:72" $at_failed && at_fn_log_failure $at_traceon; } @@ -336981,15 +349170,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/icmp_blocks.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:73" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:53" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:73" $at_failed && at_fn_log_failure $at_traceon; } @@ -336999,6 +349188,19 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-reply " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:74" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-reply +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:74" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -337006,23 +349208,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:61" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/icmp_blocks.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block redirect " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:75" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block redirect ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 10.10.10.14 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:61" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:75" $at_failed && at_fn_log_failure $at_traceon; } @@ -337033,6 +349227,25 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:76" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:76" +$at_failed && at_fn_log_failure +$at_traceon; } + @@ -337040,24 +349253,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_log; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_log; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/icmp_blocks.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:76" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 0 -- 10.10.10.11 0.0.0.0/0 LOG flags 0 level 4 -AUDIT 0 -- 10.10.10.11 0.0.0.0/0 AUDIT accept -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:72" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:76" $at_failed && at_fn_log_failure $at_traceon; } @@ -337065,7 +349269,10 @@ $at_traceon; } + else + : + fi @@ -337075,24 +349282,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:84" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 0 -- 10.10.10.12 0.0.0.0/0 reject-with icmp-port-unreachable -DROP 0 -- 10.10.10.13 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:84" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337103,32 +349301,22 @@ $at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/rich_rules.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:96" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 10.10.10.10 0.0.0.0/0 -ACCEPT 0 -- 10.10.10.11 0.0.0.0/0 -ACCEPT 0 -- 10.10.10.11 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:96" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337136,9 +349324,10 @@ $at_traceon; } + else + : - - + fi @@ -337146,23 +349335,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:108" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 10.10.10.15 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:108" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337173,18 +349354,22 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rich_rules.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.20.20.20 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:114" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-1 source address=10.20.20.20 accept' +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:114" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337192,18 +349377,26 @@ $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-2 destination address=10.20.20.21 accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:115" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-2 destination address=10.20.20.21 accept' +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:115" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337214,15 +349407,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-3 source address=10.20.20.22 destination address=10.20.20.23 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:116" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv4 priority=-3 source address=10.20.20.22 destination address=10.20.20.23 drop' +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:116" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337232,16 +349425,23 @@ $at_traceon; } + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv6 priority=-4 source address=1234::4321 destination address=1234::4444 drop' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:117" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule family=ipv6 priority=-4 source address=1234::4321 destination address=1234::4444 drop' +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:117" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337249,19 +349449,40 @@ $at_traceon; } + else + : + + fi + + + + + + + + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:118" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:118" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337271,21 +349492,39 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rich_rules.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:118" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:118" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi @@ -337297,26 +349536,23 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:130" +at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_foobar_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DROP 0 -- 10.20.20.22 10.20.20.23 -ACCEPT 0 -- 0.0.0.0/0 10.20.20.21 -ACCEPT 0 -- 10.10.10.14 0.0.0.0/0 -ACCEPT 0 -- 10.20.20.20 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 reject-with icmp-host-prohibited " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:130" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337335,23 +349571,24 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:136" +at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L IN_foobar_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DROP 0 -- 1234::4321 1234::4444 +echo >>"$at_stdout"; printf "%s\n" "REJECT 58 -- ::/0 ::/0 ipv6-icmptype 128 reject-with icmp6-adm-prohibited +REJECT 58 -- 1234:5678::/64 ::/0 ipv6-icmptype 137 reject-with icmp6-adm-prohibited " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:136" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337369,17 +349606,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rich_rules.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 icmp-type name=\"neighbour-advertisement\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:142" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 icmp-type name="neighbour-advertisement" accept' +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:142" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337389,16 +349625,23 @@ $at_traceon; } + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 icmp-type name=\"echo-request\" accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:143" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 icmp-type name="echo-request" accept' +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:143" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337406,19 +349649,26 @@ $at_traceon; } + else + : + + fi + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:144" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:144" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337428,16 +349678,23 @@ $at_traceon; } + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:144: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:144" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:144" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337445,8 +349702,10 @@ $at_traceon; } + else + : - + fi @@ -337454,27 +349713,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:159" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DROP 0 -- 10.20.20.22 10.20.20.23 -ACCEPT 0 -- 0.0.0.0/0 10.20.20.21 -ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 -ACCEPT 0 -- 10.10.10.14 0.0.0.0/0 -ACCEPT 0 -- 10.20.20.20 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:159" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337485,38 +349732,29 @@ $at_traceon; } - - - if $IP6TABLES -L >/dev/null 2>&1; then : - { set +x -$as_echo "$at_srcdir/rich_rules.at:166: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:166" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + { set +x +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "DROP 0 -- 1234::4321 1234::4444 -ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 128 -ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 136 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:166" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } + + else : @@ -337527,19 +349765,16 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rich_rules.at:172: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:172" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:172" +at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337550,16 +349785,22 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:177: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:177" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST +printf "%s\n" "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:177" +at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -337567,18 +349808,28 @@ $at_traceon; } + else + : + + fi + + + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:178: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:178" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' +printf "%s\n" "$at_srcdir/icmp_blocks.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:141" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:178" +at_fn_check_status 107 $at_status "$at_srcdir/icmp_blocks.at:141" $at_failed && at_fn_log_failure $at_traceon; } @@ -337589,15 +349840,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:179: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:179" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' +printf "%s\n" "$at_srcdir/icmp_blocks.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block dummy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:142" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block dummy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:179" +at_fn_check_status 107 $at_status "$at_srcdir/icmp_blocks.at:142" $at_failed && at_fn_log_failure $at_traceon; } @@ -337608,16 +349859,22 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:180" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/icmp_blocks.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"dummy\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:143" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="dummy"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:180" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 107 $at_status "$at_srcdir/icmp_blocks.at:143" $at_failed && at_fn_log_failure $at_traceon; } @@ -337628,15 +349885,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:180" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/icmp_blocks.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"dummy\"' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:143" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="dummy"' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:180" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 107 $at_status "$at_srcdir/icmp_blocks.at:143" $at_failed && at_fn_log_failure $at_traceon; } @@ -337644,37 +349901,36 @@ $at_traceon; } + else + : + fi + if test x"-e '/ERROR: INVALID_ICMPTYPE:/d'" != x"ignore"; then + printf "%s\n" "icmp_blocks.at:148" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ICMPTYPE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:148" + fi - { set +x -$as_echo "$at_srcdir/rich_rules.at:189: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:189" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK xset 0x6600/0xff00 -MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK set 0x4d2 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:189" -$at_failed && at_fn_log_failure -$at_traceon; } + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_351 +#AT_START_352 +at_fn_group_banner 352 'rich_tcp_mss_clamp.at:5' \ + "tcp-mss-clamp" " " 11 +at_xfail=no +( + printf "%s\n" "352. $at_setup_line: testing $at_desc ..." + $at_traceon @@ -337684,115 +349940,119 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi - { set +x -$as_echo "$at_srcdir/rich_rules.at:193: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:193" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:5" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MARK 0 -- ::/0 ::/0 MARK xset 0x6600/0xff00 -MARK 0 -- ::/0 ::/0 MARK set 0x4d2 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:193" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:5" $at_failed && at_fn_log_failure $at_traceon; } - - else - : - - fi - - - - - - - - - { set +x -$as_echo "$at_srcdir/rich_rules.at:197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:197" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone HOST + { set +x +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:5" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:197" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:5" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - - { set +x -$as_echo "$at_srcdir/rich_rules.at:202: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:202" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone ANY + { set +x +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:5" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:202" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:5" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - { set +x -$as_echo "$at_srcdir/rich_rules.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:203" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:203" -$at_failed && at_fn_log_failure -$at_traceon; } - + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/rich_rules.at:203: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:203" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:5: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:5" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:203" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -337800,38 +350060,93 @@ $at_traceon; } + printf "%s\n" "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rich_tcp_mss_clamp.at:5" + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/rich_rules.at:212: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:212" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + + + + + + + + + + + + + -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK xset 0x6600/0xff00 -MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK set 0x4d2 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:212" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" + fi + echo "kill $DBUS_PID" >> ./cleanup_late @@ -337839,57 +350154,77 @@ $at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi - if $IP6TABLES -L >/dev/null 2>&1; then - : + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" - { set +x -$as_echo "$at_srcdir/rich_rules.at:216: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:216" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + + +{ set +x +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:8: mkdir -p ./zones" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:8" +( $at_check_trace; mkdir -p ./zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MARK 0 -- ::/0 ::/0 MARK xset 0x6600/0xff00 -MARK 0 -- ::/0 ::/0 MARK set 0x4d2 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:216" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:8" $at_failed && at_fn_log_failure $at_traceon; } - - else - : - - fi - - - - +cat >./zones/tcp.xml <<'_ATEOF' + + + + + + + + +_ATEOF { set +x -$as_echo "$at_srcdir/rich_rules.at:220: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:220" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone ANY +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:220" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -337897,19 +350232,30 @@ $at_traceon; } +cat >./zones/tcp.xml <<'_ATEOF' + + + + + + + + +_ATEOF + { set +x -$as_echo "$at_srcdir/rich_rules.at:225: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:225" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:225" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -337917,18 +350263,30 @@ $at_traceon; } +cat >./zones/tcp.xml <<'_ATEOF' + + + + + + + + +_ATEOF + + { set +x -$as_echo "$at_srcdir/rich_rules.at:226: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:226" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:226" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -337936,19 +350294,30 @@ $at_traceon; } +cat >./zones/tcp.xml <<'_ATEOF' + + + + + + + + +_ATEOF + { set +x -$as_echo "$at_srcdir/rich_rules.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:227" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:56" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:227" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:56" $at_failed && at_fn_log_failure $at_traceon; } @@ -337956,18 +350325,29 @@ $at_traceon; } +cat >./zones/tcp.xml <<'_ATEOF' + + + + + + + +_ATEOF + + { set +x -$as_echo "$at_srcdir/rich_rules.at:227: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:227" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:69: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:69" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:227" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:69" $at_failed && at_fn_log_failure $at_traceon; } @@ -337975,79 +350355,139 @@ $at_traceon; } - - - - - - - + FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi { set +x -$as_echo "$at_srcdir/rich_rules.at:236: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:236" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:70: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" +at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" "rich_tcp_mss_clamp.at:70" +( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:70" +$at_failed && at_fn_log_failure +$at_traceon; } + +{ set +x +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:71: cat ./zones/tcp.xml" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:71" +( $at_check_trace; cat ./zones/tcp.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK xset 0x6600/0xff00 -MARK 0 -- 0.0.0.0/0 0.0.0.0/0 MARK set 0x4d2 +echo >>"$at_stdout"; printf "%s\n" " + + + + + + + " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:236" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:71" $at_failed && at_fn_log_failure $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:83: rm ./zones/tcp.xml" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:83" +( $at_check_trace; rm ./zones/tcp.xml +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:83" +$at_failed && at_fn_log_failure +$at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:84: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:84" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:84" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/rich_rules.at:240: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:240" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PRE_foobar_pre; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:85" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:85" +$at_failed && at_fn_log_failure +$at_traceon; } + + + +{ set +x +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:88: cat ./zones/public.xml" +at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:88" +( $at_check_trace; cat ./zones/public.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "MARK 0 -- ::/0 ::/0 MARK xset 0x6600/0xff00 -MARK 0 -- ::/0 ::/0 MARK set 0x4d2 +echo >>"$at_stdout"; printf "%s\n" " + + Public + For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted. + + + + + + + " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:240" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:88" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi + { set +x +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:101" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule tcp-mss-clamp' +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:101" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -338056,15 +350496,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:244: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:244" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=0' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:102" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=0' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:244" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:102" $at_failed && at_fn_log_failure $at_traceon; } @@ -338075,15 +350515,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:245: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:245" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=536' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:103" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=536' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:245" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:103" $at_failed && at_fn_log_failure $at_traceon; } @@ -338094,15 +350534,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:246: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:246" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=pmtu' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:104" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=pmtu' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:246" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:104" $at_failed && at_fn_log_failure $at_traceon; } @@ -338112,16 +350552,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rich_rules.at:247: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:247" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=0' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:107" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=0' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:247" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:107" $at_failed && at_fn_log_failure $at_traceon; } @@ -338132,15 +350573,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:248: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:248" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:108" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:248" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:108" $at_failed && at_fn_log_failure $at_traceon; } @@ -338151,15 +350592,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:249: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:249" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-1 mark set=1234' +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:109" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule tcp-mss-clamp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:249" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:109" $at_failed && at_fn_log_failure $at_traceon; } @@ -338170,15 +350611,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:250: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:250" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule tcp-mss-clamp' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:110" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule tcp-mss-clamp' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:250" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:110" $at_failed && at_fn_log_failure $at_traceon; } @@ -338189,15 +350630,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:251: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:251" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --remove-rich-rule='rule priority=-2 mark set=0x6600/0xFF00' +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=536' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:111" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=536' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:251" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:111" $at_failed && at_fn_log_failure $at_traceon; } @@ -338207,17 +350648,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rich_rules.at:256: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:256" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --add-interface foobar0 +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:256" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:112" $at_failed && at_fn_log_failure $at_traceon; } @@ -338228,15 +350668,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:257: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:257" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone public +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:113" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:257" +at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:113" $at_failed && at_fn_log_failure $at_traceon; } @@ -338247,15 +350687,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:258: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:258" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:114" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/rich_rules.at:258" +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:114" $at_failed && at_fn_log_failure $at_traceon; } @@ -338265,16 +350705,32 @@ $at_traceon; } + + + + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:259: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:259" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=public --remove-interface foobar0 +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:125: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_tcp_mss_clamp.at:125" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:259" +echo >>"$at_stdout"; printf "%s\n" "TCPMSS 6 -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 TCPMSS set 536 +TCPMSS 6 -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 TCPMSS clamp to PMTU +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:125" $at_failed && at_fn_log_failure $at_traceon; } @@ -338284,54 +350740,193 @@ $at_traceon; } + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/rich_rules.at:260: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:260" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-egress-zone public +printf "%s\n" "$at_srcdir/rich_tcp_mss_clamp.at:130: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_tcp_mss_clamp.at:130" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:260" +echo >>"$at_stdout"; printf "%s\n" "TCPMSS 6 -- ::/0 ::/0 tcp flags:0x06/0x02 TCPMSS set 536 +TCPMSS 6 -- ::/0 ::/0 tcp flags:0x06/0x02 TCPMSS clamp to PMTU +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:130" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi - { set +x -$as_echo "$at_srcdir/rich_rules.at:261: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:261" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --add-interface foobar0 + + + + + if test x"ignore" != x"ignore"; then + printf "%s\n" "rich_tcp_mss_clamp.at:135" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:135" + fi + + + + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_352 +#AT_START_353 +at_fn_group_banner 353 'rich_destination_ipset.at:1' \ + "rich destination ipset" " " 11 +at_xfail=no +( + printf "%s\n" "353. $at_setup_line: testing $at_desc ..." + $at_traceon + + + + + + + + + + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:261" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + else + { set +x +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rich_destination_ipset.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } + + fi + + + { set +x +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rich_destination_ipset.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/rich_rules.at:262: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:262" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-egress-zone public + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + + + + + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:262" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -338339,18 +350934,146 @@ $at_traceon; } + printf "%s\n" "rich_destination_ipset.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rich_destination_ipset.at:1" + + + + + cat >./dbus.conf <<'_ATEOF' + + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF + + + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rich_destination_ipset.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rich_destination_ipset.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rich_destination_ipset.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" + + + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:263: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:263" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --add-rich-rule='rule priority=-1 mark set=1234' +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=mypolicy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=mypolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 112 $at_status "$at_srcdir/rich_rules.at:263" +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -338361,15 +351084,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:264: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone=public --remove-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:264" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone=public --remove-interface foobar0 +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:264" +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -338380,15 +351103,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:265: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:265" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-egress-zone public +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:265" +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -338400,15 +351123,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:267: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:267" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:267" +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -338420,15 +351143,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:271: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:271" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 log prefix="LOG: " level="warning"' +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:271" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -338439,15 +351162,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:272: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:272" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:272" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -338458,16 +351181,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rich_rules.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:273" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:273" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -338478,15 +351202,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:273: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:273" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:273" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -338501,28 +351225,25 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rich_rules.at:284: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:284" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_destination_ipset.at:23" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 10.10.10.15 0.0.0.0/0 -LOG 0 -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix \"LOG: \" -AUDIT 0 -- 0.0.0.0/0 0.0.0.0/0 AUDIT accept -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar dst " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:284" +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:23" $at_failed && at_fn_log_failure $at_traceon; } @@ -338535,58 +351256,35 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/rich_rules.at:290: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:290" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "LOG 0 -- ::/0 ::/0 LOG flags 0 level 4 prefix \"LOG: \" -AUDIT 0 -- ::/0 ::/0 AUDIT accept -ACCEPT 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:290" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:29" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - { set +x -$as_echo "$at_srcdir/rich_rules.at:295: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32000 log prefix=\"LOG: \" level=\"warning\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:295" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32000 log prefix="LOG: " level="warning"' +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:295" +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:30" $at_failed && at_fn_log_failure $at_traceon; } @@ -338596,16 +351294,29 @@ $at_traceon; } + + + + + { set +x -$as_echo "$at_srcdir/rich_rules.at:296: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32001 audit accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:296" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --remove-rich-rule='rule priority=32001 audit accept' +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_mypolicy_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_destination_ipset.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_mypolicy_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:296" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar dst +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -338616,16 +351327,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/rich_rules.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:297" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:297" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/rich_destination_ipset.at:43" $at_failed && at_fn_log_failure $at_traceon; } @@ -338636,15 +351349,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:297: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:297" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:297" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/rich_destination_ipset.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -338654,18 +351367,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rich_rules.at:301: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 nflog prefix=\"NFLOG: \" queue-size=10' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:301" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32000 nflog prefix="NFLOG: " queue-size=10' +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:45" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:301" +at_fn_check_status 121 $at_status "$at_srcdir/rich_destination_ipset.at:45" $at_failed && at_fn_log_failure $at_traceon; } @@ -338676,15 +351387,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:302: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:302" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --add-rich-rule='rule priority=32001 audit accept' +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:302" +at_fn_check_status 121 $at_status "$at_srcdir/rich_destination_ipset.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -338694,17 +351405,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rich_rules.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:303" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:303" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/rich_destination_ipset.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -338715,15 +351425,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_rules.at:303: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_rules.at:303" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:48" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:303" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 122 $at_status "$at_srcdir/rich_destination_ipset.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -338733,33 +351443,16 @@ $at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/rich_rules.at:314: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:314" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:49" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 10.10.10.15 0.0.0.0/0 -NFLOG 0 -- 0.0.0.0/0 0.0.0.0/0 nflog-prefix \"NFLOG: \" nflog-threshold 10 -AUDIT 0 -- 0.0.0.0/0 0.0.0.0/0 AUDIT accept -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:314" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 121 $at_status "$at_srcdir/rich_destination_ipset.at:49" $at_failed && at_fn_log_failure $at_traceon; } @@ -338769,55 +351462,29 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/rich_rules.at:320: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_post; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_rules.at:320" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_post; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rich_destination_ipset.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:50" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "NFLOG 0 -- ::/0 ::/0 nflog-prefix \"NFLOG: \" nflog-threshold 10 -AUDIT 0 -- ::/0 ::/0 AUDIT accept -ACCEPT 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_rules.at:320" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 121 $at_status "$at_srcdir/rich_destination_ipset.at:50" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - if test x"-e '/ERROR: INVALID_ZONE:/d' -e "/ERROR: INVALID_SERVICE: Policy 'foobar': 'bogusservice' not among existing services/d"" != x"ignore"; then - $as_echo "rich_rules.at:326" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ZONE:/d' -e "/ERROR: INVALID_SERVICE: Policy 'foobar': 'bogusservice' not among existing services/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rich_rules.at:326" + if test x"-e '/ERROR: INVALID_RULE: bad attribute/d' -e '/ERROR: INVALID_DESTINATION: address and ipset/d'" != x"ignore"; then + printf "%s\n" "rich_destination_ipset.at:52" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_RULE: bad attribute/d' -e '/ERROR: INVALID_DESTINATION: address and ipset/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:52" fi @@ -338826,13 +351493,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_332 -#AT_START_333 -at_fn_group_banner 333 'icmp_blocks.at:1' \ - "ICMP blocks" " " 11 +#AT_STOP_353 +#AT_START_354 +at_fn_group_banner 354 'zone.at:1' \ + "zone - target" " " 11 at_xfail=no ( - $as_echo "333. $at_setup_line: testing $at_desc ..." + printf "%s\n" "354. $at_setup_line: testing $at_desc ..." $at_traceon @@ -338850,6 +351517,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -338866,29 +351534,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:1" +printf "%s\n" "$at_srcdir/zone.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "icmp_blocks.at:1" +printf "%s\n" "$at_srcdir/zone.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "zone.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -338896,15 +351564,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "icmp_blocks.at:1" +printf "%s\n" "$at_srcdir/zone.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "zone.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -338946,15 +351614,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/icmp_blocks.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:1" +printf "%s\n" "$at_srcdir/zone.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -338962,9 +351630,9 @@ $at_traceon; } - $as_echo "icmp_blocks.at:1" >"$at_check_line_file" + printf "%s\n" "zone.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/icmp_blocks.at:1" + && at_fn_check_skip 77 "$at_srcdir/zone.at:1" @@ -339045,8 +351713,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "icmp_blocks.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" + printf "%s\n" "zone.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/zone.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -339056,7 +351724,7 @@ at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -339064,8 +351732,8 @@ at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "icmp_blocks.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" + printf "%s\n" "zone.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/zone.at:1" fi echo "$!" > firewalld.pid @@ -339081,9 +351749,9 @@ at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" fi sleep 1 done - $as_echo "icmp_blocks.at:1" >"$at_check_line_file" + printf "%s\n" "zone.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" + && at_fn_check_skip 99 "$at_srcdir/zone.at:1" @@ -339093,15 +351761,15 @@ at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:1" { set +x -$as_echo "$at_srcdir/icmp_blocks.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=foobar +printf "%s\n" "$at_srcdir/zone.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone=foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone=foobar ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -339111,16 +351779,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/icmp_blocks.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/zone.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -339131,15 +351800,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-egress-zone HOST +printf "%s\n" "$at_srcdir/zone.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -339149,17 +351818,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-request +printf "%s\n" "$at_srcdir/zone.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:8" $at_failed && at_fn_log_failure $at_traceon; } @@ -339170,15 +351838,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-reply " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block echo-reply +printf "%s\n" "$at_srcdir/zone.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -339189,15 +351857,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block redirect +printf "%s\n" "$at_srcdir/zone.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=CONTINUE " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=CONTINUE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:11" +at_fn_check_status 110 $at_status "$at_srcdir/zone.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -339207,23 +351875,16 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +printf "%s\n" "$at_srcdir/zone.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DENY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DENY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:12" +at_fn_check_status 110 $at_status "$at_srcdir/zone.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -339231,26 +351892,19 @@ $at_traceon; } - else - : - - fi - - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request +printf "%s\n" "$at_srcdir/zone.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:13" $at_failed && at_fn_log_failure $at_traceon; } @@ -339261,15 +351915,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply +printf "%s\n" "$at_srcdir/zone.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-interface foobar0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-interface foobar0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -339279,16 +351933,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/icmp_blocks.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block redirect +printf "%s\n" "$at_srcdir/zone.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:17" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -339298,23 +351953,16 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +printf "%s\n" "$at_srcdir/zone.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:18" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -339322,10 +351970,10 @@ $at_traceon; } - else - : - fi + + + @@ -339334,15 +351982,27 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/zone.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:21" +echo >>"$at_stdout"; printf "%s\n" "IN_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:39" $at_failed && at_fn_log_failure $at_traceon; } @@ -339352,16 +352012,33 @@ $at_traceon; } + + + + { set +x -$as_echo "$at_srcdir/icmp_blocks.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/zone.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:21" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -339372,57 +352049,47 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:22" -$at_failed && at_fn_log_failure -$at_traceon; } - - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/icmp_blocks.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply +printf "%s\n" "$at_srcdir/zone.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:23" +echo >>"$at_stdout"; printf "%s\n" "IN_foobar_pre 0 -- ::/0 ::/0 +IN_foobar_log 0 -- ::/0 ::/0 +IN_foobar_deny 0 -- ::/0 ::/0 +IN_foobar_allow 0 -- ::/0 ::/0 +IN_foobar_post 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:54" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:24" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block redirect -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:24" -$at_failed && at_fn_log_failure -$at_traceon; } - @@ -339434,25 +352101,34 @@ $at_traceon; } : - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +printf "%s\n" "$at_srcdir/zone.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:61" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:25" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_foobar 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:61" $at_failed && at_fn_log_failure $at_traceon; } - - else : @@ -339471,22 +352147,31 @@ $at_traceon; } + + + { set +x -$as_echo "$at_srcdir/icmp_blocks.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/zone.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:47" +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:96" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FWD_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:47" +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:96" $at_failed && at_fn_log_failure $at_traceon; } @@ -339500,35 +352185,36 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/zone.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:49" +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:103" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:49" +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:103" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi @@ -339537,33 +352223,43 @@ $at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/icmp_blocks.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/zone.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:51" +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:113" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FWD_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 reject-with icmp-host-prohibited -REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 0 reject-with icmp-host-prohibited -REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 5 reject-with icmp-host-prohibited +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar_pre 0 -- ::/0 ::/0 +FWD_foobar_log 0 -- ::/0 ::/0 +FWD_foobar_deny 0 -- ::/0 ::/0 +FWD_foobar_allow 0 -- ::/0 ::/0 +FWD_foobar_post 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:51" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:113" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + @@ -339577,26 +352273,30 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:56: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/zone.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:56" +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:120" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 58 -- ::/0 ::/0 ipv6-icmptype 128 reject-with icmp6-adm-prohibited -REJECT 58 -- ::/0 ::/0 ipv6-icmptype 129 reject-with icmp6-adm-prohibited -REJECT 58 -- ::/0 ::/0 ipv6-icmptype 137 reject-with icmp6-adm-prohibited -REJECT 58 -- 1234:5678::/64 ::/0 ipv6-icmptype 137 reject-with icmp6-adm-prohibited +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +FWD_foobar 0 -- ::/0 ::/0 +ACCEPT 0 -- ::/0 ::/0 +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:56" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:120" $at_failed && at_fn_log_failure $at_traceon; } @@ -339614,16 +352314,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/icmp_blocks.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:62" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request +printf "%s\n" "$at_srcdir/zone.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:133" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:62" +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:133" $at_failed && at_fn_log_failure $at_traceon; } @@ -339633,16 +352334,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/icmp_blocks.at:63: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:63" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request +printf "%s\n" "$at_srcdir/zone.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:134" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:63" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:134" $at_failed && at_fn_log_failure $at_traceon; } @@ -339653,15 +352355,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:64: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:64" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-reply +printf "%s\n" "$at_srcdir/zone.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:134" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:64" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:134" $at_failed && at_fn_log_failure $at_traceon; } @@ -339671,18 +352373,8 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-reply " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:65" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-reply -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:65" -$at_failed && at_fn_log_failure -$at_traceon; } + + @@ -339691,15 +352383,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:66: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:66" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block redirect +printf "%s\n" "$at_srcdir/zone.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:159" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:66" +echo >>"$at_stdout"; printf "%s\n" "IN_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 +ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:159" $at_failed && at_fn_log_failure $at_traceon; } @@ -339710,22 +352415,32 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:67" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +printf "%s\n" "$at_srcdir/zone.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:167" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:67" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:167" $at_failed && at_fn_log_failure $at_traceon; } @@ -339735,23 +352450,42 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/icmp_blocks.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:67" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +printf "%s\n" "$at_srcdir/zone.at:175: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:175" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:67" +echo >>"$at_stdout"; printf "%s\n" "IN_foobar_pre 0 -- ::/0 ::/0 +IN_foobar_log 0 -- ::/0 ::/0 +IN_foobar_deny 0 -- ::/0 ::/0 +IN_foobar_allow 0 -- ::/0 ::/0 +IN_foobar_post 0 -- ::/0 ::/0 +ACCEPT 58 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:175" $at_failed && at_fn_log_failure $at_traceon; } - - else : @@ -339762,56 +352496,49 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:71: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:71" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:71" -$at_failed && at_fn_log_failure -$at_traceon; } - + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/icmp_blocks.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request +printf "%s\n" "$at_srcdir/zone.at:183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:183" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:72" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_foobar 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:183" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:73: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:73" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-reply -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:73" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -339819,18 +352546,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:74: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-reply " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:74" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-reply -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:74" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -339839,15 +352554,27 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block redirect " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:75" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block redirect +printf "%s\n" "$at_srcdir/zone.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FWD_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:217" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FWD_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:75" +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 +FWD_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:217" $at_failed && at_fn_log_failure $at_traceon; } @@ -339858,22 +352585,34 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:76" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +printf "%s\n" "$at_srcdir/zone.at:224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:224" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:76" +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:224" $at_failed && at_fn_log_failure $at_traceon; } @@ -339883,23 +352622,41 @@ $at_traceon; } + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/icmp_blocks.at:76: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:76" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +printf "%s\n" "$at_srcdir/zone.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FWD_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:234" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FWD_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:76" +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar_pre 0 -- ::/0 ::/0 +FWD_foobar_log 0 -- ::/0 ::/0 +FWD_foobar_deny 0 -- ::/0 ::/0 +FWD_foobar_allow 0 -- ::/0 ::/0 +FWD_foobar_post 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:234" $at_failed && at_fn_log_failure $at_traceon; } - - else : @@ -339912,49 +352669,42 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block echo-request -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then : - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +printf "%s\n" "$at_srcdir/zone.at:241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:241" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" +echo >>"$at_stdout"; printf "%s\n" "FWD_foobar 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_foobar 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone.at:241" $at_failed && at_fn_log_failure $at_traceon; } - - else : @@ -339965,88 +352715,150 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"ignore" != x"ignore"; then + printf "%s\n" "zone.at:252" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/zone.at:252" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_354 +#AT_START_355 +at_fn_group_banner 355 'rpfilter.at:1' \ + "rpfilter - strict" " " 11 +at_xfail=no +( + printf "%s\n" "355. $at_setup_line: testing $at_desc ..." + $at_traceon + + - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - else - : + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:1" +$at_failed && at_fn_log_failure +$at_traceon; } fi - - - - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --runtime-to-permanent " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --runtime-to-permanent + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + + - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -340054,43 +352866,128 @@ $at_traceon; } + printf "%s\n" "rpfilter.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rpfilter.at:1" + - if $IP6TABLES -L >/dev/null 2>&1; then - : + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rpfilter.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - else - : - fi + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rpfilter.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rpfilter.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" @@ -340098,22 +352995,17 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:5: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:5" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -340121,69 +353013,35 @@ $at_traceon; } - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rpfilter.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:6" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rpfilter.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 1 -- 0.0.0.0/0 0.0.0.0/0 icmptype 8 reject-with icmp-host-prohibited -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -340197,29 +353055,36 @@ $at_traceon; } + + + + if $IP6TABLES -L >/dev/null 2>&1; then : { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar_deny; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/rpfilter.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "icmp_blocks.at:82" +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:17" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar_deny; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "REJECT 58 -- ::/0 ::/0 ipv6-icmptype 128 reject-with icmp6-adm-prohibited -REJECT 58 -- 1234:5678::/64 ::/0 ipv6-icmptype 137 reject-with icmp6-adm-prohibited +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 134 +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 135 +DROP 0 -- ::/0 ::/0 rpfilter validmark invert +PREROUTING_direct 0 -- ::/0 ::/0 +PREROUTING_POLICIES 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -340237,122 +353102,148 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-icmp-block echo-request -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "rpfilter.at:25" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:25" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_355 +#AT_START_356 +at_fn_group_banner 356 'rpfilter.at:27' \ + "rpfilter - loose" " " 11 +at_xfail=no +( + printf "%s\n" "356. $at_setup_line: testing $at_desc ..." + $at_traceon - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:27: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:27" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } - - - - else - : - - fi - - - - - - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy foobar --query-icmp-block echo-request + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:27: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:27" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:27: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:27" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { - else - : + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi + } + kill_networkmanager() { + if test -f networkmanager.pid; then + + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-icmp-block echo-request + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:27: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:27" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -340360,78 +353251,146 @@ $at_traceon; } + printf "%s\n" "rpfilter.at:27" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rpfilter.at:27" - if $IP6TABLES -L >/dev/null 2>&1; then - : - - + cat >./dbus.conf <<'_ATEOF' - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --remove-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/icmp_blocks.at:82" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - else - : + + + + + +_ATEOF - fi + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rpfilter.at:27" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:27" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy foobar --query-icmp-block echo-request -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:82" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rpfilter.at:27" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:27" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rpfilter.at:27" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:27" - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"redirect\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:82" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --query-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="redirect"' +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:31: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:31" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/icmp_blocks.at:82" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:31" $at_failed && at_fn_log_failure $at_traceon; } @@ -340439,28 +353398,16 @@ $at_traceon; } - else - : - - fi - - - - - - - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:141: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:141" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-icmp-block dummy +printf "%s\n" "$at_srcdir/rpfilter.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/icmp_blocks.at:141" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -340471,15 +353418,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/icmp_blocks.at:142: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block dummy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:142" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-icmp-block dummy +printf "%s\n" "$at_srcdir/rpfilter.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/icmp_blocks.at:142" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -340490,48 +353437,44 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/icmp_blocks.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"dummy\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:143" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="dummy"' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/icmp_blocks.at:143" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/icmp_blocks.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name=\"dummy\"' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "icmp_blocks.at:143" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy=foobar --add-rich-rule='rule family=ipv6 source address=1234:5678::/64 icmp-block name="dummy"' +printf "%s\n" "$at_srcdir/rpfilter.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t mangle -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/icmp_blocks.at:143" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 134 +ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 135 +DROP 0 -- ::/0 ::/0 rpfilter loose validmark invert +PREROUTING_direct 0 -- ::/0 ::/0 +PREROUTING_POLICIES 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:43" $at_failed && at_fn_log_failure $at_traceon; } - - else : @@ -340542,10 +353485,12 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_ICMPTYPE:/d'" != x"ignore"; then - $as_echo "icmp_blocks.at:148" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_ICMPTYPE:/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/icmp_blocks.at:148" + + + if test x"" != x"ignore"; then + printf "%s\n" "rpfilter.at:51" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:51" fi @@ -340554,13 +353499,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_333 -#AT_START_334 -at_fn_group_banner 334 'rich_tcp_mss_clamp.at:5' \ - "tcp-mss-clamp" " " 11 +#AT_STOP_356 +#AT_START_357 +at_fn_group_banner 357 'rpfilter.at:53' \ + "rpfilter - strict-forward" " " 11 at_xfail=no ( - $as_echo "334. $at_setup_line: testing $at_desc ..." + printf "%s\n" "357. $at_setup_line: testing $at_desc ..." $at_traceon @@ -340578,6 +353523,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -340594,29 +353540,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:5" +printf "%s\n" "$at_srcdir/rpfilter.at:53: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:53" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:5" +printf "%s\n" "$at_srcdir/rpfilter.at:53: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:53" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -340624,15 +353570,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:5" +printf "%s\n" "$at_srcdir/rpfilter.at:53: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:53" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -340674,15 +353620,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:5: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:5" +printf "%s\n" "$at_srcdir/rpfilter.at:53: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:53" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:5" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -340690,9 +353636,9 @@ $at_traceon; } - $as_echo "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:53" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rich_tcp_mss_clamp.at:5" + && at_fn_check_skip 77 "$at_srcdir/rpfilter.at:53" @@ -340773,8 +353719,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" + printf "%s\n" "rpfilter.at:53" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:53" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -340784,7 +353730,7 @@ at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -340792,8 +353738,8 @@ at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" + printf "%s\n" "rpfilter.at:53" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:53" fi echo "$!" > firewalld.pid @@ -340809,83 +353755,30 @@ at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" fi sleep 1 done - $as_echo "rich_tcp_mss_clamp.at:5" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:53" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:5" - - - - - -{ set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:8: mkdir -p ./zones" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:8" -( $at_check_trace; mkdir -p ./zones -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:8" -$at_failed && at_fn_log_failure -$at_traceon; } - - -cat >./zones/tcp.xml <<'_ATEOF' - - - - - - - - -_ATEOF - + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:53" - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:20" -$at_failed && at_fn_log_failure -$at_traceon; } - -cat >./zones/tcp.xml <<'_ATEOF' - - - - - - - - -_ATEOF - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:58: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:58" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:32" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:58" $at_failed && at_fn_log_failure $at_traceon; } @@ -340893,78 +353786,36 @@ $at_traceon; } -cat >./zones/tcp.xml <<'_ATEOF' - - - - - - - - -_ATEOF - - - - - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:44" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:44: grep \"WARNING: INVALID_RULE: thisdoesnotexist: rule tcp-mss-clamp value=\"thisdoesnotexist\" -\" ./firewalld.log" -at_fn_check_prepare_notrace 'an embedded newline' "rich_tcp_mss_clamp.at:44" -( $at_check_trace; grep "WARNING: INVALID_RULE: thisdoesnotexist: rule tcp-mss-clamp value="thisdoesnotexist" -" ./firewalld.log +printf "%s\n" "$at_srcdir/rpfilter.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:59" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:44" +at_fn_check_status 114 $at_status "$at_srcdir/rpfilter.at:59" $at_failed && at_fn_log_failure $at_traceon; } -cat >./zones/tcp.xml <<'_ATEOF' - - - - - - - - -_ATEOF { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:62" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config +printf "%s\n" "$at_srcdir/rpfilter.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:59" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:62" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:59" $at_failed && at_fn_log_failure $at_traceon; } @@ -340972,106 +353823,39 @@ $at_traceon; } -cat >./zones/tcp.xml <<'_ATEOF' - - - - - - - -_ATEOF - - - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --check-config " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:75" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --check-config -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:75" -$at_failed && at_fn_log_failure -$at_traceon; } - FIREWALL_OFFLINE_CMD_ARGS="--system-config ./" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALL_OFFLINE_CMD_ARGS="${FIREWALL_OFFLINE_CMD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:76: firewall-offline-cmd \$FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" -at_fn_check_prepare_dynamic "firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http" "rich_tcp_mss_clamp.at:76" -( $at_check_trace; firewall-offline-cmd $FIREWALL_OFFLINE_CMD_ARGS --zone tcp --add-service http -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:76" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:77: cat ./zones/tcp.xml" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:77" -( $at_check_trace; cat ./zones/tcp.xml -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " - - - - - - - -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:77" -$at_failed && at_fn_log_failure -$at_traceon; } -{ set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:89: rm ./zones/tcp.xml" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:89" -( $at_check_trace; rm ./zones/tcp.xml -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:89" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"-e "/^ERROR: INVALID_VALUE:/d"" != x"ignore"; then + printf "%s\n" "rpfilter.at:87" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e "/^ERROR: INVALID_VALUE:/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:87" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_357 +#AT_START_358 +at_fn_group_banner 358 'rpfilter.at:89' \ + "rpfilter - loose-forward" " " 11 +at_xfail=no +( + printf "%s\n" "358. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:90" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:90" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -341079,137 +353863,120 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:91" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:91" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi -{ set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:94: cat ./zones/public.xml" -at_fn_check_prepare_trace "rich_tcp_mss_clamp.at:94" -( $at_check_trace; cat ./zones/public.xml + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:89: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:89" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " - - Public - For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted. - - - - - - - -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:94" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:107" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --remove-rich-rule='rule tcp-mss-clamp' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:107" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=0' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:108" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=0' + else + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:89: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:89" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:108" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=536' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:109" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=536' + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:89: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:89" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:109" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=pmtu' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:110" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule tcp-mss-clamp value=pmtu' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:110" -$at_failed && at_fn_log_failure -$at_traceon; } - + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=0' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:113" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=0' + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:89: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:89" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:113" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:89" $at_failed && at_fn_log_failure $at_traceon; } @@ -341217,96 +353984,132 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:114" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:114" -$at_failed && at_fn_log_failure -$at_traceon; } - - - + printf "%s\n" "rpfilter.at:89" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/rpfilter.at:89" - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:115" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-rich-rule='rule tcp-mss-clamp' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:115" -$at_failed && at_fn_log_failure -$at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +_ATEOF - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --remove-rich-rule='rule tcp-mss-clamp' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:116" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --remove-rich-rule='rule tcp-mss-clamp' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:116" -$at_failed && at_fn_log_failure -$at_traceon; } + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "rpfilter.at:89" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:89" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:117: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=536' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:117" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=536' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:117" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "rpfilter.at:89" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:89" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "rpfilter.at:89" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:89" - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:118: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:118" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=thisdoesnotexist' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:118" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -341314,16 +354117,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:119: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:119" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu accept' +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:94: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:94" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:119" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:94" $at_failed && at_fn_log_failure $at_traceon; } @@ -341332,17 +354135,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_tcp_mss_clamp.at:120" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule tcp-mss-clamp value=pmtu' +printf "%s\n" "$at_srcdir/rpfilter.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:120" +at_fn_check_status 114 $at_status "$at_srcdir/rpfilter.at:95" $at_failed && at_fn_log_failure $at_traceon; } @@ -341352,32 +354154,16 @@ $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_tcp_mss_clamp.at:131" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rpfilter.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "TCPMSS 6 -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 TCPMSS set 536 -TCPMSS 6 -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 TCPMSS clamp to PMTU -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:131" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:95" $at_failed && at_fn_log_failure $at_traceon; } @@ -341392,50 +354178,15 @@ $at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : - - - { set +x -$as_echo "$at_srcdir/rich_tcp_mss_clamp.at:136: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_tcp_mss_clamp.at:136" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "TCPMSS 6 -- ::/0 ::/0 tcp flags:0x06/0x02 TCPMSS set 536 -TCPMSS 6 -- ::/0 ::/0 tcp flags:0x06/0x02 TCPMSS clamp to PMTU -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_tcp_mss_clamp.at:136" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - - - - if test x"ignore" != x"ignore"; then - $as_echo "rich_tcp_mss_clamp.at:141" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rich_tcp_mss_clamp.at:141" + if test x"-e "/^ERROR: INVALID_VALUE:/d"" != x"ignore"; then + printf "%s\n" "rpfilter.at:123" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e "/^ERROR: INVALID_VALUE:/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:123" fi @@ -341444,13 +354195,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_334 -#AT_START_335 -at_fn_group_banner 335 'rich_destination_ipset.at:1' \ - "rich destination ipset" " " 11 +#AT_STOP_358 +#AT_START_359 +at_fn_group_banner 359 'rpfilter.at:125' \ + "rpfilter - config values" " " 11 at_xfail=no ( - $as_echo "335. $at_setup_line: testing $at_desc ..." + printf "%s\n" "359. $at_setup_line: testing $at_desc ..." $at_traceon @@ -341468,6 +354219,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -341484,29 +354236,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:125" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rich_destination_ipset.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:125" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } @@ -341514,15 +354266,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rich_destination_ipset.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:125" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } @@ -341564,15 +354316,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:125: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:125" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:125" $at_failed && at_fn_log_failure $at_traceon; } @@ -341580,9 +354332,9 @@ $at_traceon; } - $as_echo "rich_destination_ipset.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:125" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rich_destination_ipset.at:1" + && at_fn_check_skip 77 "$at_srcdir/rpfilter.at:125" @@ -341663,8 +354415,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rich_destination_ipset.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" + printf "%s\n" "rpfilter.at:125" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:125" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -341674,7 +354426,7 @@ at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -341682,8 +354434,8 @@ at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rich_destination_ipset.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" + printf "%s\n" "rpfilter.at:125" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:125" fi echo "$!" > firewalld.pid @@ -341699,9 +354451,66 @@ at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" fi sleep 1 done - $as_echo "rich_destination_ipset.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:125" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:125" + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -341711,15 +354520,17 @@ at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:1" { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy=mypolicy " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy=mypolicy +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:4" +echo >>"$at_stdout"; printf "%s\n" "variant string \"no\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341727,18 +354538,33 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=yes/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-ingress-zone ANY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:5" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-ingress-zone ANY +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:5" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341749,15 +354575,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-egress-zone HOST " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy=mypolicy --add-egress-zone HOST +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:6" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341769,15 +354595,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset=foobar --type=hash:ip +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:8" +echo >>"$at_stdout"; printf "%s\n" "variant string \"yes\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341785,19 +354613,33 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=false/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=false/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } + + { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:9" +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341808,15 +354650,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:9" +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341827,17 +354669,18 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:12" +echo >>"$at_stdout"; printf "%s\n" "variant string \"false\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341845,18 +354688,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=true/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=true/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:13" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341864,6 +354705,18 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -341872,24 +354725,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_public_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_destination_ipset.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_public_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 6 -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar dst -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:23" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341900,18 +354744,18 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:29" +echo >>"$at_stdout"; printf "%s\n" "variant string \"true\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341919,18 +354763,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:30" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination ipset=foobar accept' +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:30" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341938,6 +354780,18 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -341946,23 +354800,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_mypolicy_allow; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rich_destination_ipset.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_mypolicy_allow; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 match-set foobar dst -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rich_destination_ipset.at:38" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341973,18 +354819,18 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_destination_ipset.at:43" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "variant string \"strict\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -341992,18 +354838,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' +printf "%s\n" "$at_srcdir/rpfilter.at:131: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:131" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_destination_ipset.at:44" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -342011,18 +354855,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:45: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:45" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 121 $at_status "$at_srcdir/rich_destination_ipset.at:45" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -342033,15 +354875,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 121 $at_status "$at_srcdir/rich_destination_ipset.at:46" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -342051,16 +354893,19 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' +printf "%s\n" "$at_srcdir/rpfilter.at:131: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:\"org.fedoraproject.FirewallD1.config\" string:\"IPv6_rpfilter2\" | tail -n +2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:131" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-send --system --print-reply --dest=org.fedoraproject.FirewallD1 /org/fedoraproject/FirewallD1/config org.freedesktop.DBus.Properties.Get string:"org.fedoraproject.FirewallD1.config" string:"IPv6_rpfilter2" | tail -n +2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_destination_ipset.at:47" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "variant string \"loose\" +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:131" $at_failed && at_fn_log_failure $at_traceon; } @@ -342069,17 +354914,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:48" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination bogus=foobar accept' +{ set +x +printf "%s\n" "$at_srcdir/rpfilter.at:142: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=bogus/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:142" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=bogus/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 122 $at_status "$at_srcdir/rich_destination_ipset.at:48" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:142" $at_failed && at_fn_log_failure $at_traceon; } @@ -342087,18 +354931,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:49" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' +printf "%s\n" "$at_srcdir/rpfilter.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:143" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 121 $at_status "$at_srcdir/rich_destination_ipset.at:49" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:143" $at_failed && at_fn_log_failure $at_traceon; } @@ -342109,15 +354951,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rich_destination_ipset.at:50: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rich_destination_ipset.at:50" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --policy mypolicy --add-rich-rule='rule family=ipv4 destination address=10.0.0.1 ipset=foobar accept' +printf "%s\n" "$at_srcdir/rpfilter.at:143: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:143" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 121 $at_status "$at_srcdir/rich_destination_ipset.at:50" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:143" $at_failed && at_fn_log_failure $at_traceon; } @@ -342127,10 +354969,11 @@ $at_traceon; } - if test x"-e '/ERROR: INVALID_RULE: bad attribute/d' -e '/ERROR: INVALID_DESTINATION: address and ipset/d'" != x"ignore"; then - $as_echo "rich_destination_ipset.at:52" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e '/ERROR: INVALID_RULE: bad attribute/d' -e '/ERROR: INVALID_DESTINATION: address and ipset/d' | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rich_destination_ipset.at:52" + + if test x"-e "/^WARNING: IPv6_rpfilter 'bogus' is not valid/d"" != x"ignore"; then + printf "%s\n" "rpfilter.at:145" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e "/^WARNING: IPv6_rpfilter 'bogus' is not valid/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:145" fi @@ -342139,13 +354982,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_335 -#AT_START_336 -at_fn_group_banner 336 'zone.at:1' \ - "zone - target" " " 11 +#AT_STOP_359 +#AT_START_360 +at_fn_group_banner 360 'rpfilter.at:147' \ + "rpfilter - config values, -forward" " " 11 at_xfail=no ( - $as_echo "336. $at_setup_line: testing $at_desc ..." + printf "%s\n" "360. $at_setup_line: testing $at_desc ..." $at_traceon @@ -342163,6 +355006,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -342179,29 +355023,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/zone.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:147" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/zone.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "zone.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "rpfilter.at:147" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } @@ -342209,15 +355053,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "zone.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:147" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } @@ -342259,15 +355103,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/zone.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:1" +printf "%s\n" "$at_srcdir/rpfilter.at:147: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:147" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:147" $at_failed && at_fn_log_failure $at_traceon; } @@ -342275,9 +355119,9 @@ $at_traceon; } - $as_echo "zone.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:147" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/zone.at:1" + && at_fn_check_skip 77 "$at_srcdir/rpfilter.at:147" @@ -342358,8 +355202,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "zone.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/zone.at:1" + printf "%s\n" "rpfilter.at:147" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:147" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -342369,7 +355213,7 @@ at_fn_check_skip 99 "$at_srcdir/zone.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -342377,8 +355221,8 @@ at_fn_check_skip 99 "$at_srcdir/zone.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "zone.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/zone.at:1" + printf "%s\n" "rpfilter.at:147" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/rpfilter.at:147" fi echo "$!" > firewalld.pid @@ -342394,10 +355238,9 @@ at_fn_check_skip 99 "$at_srcdir/zone.at:1" fi sleep 1 done - $as_echo "zone.at:1" >"$at_check_line_file" + printf "%s\n" "rpfilter.at:147" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/zone.at:1" - + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:147" @@ -342405,36 +355248,21 @@ at_fn_check_skip 99 "$at_srcdir/zone.at:1" - { set +x -$as_echo "$at_srcdir/zone.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone=foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone=foobar -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:4" -$at_failed && at_fn_log_failure -$at_traceon; } - - - { set +x -$as_echo "$at_srcdir/zone.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default +printf "%s\n" "$at_srcdir/rpfilter.at:154: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:154" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=strict-forward/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:6" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" $at_failed && at_fn_log_failure $at_traceon; } @@ -342443,17 +355271,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT +printf "%s\n" "$at_srcdir/rpfilter.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:7" +at_fn_check_status 114 $at_status "$at_srcdir/rpfilter.at:154" $at_failed && at_fn_log_failure $at_traceon; } @@ -342464,15 +355291,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DROP +printf "%s\n" "$at_srcdir/rpfilter.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:8" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" $at_failed && at_fn_log_failure $at_traceon; } @@ -342483,15 +355310,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=%%REJECT%% +printf "%s\n" "$at_srcdir/rpfilter.at:154: sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf" +at_fn_check_prepare_trace "rpfilter.at:154" +( $at_check_trace; sed -i 's/^IPv6_rpfilter.*/IPv6_rpfilter=loose-forward/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:9" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" $at_failed && at_fn_log_failure $at_traceon; } @@ -342500,17 +355327,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=CONTINUE " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=CONTINUE +printf "%s\n" "$at_srcdir/rpfilter.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 110 $at_status "$at_srcdir/zone.at:10" +at_fn_check_status 114 $at_status "$at_srcdir/rpfilter.at:154" $at_failed && at_fn_log_failure $at_traceon; } @@ -342521,15 +355347,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DENY " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=DENY +printf "%s\n" "$at_srcdir/rpfilter.at:154: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:154" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 110 $at_status "$at_srcdir/zone.at:11" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:154" $at_failed && at_fn_log_failure $at_traceon; } @@ -342540,247 +355366,244 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=ACCEPT -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:13" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - - - { set +x -$as_echo "$at_srcdir/zone.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-interface foobar0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --add-interface foobar0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:14" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"-e "/^ERROR: INVALID_VALUE:.*is incompatible with FirewallBackend=iptables."" != x"ignore"; then + printf "%s\n" "rpfilter.at:168" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed -e "/^ERROR: INVALID_VALUE:.*is incompatible with FirewallBackend=iptables." | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:168" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_360 +#AT_START_361 +at_fn_group_banner 361 'zone_combine.at:1' \ + "zone - combine" " " 11 +at_xfail=no +( + printf "%s\n" "361. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/zone.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:15" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/zone.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/zone.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + else + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "zone_combine.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:39" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - - - - - { set +x -$as_echo "$at_srcdir/zone.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "zone_combine.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:46" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/zone.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/zone_combine.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_foobar_pre 0 -- ::/0 ::/0 -IN_foobar_log 0 -- ::/0 ::/0 -IN_foobar_deny 0 -- ::/0 ::/0 -IN_foobar_allow 0 -- ::/0 ::/0 -IN_foobar_post 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:54" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - + printf "%s\n" "zone_combine.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/zone_combine.at:1" - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/zone.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:61" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE + cat >./dbus.conf <<'_ATEOF' -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_foobar 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:61" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - else - : + + + + + + + + + + + + + + - fi + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "zone_combine.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late @@ -342788,73 +355611,88 @@ $at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "zone_combine.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "zone_combine.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" - { set +x -$as_echo "$at_srcdir/zone.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:96" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE +{ set +x +printf "%s\n" "$at_srcdir/zone_combine.at:8: mkdir -p ./zones/combined" +at_fn_check_prepare_trace "zone_combine.at:8" +( $at_check_trace; mkdir -p ./zones/combined ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:96" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:8" $at_failed && at_fn_log_failure $at_traceon; } +cat >./zones/combined/zone1.xml <<'_ATEOF' + + + + +_ATEOF +cat >./zones/combined/zone2.xml <<'_ATEOF' + + + + +_ATEOF - - - +cat >./zones/combined/zone3.xml <<'_ATEOF' + + + + +_ATEOF { set +x -$as_echo "$at_srcdir/zone.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:103" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_combine.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:103" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -342864,112 +355702,75 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/zone.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:113" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_combine.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar_pre 0 -- ::/0 ::/0 -FWD_foobar_log 0 -- ::/0 ::/0 -FWD_foobar_deny 0 -- ::/0 ::/0 -FWD_foobar_allow 0 -- ::/0 ::/0 -FWD_foobar_post 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:113" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:27" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - { set +x -$as_echo "$at_srcdir/zone.at:120: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:120" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_combine.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -FWD_foobar 0 -- ::/0 ::/0 -ACCEPT 0 -- ::/0 ::/0 -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "block combined dmz drop external home internal public trusted work " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:120" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:29" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - { set +x -$as_echo "$at_srcdir/zone.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:133" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone=foobar --set-target=default +printf "%s\n" "$at_srcdir/zone_combine.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:133" +echo >>"$at_stdout"; printf "%s\n" "combined +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: https ssh +ports: 12345/tcp +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -342981,15 +355782,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:134" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/zone_combine.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:51" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zones ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:134" +echo >>"$at_stdout"; printf "%s\n" "block combined/zone1 combined/zone2 combined/zone3 dmz drop external home internal public trusted work +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:51" $at_failed && at_fn_log_failure $at_traceon; } @@ -343000,15 +355803,32 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone.at:134" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/zone_combine.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:134" +echo >>"$at_stdout"; printf "%s\n" "combined/zone1 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: ssh +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:54" $at_failed && at_fn_log_failure $at_traceon; } @@ -343018,38 +355838,33 @@ $at_traceon; } - - - - - - - - - { set +x -$as_echo "$at_srcdir/zone.at:159: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:159" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_combine.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:72" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 -ACCEPT 1 -- 0.0.0.0/0 0.0.0.0/0 +echo >>"$at_stdout"; printf "%s\n" "combined/zone2 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: https +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:159" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:72" $at_failed && at_fn_log_failure $at_traceon; } @@ -343059,33 +355874,33 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/zone.at:167: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:167" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_combine.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "combined/zone3 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: 12345/tcp +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:167" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:90" $at_failed && at_fn_log_failure $at_traceon; } @@ -343096,130 +355911,72 @@ $at_traceon; } - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/zone.at:175: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L IN_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:175" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L IN_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_combine.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --add-protocol icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:111" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --add-protocol icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_foobar_pre 0 -- ::/0 ::/0 -IN_foobar_log 0 -- ::/0 ::/0 -IN_foobar_deny 0 -- ::/0 ::/0 -IN_foobar_allow 0 -- ::/0 ::/0 -IN_foobar_post 0 -- ::/0 ::/0 -ACCEPT 58 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:175" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:111" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/zone.at:183: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:183" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_combine.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_foobar 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "combined +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: https ssh +ports: 12345/tcp +protocols: icmp +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:183" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:112" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - - - - - - - - { set +x -$as_echo "$at_srcdir/zone.at:217: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FWD_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:217" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FWD_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_combine.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --add-protocol icmp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:133" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --add-protocol icmp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar_pre 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_foobar_log 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_foobar_deny 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_foobar_allow 0 -- 0.0.0.0/0 0.0.0.0/0 -FWD_foobar_post 0 -- 0.0.0.0/0 0.0.0.0/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:217" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:133" $at_failed && at_fn_log_failure $at_traceon; } @@ -343229,35 +355986,33 @@ $at_traceon; } - - - - { set +x -$as_echo "$at_srcdir/zone.at:224: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:224" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_combine.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:134" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_foobar 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "combined/zone1 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: ssh +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:224" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:134" $at_failed && at_fn_log_failure $at_traceon; } @@ -343267,105 +356022,82 @@ $at_traceon; } - - - - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/zone.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FWD_foobar; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:234" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FWD_foobar; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_combine.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:152" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar_pre 0 -- ::/0 ::/0 -FWD_foobar_log 0 -- ::/0 ::/0 -FWD_foobar_deny 0 -- ::/0 ::/0 -FWD_foobar_allow 0 -- ::/0 ::/0 -FWD_foobar_post 0 -- ::/0 ::/0 +echo >>"$at_stdout"; printf "%s\n" "combined/zone2 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: https +ports: +protocols: icmp +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: " | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:234" -$at_failed && at_fn_log_failure -$at_traceon; } - - - - else - : - - fi - - - - - + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:152" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/zone.at:241: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone.at:241" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/zone_combine.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:170" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_foobar 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_foobar 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "combined/zone3 +target: default +ingress-priority: 0 +egress-priority: 0 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: 12345/tcp +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone.at:241" +at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:170" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - - - - - if test x"ignore" != x"ignore"; then - $as_echo "zone.at:252" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/zone.at:252" + if test x"" != x"ignore"; then + printf "%s\n" "zone_combine.at:189" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/zone_combine.at:189" fi @@ -343374,13 +356106,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_336 -#AT_START_337 -at_fn_group_banner 337 'rpfilter.at:1' \ - "rpfilter" " " 11 +#AT_STOP_361 +#AT_START_362 +at_fn_group_banner 362 'reset_defaults.at:1' \ + "reset defaults" " " 11 at_xfail=no ( - $as_echo "337. $at_setup_line: testing $at_desc ..." + printf "%s\n" "362. $at_setup_line: testing $at_desc ..." $at_traceon @@ -343398,6 +356130,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -343414,29 +356147,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/rpfilter.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/rpfilter.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "rpfilter.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "reset_defaults.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -343444,15 +356177,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/rpfilter.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "rpfilter.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "reset_defaults.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -343494,15 +356227,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/rpfilter.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "rpfilter.at:1" +printf "%s\n" "$at_srcdir/reset_defaults.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -343510,9 +356243,9 @@ $at_traceon; } - $as_echo "rpfilter.at:1" >"$at_check_line_file" + printf "%s\n" "reset_defaults.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/rpfilter.at:1" + && at_fn_check_skip 77 "$at_srcdir/reset_defaults.at:1" @@ -343593,8 +356326,8 @@ _ATEOF DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` if test $? -ne 0; then - $as_echo "rpfilter.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" + printf "%s\n" "reset_defaults.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" fi echo "kill $DBUS_PID" >> ./cleanup_late @@ -343604,7 +356337,7 @@ at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" @@ -343612,8 +356345,8 @@ at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & if test $? -ne 0; then - $as_echo "rpfilter.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" + printf "%s\n" "reset_defaults.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" fi echo "$!" > firewalld.pid @@ -343629,102 +356362,108 @@ at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" fi sleep 1 done - $as_echo "rpfilter.at:1" >"$at_check_line_file" + printf "%s\n" "reset_defaults.at:1" >"$at_check_line_file" (test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:1" - + && at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" - KERNEL_MAJOR=`uname -r | cut -d. -f1` - KERNEL_MINOR=`uname -r | cut -d. -f2` - if test ${KERNEL_MAJOR} -eq 4 && test ${KERNEL_MINOR} -ge 10 || test ${KERNEL_MAJOR} -gt 4; then - : + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:4" +$at_failed && at_fn_log_failure +$at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } - if $IP6TABLES -L >/dev/null 2>&1; then - : { set +x -$as_echo "$at_srcdir/rpfilter.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t mangle -L PREROUTING; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 -HERE - " -at_fn_check_prepare_notrace 'a $(...) command substitution' "rpfilter.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t mangle -L PREROUTING; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 -HERE - +printf "%s\n" "$at_srcdir/reset_defaults.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:8" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 134 -ACCEPT 58 -- ::/0 ::/0 ipv6-icmptype 135 -DROP 0 -- ::/0 ::/0 rpfilter validmark invert -PREROUTING_direct 0 -- ::/0 ::/0 -PREROUTING_POLICIES 0 -- ::/0 ::/0 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/rpfilter.at:22" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:8" $at_failed && at_fn_log_failure $at_traceon; } - else - : - fi + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service ftp --add-port 22/udp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service ftp --add-port 22/udp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } - if test x"" != x"ignore"; then - $as_echo "rpfilter.at:30" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/rpfilter.at:30" - fi - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_337 -#AT_START_338 -at_fn_group_banner 338 'zone_combine.at:1' \ - "zone - combine" " " 11 -at_xfail=no -( - $as_echo "338. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-service zzzzzzzzzzzz +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -343732,120 +356471,112 @@ at_xfail=no + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-service ftp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:12" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/zone_combine.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + + + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --set-short \"FTP HELPER\" " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --set-short "FTP HELPER" ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:13" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/zone_combine.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "zone_combine.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-short test_short " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-short test_short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:14" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/zone_combine.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "zone_combine.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset test-ipset --type hash:ip " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset test-ipset --type hash:ip ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:15" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype test-icmptype " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-icmptype test-icmptype +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:16" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/zone_combine.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:1" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:18" $at_failed && at_fn_log_failure $at_traceon; } @@ -343853,182 +356584,119 @@ $at_traceon; } - $as_echo "zone_combine.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/zone_combine.at:1" + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo >>"$at_stdout"; printf "%s\n" "FTP HELPER +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:20" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "zone_combine.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo >>"$at_stdout"; printf "%s\n" "test_short +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:22" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "zone_combine.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "zone_combine.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/zone_combine.at:1" + + + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:24" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:24" +$at_failed && at_fn_log_failure +$at_traceon; } -{ set +x -$as_echo "$at_srcdir/zone_combine.at:8: mkdir -p ./zones/combined" -at_fn_check_prepare_trace "zone_combine.at:8" -( $at_check_trace; mkdir -p ./zones/combined + + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:25" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:8" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:25" $at_failed && at_fn_log_failure $at_traceon; } -cat >./zones/combined/zone1.xml <<'_ATEOF' - - - - -_ATEOF -cat >./zones/combined/zone2.xml <<'_ATEOF' - - - - -_ATEOF -cat >./zones/combined/zone3.xml <<'_ATEOF' - - - - -_ATEOF + { set +x -$as_echo "$at_srcdir/zone_combine.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:27" +printf "%s\n" "$at_srcdir/reset_defaults.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:27" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -344039,15 +356707,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:27" +printf "%s\n" "$at_srcdir/reset_defaults.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:28" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:27" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -344060,17 +356728,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --get-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --get-zones +printf "%s\n" "$at_srcdir/reset_defaults.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:30" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block combined dmz drop external home internal public trusted work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:29" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:30" $at_failed && at_fn_log_failure $at_traceon; } @@ -344081,32 +356747,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/reset_defaults.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:31" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: https ssh -ports: 12345/tcp -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:32" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:31" $at_failed && at_fn_log_failure $at_traceon; } @@ -344116,19 +356765,35 @@ $at_traceon; } + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-ipset test-ipset " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-ipset test-ipset +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:32" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + { set +x -$as_echo "$at_srcdir/zone_combine.at:51: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --get-zones " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:51" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --get-zones +printf "%s\n" "$at_srcdir/reset_defaults.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-icmptype test-icmptype " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "block combined/zone1 combined/zone2 combined/zone3 dmz drop external home internal public trusted work -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:51" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:33" $at_failed && at_fn_log_failure $at_traceon; } @@ -344138,33 +356803,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_combine.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/reset_defaults.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone1 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: ssh -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:54" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:35" $at_failed && at_fn_log_failure $at_traceon; } @@ -344174,33 +356823,57 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_combine.at:72: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:72" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/reset_defaults.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:37" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone2 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: https -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:37" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:38" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/reset_defaults.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo >>"$at_stdout"; printf "%s\n" " " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:72" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:39" $at_failed && at_fn_log_failure $at_traceon; } @@ -344211,32 +356884,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:90" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/reset_defaults.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:41" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone3 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: 12345/tcp -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: +echo stderr:; cat "$at_stderr" +echo >>"$at_stdout"; printf "%s\n" "Allow host IPv6 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:90" +at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:41" $at_failed && at_fn_log_failure $at_traceon; } @@ -344246,17 +356904,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_combine.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --add-protocol icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:111" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --add-protocol icmp +printf "%s\n" "$at_srcdir/reset_defaults.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:111" +at_fn_check_status 135 $at_status "$at_srcdir/reset_defaults.at:43" $at_failed && at_fn_log_failure $at_traceon; } @@ -344267,32 +356924,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:112" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone combined --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/reset_defaults.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:44" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: https ssh -ports: 12345/tcp -protocols: icmp -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:112" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 107 $at_status "$at_srcdir/reset_defaults.at:44" $at_failed && at_fn_log_failure $at_traceon; } @@ -344304,15 +356944,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:133: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --add-protocol icmp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_combine.at:133" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --add-protocol icmp +printf "%s\n" "$at_srcdir/reset_defaults.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:133" +at_fn_check_status 101 $at_status "$at_srcdir/reset_defaults.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -344323,32 +356963,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:134: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:134" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone1 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/reset_defaults.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --query-service ftp " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --query-service ftp ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone1 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: ssh -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:134" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -344359,32 +356982,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:152: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:152" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone2 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/reset_defaults.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-ipset test-ipset " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:48" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-ipset test-ipset ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone2 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: https -ports: -protocols: icmp -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:152" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 135 $at_status "$at_srcdir/reset_defaults.at:48" $at_failed && at_fn_log_failure $at_traceon; } @@ -344395,32 +357001,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_combine.at:170: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_combine.at:170" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone combined/zone3 --list-all | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/reset_defaults.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-icmptype test-icmptype " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:49" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-icmptype test-icmptype ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "combined/zone3 -target: default -ingress-priority: 0 -egress-priority: 0 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: 12345/tcp -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_combine.at:170" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 107 $at_status "$at_srcdir/reset_defaults.at:49" $at_failed && at_fn_log_failure $at_traceon; } @@ -344430,10 +357019,10 @@ $at_traceon; } - if test x"" != x"ignore"; then - $as_echo "zone_combine.at:189" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/zone_combine.at:189" + if test x"ignore" != x"ignore"; then + printf "%s\n" "reset_defaults.at:51" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:51" fi @@ -344442,13 +357031,13 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_338 -#AT_START_339 -at_fn_group_banner 339 'reset_defaults.at:1' \ - "reset defaults" " " 11 +#AT_STOP_362 +#AT_START_363 +at_fn_group_banner 363 'zone_priority.at:1' \ + "zone - priority" " " 11 at_xfail=no ( - $as_echo "339. $at_setup_line: testing $at_desc ..." + printf "%s\n" "363. $at_setup_line: testing $at_desc ..." $at_traceon @@ -344466,6 +357055,7 @@ at_xfail=no test -z "$IP6TABLES" && export IP6TABLES="ip6tables" test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" if locale -a |grep "^C.utf8" >/dev/null; then LC_ALL="C.UTF-8" @@ -344482,29 +357072,29 @@ at_xfail=no if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" ( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } else { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "zone_priority.at:1" ( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -344512,15 +357102,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "zone_priority.at:1" ( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -344562,15 +357152,15 @@ $at_traceon; } echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late { set +x -$as_echo "$at_srcdir/reset_defaults.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:1" +printf "%s\n" "$at_srcdir/zone_priority.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" ( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:1" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -344578,9 +357168,9 @@ $at_traceon; } - $as_echo "reset_defaults.at:1" >"$at_check_line_file" + printf "%s\n" "zone_priority.at:1" >"$at_check_line_file" (! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/reset_defaults.at:1" + && at_fn_check_skip 77 "$at_srcdir/zone_priority.at:1" @@ -344659,48 +357249,281 @@ $at_traceon; } _ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "reset_defaults.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "zone_priority.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late + + + + + + + + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "zone_priority.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" + fi + echo "$!" > firewalld.pid + + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "zone_priority.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone foobar " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone foobar +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:6" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32769 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32769 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:9" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32768 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:10" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32768 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:11" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32767 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32767 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:12" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32769 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:13" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32769 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:13" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32768 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:14" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32768 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:15" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32767 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32767 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:16" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32769 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32769 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:17" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:18" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32768 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:18" +$at_failed && at_fn_log_failure +$at_traceon; } + + - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "reset_defaults.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "reset_defaults.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32768 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:19" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32768 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -344709,15 +357532,15 @@ at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:1" { set +x -$as_echo "$at_srcdir/reset_defaults.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:4" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults +printf "%s\n" "$at_srcdir/zone_priority.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32767 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:20" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32767 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:4" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -344727,17 +357550,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/reset_defaults.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults +printf "%s\n" "$at_srcdir/zone_priority.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:21" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:21" $at_failed && at_fn_log_failure $at_traceon; } @@ -344747,17 +357569,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/reset_defaults.at:8: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:8" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-service zzzzzzzzzzzz +printf "%s\n" "$at_srcdir/zone_priority.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:22" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:8" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:22" $at_failed && at_fn_log_failure $at_traceon; } @@ -344768,15 +357589,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --service ftp --add-port 22/udp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --service ftp --add-port 22/udp +printf "%s\n" "$at_srcdir/zone_priority.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:23" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:23" $at_failed && at_fn_log_failure $at_traceon; } @@ -344788,15 +357609,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --add-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --add-service zzzzzzzzzzzz +printf "%s\n" "$at_srcdir/zone_priority.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-ingress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:26" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-ingress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:11" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:26" $at_failed && at_fn_log_failure $at_traceon; } @@ -344807,15 +357628,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --add-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --add-service ftp +printf "%s\n" "$at_srcdir/zone_priority.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-ingress-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:27" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-ingress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:12" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:27" $at_failed && at_fn_log_failure $at_traceon; } @@ -344826,15 +357647,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --set-short \"FTP HELPER\" " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --set-short "FTP HELPER" +printf "%s\n" "$at_srcdir/zone_priority.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-egress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:28" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-egress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:13" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:28" $at_failed && at_fn_log_failure $at_traceon; } @@ -344845,15 +357666,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-short test_short " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-short test_short +printf "%s\n" "$at_srcdir/zone_priority.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-egress-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:29" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-egress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:14" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:29" $at_failed && at_fn_log_failure $at_traceon; } @@ -344863,16 +357684,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/reset_defaults.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-ipset test-ipset --type hash:ip " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-ipset test-ipset --type hash:ip +printf "%s\n" "$at_srcdir/zone_priority.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-priority -1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:32" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:32" $at_failed && at_fn_log_failure $at_traceon; } @@ -344883,15 +357705,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-icmptype test-icmptype " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-icmptype test-icmptype +printf "%s\n" "$at_srcdir/zone_priority.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-ingress-priority -2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:33" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-ingress-priority -2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:33" $at_failed && at_fn_log_failure $at_traceon; } @@ -344901,17 +357723,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/reset_defaults.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz +printf "%s\n" "$at_srcdir/zone_priority.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-egress-priority -3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:34" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-egress-priority -3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:34" $at_failed && at_fn_log_failure $at_traceon; } @@ -344922,15 +357743,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp +printf "%s\n" "$at_srcdir/zone_priority.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:35" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:35" $at_failed && at_fn_log_failure $at_traceon; } @@ -344940,18 +357761,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/reset_defaults.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short +printf "%s\n" "$at_srcdir/zone_priority.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 123 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:38" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 123 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo "FTP HELPER -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:20" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:38" $at_failed && at_fn_log_failure $at_traceon; } @@ -344962,17 +357782,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short +printf "%s\n" "$at_srcdir/zone_priority.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:39" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo "test_short +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "123 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:22" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:39" $at_failed && at_fn_log_failure $at_traceon; } @@ -344983,15 +357803,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:24: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:24" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset +printf "%s\n" "$at_srcdir/zone_priority.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 456 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:42" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 456 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:24" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:42" $at_failed && at_fn_log_failure $at_traceon; } @@ -345002,15 +357822,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:25: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:25" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype +printf "%s\n" "$at_srcdir/zone_priority.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-ingress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:43" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-ingress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:25" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "456 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:43" $at_failed && at_fn_log_failure $at_traceon; } @@ -345020,18 +357842,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/reset_defaults.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/zone_priority.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 789 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:46" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 789 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:28" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:46" $at_failed && at_fn_log_failure $at_traceon; } @@ -345042,15 +357862,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/zone_priority.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-egress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:47" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-egress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:28" +echo >>"$at_stdout"; printf "%s\n" "789 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:47" $at_failed && at_fn_log_failure $at_traceon; } @@ -345061,17 +357883,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/reset_defaults.at:30: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:30" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz +printf "%s\n" "$at_srcdir/zone_priority.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:52" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:30" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:52" $at_failed && at_fn_log_failure $at_traceon; } @@ -345082,15 +357903,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:31: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:31" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --query-service ftp +printf "%s\n" "$at_srcdir/zone_priority.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 666 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:53" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 666 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:31" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:53" $at_failed && at_fn_log_failure $at_traceon; } @@ -345101,15 +357922,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-ipset test-ipset " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-ipset test-ipset +printf "%s\n" "$at_srcdir/zone_priority.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:54" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:32" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:54" $at_failed && at_fn_log_failure $at_traceon; } @@ -345120,15 +357941,17 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-icmptype test-icmptype " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-icmptype test-icmptype +printf "%s\n" "$at_srcdir/zone_priority.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:55" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:33" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "-1 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:55" $at_failed && at_fn_log_failure $at_traceon; } @@ -345140,15 +357963,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --reset-to-defaults " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --reset-to-defaults +printf "%s\n" "$at_srcdir/zone_priority.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:60" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:35" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:60" $at_failed && at_fn_log_failure $at_traceon; } @@ -345158,17 +357981,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/reset_defaults.at:37: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:37" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --query-service zzzzzzzzzzzz +printf "%s\n" "$at_srcdir/zone_priority.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:61" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:37" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:61" $at_failed && at_fn_log_failure $at_traceon; } @@ -345179,15 +358001,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone internal --query-service ftp +printf "%s\n" "$at_srcdir/zone_priority.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:62" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:38" +at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:62" $at_failed && at_fn_log_failure $at_traceon; } @@ -345197,18 +358019,34 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/reset_defaults.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --helper ftp --get-short +printf "%s\n" "$at_srcdir/zone_priority.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-zone foobar | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:65" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-zone foobar | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo " +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "foobar +target: default +ingress-priority: -2 +egress-priority: -3 +icmp-block-inversion: no +interfaces: +sources: +services: +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:39" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:65" $at_failed && at_fn_log_failure $at_traceon; } @@ -345218,18 +358056,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/reset_defaults.at:41: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:41" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-short +printf "%s\n" "$at_srcdir/zone_priority.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:85" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo >>"$at_stdout"; $as_echo "Allow host IPv6 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reset_defaults.at:41" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:85" $at_failed && at_fn_log_failure $at_traceon; } @@ -345240,15 +358077,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-ipset test-ipset +printf "%s\n" "$at_srcdir/zone_priority.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-1 --set-priority -30000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:86" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-1 --set-priority -30000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 135 $at_status "$at_srcdir/reset_defaults.at:43" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:86" $at_failed && at_fn_log_failure $at_traceon; } @@ -345259,15 +358096,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:44: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:44" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-icmptype test-icmptype +printf "%s\n" "$at_srcdir/zone_priority.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-1 --add-interface dummy-1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:87" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-1 --add-interface dummy-1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/reset_defaults.at:44" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:87" $at_failed && at_fn_log_failure $at_traceon; } @@ -345277,17 +358114,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/reset_defaults.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --query-service zzzzzzzzzzzz +printf "%s\n" "$at_srcdir/zone_priority.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:88" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 101 $at_status "$at_srcdir/reset_defaults.at:46" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:88" $at_failed && at_fn_log_failure $at_traceon; } @@ -345298,15 +358134,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone internal --query-service ftp " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone internal --query-service ftp +printf "%s\n" "$at_srcdir/zone_priority.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-2 --set-priority -10000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:89" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-2 --set-priority -10000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 1 $at_status "$at_srcdir/reset_defaults.at:47" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:89" $at_failed && at_fn_log_failure $at_traceon; } @@ -345317,15 +358153,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:48: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-ipset test-ipset " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:48" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-ipset test-ipset +printf "%s\n" "$at_srcdir/zone_priority.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-2 --add-interface dummy-2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-2 --add-interface dummy-2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 135 $at_status "$at_srcdir/reset_defaults.at:48" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:90" $at_failed && at_fn_log_failure $at_traceon; } @@ -345336,15 +358172,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/reset_defaults.at:49: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-icmptype test-icmptype " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reset_defaults.at:49" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-icmptype test-icmptype +printf "%s\n" "$at_srcdir/zone_priority.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:91" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 107 $at_status "$at_srcdir/reset_defaults.at:49" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:91" $at_failed && at_fn_log_failure $at_traceon; } @@ -345354,147 +358190,130 @@ $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "reset_defaults.at:51" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/reset_defaults.at:51" - fi - + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-ingress-priority -5000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:92" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-ingress-priority -5000 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:92" +$at_failed && at_fn_log_failure +$at_traceon; } - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_339 -#AT_START_340 -at_fn_group_banner 340 'zone_priority.at:1' \ - "zone - priority" " " 11 -at_xfail=no -( - $as_echo "340. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-egress-priority -2000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:93" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-egress-priority -2000 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:93" +$at_failed && at_fn_log_failure +$at_traceon; } - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/zone_priority.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --add-interface dummy-3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:94" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --add-interface dummy-3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:94" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/zone_priority.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "zone_priority.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:95" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:95" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/zone_priority.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "zone_priority.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-ingress-priority -100 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:96" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-ingress-priority -100 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:96" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-egress-priority 1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:97" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-egress-priority 1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:97" +$at_failed && at_fn_log_failure +$at_traceon; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/zone_priority.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --add-interface dummy-4 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:98" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --add-interface dummy-4 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:1" +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:98" $at_failed && at_fn_log_failure $at_traceon; } @@ -345502,133 +358321,96 @@ $at_traceon; } - $as_echo "zone_priority.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/zone_priority.at:1" + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-5 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:99" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-5 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:99" +$at_failed && at_fn_log_failure +$at_traceon; } - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-ingress-priority -1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:100" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-ingress-priority -1 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:100" +$at_failed && at_fn_log_failure +$at_traceon; } - - - - - -_ATEOF - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "zone_priority.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-egress-priority 100 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:101" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-egress-priority 100 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:101" +$at_failed && at_fn_log_failure +$at_traceon; } - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "zone_priority.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "zone_priority.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --add-interface dummy-5 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:102" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --add-interface dummy-5 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:102" +$at_failed && at_fn_log_failure +$at_traceon; } + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-6 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:103" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-6 +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stdout:; cat "$at_stdout" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:103" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -345637,15 +358419,15 @@ at_fn_check_skip 99 "$at_srcdir/zone_priority.at:1" { set +x -$as_echo "$at_srcdir/zone_priority.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone foobar " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone foobar +printf "%s\n" "$at_srcdir/zone_priority.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-6 --set-priority 500 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:104" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-6 --set-priority 500 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:6" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:104" $at_failed && at_fn_log_failure $at_traceon; } @@ -345655,17 +358437,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32769 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:9" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32769 +printf "%s\n" "$at_srcdir/zone_priority.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-6 --add-source 10.10.10.0/24 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:105" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-6 --add-source 10.10.10.0/24 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:9" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:105" $at_failed && at_fn_log_failure $at_traceon; } @@ -345676,15 +358457,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -32768 +printf "%s\n" "$at_srcdir/zone_priority.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:106" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:10" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:106" $at_failed && at_fn_log_failure $at_traceon; } @@ -345695,15 +358476,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:11" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32768 +printf "%s\n" "$at_srcdir/zone_priority.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-7 --set-priority 1000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:107" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-7 --set-priority 1000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:11" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:107" $at_failed && at_fn_log_failure $at_traceon; } @@ -345714,15 +358495,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32767 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:12" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 32767 +printf "%s\n" "$at_srcdir/zone_priority.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-7 --add-interface dummy-7 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:108" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-7 --add-interface dummy-7 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:12" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:108" $at_failed && at_fn_log_failure $at_traceon; } @@ -345733,15 +358514,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:13: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32769 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:13" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32769 +printf "%s\n" "$at_srcdir/zone_priority.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-8 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:109" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:13" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:109" $at_failed && at_fn_log_failure $at_traceon; } @@ -345752,15 +358533,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:14" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -32768 +printf "%s\n" "$at_srcdir/zone_priority.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-8 --set-priority 30000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:110" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-8 --set-priority 30000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:14" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:110" $at_failed && at_fn_log_failure $at_traceon; } @@ -345771,15 +358552,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:15" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32768 +printf "%s\n" "$at_srcdir/zone_priority.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-8 --add-source 10.0.0.0/8 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:111" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-8 --add-source 10.0.0.0/8 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:15" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:111" $at_failed && at_fn_log_failure $at_traceon; } @@ -345790,15 +358571,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32767 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:16" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 32767 +printf "%s\n" "$at_srcdir/zone_priority.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-0andlast " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:112" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-0andlast ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:16" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:112" $at_failed && at_fn_log_failure $at_traceon; } @@ -345809,15 +358590,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32769 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:17" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32769 +printf "%s\n" "$at_srcdir/zone_priority.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-ingress-priority 0 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:113" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-ingress-priority 0 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:17" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:113" $at_failed && at_fn_log_failure $at_traceon; } @@ -345828,15 +358609,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:18: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:18" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -32768 +printf "%s\n" "$at_srcdir/zone_priority.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-egress-priority 32000 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:114" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-egress-priority 32000 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:18" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:114" $at_failed && at_fn_log_failure $at_traceon; } @@ -345847,15 +358628,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:19: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32768 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:19" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32768 +printf "%s\n" "$at_srcdir/zone_priority.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --add-interface dummy-9 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:115" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --add-interface dummy-9 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" +at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:19" +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:115" $at_failed && at_fn_log_failure $at_traceon; } @@ -345865,16 +358646,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32767 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:20" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 32767 +printf "%s\n" "$at_srcdir/zone_priority.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:20" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:116" $at_failed && at_fn_log_failure $at_traceon; } @@ -345885,15 +358667,312 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:21: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:21" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 0 +printf "%s\n" "$at_srcdir/zone_priority.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:116" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:21" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:116" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:362" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 +IN_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 10.0.0.0/8 0.0.0.0/0 +IN_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 +IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:362" +$at_failed && at_fn_log_failure +$at_traceon; } + + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/zone_priority.at:394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:394" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-1 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-1 0 -- 0.0.0.0/0 10.0.0.0/8 +REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-2 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-2 0 -- 0.0.0.0/0 10.0.0.0/8 +REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-3 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-3 0 -- 0.0.0.0/0 10.0.0.0/8 +REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-4 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-4 0 -- 0.0.0.0/0 10.0.0.0/8 +REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-5 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-5 0 -- 0.0.0.0/0 10.0.0.0/8 +REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-0andlast 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-0andlast 0 -- 0.0.0.0/0 10.0.0.0/8 +REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-6 0 -- 10.10.10.0/24 10.10.10.0/24 +REJECT 0 -- 10.10.10.0/24 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-6 0 -- 10.10.10.0/24 10.0.0.0/8 +REJECT 0 -- 10.10.10.0/24 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 +REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-7 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-7 0 -- 0.0.0.0/0 10.0.0.0/8 +REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-8 0 -- 10.0.0.0/8 10.10.10.0/24 +REJECT 0 -- 10.0.0.0/8 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-8 0 -- 10.0.0.0/8 10.0.0.0/8 +REJECT 0 -- 10.0.0.0/8 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 +REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 +REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 10.0.0.0/8 +REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:394" $at_failed && at_fn_log_failure $at_traceon; } @@ -345903,96 +358982,236 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:22: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:22" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 0 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:22" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/zone_priority.at:23: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:23" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 0 +printf "%s\n" "$at_srcdir/zone_priority.at:597: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:597" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:23" +echo >>"$at_stdout"; printf "%s\n" "IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_zone-1 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_zone-2 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_zone-3 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_zone-4 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_zone-5 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_zone-0andlast 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_zone-7 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +IN_allow-host-ipv6 0 -- ::/0 ::/0 +IN_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:597" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi - { set +x -$as_echo "$at_srcdir/zone_priority.at:26: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-ingress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:26" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-ingress-priority -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:26" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/zone_priority.at:27: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-ingress-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:27" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-ingress-priority 0 +printf "%s\n" "$at_srcdir/zone_priority.at:623: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:623" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:27" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "FWD_zone-1 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-1 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-1 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-1 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-1 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-1 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-1 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-1 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-2 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-2 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-2 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-2 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-2 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-2 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-2 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-2 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-3 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-3 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-3 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-3 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-3 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-3 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-3 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-3 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-4 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-4 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-4 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-4 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-4 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-4 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-4 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-4 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-5 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-5 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-5 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-5 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-5 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-5 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-5 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-5 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-0andlast 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-0andlast 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-0andlast 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-0andlast 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-0andlast 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-0andlast 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-0andlast 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-0andlast 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-7 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-7 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-7 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-7 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-7 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-7 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-7 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_zone-7 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +FWD_public 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:623" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/zone_priority.at:28: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-egress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:28" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --get-egress-priority -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:28" -$at_failed && at_fn_log_failure -$at_traceon; } - @@ -346000,15 +359219,32 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:29: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-egress-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:29" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy allow-host-ipv6 --set-egress-priority 0 +printf "%s\n" "$at_srcdir/zone_priority.at:755: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-zone zone-2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:755" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-zone zone-2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:29" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "zone-2 (active) +target: default +ingress-priority: -10000 +egress-priority: -10000 +icmp-block-inversion: no +interfaces: dummy-2 +sources: +services: +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:755" $at_failed && at_fn_log_failure $at_traceon; } @@ -346018,17 +359254,33 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:32: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-priority -1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:32" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-priority -1 +printf "%s\n" "$at_srcdir/zone_priority.at:773: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-zone zone-4 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " +at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:773" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-zone zone-4 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:32" +echo >>"$at_stdout"; printf "%s\n" "zone-4 (active) +target: default +ingress-priority: -100 +egress-priority: 1 +icmp-block-inversion: no +interfaces: dummy-4 +sources: +services: +ports: +protocols: +forward: no +masquerade: no +forward-ports: +source-ports: +icmp-blocks: +rich rules: +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:773" $at_failed && at_fn_log_failure $at_traceon; } @@ -346036,18 +359288,21 @@ $at_traceon; } - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:33: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-ingress-priority -2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:33" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-ingress-priority -2 +{ set +x +printf "%s\n" "$at_srcdir/zone_priority.at:793: cat ./zones/zone-5.xml" +at_fn_check_prepare_trace "zone_priority.at:793" +( $at_check_trace; cat ./zones/zone-5.xml ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:33" +echo >>"$at_stdout"; printf "%s\n" " + + + +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:793" $at_failed && at_fn_log_failure $at_traceon; } @@ -346055,18 +359310,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/zone_priority.at:34: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-egress-priority -3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:34" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-egress-priority -3 +printf "%s\n" "$at_srcdir/zone_priority.at:801: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-priority -1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:801" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-priority -1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:34" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:801" $at_failed && at_fn_log_failure $at_traceon; } @@ -346077,15 +359330,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:35: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --set-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:35" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --set-priority 0 +printf "%s\n" "$at_srcdir/zone_priority.at:802: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-ingress-priority -2 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:802" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-ingress-priority -2 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:35" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:802" $at_failed && at_fn_log_failure $at_traceon; } @@ -346095,17 +359348,16 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:38: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 123 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:38" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority 123 +printf "%s\n" "$at_srcdir/zone_priority.at:803: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-egress-priority -3 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:803" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-egress-priority -3 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:38" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:803" $at_failed && at_fn_log_failure $at_traceon; } @@ -346116,17 +359368,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:39: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:39" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority +printf "%s\n" "$at_srcdir/zone_priority.at:804: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:804" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "123 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:39" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:804" $at_failed && at_fn_log_failure $at_traceon; } @@ -346137,15 +359387,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:42: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 456 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:42" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 456 +printf "%s\n" "$at_srcdir/zone_priority.at:805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-ingress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:805" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-ingress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: +echo stderr:; cat "$at_stderr" echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:42" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:805" $at_failed && at_fn_log_failure $at_traceon; } @@ -346156,17 +359406,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:43: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-ingress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:43" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-ingress-priority +printf "%s\n" "$at_srcdir/zone_priority.at:806: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-egress-priority " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:806" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-egress-priority ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "456 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:43" +echo stderr:; cat "$at_stderr" +echo stdout:; cat "$at_stdout" +at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:806" $at_failed && at_fn_log_failure $at_traceon; } @@ -346176,136 +359424,148 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:46: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 789 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:46" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 789 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:46" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"ignore" != x"ignore"; then + printf "%s\n" "zone_priority.at:808" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/zone_priority.at:808" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_363 +#AT_START_364 +at_fn_group_banner 364 'reloadpolicy.at:1' \ + "check ReloadPolicy" " " 11 +at_xfail=no +( + printf "%s\n" "364. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/zone_priority.at:47: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-egress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:47" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-egress-priority -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "789 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:47" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi - { set +x -$as_echo "$at_srcdir/zone_priority.at:52: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:52" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority 666 + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:52" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:53: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 666 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:53" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority 666 + else + { set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "reloadpolicy.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:53" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:54: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:54" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-priority -1 + { set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "reloadpolicy.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:54" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/zone_priority.at:55: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:55" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "-1 -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:55" -$at_failed && at_fn_log_failure -$at_traceon; } - + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/zone_priority.at:60: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:60" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-ingress-priority -2 + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:60" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -346313,94 +359573,143 @@ $at_traceon; } + printf "%s\n" "reloadpolicy.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/reloadpolicy.at:1" - { set +x -$as_echo "$at_srcdir/zone_priority.at:61: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:61" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --set-egress-priority -3 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:61" -$at_failed && at_fn_log_failure -$at_traceon; } + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/zone_priority.at:62: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:62" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone foobar --get-priority -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 139 $at_status "$at_srcdir/zone_priority.at:62" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "reloadpolicy.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/zone_priority.at:65: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --info-zone foobar | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:65" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --info-zone foobar | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "foobar -target: default -ingress-priority: -2 -egress-priority: -3 -icmp-block-inversion: no -interfaces: -sources: -services: -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:65" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "reloadpolicy.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "reloadpolicy.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" - { set +x -$as_echo "$at_srcdir/zone_priority.at:85: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:85" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-1 +{ set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:4: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=INPUT:REJECT,FORWARD:ACCEPT/' ./firewalld.conf" +at_fn_check_prepare_trace "reloadpolicy.at:4" +( $at_check_trace; sed -i 's/^ReloadPolicy=.*/ReloadPolicy=INPUT:REJECT,FORWARD:ACCEPT/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:85" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -346408,18 +359717,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/zone_priority.at:86: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-1 --set-priority -30000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:86" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-1 --set-priority -30000 +printf "%s\n" "$at_srcdir/reloadpolicy.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:86" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -346430,15 +359737,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:87: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-1 --add-interface dummy-1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:87" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-1 --add-interface dummy-1 +printf "%s\n" "$at_srcdir/reloadpolicy.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:87" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -346448,16 +359755,18 @@ $at_traceon; } + + { set +x -$as_echo "$at_srcdir/zone_priority.at:88: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:88" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-2 +printf "%s\n" "$at_srcdir/reloadpolicy.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:88" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -346468,15 +359777,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:89: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-2 --set-priority -10000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:89" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-2 --set-priority -10000 +printf "%s\n" "$at_srcdir/reloadpolicy.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:89" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -346485,17 +359794,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/zone_priority.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-2 --add-interface dummy-2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:90" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-2 --add-interface dummy-2 +{ set +x +printf "%s\n" "$at_srcdir/reloadpolicy.at:9: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=REJECT/' ./firewalld.conf" +at_fn_check_prepare_trace "reloadpolicy.at:9" +( $at_check_trace; sed -i 's/^ReloadPolicy=.*/ReloadPolicy=REJECT/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:90" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -346503,18 +359811,16 @@ $at_traceon; } - - { set +x -$as_echo "$at_srcdir/zone_priority.at:91: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:91" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-3 +printf "%s\n" "$at_srcdir/reloadpolicy.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:91" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -346525,15 +359831,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:92: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-ingress-priority -5000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:92" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-ingress-priority -5000 +printf "%s\n" "$at_srcdir/reloadpolicy.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:92" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -346543,130 +359849,149 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:93: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-egress-priority -2000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:93" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --set-egress-priority -2000 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:93" -$at_failed && at_fn_log_failure -$at_traceon; } + if test x"" != x"ignore"; then + printf "%s\n" "reloadpolicy.at:12" >"$at_check_line_file" +(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ + && at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:12" + fi + set +x + $at_times_p && times >"$at_times_file" +) 5>&1 2>&1 7>&- | eval $at_tee_pipe +read at_status <"$at_status_file" +#AT_STOP_364 +#AT_START_365 +at_fn_group_banner 365 'strict_forward_ports.at:1' \ + "strict forward ports" " " 11 +at_xfail=no +( + printf "%s\n" "365. $at_setup_line: testing $at_desc ..." + $at_traceon - { set +x -$as_echo "$at_srcdir/zone_priority.at:94: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-3 --add-interface dummy-3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:94" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-3 --add-interface dummy-3 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:94" -$at_failed && at_fn_log_failure -$at_traceon; } + test -z "$PYTHON" && export PYTHON="python3" + test -z "$EBTABLES" && export EBTABLES="ebtables" + test -z "$IPTABLES" && export IPTABLES="iptables" + test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" + test -z "$IP6TABLES" && export IP6TABLES="ip6tables" + test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" + test -z "$IPSET" && export IPSET="ipset" + test -z "$PODMAN" && export PODMAN="podman" - { set +x -$as_echo "$at_srcdir/zone_priority.at:95: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:95" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-4 + if locale -a |grep "^C.utf8" >/dev/null; then + LC_ALL="C.UTF-8" + export LC_ALL + fi + + ULIMIT_VAL="" + if test -z "$ULIMIT_VAL" ; then + ULIMIT_VAL=102400 + fi + if test "$ULIMIT_VAL" -ne 0 ; then + ulimit -d "$ULIMIT_VAL" + fi + + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:1" +( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:95" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } - - - - - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:96: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-ingress-priority -100 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:96" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-ingress-priority -100 + else + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" +at_fn_check_prepare_trace "strict_forward_ports.at:1" +( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:96" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } + fi - - - - - { set +x -$as_echo "$at_srcdir/zone_priority.at:97: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-egress-priority 1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:97" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --set-egress-priority 1 + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" +at_fn_check_prepare_trace "strict_forward_ports.at:1" +( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:97" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } + kill_firewalld() { + pid=$(cat firewalld.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + } + kill_networkmanager() { + if test -f networkmanager.pid; then - { set +x -$as_echo "$at_srcdir/zone_priority.at:98: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-4 --add-interface dummy-4 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:98" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-4 --add-interface dummy-4 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:98" -$at_failed && at_fn_log_failure -$at_traceon; } + pid=$(cat networkmanager.pid) + kill $pid + for I in 1 2 3 4 5 6 7 8 9 0; do + ps --pid $pid >/dev/null || { pid=0; break; } + sleep 1 + done + test $pid -eq 0 || { kill -9 $pid; sleep 3; } + fi + } + echo "" > cleanup + echo "" > cleanup_late + trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT - { set +x -$as_echo "$at_srcdir/zone_priority.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-5 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:99" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-5 + echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:1: ip netns add fwd-test-\${at_group_normalized}" +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:1" +( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:99" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:1" $at_failed && at_fn_log_failure $at_traceon; } @@ -346674,77 +359999,129 @@ $at_traceon; } + printf "%s\n" "strict_forward_ports.at:1" >"$at_check_line_file" +(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ + && at_fn_check_skip 77 "$at_srcdir/strict_forward_ports.at:1" - { set +x -$as_echo "$at_srcdir/zone_priority.at:100: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-ingress-priority -1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:100" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-ingress-priority -1 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:100" -$at_failed && at_fn_log_failure -$at_traceon; } - + cat >./dbus.conf <<'_ATEOF' + + + + EXTERNAL + unix:path=/tmp/dummy + + + + + + + + + + + + + + + + + + + + + + + + + + + + + - { set +x -$as_echo "$at_srcdir/zone_priority.at:101: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-egress-priority 100 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:101" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --set-egress-priority 100 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:101" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + + + + + + + + + + + + + + + + + +_ATEOF + DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` + if test $? -ne 0; then + printf "%s\n" "strict_forward_ports.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/strict_forward_ports.at:1" + fi + echo "kill $DBUS_PID" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/zone_priority.at:102: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-5 --add-interface dummy-5 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:102" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-5 --add-interface dummy-5 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:102" -$at_failed && at_fn_log_failure -$at_traceon; } + FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --log-target file --system-config ./" + ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" + if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then + FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" + fi + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & + if test $? -ne 0; then + printf "%s\n" "strict_forward_ports.at:1" >"$at_check_line_file" +at_fn_check_skip 99 "$at_srcdir/strict_forward_ports.at:1" + fi + echo "$!" > firewalld.pid + WANTED_CODE="" + up=0 + for I in $(seq 60); do + env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state + RC=$? + echo "exit code = ${RC}" + if test ${RC} -eq ${WANTED_CODE:-0}; then + up=1 + break + fi + sleep 1 + done + printf "%s\n" "strict_forward_ports.at:1" >"$at_check_line_file" +(test $up -ne 1) \ + && at_fn_check_skip 99 "$at_srcdir/strict_forward_ports.at:1" - { set +x -$as_echo "$at_srcdir/zone_priority.at:103: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-6 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:103" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-6 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:103" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -346753,15 +360130,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:104: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-6 --set-priority 500 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:104" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-6 --set-priority 500 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:4: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy inputPolicy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:4" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy inputPolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:104" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:4" $at_failed && at_fn_log_failure $at_traceon; } @@ -346772,15 +360149,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:105: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-6 --add-source 10.10.10.0/24 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:105" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-6 --add-source 10.10.10.0/24 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:5: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:5" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:105" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:5" $at_failed && at_fn_log_failure $at_traceon; } @@ -346791,15 +360168,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:106: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:106" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-7 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-egress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:6" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-egress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:106" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:6" $at_failed && at_fn_log_failure $at_traceon; } @@ -346810,15 +360187,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:107: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-7 --set-priority 1000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:107" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-7 --set-priority 1000 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-forward-port=port=12345:proto=tcp:toport=54321 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:7" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy inputPolicy --add-forward-port=port=12345:proto=tcp:toport=54321 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:107" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:7" $at_failed && at_fn_log_failure $at_traceon; } @@ -346828,16 +360205,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-7 --add-interface dummy-7 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:108" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-7 --add-interface dummy-7 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:9: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy forwardPolicy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:9" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy forwardPolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:108" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:9" $at_failed && at_fn_log_failure $at_traceon; } @@ -346848,15 +360226,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:109: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-8 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:109" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-8 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-ingress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:10" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-ingress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:109" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:10" $at_failed && at_fn_log_failure $at_traceon; } @@ -346867,15 +360245,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:110: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-8 --set-priority 30000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:110" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-8 --set-priority 30000 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:11: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:11" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:110" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:11" $at_failed && at_fn_log_failure $at_traceon; } @@ -346886,15 +360264,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:111: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-8 --add-source 10.0.0.0/8 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:111" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-8 --add-source 10.0.0.0/8 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:12: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-rich-rule='rule family=ipv4 priority=-1 source address=10.0.0.0/8 forward-port port=3333 protocol=tcp to-port=4444 to-addr=10.222.222.222' " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:12" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy forwardPolicy --add-rich-rule='rule family=ipv4 priority=-1 source address=10.0.0.0/8 forward-port port=3333 protocol=tcp to-port=4444 to-addr=10.222.222.222' ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:111" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:12" $at_failed && at_fn_log_failure $at_traceon; } @@ -346904,16 +360282,17 @@ $at_traceon; } + { set +x -$as_echo "$at_srcdir/zone_priority.at:112: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-zone zone-0andlast " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:112" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-zone zone-0andlast +printf "%s\n" "$at_srcdir/strict_forward_ports.at:14: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --new-policy outputPolicy " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:14" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --new-policy outputPolicy ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:112" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:14" $at_failed && at_fn_log_failure $at_traceon; } @@ -346924,15 +360303,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:113: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-ingress-priority 0 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:113" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-ingress-priority 0 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:15: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-ingress-zone HOST " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:15" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-ingress-zone HOST ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:113" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:15" $at_failed && at_fn_log_failure $at_traceon; } @@ -346943,15 +360322,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:114: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-egress-priority 32000 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:114" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --set-egress-priority 32000 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:16: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-egress-zone ANY " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:16" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-egress-zone ANY ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:114" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:16" $at_failed && at_fn_log_failure $at_traceon; } @@ -346962,15 +360341,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:115: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --add-interface dummy-9 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:115" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --zone zone-0andlast --add-interface dummy-9 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:17: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-forward-port=port=11111:proto=tcp:toport=22222:toaddr=10.20.20.1 " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:17" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --permanent --policy outputPolicy --add-forward-port=port=11111:proto=tcp:toport=22222:toaddr=10.20.20.1 ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: echo stdout:; cat "$at_stdout" -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:115" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:17" $at_failed && at_fn_log_failure $at_traceon; } @@ -346978,19 +360357,33 @@ $at_traceon; } +{ set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:19: sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=no/' ./firewalld.conf" +at_fn_check_prepare_trace "strict_forward_ports.at:19" +( $at_check_trace; sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=no/' ./firewalld.conf +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:19" +$at_failed && at_fn_log_failure +$at_traceon; } + + { set +x -$as_echo "$at_srcdir/zone_priority.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:116" +printf "%s\n" "$at_srcdir/strict_forward_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:116" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -347001,15 +360394,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:116: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:116" +printf "%s\n" "$at_srcdir/strict_forward_ports.at:20: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:20" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:116" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:20" $at_failed && at_fn_log_failure $at_traceon; } @@ -347029,54 +360422,33 @@ $at_traceon; } + + + { set +x -$as_echo "$at_srcdir/zone_priority.at:362: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:59: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:362" +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:59" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 10.10.10.0/24 0.0.0.0/0 -IN_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 10.0.0.0/8 0.0.0.0/0 -IN_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -IN_allow-host-ipv6 0 -- 0.0.0.0/0 0.0.0.0/0 -IN_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID +INPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +INPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:362" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:59" $at_failed && at_fn_log_failure $at_traceon; } @@ -347091,222 +360463,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:394: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:67: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:394" +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:67" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IPTABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-1 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-1 0 -- 0.0.0.0/0 10.0.0.0/8 -REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-1 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-2 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-2 0 -- 0.0.0.0/0 10.0.0.0/8 -REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-2 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-3 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-3 0 -- 0.0.0.0/0 10.0.0.0/8 -REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-3 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-4 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-4 0 -- 0.0.0.0/0 10.0.0.0/8 -REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-4 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-5 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-5 0 -- 0.0.0.0/0 10.0.0.0/8 -REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-5 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-0andlast 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-0andlast 0 -- 0.0.0.0/0 10.0.0.0/8 -REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-0andlast 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-6 0 -- 10.10.10.0/24 10.10.10.0/24 -REJECT 0 -- 10.10.10.0/24 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-6 0 -- 10.10.10.0/24 10.0.0.0/8 -REJECT 0 -- 10.10.10.0/24 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-6 0 -- 10.10.10.0/24 0.0.0.0/0 -REJECT 0 -- 10.10.10.0/24 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-7 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-7 0 -- 0.0.0.0/0 10.0.0.0/8 -REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-7 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-8 0 -- 10.0.0.0/8 10.10.10.0/24 -REJECT 0 -- 10.0.0.0/8 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-8 0 -- 10.0.0.0/8 10.0.0.0/8 -REJECT 0 -- 10.0.0.0/8 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_zone-8 0 -- 10.0.0.0/8 0.0.0.0/0 -REJECT 0 -- 10.0.0.0/8 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.10.10.0/24 -REJECT 0 -- 0.0.0.0/0 10.10.10.0/24 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 10.0.0.0/8 -REJECT 0 -- 0.0.0.0/0 10.0.0.0/8 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable -FWD_public 0 -- 0.0.0.0/0 0.0.0.0/0 -REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID +FORWARD_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +FORWARD_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:394" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:67" $at_failed && at_fn_log_failure $at_traceon; } @@ -347320,62 +360498,32 @@ $at_traceon; } - - if $IP6TABLES -L >/dev/null 2>&1; then - : - - { set +x -$as_echo "$at_srcdir/zone_priority.at:597: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:75: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:597" +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:75" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L INPUT_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IPTABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_zone-1 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_zone-2 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_zone-3 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_zone-4 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_zone-5 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_zone-0andlast 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_zone-7 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -IN_allow-host-ipv6 0 -- ::/0 ::/0 -IN_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +OUTPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +OUTPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:597" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:75" $at_failed && at_fn_log_failure $at_traceon; } - else - : - - fi - @@ -347390,150 +360538,28 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:623: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" - { { { { \$IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\([^ ]*\\)[ ][-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:82: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 HERE " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:623" +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:82" ( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" - { { { { $IP6TABLES -w -n -t filter -L FORWARD_POLICIES; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\([^ ]*\)[ ][-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 + { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 HERE ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "FWD_zone-1 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-1 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-1 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-1 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-1 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-1 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-1 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-1 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-2 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-2 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-2 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-2 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-2 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-2 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-2 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-2 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-3 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-3 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-3 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-3 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-3 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-3 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-3 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-3 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-4 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-4 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-4 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-4 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-4 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-4 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-4 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-4 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-5 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-5 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-5 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-5 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-5 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-5 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-5 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-5 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-0andlast 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-0andlast 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-0andlast 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-0andlast 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-0andlast 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-0andlast 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-0andlast 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-0andlast 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-7 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-7 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-7 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-7 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-7 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-7 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-7 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_zone-7 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable -FWD_public 0 -- ::/0 ::/0 -REJECT 0 -- ::/0 ::/0 reject-with icmp6-port-unreachable +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +DROP 0 -- ::/0 ::/0 ctstate INVALID +INPUT_direct 0 -- ::/0 ::/0 +INPUT_POLICIES 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:623" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:82" $at_failed && at_fn_log_failure $at_traceon; } @@ -347552,91 +360578,105 @@ $at_traceon; } + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/zone_priority.at:755: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-zone zone-2 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:755" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-zone zone-2 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/strict_forward_ports.at:90: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:90" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "zone-2 (active) -target: default -ingress-priority: -10000 -egress-priority: -10000 -icmp-block-inversion: no -interfaces: dummy-2 -sources: -services: -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +DROP 0 -- ::/0 ::/0 ctstate INVALID +FORWARD_direct 0 -- ::/0 ::/0 +RFC3964_IPv4 0 -- ::/0 ::/0 +FORWARD_POLICIES 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:755" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:90" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/zone_priority.at:773: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --info-zone zone-4 | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } " -at_fn_check_prepare_notrace 'a $(...) command substitution' "zone_priority.at:773" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --info-zone zone-4 | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } +printf "%s\n" "$at_srcdir/strict_forward_ports.at:99: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:99" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo "zone-4 (active) -target: default -ingress-priority: -100 -egress-priority: 1 -icmp-block-inversion: no -interfaces: dummy-4 -sources: -services: -ports: -protocols: -forward: no -masquerade: no -forward-ports: -source-ports: -icmp-blocks: -rich rules: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED,DNAT +ACCEPT 0 -- ::/0 ::/0 +OUTPUT_direct 0 -- ::/0 ::/0 +RFC3964_IPv4 0 -- ::/0 ::/0 +OUTPUT_POLICIES 0 -- ::/0 ::/0 " | \ $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:773" +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:99" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + { set +x -$as_echo "$at_srcdir/zone_priority.at:793: cat ./zones/zone-5.xml" -at_fn_check_prepare_trace "zone_priority.at:793" -( $at_check_trace; cat ./zones/zone-5.xml +printf "%s\n" "$at_srcdir/strict_forward_ports.at:107: sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=yes/' ./firewalld.conf" +at_fn_check_prepare_trace "strict_forward_ports.at:107" +( $at_check_trace; sed -i 's/^StrictForwardPorts=.*/StrictForwardPorts=yes/' ./firewalld.conf ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -echo >>"$at_stdout"; $as_echo " - - - -" | \ - $at_diff - "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/zone_priority.at:793" +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:107" $at_failed && at_fn_log_failure $at_traceon; } @@ -347645,15 +360685,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:801: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-priority -1 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:801" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-priority -1 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:108" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:801" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:108" $at_failed && at_fn_log_failure $at_traceon; } @@ -347664,15 +360704,15 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:802: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-ingress-priority -2 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:802" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-ingress-priority -2 +printf "%s\n" "$at_srcdir/strict_forward_ports.at:108: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " +at_fn_check_prepare_notrace 'a ${...} parameter expansion' "strict_forward_ports.at:108" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:802" +at_fn_diff_devnull "$at_stderr" || at_failed=: +at_fn_diff_devnull "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:108" $at_failed && at_fn_log_failure $at_traceon; } @@ -347682,18 +360722,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:803: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --set-egress-priority -3 " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:803" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --set-egress-priority -3 -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:803" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -347701,18 +360729,6 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:804: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:804" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-priority -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:804" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -347720,18 +360736,8 @@ $at_traceon; } - { set +x -$as_echo "$at_srcdir/zone_priority.at:805: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-ingress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:805" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-ingress-priority -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:805" -$at_failed && at_fn_log_failure -$at_traceon; } + + @@ -347740,15 +360746,29 @@ $at_traceon; } { set +x -$as_echo "$at_srcdir/zone_priority.at:806: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd --zone foobar --get-egress-priority " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "zone_priority.at:806" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --zone foobar --get-egress-priority +printf "%s\n" "$at_srcdir/strict_forward_ports.at:171: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:171" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter -echo stderr:; cat "$at_stderr" -echo stdout:; cat "$at_stdout" -at_fn_check_status 2 $at_status "$at_srcdir/zone_priority.at:806" +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED +INPUT_dnat 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID +INPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +INPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:171" $at_failed && at_fn_log_failure $at_traceon; } @@ -347758,28 +360778,31 @@ $at_traceon; } - if test x"ignore" != x"ignore"; then - $as_echo "zone_priority.at:808" >"$at_check_line_file" -(cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | sed ignore | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/zone_priority.at:808" - fi - set +x - $at_times_p && times >"$at_times_file" -) 5>&1 2>&1 7>&- | eval $at_tee_pipe -read at_status <"$at_status_file" -#AT_STOP_340 -#AT_START_341 -at_fn_group_banner 341 'reloadpolicy.at:1' \ - "check ReloadPolicy" " " 11 -at_xfail=no -( - $as_echo "341. $at_setup_line: testing $at_desc ..." - $at_traceon + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:180: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L INPUT_dnat; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:180" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L INPUT_dnat; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT ctorigdstport 12345 ctdir ORIGINAL +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:180" +$at_failed && at_fn_log_failure +$at_traceon; } @@ -347787,118 +360810,133 @@ at_xfail=no - test -z "$PYTHON" && export PYTHON="python3" - test -z "$EBTABLES" && export EBTABLES="ebtables" - test -z "$IPTABLES" && export IPTABLES="iptables" - test -z "$IPTABLES_RESTORE" && export IPTABLES_RESTORE="iptables-restore" - test -z "$IP6TABLES" && export IP6TABLES="ip6tables" - test -z "$IP6TABLES_RESTORE" && export IP6TABLES_RESTORE="ip6tables-restore" - test -z "$IPSET" && export IPSET="ipset" - if locale -a |grep "^C.utf8" >/dev/null; then - LC_ALL="C.UTF-8" - export LC_ALL - fi - ULIMIT_VAL="" - if test -z "$ULIMIT_VAL" ; then - ULIMIT_VAL=102400 - fi - if test "$ULIMIT_VAL" -ne 0 ; then - ulimit -d "$ULIMIT_VAL" - fi - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: if ! cp \"\${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf\" ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" -( $at_check_trace; if ! cp "${FIREWALLD_DEFAULT_CONFIG}/firewalld.conf" ./firewalld.conf; then exit 77; fi + + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:184: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:184" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED +FORWARD_dnat 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +DROP 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID +FORWARD_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +FORWARD_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:184" $at_failed && at_fn_log_failure $at_traceon; } - else - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi" -at_fn_check_prepare_trace "reloadpolicy.at:1" -( $at_check_trace; if ! cp /etc/firewalld/firewalld.conf ./firewalld.conf; then exit 77; fi + + + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:193: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L FORWARD_dnat; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:193" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L FORWARD_dnat; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT ctorigdstport 3333 ctdir ORIGINAL +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:193" $at_failed && at_fn_log_failure $at_traceon; } - fi - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf" -at_fn_check_prepare_trace "reloadpolicy.at:1" -( $at_check_trace; sed -i 's/^FirewallBackend.*/FirewallBackend=iptables/' ./firewalld.conf + + + + + + + + + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:197: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:197" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED +OUTPUT_dnat 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT +ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 +OUTPUT_direct 0 -- 0.0.0.0/0 0.0.0.0/0 +OUTPUT_POLICIES 0 -- 0.0.0.0/0 0.0.0.0/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:197" $at_failed && at_fn_log_failure $at_traceon; } - kill_firewalld() { - - pid=$(cat firewalld.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - - } - kill_networkmanager() { - if test -f networkmanager.pid; then - pid=$(cat networkmanager.pid) - kill $pid - for I in 1 2 3 4 5 6 7 8 9 0; do - ps --pid $pid >/dev/null || { pid=0; break; } - sleep 1 - done - test $pid -eq 0 || { kill -9 $pid; sleep 3; } - fi - } - echo "" > cleanup - echo "" > cleanup_late - trap ". ./cleanup; kill_firewalld; kill_networkmanager; . ./cleanup_late" EXIT + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:204: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IPTABLES -w -n -t filter -L OUTPUT_dnat; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:204" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IPTABLES -w -n -t filter -L OUTPUT_dnat; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - echo "ip netns delete fwd-test-${at_group_normalized}" >> ./cleanup_late - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:1: ip netns add fwd-test-\${at_group_normalized}" -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:1" -( $at_check_trace; ip netns add fwd-test-${at_group_normalized} ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:1" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT ctorigdstport 11111 ctdir ORIGINAL +REJECT 0 -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:204" $at_failed && at_fn_log_failure $at_traceon; } @@ -347906,162 +360944,92 @@ $at_traceon; } - $as_echo "reloadpolicy.at:1" >"$at_check_line_file" -(! env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh -c "{ $IPTABLES_RESTORE -h || $IPTABLES -h; }" >/dev/null 2>&1 ) \ - && at_fn_check_skip 77 "$at_srcdir/reloadpolicy.at:1" - cat >./dbus.conf <<'_ATEOF' - - - - EXTERNAL - unix:path=/tmp/dummy - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + if $IP6TABLES -L >/dev/null 2>&1; then + : - - - - - - - - - - - - - - - + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:209: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:209" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE - - - - - -_ATEOF +) >>"$at_stdout" 2>>"$at_stderr" 5>&- +at_status=$? at_failed=false +$at_check_filter +at_fn_diff_devnull "$at_stderr" || at_failed=: +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED +INPUT_dnat 0 -- ::/0 ::/0 ctstate DNAT +ACCEPT 0 -- ::/0 ::/0 +DROP 0 -- ::/0 ::/0 ctstate INVALID +INPUT_direct 0 -- ::/0 ::/0 +INPUT_POLICIES 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:209" +$at_failed && at_fn_log_failure +$at_traceon; } - DBUS_PID=` env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} dbus-daemon --address="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" --print-pid --config-file="./dbus.conf" ` - if test $? -ne 0; then - $as_echo "reloadpolicy.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" - fi - echo "kill $DBUS_PID" >> ./cleanup_late + else + : + fi - FIREWALLD_ARGS="--nofork --nopid --log-file ./firewalld.log --system-config ./" - ${at_debug_p} && FIREWALLD_ARGS="--debug=9 ${FIREWALLD_ARGS}" - if test "x${FIREWALLD_DEFAULT_CONFIG}" != x ; then - FIREWALLD_ARGS="${FIREWALLD_ARGS} --default-config ${FIREWALLD_DEFAULT_CONFIG}" - fi - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewalld $FIREWALLD_ARGS & - if test $? -ne 0; then - $as_echo "reloadpolicy.at:1" >"$at_check_line_file" -at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" - fi - echo "$!" > firewalld.pid - WANTED_CODE="" - up=0 - for I in $(seq 60); do - env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd --state - RC=$? - echo "exit code = ${RC}" - if test ${RC} -eq ${WANTED_CODE:-0}; then - up=1 - break - fi - sleep 1 - done - $as_echo "reloadpolicy.at:1" >"$at_check_line_file" -(test $up -ne 1) \ - && at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:1" + if $IP6TABLES -L >/dev/null 2>&1; then + : -{ set +x -$as_echo "$at_srcdir/reloadpolicy.at:4: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=INPUT:REJECT,FORWARD:ACCEPT/' ./firewalld.conf" -at_fn_check_prepare_trace "reloadpolicy.at:4" -( $at_check_trace; sed -i 's/^ReloadPolicy=.*/ReloadPolicy=INPUT:REJECT,FORWARD:ACCEPT/' ./firewalld.conf + { set +x +printf "%s\n" "$at_srcdir/strict_forward_ports.at:218: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L INPUT_dnat; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:218" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L INPUT_dnat; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:4" +echo >>"$at_stdout"; printf "%s\n" "REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:218" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:6" -$at_failed && at_fn_log_failure -$at_traceon; } @@ -348069,124 +361037,186 @@ $at_traceon; } + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/reloadpolicy.at:6: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:6" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/strict_forward_ports.at:221: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:221" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:6" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED +FORWARD_dnat 0 -- ::/0 ::/0 ctstate DNAT +ACCEPT 0 -- ::/0 ::/0 +DROP 0 -- ::/0 ::/0 ctstate INVALID +FORWARD_direct 0 -- ::/0 ::/0 +RFC3964_IPv4 0 -- ::/0 ::/0 +FORWARD_POLICIES 0 -- ::/0 ::/0 +REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:221" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi - { set +x -$as_echo "$at_srcdir/reloadpolicy.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:7" -$at_failed && at_fn_log_failure -$at_traceon; } + if $IP6TABLES -L >/dev/null 2>&1; then + : { set +x -$as_echo "$at_srcdir/reloadpolicy.at:7: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:7" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/strict_forward_ports.at:231: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L FORWARD_dnat; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:231" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L FORWARD_dnat; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:7" +echo >>"$at_stdout"; printf "%s\n" "REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:231" $at_failed && at_fn_log_failure $at_traceon; } + else + : + fi -{ set +x -$as_echo "$at_srcdir/reloadpolicy.at:9: sed -i 's/^ReloadPolicy=.*/ReloadPolicy=REJECT/' ./firewalld.conf" -at_fn_check_prepare_trace "reloadpolicy.at:9" -( $at_check_trace; sed -i 's/^ReloadPolicy=.*/ReloadPolicy=REJECT/' ./firewalld.conf -) >>"$at_stdout" 2>>"$at_stderr" 5>&- -at_status=$? at_failed=false -$at_check_filter -at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:9" -$at_failed && at_fn_log_failure -$at_traceon; } + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/reloadpolicy.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --reload " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --reload +printf "%s\n" "$at_srcdir/strict_forward_ports.at:234: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:234" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L OUTPUT; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:10" +echo >>"$at_stdout"; printf "%s\n" "ACCEPT 0 -- ::/0 ::/0 ctstate RELATED,ESTABLISHED +OUTPUT_dnat 0 -- ::/0 ::/0 ctstate DNAT +ACCEPT 0 -- ::/0 ::/0 +OUTPUT_direct 0 -- ::/0 ::/0 +RFC3964_IPv4 0 -- ::/0 ::/0 +OUTPUT_POLICIES 0 -- ::/0 ::/0 +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:234" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + + + + + if $IP6TABLES -L >/dev/null 2>&1; then + : + + { set +x -$as_echo "$at_srcdir/reloadpolicy.at:10: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} firewall-cmd -q --state " -at_fn_check_prepare_notrace 'a ${...} parameter expansion' "reloadpolicy.at:10" -( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} firewall-cmd -q --state +printf "%s\n" "$at_srcdir/strict_forward_ports.at:242: env DBUS_SYSTEM_BUS_ADDRESS=\"unix:abstract=firewalld-testsuite-dbus-system-socket-\${at_group_normalized}\" ip netns exec fwd-test-\${at_group_normalized} sh <<-\"HERE\" + { { { { \$IP6TABLES -w -n -t filter -L OUTPUT_dnat; echo \$? >&3; } | sed -e 's/^[ \\t]*//' -e 's/[ \\t]*\$//' | sed -e '/^[ \\t]*\$/d' | sed -e 's/[ \\t]\\+/ /g' | { printf \"%s\" \"\$(cat /dev/stdin)\"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\\([ -]\\)/ icmpv6\\1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]all/\\1 0/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]tcp/\\1 6/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]udp/\\1 17/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmpv6/\\1 58 /g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]icmp/\\1 1/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]sctp/\\1 132/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]dccp/\\1 33/g' -e 's/^\\([-a-zA-Z0-9_]\\+\\)[ ]\\+\\([^ ]*\\)[ ]\\+[-]\\?[-]\\?[ ]\\?/\\1 \\2 -- /g' >&4; } 3>&1; } | { read RC; exit \$RC; } } 4>&1 +HERE + " +at_fn_check_prepare_notrace 'a $(...) command substitution' "strict_forward_ports.at:242" +( $at_check_trace; env DBUS_SYSTEM_BUS_ADDRESS="unix:abstract=firewalld-testsuite-dbus-system-socket-${at_group_normalized}" ip netns exec fwd-test-${at_group_normalized} sh <<-"HERE" + { { { { $IP6TABLES -w -n -t filter -L OUTPUT_dnat; echo $? >&3; } | sed -e 's/^[ \t]*//' -e 's/[ \t]*$//' | sed -e '/^[ \t]*$/d' | sed -e 's/[ \t]\+/ /g' | { printf "%s" "$(cat /dev/stdin)"; echo; } | tail -n +3 | sed -e 's/[ ]ipv6-icmp\([ -]\)/ icmpv6\1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]all/\1 0/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]tcp/\1 6/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]udp/\1 17/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmpv6/\1 58 /g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]icmp/\1 1/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]sctp/\1 132/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]dccp/\1 33/g' -e 's/^\([-a-zA-Z0-9_]\+\)[ ]\+\([^ ]*\)[ ]\+[-]\?[-]\?[ ]\?/\1 \2 -- /g' >&4; } 3>&1; } | { read RC; exit $RC; } } 4>&1 +HERE + ) >>"$at_stdout" 2>>"$at_stderr" 5>&- at_status=$? at_failed=false $at_check_filter at_fn_diff_devnull "$at_stderr" || at_failed=: -at_fn_diff_devnull "$at_stdout" || at_failed=: -at_fn_check_status 0 $at_status "$at_srcdir/reloadpolicy.at:10" +echo >>"$at_stdout"; printf "%s\n" "REJECT 0 -- ::/0 ::/0 reject-with icmp6-adm-prohibited +" | \ + $at_diff - "$at_stdout" || at_failed=: +at_fn_check_status 0 $at_status "$at_srcdir/strict_forward_ports.at:242" $at_failed && at_fn_log_failure $at_traceon; } + else + : + + fi + + + if test x"" != x"ignore"; then - $as_echo "reloadpolicy.at:12" >"$at_check_line_file" + printf "%s\n" "strict_forward_ports.at:246" >"$at_check_line_file" (cat ./firewalld.log | sed "/WARNING: ip6tables not usable, disabling IPv6 firewall/d" | grep '^[0-9-]*[ ]\+[0-9:]*[ ]\+\(ERROR\|WARNING\)') \ - && at_fn_check_skip 99 "$at_srcdir/reloadpolicy.at:12" + && at_fn_check_skip 99 "$at_srcdir/strict_forward_ports.at:246" fi @@ -348195,4 +361225,4 @@ $at_traceon; } $at_times_p && times >"$at_times_file" ) 5>&1 2>&1 7>&- | eval $at_tee_pipe read at_status <"$at_status_file" -#AT_STOP_341 +#AT_STOP_365 diff --git a/src/tests/unit/test_dbus_api.py b/src/tests/unit/test_dbus_api.py new file mode 100644 index 0000000..102d71a --- /dev/null +++ b/src/tests/unit/test_dbus_api.py @@ -0,0 +1,87 @@ +# SPDX-License-Identifier: GPL-2.0-or-later + +import warnings + +import firewall.dbus_utils +import firewall.config.dbus +import firewall.server.decorators + +with warnings.catch_warnings(): + # `from gi.repository import GLib` triggers a warning: + # https://gitlab.gnome.org/GNOME/pygobject/-/issues/594 + warnings.filterwarnings("ignore", category=DeprecationWarning) + import firewall.server.config + import firewall.server.firewalld + +############################################################################### + + +def assert_is_deprecated(fcn): + interface = fcn._dbus_interface + name = fcn.__name__ + + if getattr(fcn, "_dbus_is_method", None): + depr = firewall.server.decorators.dbus_service_method_deprecated + elif getattr(fcn, "_dbus_is_signal", None): + depr = firewall.server.decorators.dbus_service_signal_deprecated + else: + assert False + + depr = depr.deprecated + + assert interface in depr + assert name in depr[interface] + + +def get_dbus_functions(obj, *, with_signal=False, with_method=True, interface=None): + + for name in dir(obj): + fcn = getattr(obj, name) + is_method = getattr(fcn, "_dbus_is_method", None) + is_signal = getattr(fcn, "_dbus_is_signal", None) + + if not is_method and not is_signal: + continue + if is_method and not with_method: + continue + if is_signal and not with_signal: + continue + + if interface is not None: + if fcn._dbus_interface != interface: + continue + + yield fcn + + +############################################################################### + + +def test_api_config_policies(): + names = [] + for fcn in get_dbus_functions( + firewall.server.config.FirewallDConfig, + with_method=True, + with_signal=True, + interface=firewall.config.dbus.DBUS_INTERFACE_CONFIG_POLICIES, + ): + assert_is_deprecated(fcn) + names.append(fcn.__name__) + + assert "setLockdownWhitelist" in names + assert "LockdownWhitelistUpdated" in names + + +def test_api_policies(): + names = [] + for fcn in get_dbus_functions( + firewall.server.firewalld.FirewallD, + with_method=True, + with_signal=True, + interface=firewall.config.dbus.DBUS_INTERFACE_POLICIES, + ): + assert_is_deprecated(fcn) + names.append(fcn.__name__) + + assert "getLockdownWhitelistContexts" in names + assert "LockdownWhitelistUidAdded" in names diff --git a/src/tests/unit/test_firewalld_conf.py b/src/tests/unit/test_firewalld_conf.py index 0ce1fd2..da0fadd 100644 --- a/src/tests/unit/test_firewalld_conf.py +++ b/src/tests/unit/test_firewalld_conf.py @@ -6,7 +6,6 @@ def test_reload_policy(): def t(value, expected_valid=True, **kw): - expected = { "INPUT": "DROP", "FORWARD": "DROP", diff --git a/src/tests/unit/test_functions.py b/src/tests/unit/test_functions.py new file mode 100644 index 0000000..00db7c1 --- /dev/null +++ b/src/tests/unit/test_functions.py @@ -0,0 +1,11 @@ +import firewall.functions + + +def test_wrong_args_for_callable(): + w = firewall.functions.wrong_args_for_callable + + assert w(lambda: 1) is True + assert w(lambda x: 1) is False + assert w(lambda x: 1, 5) is True + assert w(lambda x: 1, x=5) is True + assert w(lambda x: 1, y=5) is False diff --git a/src/tests/unit/test_rich_rule.py b/src/tests/unit/test_rich_rule.py index db374cf..d81b404 100644 --- a/src/tests/unit/test_rich_rule.py +++ b/src/tests/unit/test_rich_rule.py @@ -21,7 +21,7 @@ def _exp_rule_check_1(exp_rule, rule): def _exp_rule_check_2(exp_rule, rule): assert ( exp_rule.rule_str - == 'rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"' + == 'rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/minute"' ) s = rule.element assert type(s) is firewall.core.rich.Rich_IcmpBlock @@ -105,7 +105,7 @@ def check(self, rule): 'rule family="ipv6" source address="1:2:3:4:6::" forward-port port="4011" protocol="tcp" to-port="4012" to-addr="1::2:3:4:7"' ), ExpRule( - 'rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/m"', + 'rule family="ipv6" source address="1:2:3:4:6::" icmp-block name="redirect" log prefix="redirected: " level="info" limit value="4/minute"', check=_exp_rule_check_2, ), ExpRule( @@ -192,7 +192,7 @@ def check(self, rule): ), ExpRule( 'rule service name="ftp" audit limit value="1 /m" accept', - 'rule service name="ftp" audit limit value="1 /m" accept', + 'rule service name="ftp" audit limit value="1/m" accept', tokens=[ {"element": "rule"}, {"element": "service"}, @@ -204,6 +204,8 @@ def check(self, rule): {"element": firewall.core.rich.EOL}, ], ), + ExpRule('rule service name="ftp" audit limit burst="1" value="1/m" accept'), + ExpRule('rule service name="ftp" audit limit value="1/m" burst="1" accept'), ExpRule('name="dns" accept', invalid=True), ExpRule('protocol value="ah" reject', invalid=True), ExpRule( @@ -315,30 +317,119 @@ def test_rich_rule_parse(): def test_rich_rule_parse_2(): rule1 = firewall.core.rich.Rich_Rule( - family="ipv4", - priority=44, rule_str='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept priority=5', ) assert rule1.family == "ipv4" - assert rule1.priority == 44 + assert rule1.priority == 5 rule1 = firewall.core.rich.Rich_Rule( - family="ipv4", - priority=44, - rule_str='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept', + rule_str='rule family="ipv4" priority=44 port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept', ) assert rule1.family == "ipv4" assert rule1.priority == 44 - with pytest.raises(firewall.errors.FirewallError): + with pytest.raises(firewall.errors.BugError): rule1 = firewall.core.rich.Rich_Rule( family="ipv6", priority=44, rule_str='rule family="ipv4" port port="3333" protocol="udp" nflog prefix="port-3333: " queue-size=65535 accept', ) - e = firewall.core.rich._Rich_Log() + e = firewall.core.rich.Rich_Log() assert e.limit is None - e = firewall.core.rich._Rich_Log(limit=5) + e = firewall.core.rich.Rich_Log(limit=5) assert e.limit == 5 + + +############################################################################### + + +def test_rich_limit(): + def _Limit(*args, **kwargs): + l = firewall.core.rich.Rich_Limit(*args, **kwargs) + l2 = firewall.core.rich.Rich_Limit(l.value, l.burst) + assert l == l2 + assert hash(l) == hash(l2), "Rich_Limit must be hashable" + assert set([l, l2]) == set([l]), "Rich_Limit must be hashable" + return l + + with pytest.raises(TypeError): + firewall.core.rich.Rich_Limit() + with pytest.raises(TypeError): + firewall.core.rich.Rich_Limit(value=None) + with pytest.raises(firewall.errors.FirewallError): + firewall.core.rich.Rich_Limit("") + l = _Limit(" 5 / minute") + assert l.value == "5/m" + assert l.rate == 5 + assert l.duration == "m" + assert l.burst == 0 + l = _Limit(" 543 / day ", burst=" 667 ") + assert l.value == "543/d" + assert l.rate == 543 + assert l.duration == "d" + assert l.burst == 667 + l = _Limit(" 10000 / s ", burst=10_000_000) + assert l.value == "10000/s" + assert l.rate == 10000 + assert l.duration == "s" + assert l.burst == 10_000_000 + with pytest.raises(firewall.errors.FirewallError): + firewall.core.rich.Rich_Limit(" 10001 / s ", burst=54) + with pytest.raises(firewall.errors.FirewallError): + firewall.core.rich.Rich_Limit(" 10000 / s ", burst=10_000_001) + + +def test_rich_rule_cmp(): + _03 = firewall.core.rich.Rich_Rule( + priority=-100, action=firewall.core.rich.Rich_Accept() + ) + _06 = firewall.core.rich.Rich_Rule(rule_str="rule priority=1 accept") + _04 = firewall.core.rich.Rich_Rule( + family="ipv4", priority=-100, action=firewall.core.rich.Rich_Accept() + ) + _05 = firewall.core.rich.Rich_Rule( + family="ipv4", + source=firewall.core.rich.Rich_Source("10.10.10.10", "", ""), + action=firewall.core.rich.Rich_Accept(), + ) + _10 = firewall.core.rich.Rich_Rule( + family="ipv4", priority=100, action=firewall.core.rich.Rich_Accept() + ) + _11 = firewall.core.rich.Rich_Rule( + rule_str="rule family=ipv4 priority=1000 source address=10.10.10.11 audit accept" + ) + _12 = firewall.core.rich.Rich_Rule( + rule_str="rule family=ipv4 priority=1000 source address=10.10.10.11 log accept" + ) + _01 = firewall.core.rich.Rich_Rule( + family="ipv6", priority=-500, action=firewall.core.rich.Rich_Accept() + ) + _02 = firewall.core.rich.Rich_Rule( + family="ipv6", priority=-500, action=firewall.core.rich.Rich_Reject() + ) + _07 = firewall.core.rich.Rich_Rule( + priority=10, action=firewall.core.rich.Rich_Accept() + ) + _08 = firewall.core.rich.Rich_Rule( + family="ipv4", priority=10, action=firewall.core.rich.Rich_Accept() + ) + _09 = firewall.core.rich.Rich_Rule( + family="ipv6", priority=10, action=firewall.core.rich.Rich_Accept() + ) + + sorted_list = sorted([_09, _11, _12, _03, _10, _01, _06, _05, _07, _04, _08, _02]) + + assert _01 == sorted_list[0] + assert _02 == sorted_list[1] + assert _03 == sorted_list[2] + assert _04 == sorted_list[3] + assert _05 == sorted_list[4] + assert _06 == sorted_list[5] + assert _07 == sorted_list[6] + assert _08 == sorted_list[7] + assert _09 == sorted_list[8] + assert _10 == sorted_list[9] + assert _11 == sorted_list[10] + assert _12 == sorted_list[11]